CVE-2025-13151 points out a vulnerability in libtasn1 versions 4.20 and earlier. The version provided through Cygwin is much earlier. It doesn't look like this package has been updated since 2019 and is listed as Orphaned. A lot of other packages seem to depend on it. Does anyone know if a developer will look at updating this?
Jeff Foppe -- Problem reports: https://cygwin.com/problems.html FAQ: https://cygwin.com/faq/ Documentation: https://cygwin.com/docs.html Unsubscribe info: https://cygwin.com/ml/#unsubscribe-simple
