Jailbreak for any kindle running FW 5.16.2.1.1 or LOWER
The exploit works best around version 5.16.2, so if you are on lower firmware you should consider updating
Big thanks to Bluebotlabs for all the help along the way and GeorgeYellow and bulltricks for bringing the vulnerability to light
The most up to date release can be found here.
⚠️ This method will DELETE all content on your device. Backup important files.⚠️ This method works up to firmware version5.16.2.1.1. It is strongly suggested you upgrade to this firmware before starting.⚠️ Do not update your firmware beyond5.16.2.1.1after jailbreaking with LanguageBreak, as future versions of the firmware patch it.⚠️ Your device must have no password lock. Remove it before starting.
- Airplane Mode is ON
- The device (esp. the root folder) should have no
.binorupdate.bin.tmp.partialfiles before you start. This may be a pending OTA update. Delete them.
- Type
;enter_demointo the Kindle search bar, press enter, then reboot the device. - Once the device boots, dismiss the wifi selection dialog, type whatever you'd like into the text fields, then continue.
- Select
Skip, thenStandard, thenDone - The device will take a few minutes to go into demo mode. When it's done, use this gesture to access the main screen.
- Type
;demointo the Kindle search bar, then press enter to access the Demo Mode Configuration screen. - Select the
Sideload Contentoption. - Connect your Kindle to a PC, then copy the contents of the
LanguageBreakfolder to the Kindle's root directory (if prompted, overrwrite the existing files). - Eject, then unplug your Kindle, then return to the Demo Configuration Screen (using the method in step 5, if required).
- Select
Resell Device, then confirm. - As soon as the "Press the Power Button" screen appears, plug your Kindle back into your computer. (This is time sensitive, be quick.)
- Copy the contents of the
LanguageBreakfolder to the Kindle's root directory, again. (if prompted, overrwrite the existing files). - After all files have been written, eject your Kindle, then press and hold the power button until the unit reboots.
- At this point, a language selection screen appears. Select
简体中文(Chinese), which should appear above an entry calledPseudotand below Japanese. - Your Kindle should reboot, and some log messages should appear in the top right-hand corner.
- After the device has rebooted, type
;uzbinto the Kindle search bar to enable USB access within demo mode, then press enter. - Connect the device to a PC and copy whichever
Update_hotfix_languagebreak-{languge/locale}.binfile matches your language to the Kindle's root directory. - Eject your Kindle, then
;dstsinto the Kindle search bar to access the settings page. Locate theUpdate your Kindleoption and press it, then confirm.
- Using your phone to translate the menus is helpful if you don't happen to be able to read Chinese.
This will reboot the device out of Demo mode. Your device may go into Managed mode after completing these steps. Managed devices have some settings greyed out, and ask the user to contact their system administrator. See below for steps on how to restore functionality (and the correct language) to your device.
- Type
;demointo the Kindle search bar. - You will get a prompt with two buttons. Press the right-most button.
- The device will reboot. If all is well, your Kindle should have a folder named
mkkin the root directory.
- Enter
;enter_demointo the Kindle search bar, then reboot your device. - The device will be back in full "Demo Mode". Use the same gesture to access the main screen.
- Enter
;demointo the Kindle search bar. - Select
Resell device, then confirm. - The device will reboot. If all is well, your Kindle should have a folder named
mkkin the root directory.
Q: It didn't work!!!!!!
A: Not a question.. but checkout issue #48
Q: How do I verify my installation?
A: (before applying hotfix): Install hotfix, if you can do that then it worked.
A: (after applying hotfix): Type ;log into the Kindle search bar, some text should appear at the top right side of the screen.
Q: Where are the hotfix files?
A: The structure of the tarball is as follows
LanguageBreak.tar.gz
|-- LanguageBreak
| |-- documents
| | |-- dictionaries
| | | |-- a; export SLASH=$(awk 'BEGIN {print substr(ARGV[1], 0, 1)}' ${PWD}); sh ${SLASH}mnt${SLASH}us${SLASH}jb
| | | |-- amisane
| |-- DONT_CHECK_BATTERY
| |-- jb
| |-- patchedUks
| |-- .demo
| | |-- boot.flag
|-- Update_hotfix_languagebreak-*.bin
Having general issues?
This method works best around firmware version 5.16.2. Consider updating to this version to avoid compatability issues.
Download the standard firmware for your device using the URL templates below, replacing the Xs with the version numbers as appropriate.
PW5: https://s3.amazonaws.com/firmwaredownloads/update_kindle_all_new_paperwhite_11th_5.XX.X.bin
PW4: https://s3.amazonaws.com/firmwaredownloads/update_kindle_all_new_paperwhite_v2_5.XX.X.bin
PW3: https://s3.amazonaws.com/firmwaredownloads/update_kindle_all_new_paperwhite_5.XX.X.bin
Kindle 11th Gen: https://s3.amazonaws.com/firmwaredownloads/update_kindle_11th_5.XX.X.bin
Kindle 10th Gen: https://s3.amazonaws.com/firmwaredownloads/update_kindle_10th_5.XX.X.bin
Kindle 8th Gen: https://s3.amazonaws.com/firmwaredownloads/update_kindle_8th_5.XX.X.bin
Scribe: https://s3.amazonaws.com/firmwaredownloads/update_kindle_scribe_5.XX.X.bin
Oasis 10th Gen: https://s3.amazonaws.com/firmwaredownloads/update_kindle_all_new_oasis_v2_5.XX.X.bin
Oasis 9th Gen: https://s3.amazonaws.com/firmwaredownloads/update_kindle_all_new_oasis_5.XX.X.bin
Oasis 8th Gen: https://s3.amazonaws.com/firmwaredownloads/update_kindle_oasis_5.XX.X.bin
So version 5.16.2.1.1 for PW4 would be https://s3.amazonaws.com/firmwaredownloads/update_kindle_all_new_paperwhite_v2_5.16.2.1.1.bin
To install the file, place it into the root directory of the Kindle, then select Update your Kindle in settings. It should also apply the update on reboot if the menu is inaccessible for some reason.
