Debian 13 supported?

Plex Media Server Desktops & Laptops
1

Server Version#: Version 1.42.1.10060
Player Version#: Version 4.147.1
Before I upgrade the system that is running plex media server, I just wanted to check to be sure that Debian 13 (just released) is supported. Can someone confirm please?

Thanks in advance.

2

appears to work, however some issues.

3

Hmmm. OK, I think I will wait a few weeks until this is resolved. Thanks much !!

4

There’s usually 6-9mo for people to catch up with changes and new developments.

5

OK, I will give it a go in about 6 months.

6

No need to wait. The “issue” mentioned just means plex will need to update their apt repository within a year. It functions perfectly fine with no need to wait to upgrade.

3 Likes
7

Cool. That’s even better. Thanks!!

1 Like
8

I’ve been running Plex on Debian sid/unstable for over a decade with little to no problems. As longs as you’re comfortable handling common Linux issues, you should be fine.

9

ALL:

The repository is being worked on now (an overhaul).

It does function now for downloading the DEB file and installing.

As part of the overhaul, the signing keys will be addressed.
(been problematic for a bit now).

As signing has upgraded in the distros, there will be those who see apt complain about the signing key. This is expected (Sorry).

This will be resolved as the repository (and the backside which populates it) get updated.

I don’t have a completion date for you but can share it is current tasking for the team.

9 Likes
Debian 13 GPG key is not bound, no binding signature at time + SHA1
Policy will reject signature
10

Hi

Do you know if a solution exists today? Thank you.

11

Debian 13 is supported.

The repository work is not complete.

As such, you will continue to get the warning of pending expiration next year

1 Like
12

Thank you for the progress update.

13

SHA1 will be rejected from Febrary 2026… That’s less than a month…

sudo apt-get update --audit
Hit:1 https://downloads.plex.tv/repo/deb public InRelease
Reading package lists… Done
W: https://downloads.plex.tv/repo/deb/dists/public/InRelease: Policy will reject signature within a year, see --audit for details
A: https://downloads.plex.tv/repo/deb/dists/public/InRelease: Sub-process /usr/bin/sqv returned an error code (1), error message is:

Signing key on CD665CBA0E2F88B7373F7CB997203C7B3ADCA79D is not bound:
No binding signature at time 2025-09-22T18:33:03Z
because: Policy rejected non-revocation signature (PositiveCertification) requiring second pre-image resistance
because: SHA1 is not considered secure since 2026-02-01T00:00:00Z

14

@tocotronaut

Do you get any errors installing the GPG key ?

The DEB package has supported GPG signing for quite some time.
(Yes I know the backend from the build system isn’t complete which is being moved to a new platform and worked on since November)

The DEB package code


  # Switch repo definition to using the GPG key if not already done.
  HostArch="$(dpkg --print-architecture)"
  wget -q -O - https://downloads.plex.tv/plex-keys/PlexSign.key | gpg --yes --dearmor -o /usr/share/keyrings/plexmediaserver.gpg
  Result=$?

  if [ $Result -eq 0 ]; then
    sed -i -e "s+deb https://downloads.plex.tv+deb [arch=$HostArch signed-by=/usr/share/keyrings/plexmediaserver.gpg] https://downloads.plex.tv+" \
          /etc/apt/sources.list.d/plexmediaserver.list
  else
    Output "WARNING: Unable to install Plex GPG signing key in /usr/share/keyrings/plexmediaserver.gpg"
    Warnings=$((Warnings + 1))
  fi

  # Output final message
  if [ $Fail -eq 0 ]; then
    Output "$PMSver - Installation successful.  Errors: $Errors, Warnings: $Warnings"
    exit 0
  else
    Output "$PMSver - Installation failed.  Errors: $Errors, Warnings: $Warnings"
    Output "Additional assistance and support is available in our forums."
    exit 1
  fi
16

Installing the GPG key?

The problem is not installing the gpg key (it never was).

17

Good, thanks for confirming that.

As for the actual signing,

  1. They had been signing with a key which was both GPG + SHA1 compatible.
  2. As you see on Debian, it doesn’t like that.
  3. AFAIK, they’re going to completely drop the SHA-1 in the rehosted build system in favor of using a new GPG-only signing key
18

FWIW: It is pretty easy to direct-download the .deb using the link in the web console using <curl | wget | elinks | lynx | whatever> and then dpkg -i newPlexMediaServerPackage.deb.

I prefer to stick with the public release version and eschew betas though so YMMV if hot-new-features are important to you. The public release version comes out a handful of times per year…or few enough that I can’t even tell you how often my hands touch keys.

19

This is your GPG Signing Key: CD665CBA0E2F88B7373F7CB997203C7B3ADCA79D.

The Signing Key is Weak because SHA1 encryption was considered completely Broken around 2020.
So nobody should like SHA1 in 2026.

Please Update the GPG+SHA1 Signing Key to GPG+SHA265 (or something else Debian Accepts.)

Otherwise Nobody will be able to autoupdate Plex (on Debian) Starting February.

Sorry for my bad English.

20

ALL:

We had a meeting about this today:

  1. New key is ready
  2. New repo looks ready but needs final testing with updated packaging.
  3. Updated packaging (final details) for new key and repo discussed at length so everyone is onboard.
    – A few mods to existing package scripts for the new key
    – A few other mods to improve cleaning up old key(s) if package uninstalled.

The scripting changes will happen tomorrow and we’ll start testing to confirm they are ready (both DEB and RPM)

I’m not on the build team but am involved with this.

We will make the deadline.