mirror of
https://github.com/microsoft/vcpkg.git
synced 2024-12-22 01:37:51 +08:00
ce1916404f
Resolves https://github.com/microsoft/vcpkg/issues/37839 Reverts #37199 See https://www.openwall.com/lists/oss-security/2024/03/29/4 Note that the version database is unmodified, only the baseline is changed. Because vcpkg builds liblzma from cmake sources downloaded from github and this backdoor required modifications only present in the release tarballs, it is our belief that vcpkg customers are not affected by this problem. However, we are reverting this version out of an abundance of caution as the threat actor clearly has broad access to liblzma infrastructure, and because we believe customers will start flagging this package by version as being a problem.
18 lines
517 B
Diff
18 lines
517 B
Diff
diff --git a/CMakeLists.txt b/CMakeLists.txt
|
|
index 0c6d4b7..62a824a 100644
|
|
--- a/CMakeLists.txt
|
|
+++ b/CMakeLists.txt
|
|
@@ -868,8 +868,11 @@ set_target_properties(liblzma PROPERTIES
|
|
|
|
# It's liblzma.so or liblzma.dll, not libliblzma.so or lzma.dll.
|
|
# Avoid the name lzma.dll because it would conflict with LZMA SDK.
|
|
- PREFIX ""
|
|
+ OUTPUT_NAME lzma
|
|
)
|
|
+if(WIN32 AND NOT MINGW)
|
|
+ set_target_properties(liblzma PROPERTIES RUNTIME_OUTPUT_NAME liblzma)
|
|
+endif()
|
|
|
|
# Create liblzma-config-version.cmake.
|
|
#
|