FreeBSD Security Advisory FreeBSD-SA-19:23.midi
Eugene Grosbein
eugen at grosbein.net
Tue Aug 20 21:56:16 UTC 2019
21.08.2019 3:12, FreeBSD Security Advisories wrote:
[skip]
> IV. Workaround
>
> No workaround is available. Custom kernels without "device sound"
> are not vulnerable.
Is it true that there is no way to disable vulnerable and unneeded device driver
built in GENERIC other that through rebuilding the kernel?
I remember that pre-4.x versions of FreeBSD had visual VGA-based pre-boot configurator
allowing to disable any compiled-in device driver. Don't device.hints(5) or loader(8) have means to do so?
These days GENERIC have LOTS of drivers and it's convenient but unsafe.
More information about the freebsd-security
mailing list