{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2024-07-20T18:15:33Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/document/package-wpa-supplicant-dev","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/wpa-supplicant/package-wpa-supplicant-dev/wpa-supplicant/UNIHASH/document/package-wpa-supplicant-dev","https://rdf.openembedded.org/spdx/3.0/link-name":"30d7984ebd1c69d8ff369bc1474dcf1a32d62bb3ea41e5cd3e246eb3a3fcf988"}],"name":"package-wpa-supplicant-dev","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/package/wpa-supplicant-dev"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/package/wpa-supplicant-dev","creationInfo":"_:CreationInfo0","description":"wpa_supplicant is a WPA Supplicant for Linux, BSD, Mac OS X, and Windows with support for WPA and WPA2 (IEEE 802.11i / RSN). Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11 authentication/association of the wlan driver.  This package contains symbolic links, header files, and related items necessary for software development.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/30d7984ebd1c69d8ff369bc1474dcf1a32d62bb3ea41e5cd3e246eb3a3fcf988/wpa-supplicant/UNIHASH/package/wpa-supplicant-dev"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:*:wpa_supplicant:2.11:*:*:*:*:*:*:*"}],"name":"wpa-supplicant-dev","summary":"Client for Wi-Fi Protected Access (WPA) - Development files","software_primaryPurpose":"install","software_homePage":"http://w1.fi/wpa_supplicant/","software_packageVersion":"2.11"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/package/wpa-supplicant-dev/file/1","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/30d7984ebd1c69d8ff369bc1474dcf1a32d62bb3ea41e5cd3e246eb3a3fcf988/wpa-supplicant/UNIHASH/package/wpa-supplicant-dev/file/1"}],"name":"usr/include/wpa_ctrl.h","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"5f5c4e8c96d68d35ab14ade65832cc467670039a21d3fe5f9d8da531ca98acaf"}]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/relationship/278260747ef9764caef03d8d7eb882e9","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/30d7984ebd1c69d8ff369bc1474dcf1a32d62bb3ea41e5cd3e246eb3a3fcf988/wpa-supplicant/UNIHASH/relationship/278260747ef9764caef03d8d7eb882e9"}],"from":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/package/wpa-supplicant-dev","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/d922cbd4dc00e552d62f22db285d8e99adde7001cad9d705e79a16cb4687b649/wpa-supplicant/UNIHASH/vulnerability/CVE-2024-5290","http://spdxdocs.org/openembedded-alias/by-doc-hash/d922cbd4dc00e552d62f22db285d8e99adde7001cad9d705e79a16cb4687b649/wpa-supplicant/UNIHASH/vulnerability/CVE-2025-24912"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/relationship/46187061ffe5d8f0184fa80bcf9d5005","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/30d7984ebd1c69d8ff369bc1474dcf1a32d62bb3ea41e5cd3e246eb3a3fcf988/wpa-supplicant/UNIHASH/relationship/46187061ffe5d8f0184fa80bcf9d5005"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d922cbd4dc00e552d62f22db285d8e99adde7001cad9d705e79a16cb4687b649/wpa-supplicant/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/package/wpa-supplicant-dev"],"scope":"build"},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/relationship/8c8d5aa03f1dbfd643d9b27301941af4","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/30d7984ebd1c69d8ff369bc1474dcf1a32d62bb3ea41e5cd3e246eb3a3fcf988/wpa-supplicant/UNIHASH/relationship/8c8d5aa03f1dbfd643d9b27301941af4"}],"from":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/package/wpa-supplicant-dev","relationshipType":"contains","to":["http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/package/wpa-supplicant-dev/file/1"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/relationship/8fad7b116779f94039c6792d5870fb0e","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/30d7984ebd1c69d8ff369bc1474dcf1a32d62bb3ea41e5cd3e246eb3a3fcf988/wpa-supplicant/UNIHASH/relationship/8fad7b116779f94039c6792d5870fb0e"}],"from":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/package/wpa-supplicant-dev","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/d922cbd4dc00e552d62f22db285d8e99adde7001cad9d705e79a16cb4687b649/wpa-supplicant/UNIHASH/license/3_27_0/BSD-3-Clause"]},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/vex-fixed/3fa210b9ba1e3a895673465756d546c3","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/30d7984ebd1c69d8ff369bc1474dcf1a32d62bb3ea41e5cd3e246eb3a3fcf988/wpa-supplicant/UNIHASH/vex-fixed/3fa210b9ba1e3a895673465756d546c3"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d922cbd4dc00e552d62f22db285d8e99adde7001cad9d705e79a16cb4687b649/wpa-supplicant/UNIHASH/vulnerability/CVE-2025-24912","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/package/wpa-supplicant-dev"],"security_vexVersion":"1.0.0"},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/vex-not-affected/f50f1da6467edd111f1613517df1fd4d","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/30d7984ebd1c69d8ff369bc1474dcf1a32d62bb3ea41e5cd3e246eb3a3fcf988/wpa-supplicant/UNIHASH/vex-not-affected/f50f1da6467edd111f1613517df1fd4d"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d922cbd4dc00e552d62f22db285d8e99adde7001cad9d705e79a16cb4687b649/wpa-supplicant/UNIHASH/vulnerability/CVE-2024-5290","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/wpa-supplicant-2f87f028-19a3-5031-b9a7-83927ea203ae/5b51890b529b31ff32f1002bdfebdfdec68b12a838965fef74ee82e7dfd9c0b8/package/wpa-supplicant-dev"],"security_vexVersion":"1.0.0","security_impactStatement":"this only affects Ubuntu and other platforms patching wpa-supplicant","security_justificationType":"vulnerableCodeNotPresent"}]}