Posted by Apple Product Security on Oct 31APPLE-SA-2018-10-30-3 Safari 12.0.1
Safari 12.0.1 is now available and addresses the following:
Available for: macOS Sierra 10.12.6, macOS High Sierra 10.13.6, and
macOS Mojave 10.14
Impact: Enabling the Safari Reader feature on a maliciously crafted
webpage may lead to universal cross site scripting
Description: A logic issue was addressed with improved validation.
CVE-2018-4374: Ryan Pickren (ryanpickren.com)