CVE-2026-59873 node-tar: Decompression/parse DoS via unlimited input
Information published. Continue reading CVE-2026-59873 node-tar: Decompression/parse DoS via unlimited input
CVE-2026-59871 node-tar: Process crash via PAX numeric path type confusion
Information published. Continue reading CVE-2026-59871 node-tar: Process crash via PAX numeric path type confusion
CVE-2026-15308 Incremental HTMLParser feed() allows CPU-exhaustion DoS via repeated unterminated markup declarations
Chromium: CVE-2026-14428 Insufficient validation of untrusted input in Dawn
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information. Continue reading Chromium: CVE-2026-14428 Insufficient validation of untrusted input in Dawn
Chromium: CVE-2026-14382 Insufficient validation of untrusted input in ANGLE
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information. Continue reading Chromium: CVE-2026-14382 Insufficient validation of untrusted input in ANGLE
Chromium: CVE-2026-14126 Incorrect security UI in UI
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information. Continue reading Chromium: CVE-2026-14126 Incorrect security UI in UI
Chromium: CVE-2026-14114 Inappropriate implementation in WebAppInstalls
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2025) for more information. Continue reading Chromium: CVE-2026-14114 Inappropriate implementation in WebAppInstalls
