Binary-Kernel-Android-Exploitation-Roadmap

Android Kernel CVE Lab: CVE-2020-0041 (Binder UAF)

This lab helps you recreate and analyze CVE-2020-0041: A use-after-free vulnerability in the Android Binder driver.

Objectives

• Build and boot an AOSP kernel vulnerable to CVE-2020-0041 in QEMU.
• Analyze the binder driver vulnerability.
• Craft a basic UAF PoC (placeholder included).

Setup Instructions

1. Run fetch_and_build.sh to fetch and compile the Android 4.14 kernel with Binder UAF.
2. Run boot_qemu.sh to launch the vulnerable kernel in QEMU.
3. Use adb shell to interact with the device or run PoC binaries from the poc/ folder.

Note: This is a research-only lab and should never be run on production devices.