WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to bypass the Same Origin Policy and obtain image date from an unintended web site via a timing attack involving an SVG document.
lists.apple.com/archives/security-announce/2016/Jul/msg00001.html
lists.apple.com/archives/security-announce/2016/Jul/msg00003.html
lists.apple.com/archives/security-announce/2016/Jul/msg00004.html
packetstormsecurity.com/files/138502/WebKitGTK-SOP-Bypass-Information-Disclosure.html
www.securityfocus.com/archive/1/539295/100/0/threaded
www.securityfocus.com/bid/91830
www.securitytracker.com/id/1036343
support.apple.com/HT206900
support.apple.com/HT206902
support.apple.com/HT206905