CoreGraphics Information Disclosure - CVE-2014-4378 This article explores the exploitability of MobileSafari on IOS 71x Using a crafted PDF file as an HTML image makes it possible to leak information about the memory layout to the browser Javascript interpreter Apple CoreGraphics library fails to validate input when parsing the colorspace specification of an inline image em