{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2025-09-08T14:35:34Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/document/package-libxml2-dbg","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/libxml2/package-libxml2-dbg/libxml2/UNIHASH/document/package-libxml2-dbg","https://rdf.openembedded.org/spdx/3.0/link-name":"bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b"}],"name":"package-libxml2-dbg","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg","creationInfo":"_:CreationInfo0","description":"The XML Parser Library allows for manipulation of XML files.  Libxml2 exports Push and Pull type parser interfaces for both XML and HTML.  It can do DTD validation at parse time, on a parsed document instance or with an arbitrary DTD.  Libxml2 includes complete XPath, XPointer and Xinclude implementations.  It also has a SAX like interface, which is designed to be compatible with Expat.  This package contains ELF symbols and related sources for debugging purposes.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/package/libxml2-dbg"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:*:libxml2:2.14.6:*:*:*:*:*:*:*"}],"name":"libxml2-dbg","summary":"XML C Parser Library and Toolkit - Debugging files","software_primaryPurpose":"install","software_homePage":"https://gitlab.gnome.org/GNOME/libxml2","software_packageVersion":"2.14.6"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg/file/1","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/package/libxml2-dbg/file/1"}],"name":"usr/bin/.debug/xmlcatalog","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"29bcbe4764c49cf6182ea2cbc1bd964c2e403ce3acea0d790a05ce306fedaff1"}]},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg/file/2","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/package/libxml2-dbg/file/2"}],"name":"usr/bin/.debug/xmllint","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"861db6a65ef06d12c191b7c8529fe57aa70273230311e7de6546681fd7ca8483"}]},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg/file/3","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/package/libxml2-dbg/file/3"}],"name":"usr/lib/.debug/libxml2.so.16.0.6","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"ce6d825933f70d681499b65eb12bbca211840ec1f2cc7528c60523afc7163928"}]},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg/file/4","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/package/libxml2-dbg/file/4"}],"name":"usr/lib/python3.13/site-packages/.debug/libxml2mod.so","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"d492e915848a5158ed52fed18f3ec2d843f414bb7373610e53adb217a2e40c6b"}]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/relationship/4d0463a50986b30d4573c731911e321f","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/relationship/4d0463a50986b30d4573c731911e321f"}],"from":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg","relationshipType":"contains","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg/file/1","http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg/file/2","http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg/file/3","http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg/file/4"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/relationship/57fface1076dd6cdb0e142d031d61e4d","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/relationship/57fface1076dd6cdb0e142d031d61e4d"}],"from":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2025-6021","http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0989","http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0990","http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0992"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/relationship/66c8cd7462f00f23df518fc8619f0114","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/relationship/66c8cd7462f00f23df518fc8619f0114"}],"from":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/license/3_27_0/MIT"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/relationship/9a6cc8c3cb47701eb04ed4467c2d5c92","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/relationship/9a6cc8c3cb47701eb04ed4467c2d5c92"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg"],"scope":"build"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/vex-fixed/18259ced74a2b2eaa8d32e120fb0e77f","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/vex-fixed/18259ced74a2b2eaa8d32e120fb0e77f"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0992","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/vex-fixed/83637707c63038437e5d9948d0e27424","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/vex-fixed/83637707c63038437e5d9948d0e27424"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0989","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/vex-fixed/915f7d830aa7c1b724a9785286091023","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/vex-fixed/915f7d830aa7c1b724a9785286091023"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0990","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/vex-fixed/fd79f84687882011c674b8466ddd7d09","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/bcf65fefd09aeef701a7a4dd83de73b4b5ef4d4ce72e79448992df2ce031917b/libxml2/UNIHASH/vex-fixed/fd79f84687882011c674b8466ddd7d09"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2025-6021","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-dbg"],"security_vexVersion":"1.0.0"}]}