{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2025-11-05T07:00:46Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/document/package-curl-dbg","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/curl/package-curl-dbg/curl/UNIHASH/document/package-curl-dbg"}],"name":"package-curl-dbg","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg","creationInfo":"_:CreationInfo0","description":"It uses URL syntax to transfer data to and from servers. curl is a widely used because of its ability to be flexible and complete complex tasks. For example, you can use curl for things like user authentication, HTTP post, SSL connections, proxy support, FTP uploads, and more!  This package contains ELF symbols and related sources for debugging purposes.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/package/curl-dbg"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:haxx:curl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:haxx:libcurl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:curl:curl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:curl:libcurl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:libcurl:libcurl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:daniel_stenberg:curl:8.17.0:*:*:*:*:*:*:*"}],"name":"curl-dbg","summary":"Command line tool and library for client-side URL transfers - Debugging files","software_primaryPurpose":"install","software_homePage":"https://curl.se/","software_packageVersion":"8.17.0"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg/file/1","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/package/curl-dbg/file/1"}],"name":"usr/bin/.debug/curl","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"9980815be629213578eaeee642435b612c4e658fc61c3299d3836d403a44fcc7"}]},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg/file/2","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/package/curl-dbg/file/2"}],"name":"usr/lib/.debug/libcurl.so.4.8.0","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"181192d1d9356655fbd64a48bedd97ec93570b6d54067c5b32ea36adba7b283e"}]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/relationship/68d7841ddfa32b2023ac6a8cd60fd492","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/relationship/68d7841ddfa32b2023ac6a8cd60fd492"}],"from":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2024-32928","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-13034","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14017","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14524","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14819","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-15079","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-15224","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-1965","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3783","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3784","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3805"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/relationship/99dccde68841859e394b44bdbf451e78","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/relationship/99dccde68841859e394b44bdbf451e78"}],"from":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/license/3_27_0/curl"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/relationship/f86d36df2f6a966003868b5930a9c97f","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/relationship/f86d36df2f6a966003868b5930a9c97f"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"scope":"build"},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/relationship/fb0e684c59e6846f23d4312a34a33bc8","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/relationship/fb0e684c59e6846f23d4312a34a33bc8"}],"from":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg","relationshipType":"contains","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg/file/1","http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg/file/2"]},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/11d2106b412722ab86a4dfafdb6dab31","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-fixed/11d2106b412722ab86a4dfafdb6dab31"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14819","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/2648ca9cfd2e5518a257996d3dbe5f16","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-fixed/2648ca9cfd2e5518a257996d3dbe5f16"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-1965","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/439c96f95c6d8295347074cbe6b781a5","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-fixed/439c96f95c6d8295347074cbe6b781a5"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14524","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/59037f84d0b822ff2fd7d5a9acc67c75","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-fixed/59037f84d0b822ff2fd7d5a9acc67c75"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-15224","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/6807c40cb43f3285ecf271f769096b69","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-fixed/6807c40cb43f3285ecf271f769096b69"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14017","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/71fd0bb254c22a775e94518bfc403721","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-fixed/71fd0bb254c22a775e94518bfc403721"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-13034","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/945176d82453507f7aa87aaa3fb9d834","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-fixed/945176d82453507f7aa87aaa3fb9d834"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3784","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/a8827a73837d5c6e62676c4cd4aae950","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-fixed/a8827a73837d5c6e62676c4cd4aae950"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-15079","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/adae7e734866f5145b4633033ff3e9da","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-fixed/adae7e734866f5145b4633033ff3e9da"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3805","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/ceff9316cf50c0939b26eda906468945","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-fixed/ceff9316cf50c0939b26eda906468945"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3783","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-not-affected/4801e4a8674982255ef8358adaff1d33","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/73f66e2515878ca1565200b33cefe2bcb57dab085e4b83e2f0156acafcafdbfb/curl/UNIHASH/vex-not-affected/4801e4a8674982255ef8358adaff1d33"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2024-32928","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl-dbg"],"security_vexVersion":"1.0.0","security_impactStatement":"CURLOPT_SSL_VERIFYPEER was disabled on google cloud services causing a potential man in the middle attack"}]}