{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2023-08-13T09:22:15Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/document/package-libsndfile1","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/libsndfile1/package-libsndfile1/libsndfile1/UNIHASH/document/package-libsndfile1","https://rdf.openembedded.org/spdx/3.0/link-name":"6498eb5a7ed611884682baf3becb3ed569738056f06fe1ce91235a2c82efb9e9"}],"name":"package-libsndfile1","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1","creationInfo":"_:CreationInfo1","description":"Library for reading and writing files containing sampled sound (such as MS Windows WAV and the Apple/SGI AIFF format) through one standard library interface.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/6498eb5a7ed611884682baf3becb3ed569738056f06fe1ce91235a2c82efb9e9/libsndfile1/UNIHASH/package/libsndfile1"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:*:libsndfile:1.2.2:*:*:*:*:*:*:*"}],"name":"libsndfile1","summary":"Audio format Conversion library","software_primaryPurpose":"install","software_homePage":"https://libsndfile.github.io/libsndfile/","software_packageVersion":"1.2.2"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1/file/1","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/6498eb5a7ed611884682baf3becb3ed569738056f06fe1ce91235a2c82efb9e9/libsndfile1/UNIHASH/package/libsndfile1/file/1"}],"name":"usr/lib/libsndfile.so.1.0.37","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"5187e3f9cd8be5c79cb4f9a49384a99e5daee9dd3dbc983e180427d859ec01ad"}]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/relationship/40ff26739e49ba37313537ad6dd880a0","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/6498eb5a7ed611884682baf3becb3ed569738056f06fe1ce91235a2c82efb9e9/libsndfile1/UNIHASH/relationship/40ff26739e49ba37313537ad6dd880a0"}],"from":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1","relationshipType":"contains","to":["http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1/file/1"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/relationship/7d853e3210c9e6d00b5166ccbea6e76f","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/6498eb5a7ed611884682baf3becb3ed569738056f06fe1ce91235a2c82efb9e9/libsndfile1/UNIHASH/relationship/7d853e3210c9e6d00b5166ccbea6e76f"}],"from":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/afae0cb57e080d202bda862c856cd73011cc8d850462b3f1f921699a5a5626e2/libsndfile1/UNIHASH/vulnerability/CVE-2022-33065","http://spdxdocs.org/openembedded-alias/by-doc-hash/afae0cb57e080d202bda862c856cd73011cc8d850462b3f1f921699a5a5626e2/libsndfile1/UNIHASH/vulnerability/CVE-2024-50612","http://spdxdocs.org/openembedded-alias/by-doc-hash/afae0cb57e080d202bda862c856cd73011cc8d850462b3f1f921699a5a5626e2/libsndfile1/UNIHASH/vulnerability/CVE-2025-56226"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/relationship/b66275023acbb1dfde8ac7f86355f7a8","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/6498eb5a7ed611884682baf3becb3ed569738056f06fe1ce91235a2c82efb9e9/libsndfile1/UNIHASH/relationship/b66275023acbb1dfde8ac7f86355f7a8"}],"from":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/afae0cb57e080d202bda862c856cd73011cc8d850462b3f1f921699a5a5626e2/libsndfile1/UNIHASH/license/3_27_0/LGPL-2_1-only"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/relationship/b78a2275b4f1fbb35ce13ed930a6fc99","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/6498eb5a7ed611884682baf3becb3ed569738056f06fe1ce91235a2c82efb9e9/libsndfile1/UNIHASH/relationship/b78a2275b4f1fbb35ce13ed930a6fc99"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/afae0cb57e080d202bda862c856cd73011cc8d850462b3f1f921699a5a5626e2/libsndfile1/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1"],"scope":"build"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/vex-fixed/36b975d0116e211da8d2375b58eb7035","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/6498eb5a7ed611884682baf3becb3ed569738056f06fe1ce91235a2c82efb9e9/libsndfile1/UNIHASH/vex-fixed/36b975d0116e211da8d2375b58eb7035"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/afae0cb57e080d202bda862c856cd73011cc8d850462b3f1f921699a5a5626e2/libsndfile1/UNIHASH/vulnerability/CVE-2022-33065","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/vex-fixed/7614499f5fae5f75d4b2c2c8b9423e34","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/6498eb5a7ed611884682baf3becb3ed569738056f06fe1ce91235a2c82efb9e9/libsndfile1/UNIHASH/vex-fixed/7614499f5fae5f75d4b2c2c8b9423e34"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/afae0cb57e080d202bda862c856cd73011cc8d850462b3f1f921699a5a5626e2/libsndfile1/UNIHASH/vulnerability/CVE-2025-56226","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/vex-fixed/9d989b8b70f6ca3bec622bfcbfadf789","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/6498eb5a7ed611884682baf3becb3ed569738056f06fe1ce91235a2c82efb9e9/libsndfile1/UNIHASH/vex-fixed/9d989b8b70f6ca3bec622bfcbfadf789"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/afae0cb57e080d202bda862c856cd73011cc8d850462b3f1f921699a5a5626e2/libsndfile1/UNIHASH/vulnerability/CVE-2024-50612","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libsndfile1-90a0a75f-52f5-5f7b-ae92-93ca97213d77/053d6ea5f75bc527e0d9b91e190cf2360499463ebfa51bf0a9988e0b70df2103/package/libsndfile1"],"security_vexVersion":"1.0.0"}]}