Keyring corruption with GnuPG 2.1.20

Justus Winter justus at
Wed May 10 14:56:20 CEST 2017


unfortunately, GnuPG 2.1.20 has a bug that can lead to keyring
corruptions when updating or deleting keys.

GnuPG supports two ways to store public keys.  The classic one is the
'keyring' format.  The new one is called a 'keybox'.  Only the 'keyring'
format is affected.  Long-term users will likely use the keyring format.

To find out whether you are using keyring or keybox, look into your
.gnupg directory.  If a file named 'pubring.gpg' is present, you are
using the keyring format.

If you are using GnuPG 2.1.20 with the keyring format, a workaround is
to convert your keyring to a keybox.  For this, follow:

(Hat-tip to bmhatfield for the idea.)

For more information see:

Packagers, please cherry-pick the following fix:

Sorry for that :(
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 487 bytes
Desc: not available
URL: </pipermail/attachments/20170510/7352c1f2/attachment.sig>

More information about the Gnupg-users mailing list