CVE-2025-48174: In libavif before 1.3.0, makeRoom in stream.c has an integer overflow ...

Severity: Critical

CVSS Score: 9.1

In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream->offset+size.