CVE-2025-23158 is a high‑impact Linux kernel defect in the Qualcomm/VENUS video driver (the venus hfi subsystem) that allows firmware‑controlled corruption of a queue size field to trigger an out‑of‑bounds write; Microsoft’s public advisory names Azure Linux as a product that “includes this...
