KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities
Black Hat Asia 2025 · Day 2 · Briefings
This talk introduces **KernGC**, an innovative tool designed to automate the generation of vulnerable environments for Linux kernel vulnerabilities. Presented by Bonan and Jaho from the National University of Singapore's Curiosity Security Team, KernGC addresses a critical bottleneck in kernel security research: the arduous and often error-prone process of reproducing disclosed vulnerabilities. By streamlining the setup of precise kernel versions and configurations, KernGC empowers researchers, developers, and security analysts to rapidly validate, analyze, and test defenses against kernel exploits.
AI review
This talk presents KernGC, a critical automation tool for generating precise Linux kernel vulnerable environments. By intelligently addressing the often-ignored "dirty work" of vulnerability reproduction through novel patch analysis and Kconfig graph traversal, KernGC not only streamlines research and defense efforts but also exposes widespread inaccuracies in public vulnerability databases like NVD. This is a pragmatic, technically robust solution to a pervasive bottleneck in kernel security.