For users who prefer starting with a clean system, Kali Linux has updated all its distribution images to include the new keyring. Kali Linux users worldwide are facing an imminent disruption as the security-focused distribution has announced that the update process will fail for virtually all users in the coming days. This error occurs because Kali Linux administrators have lost access to their previous repository signing key and have been forced to generate a new one. For users seeking additional verification, the new key has been signed by several Kali Linux developers, and their signatures are available on the Ubuntu OpenPGP keyserver. For security-conscious users, the Kali team recommends verifying the file’s integrity by checking that the SHA-1 checksum matches: 603374c107a90a69d983dbcb4d31e0d6eedfc325. The Kali Linux team has emphasized that this change does not indicate a security compromise. “This is not only you; it is for everyone, and it is entirely our fault,” the Kali Linux team acknowledged in its announcement. However, users will need to take manual action as the repository unfreezes this week with the new signing key in place. The issue arises from a change in the repository signing key, which will disrupt the normal system update process. In 2018, the team accidentally allowed their GPG key to expire, causing similar update failures for users. The latest images are labeled as version 2025.1c and are functionally identical to the images released last month, with the sole exception of containing the updated keyring. This isn’t the first time Kali Linux has faced key-related issues. Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis.
This Cyber News was published on cybersecuritynews.com. Publication date: Tue, 29 Apr 2025 02:20:09 +0000