CVE-2026-59874: node-tar: Negative tar entry size causes infinite loop in archive replace — Zero Day Monitor