Date: Wed, 21 Aug 2019 04:55:58 +0700 From: Eugene Grosbein <eugen@grosbein.net> To: freebsd-security@freebsd.org Cc: Freebsd hackers list <freebsd-hackers@freebsd.org> Subject: Re: FreeBSD Security Advisory FreeBSD-SA-19:23.midi Message-ID: <f19d3f62-940c-7888-b379-f416dfc45cac@grosbein.net> In-Reply-To: <20190820201257.7A9D41F8B7@freefall.freebsd.org> References: <20190820201257.7A9D41F8B7@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
21.08.2019 3:12, FreeBSD Security Advisories wrote: [skip] > IV. Workaround > > No workaround is available. Custom kernels without "device sound" > are not vulnerable. Is it true that there is no way to disable vulnerable and unneeded device driver built in GENERIC other that through rebuilding the kernel? I remember that pre-4.x versions of FreeBSD had visual VGA-based pre-boot configurator allowing to disable any compiled-in device driver. Don't device.hints(5) or loader(8) have means to do so? These days GENERIC have LOTS of drivers and it's convenient but unsafe.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?f19d3f62-940c-7888-b379-f416dfc45cac>