I've been reading: https://vercel.com/changelog/summary-of-cve-2026-23864 but I am unsure if version 14.2.35 requires patching. I also can't seem to find a newer npm version listed. Anyone care to help?

https://github.com/vercel/next.js/security/advisories/GHSA-h25m-26qc-wcjf also doesn't list any patched 14 version.