In November 2022, Zoom is retiring the current key pair used to sign the Zoom desktop client for Linux, which customers can use to validate the Zoom desktop client. Users must download the new public key before attempting to upgrade to version 5.12.6, otherwise they will be unable to install this update. Prior versions (before 5.12.6) will not be impacted.
For versions 5.12.6 and higher, the Linux and Docker GPG signature thumbprint will change from "Key fingerprint: 3960 60CA DD8A 7522 0BFC B369 B903 BF18 61A7 C71D" to "Key fingerprint: 59C8 6188 E22A BB19 BD55 4047 7B04 A1B8 DD79 B481".
This is only required for accounts using signature validation. However, it is recommended for all Linux users to update this key directly from Zoom.
For .deb package validation proceed with the following:
gpg --import ~/Downloads/package-signing-key.pub
sudo apt install dpkg-sig && dpkg-sig --verify ~/Downloads/zoom_amd64.deb
Processing zoom_amd64.deb… GOODSIG _gpgbuilder
For .rpm package validation proceed with the following:
sudo rpm --import ~/Downloads/package-signing-key.pub
rpm -K ~/Downloads/zoom_x86_64.rpmSuccessful outcomes for a valid signed file should be:
zoom_x86_64.rpm: rsa sha1 (md5) pgp md5 OK
…zoom_x86_64.rpm: digests signatures OK