{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2026-01-24T12:25:07Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/document/package-libc6-thread-db","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/glibc/package-libc6-thread-db/glibc/UNIHASH/document/package-libc6-thread-db"}],"name":"package-libc6-thread-db","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db","creationInfo":"_:CreationInfo1","description":"The GNU C Library is used as the system C library in most systems with the Linux kernel.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9ef4e720b5d4c2507ad07ada205e97022ddacbfd7055d0a55b56d91545435e07/glibc/UNIHASH/package/libc6-thread-db"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:*:glibc:2.42:*:*:*:*:*:*:*"}],"name":"libc6-thread-db","summary":"GLIBC (GNU C Library)","software_primaryPurpose":"install","software_homePage":"http://www.gnu.org/software/libc/libc.html","software_packageVersion":"2.42+git"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db/file/1","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9ef4e720b5d4c2507ad07ada205e97022ddacbfd7055d0a55b56d91545435e07/glibc/UNIHASH/package/libc6-thread-db/file/1"}],"name":"usr/lib/libthread_db.so.1","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"5b232db7ef322e50848bfe5ba759c80c45542a66909756679443f200e5ce85d6"}]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/relationship/3a95ee992dd987f0f450befe0c3a0ae4","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9ef4e720b5d4c2507ad07ada205e97022ddacbfd7055d0a55b56d91545435e07/glibc/UNIHASH/relationship/3a95ee992dd987f0f450befe0c3a0ae4"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/8bcc50109a89a2a5b45d13a5cd9a3fb7e276afd2bf762de4772a02f224c2f6bf/glibc/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db"],"scope":"build"},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/relationship/69d51dff70c12fbfcf49adfa7306a67f","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9ef4e720b5d4c2507ad07ada205e97022ddacbfd7055d0a55b56d91545435e07/glibc/UNIHASH/relationship/69d51dff70c12fbfcf49adfa7306a67f"}],"from":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/8bcc50109a89a2a5b45d13a5cd9a3fb7e276afd2bf762de4772a02f224c2f6bf/glibc/UNIHASH/vulnerability/CVE-2019-1010022","http://spdxdocs.org/openembedded-alias/by-doc-hash/8bcc50109a89a2a5b45d13a5cd9a3fb7e276afd2bf762de4772a02f224c2f6bf/glibc/UNIHASH/vulnerability/CVE-2019-1010023","http://spdxdocs.org/openembedded-alias/by-doc-hash/8bcc50109a89a2a5b45d13a5cd9a3fb7e276afd2bf762de4772a02f224c2f6bf/glibc/UNIHASH/vulnerability/CVE-2019-1010024","http://spdxdocs.org/openembedded-alias/by-doc-hash/8bcc50109a89a2a5b45d13a5cd9a3fb7e276afd2bf762de4772a02f224c2f6bf/glibc/UNIHASH/vulnerability/CVE-2019-1010025"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/relationship/b573f8bec2a8b70c4a6e50ceb90b3690","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9ef4e720b5d4c2507ad07ada205e97022ddacbfd7055d0a55b56d91545435e07/glibc/UNIHASH/relationship/b573f8bec2a8b70c4a6e50ceb90b3690"}],"from":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db","relationshipType":"contains","to":["http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db/file/1"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/relationship/b74b879bc2e6fa32f769142e83016fde","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9ef4e720b5d4c2507ad07ada205e97022ddacbfd7055d0a55b56d91545435e07/glibc/UNIHASH/relationship/b74b879bc2e6fa32f769142e83016fde"}],"from":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/8bcc50109a89a2a5b45d13a5cd9a3fb7e276afd2bf762de4772a02f224c2f6bf/glibc/UNIHASH/license/3_27_0/GPL-2_0-only_AND_LGPL-2_1-or-later"]},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/vex-not-affected/09cb1c2b42839ff8e63ae6c960b3aa9d","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9ef4e720b5d4c2507ad07ada205e97022ddacbfd7055d0a55b56d91545435e07/glibc/UNIHASH/vex-not-affected/09cb1c2b42839ff8e63ae6c960b3aa9d"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/8bcc50109a89a2a5b45d13a5cd9a3fb7e276afd2bf762de4772a02f224c2f6bf/glibc/UNIHASH/vulnerability/CVE-2019-1010023","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db"],"security_vexVersion":"1.0.0","security_impactStatement":"Upstream glibc maintainers dispute there is any issue and have no plans to address it further. this is being treated as a non-security bug and no real threat."},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/vex-not-affected/16e8d635f4b7bdcbe5279fb5f85c1eb6","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9ef4e720b5d4c2507ad07ada205e97022ddacbfd7055d0a55b56d91545435e07/glibc/UNIHASH/vex-not-affected/16e8d635f4b7bdcbe5279fb5f85c1eb6"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/8bcc50109a89a2a5b45d13a5cd9a3fb7e276afd2bf762de4772a02f224c2f6bf/glibc/UNIHASH/vulnerability/CVE-2019-1010024","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db"],"security_vexVersion":"1.0.0","security_impactStatement":"Upstream glibc maintainers dispute there is any issue and have no plans to address it further. this is being treated as a non-security bug and no real threat."},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/vex-not-affected/2448640063de570e75f31c04dd8eb1e2","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9ef4e720b5d4c2507ad07ada205e97022ddacbfd7055d0a55b56d91545435e07/glibc/UNIHASH/vex-not-affected/2448640063de570e75f31c04dd8eb1e2"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/8bcc50109a89a2a5b45d13a5cd9a3fb7e276afd2bf762de4772a02f224c2f6bf/glibc/UNIHASH/vulnerability/CVE-2019-1010022","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db"],"security_vexVersion":"1.0.0","security_impactStatement":"Upstream glibc maintainers dispute there is any issue and have no plans to address it further. this is being treated as a non-security bug and no real threat."},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/vex-not-affected/4f302d2519d205ed8e87dbd113b7d0c1","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/9ef4e720b5d4c2507ad07ada205e97022ddacbfd7055d0a55b56d91545435e07/glibc/UNIHASH/vex-not-affected/4f302d2519d205ed8e87dbd113b7d0c1"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/8bcc50109a89a2a5b45d13a5cd9a3fb7e276afd2bf762de4772a02f224c2f6bf/glibc/UNIHASH/vulnerability/CVE-2019-1010025","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/glibc-086907e2-5516-5638-9df3-b3863651f374/ff0fa986562cc19d03a0a0e5521e3c1c969d98d81d02655a677ed907182d7d1f/package/libc6-thread-db"],"security_vexVersion":"1.0.0","security_impactStatement":"Allows for ASLR bypass so can bypass some hardening, not an exploit in itself, may allow easier access for another. 'ASLR bypass itself is not a vulnerability.'"}]}