{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2025-09-08T14:35:34Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/document/package-libxml2-utils","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/libxml2/package-libxml2-utils/libxml2/UNIHASH/document/package-libxml2-utils","https://rdf.openembedded.org/spdx/3.0/link-name":"f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7"}],"name":"package-libxml2-utils","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils","creationInfo":"_:CreationInfo1","description":"The XML Parser Library allows for manipulation of XML files.  Libxml2 exports Push and Pull type parser interfaces for both XML and HTML.  It can do DTD validation at parse time, on a parsed document instance or with an arbitrary DTD.  Libxml2 includes complete XPath, XPointer and Xinclude implementations.  It also has a SAX like interface, which is designed to be compatible with Expat.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/package/libxml2-utils"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:*:libxml2:2.14.6:*:*:*:*:*:*:*"}],"name":"libxml2-utils","summary":"XML C Parser Library and Toolkit","software_primaryPurpose":"install","software_homePage":"https://gitlab.gnome.org/GNOME/libxml2","software_packageVersion":"2.14.6"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils/file/1","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/package/libxml2-utils/file/1"}],"name":"usr/bin/xmlcatalog","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"96ef9590b480126be7b550fe6914c933803419ae32f690c001ac3b013d427d0f"}]},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils/file/2","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/package/libxml2-utils/file/2"}],"name":"usr/bin/xmllint","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"c88c1cb5ec4319038aa302b2478aeebb8dcbb52cd2159882611a0044c51565c9"}]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/relationship/27b9f6486057e6b386e813ab88c7daff","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/relationship/27b9f6486057e6b386e813ab88c7daff"}],"from":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils","relationshipType":"contains","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils/file/1","http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils/file/2"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/relationship/685044fd51294c1a0700dab6eed9ae7b","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/relationship/685044fd51294c1a0700dab6eed9ae7b"}],"from":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2025-6021","http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0989","http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0990","http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0992"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/relationship/7bfac4fa6bfa27d51142b690031dcf46","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/relationship/7bfac4fa6bfa27d51142b690031dcf46"}],"from":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/license/3_27_0/MIT"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/relationship/b09ee22f76e74da484b630c767fe9987","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/relationship/b09ee22f76e74da484b630c767fe9987"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils"],"scope":"build"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/vex-fixed/0dd9aa3d94e92404e50d03c3dc47566a","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/vex-fixed/0dd9aa3d94e92404e50d03c3dc47566a"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0992","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/vex-fixed/312c1648896f75e1e4365ed0a4939304","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/vex-fixed/312c1648896f75e1e4365ed0a4939304"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0990","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/vex-fixed/7c5bc1ae070da7fa14e3ca2102225ca4","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/vex-fixed/7c5bc1ae070da7fa14e3ca2102225ca4"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2026-0989","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/vex-fixed/e755d357c697ee4e48c9e2f004611fa2","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/vex-fixed/e755d357c697ee4e48c9e2f004611fa2"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/1950f1452318655ff08369bc7691e6c8ac74d4e8314914482b75234163c8d172/libxml2/UNIHASH/vulnerability/CVE-2025-6021","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils"],"security_vexVersion":"1.0.0"},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/b4fd3c96f284b2bdb2dc421de3a369dce8258248eddb4d2935d6db6ced017399/relationship/2fa76aa9442951f2199fb71504b56ae4","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/f0c2fbd7000b173233a2c0d8ee803d58ee43fbc903aaf6b3f8f3b78b0106d3c7/libxml2/UNIHASH/relationship/2fa76aa9442951f2199fb71504b56ae4"}],"from":"http://spdx.org/spdxdocs/libxml2-09ad8067-76cb-5fbb-84be-43f2d1ab3e49/2e3d81bba8d5aa42e86defbb2677d6f7596da6bc4bfa1850f8489cb7093ddab3/package/libxml2-utils","relationshipType":"dependsOn","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/ff2a1cbba6daac7acabe689be5a06487fbf58b93fc48ef87378fffedc23bf5bd/libxml2/UNIHASH/package/libxml2"],"scope":"runtime"}]}