From bleepingcomputer.com
A researcher published exploit code for a vulnerability in WebKit, the web browser engine that powers Apple’s Safari, along with other apps on macOS, iOS, and Linux.
The exploit takes advantage of an optimization error with WebKit’s matching of regular expressions, which could end with the possibility to execute arbitrary shellcode.
Linus Henze, the developer of the exploit, says that the vulnerability has been patched in WebKit sources but the fix is yet to reach the Safari browser.