I'm curious if Lockdown mode would prevent this exploit?
From Apple's Lockdown site, it's hard to tell the extent of what is locked down.
> Web browsing: Certain complex web technologies, like just-in-time (JIT) JavaScript compilation, are disabled unless the user excludes a trusted site from Lockdown Mode
This is allegedly the fix for this exploit for webkit: https://github.com/WebKit/WebKit/pull/3023, it appears to at least somewhat related to the JIT, but I don't know enough about the exploit, or webkit to make that determination.
From Apple's Lockdown site, it's hard to tell the extent of what is locked down.
> Web browsing: Certain complex web technologies, like just-in-time (JIT) JavaScript compilation, are disabled unless the user excludes a trusted site from Lockdown Mode
This is allegedly the fix for this exploit for webkit: https://github.com/WebKit/WebKit/pull/3023, it appears to at least somewhat related to the JIT, but I don't know enough about the exploit, or webkit to make that determination.