| ▲ | notpushkin 3 hours ago | |
Whoa! Completely unrelated but somehow unsurprising: Zero-day CSS: CVE-2026-2441 exists in the wild - https://news.ycombinator.com/item?id=47062748 - February 2026 (233 comments) | ||
| ▲ | carra 14 minutes ago | parent | next [-] | |
I don't think it's that unrelated. If you make a system way more complex than it should be (clearly the case with CSS) it's obvious the risk of vulnerabilities increases exponentially. | ||
| ▲ | rebane2001 3 hours ago | parent | prev [-] | |
I do actually have a CSS CVE[0] in Chrome, but it was in the changelog as "in Animation" instead of "in CSS", so no fun stories/headlines for me :c [0] https://chromereleases.googleblog.com/2025/06/stable-channel... | ||