{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2024-01-22T18:32:37Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/document/package-libz-dev","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/zlib/package-libz-dev/zlib/UNIHASH/document/package-libz-dev","https://rdf.openembedded.org/spdx/3.0/link-name":"486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c"}],"name":"package-libz-dev","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev","creationInfo":"_:CreationInfo0","description":"Zlib is a general-purpose, patent-free, lossless data compression library which is used by many different programs.  This package contains symbolic links, header files, and related items necessary for software development.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c/zlib/UNIHASH/package/libz-dev"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:zlib:zlib:1.3.1:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:gnu:zlib:1.3.1:*:*:*:*:*:*:*"}],"name":"libz-dev","summary":"Zlib Compression Library - Development files","software_primaryPurpose":"install","software_homePage":"http://zlib.net/","software_packageVersion":"1.3.1"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev/file/1","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c/zlib/UNIHASH/package/libz-dev/file/1"}],"name":"usr/include/zconf.h","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"44e543ff4514c7a9a01d648019c2c9a81d1105cbfa3c77f1faf6cd86eafa8abd"}]},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev/file/2","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c/zlib/UNIHASH/package/libz-dev/file/2"}],"name":"usr/include/zlib.h","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"55190843e28bfeb23d0fc1afb7d067f4443462b42ad81515cc80872da71c95bf"}]},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev/file/3","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c/zlib/UNIHASH/package/libz-dev/file/3"}],"name":"usr/lib/pkgconfig/zlib.pc","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"39db403264bc7bb616176bc3af309d57e58cc0f96b24dcc2ad3700fa32f32af6"}]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/relationship/6c3bb385e83fe389cf68db9a55b6d6c0","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c/zlib/UNIHASH/relationship/6c3bb385e83fe389cf68db9a55b6d6c0"}],"from":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/57301e8063a8bf25308226271627db2b78675cda9f648c5c6c14a2b9c18f48dc/zlib/UNIHASH/license/3_27_0/Zlib"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/relationship/8dcca730328158b6da2628213ad11062","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c/zlib/UNIHASH/relationship/8dcca730328158b6da2628213ad11062"}],"from":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/57301e8063a8bf25308226271627db2b78675cda9f648c5c6c14a2b9c18f48dc/zlib/UNIHASH/vulnerability/CVE-2026-22184","http://spdxdocs.org/openembedded-alias/by-doc-hash/57301e8063a8bf25308226271627db2b78675cda9f648c5c6c14a2b9c18f48dc/zlib/UNIHASH/vulnerability/CVE-2026-27171"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/relationship/a0dba0e0262865272030e31b4664e7cf","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c/zlib/UNIHASH/relationship/a0dba0e0262865272030e31b4664e7cf"}],"from":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev","relationshipType":"contains","to":["http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev/file/1","http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev/file/2","http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev/file/3"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/relationship/f7d5e6c1c857ed560823d9cf131fcb69","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c/zlib/UNIHASH/relationship/f7d5e6c1c857ed560823d9cf131fcb69"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/57301e8063a8bf25308226271627db2b78675cda9f648c5c6c14a2b9c18f48dc/zlib/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev"],"scope":"build"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/vex-fixed/f531a79a9f4d2848073a8748314ecbc6","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c/zlib/UNIHASH/vex-fixed/f531a79a9f4d2848073a8748314ecbc6"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/57301e8063a8bf25308226271627db2b78675cda9f648c5c6c14a2b9c18f48dc/zlib/UNIHASH/vulnerability/CVE-2026-27171","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev"],"security_vexVersion":"1.0.0"},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/vex-not-affected/dc83b26d91c35edf3a89f034ad498af1","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/486ba135cadf1de1a9454538452e9ba96c4b2844c84821becc8ef268aaed931c/zlib/UNIHASH/vex-not-affected/dc83b26d91c35edf3a89f034ad498af1"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/57301e8063a8bf25308226271627db2b78675cda9f648c5c6c14a2b9c18f48dc/zlib/UNIHASH/vulnerability/CVE-2026-22184","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/zlib-84464108-a499-56ba-b1e4-ded71e86cc23/3ec74a4295a4634b589f491a45d9d860350f5ca3051fa430f2913a4fcc3694d0/package/libz-dev"],"security_vexVersion":"1.0.0","security_impactStatement":"vulnerable file is not compiled","security_justificationType":"vulnerableCodeNotPresent"}]}