{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2025-11-05T07:00:46Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/document/package-curl","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/curl/package-curl/curl/UNIHASH/document/package-curl"}],"name":"package-curl","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl","creationInfo":"_:CreationInfo0","description":"It uses URL syntax to transfer data to and from servers. curl is a widely used because of its ability to be flexible and complete complex tasks. For example, you can use curl for things like user authentication, HTTP post, SSL connections, proxy support, FTP uploads, and more!","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/package/curl"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:haxx:curl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:haxx:libcurl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:curl:curl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:curl:libcurl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:libcurl:libcurl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:daniel_stenberg:curl:8.17.0:*:*:*:*:*:*:*"}],"name":"curl","summary":"Command line tool and library for client-side URL transfers","software_primaryPurpose":"install","software_homePage":"https://curl.se/","software_packageVersion":"8.17.0"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl/file/1","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/package/curl/file/1"}],"name":"usr/bin/curl","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"1094abc274b24b8b06a99100931ce43f728e9a3255e07956013ea347e0d32150"}]},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl/file/2","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/package/curl/file/2"}],"name":"usr/bin/wcurl","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"934ec87a5cac8dd683a3dccfd0fa1c46c70f350e050df9d3fec2fb6bf9851075"}]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/relationship/33d1a5cd260d01a2d3e8849be0553398","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/relationship/33d1a5cd260d01a2d3e8849be0553398"}],"from":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl","relationshipType":"contains","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl/file/1","http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl/file/2"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/relationship/378b070f90ad62edb92600f33af5f179","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/relationship/378b070f90ad62edb92600f33af5f179"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"scope":"build"},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/relationship/89601db97e37a93e6529eab0b2ee14fb","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/relationship/89601db97e37a93e6529eab0b2ee14fb"}],"from":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/license/3_27_0/curl"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/relationship/f5f2dd9dca4bbf68bce81c6846b1392b","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/relationship/f5f2dd9dca4bbf68bce81c6846b1392b"}],"from":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2024-32928","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-13034","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14017","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14524","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14819","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-15079","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-15224","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-1965","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3783","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3784","http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3805"]},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/1910f7296459f9d3c1c6f4b5f98ce7ec","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-fixed/1910f7296459f9d3c1c6f4b5f98ce7ec"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14017","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/2e7ef3661993776aa2b5f6afeaf76ddb","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-fixed/2e7ef3661993776aa2b5f6afeaf76ddb"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14819","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/84b8cb2439b6b1cde20dc72d240e1f02","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-fixed/84b8cb2439b6b1cde20dc72d240e1f02"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-14524","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/98dbeae115c1ccdba4943562d78cf44a","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-fixed/98dbeae115c1ccdba4943562d78cf44a"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-1965","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/b51ac6c74371b715a7c5a834478f5cc0","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-fixed/b51ac6c74371b715a7c5a834478f5cc0"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-15224","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/b7a065f90fd9ef8fd582832fde922959","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-fixed/b7a065f90fd9ef8fd582832fde922959"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-13034","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/be4352d03aa45261e45c85a02331557b","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-fixed/be4352d03aa45261e45c85a02331557b"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3805","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/ce3f52b8c44ecf5a33a6569cd79e048d","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-fixed/ce3f52b8c44ecf5a33a6569cd79e048d"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2025-15079","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/d1c7840923e9b67c3fa9a4519ec9a1ff","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-fixed/d1c7840923e9b67c3fa9a4519ec9a1ff"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3783","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-fixed/f570a5833d58a802749a61d5f96a7224","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-fixed/f570a5833d58a802749a61d5f96a7224"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2026-3784","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/vex-not-affected/e0f8590fb5043ac7365d06ad4b4c1fc3","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9af391bb20520454f303b480afdc327006ccf555cccdc3f24b69a3bb84b117b5/curl/UNIHASH/vex-not-affected/e0f8590fb5043ac7365d06ad4b4c1fc3"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f5675ad54ff88d3fd07f85bee11eaa9358373c5d58bbbeceec6ca80a3c473c2e/curl/UNIHASH/vulnerability/CVE-2024-32928","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/curl-f9b42ec2-2708-5790-94d6-3b3efbda716f/14309df19dd9b987c34034198d3f3fe9abebce2db7164f65417424f3a2f1bbe3/package/curl"],"security_vexVersion":"1.0.0","security_impactStatement":"CURLOPT_SSL_VERIFYPEER was disabled on google cloud services causing a potential man in the middle attack"}]}