{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2025-10-20T18:15:27Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/8f84cb882607384162ed33c1497b8fae5b94e2575d8e9bc1ee6cf42f56ef5155/relationship/3896067a1362a9e6476fd550f99eb440","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/relationship/3896067a1362a9e6476fd550f99eb440"}],"from":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le","relationshipType":"dependsOn","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/b7b44dbfe490fecf8967f993c3c724d9f6d853b150370bdb231096e8088110d8/nativesdk-qemu/UNIHASH/package/nativesdk-qemu-common"],"scope":"runtime"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/document/package-nativesdk-qemu-user-ppc64le","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/nativesdk-qemu/package-nativesdk-qemu-user-ppc64le/nativesdk-qemu/UNIHASH/document/package-nativesdk-qemu-user-ppc64le","https://rdf.openembedded.org/spdx/3.0/link-name":"d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510"}],"name":"package-nativesdk-qemu-user-ppc64le","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le","creationInfo":"_:CreationInfo0","description":"QEMU full user emulation binaries(ppc64le)","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/package/nativesdk-qemu-user-ppc64le"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:*:qemu:10.0.6:*:*:*:*:*:*:*"}],"name":"nativesdk-qemu-user-ppc64le","summary":"QEMU full user emulation binaries(ppc64le)","software_primaryPurpose":"install","software_homePage":"http://qemu.org","software_packageVersion":"10.0.6"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le/file/1","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/package/nativesdk-qemu-user-ppc64le/file/1"}],"name":"usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-tdxsdk-linux/usr/bin/qemu-ppc64le","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"adebca16fddd29bf594a4b15a5b3cf71be42983e0273492f65daa9aece32462f"}]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/relationship/5ed05a48cd33e26d9f8408dfb038b58d","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/relationship/5ed05a48cd33e26d9f8408dfb038b58d"}],"from":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/0ebbcb18868e98ac21f4d126ee0c18224a419eb99d3824a83343b00be36689e2/nativesdk-qemu/UNIHASH/vulnerability/CVE-2007-0998","http://spdxdocs.org/openembedded-alias/by-doc-hash/0ebbcb18868e98ac21f4d126ee0c18224a419eb99d3824a83343b00be36689e2/nativesdk-qemu/UNIHASH/vulnerability/CVE-2018-18438","http://spdxdocs.org/openembedded-alias/by-doc-hash/0ebbcb18868e98ac21f4d126ee0c18224a419eb99d3824a83343b00be36689e2/nativesdk-qemu/UNIHASH/vulnerability/CVE-2023-1386","http://spdxdocs.org/openembedded-alias/by-doc-hash/0ebbcb18868e98ac21f4d126ee0c18224a419eb99d3824a83343b00be36689e2/nativesdk-qemu/UNIHASH/vulnerability/CVE-2023-2680"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/relationship/93647cfb9b17bd2bb937510aae722916","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/relationship/93647cfb9b17bd2bb937510aae722916"}],"from":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le","relationshipType":"contains","to":["http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le/file/1"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/relationship/9ba4957030c14a85f33990ba917668f7","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/relationship/9ba4957030c14a85f33990ba917668f7"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/0ebbcb18868e98ac21f4d126ee0c18224a419eb99d3824a83343b00be36689e2/nativesdk-qemu/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le"],"scope":"build"},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/relationship/9d3d0e0dace86a8d99e47a7647735913","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/relationship/9d3d0e0dace86a8d99e47a7647735913"}],"from":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/0ebbcb18868e98ac21f4d126ee0c18224a419eb99d3824a83343b00be36689e2/nativesdk-qemu/UNIHASH/license/3_27_0/GPL-2_0-only_AND_LGPL-2_1-only"]},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/vex-not-affected/954a39ddd4b40c971ffc2fdb3dc15559","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/vex-not-affected/954a39ddd4b40c971ffc2fdb3dc15559"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/0ebbcb18868e98ac21f4d126ee0c18224a419eb99d3824a83343b00be36689e2/nativesdk-qemu/UNIHASH/vulnerability/CVE-2023-1386","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le"],"security_vexVersion":"1.0.0","security_impactStatement":"not an issue as per https://bugzilla.redhat.com/show_bug.cgi?id=2223985"},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/vex-not-affected/c91e8687a500824abc8c5a370f5e5a17","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/vex-not-affected/c91e8687a500824abc8c5a370f5e5a17"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/0ebbcb18868e98ac21f4d126ee0c18224a419eb99d3824a83343b00be36689e2/nativesdk-qemu/UNIHASH/vulnerability/CVE-2007-0998","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le"],"security_vexVersion":"1.0.0","security_impactStatement":"The VNC server can expose host files uder some circumstances. We don't enable it by default.","security_justificationType":"vulnerableCodeNotPresent"},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/vex-not-affected/d3adc6b5dea5f89ff8ac292cee7dd773","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/vex-not-affected/d3adc6b5dea5f89ff8ac292cee7dd773"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/0ebbcb18868e98ac21f4d126ee0c18224a419eb99d3824a83343b00be36689e2/nativesdk-qemu/UNIHASH/vulnerability/CVE-2018-18438","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le"],"security_vexVersion":"1.0.0","security_impactStatement":"The issues identified by this CVE were determined to not constitute a vulnerability."},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/vex-not-affected/f124e7c51b481669a70b6bb9706ac3cc","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/d9fd40f5b178ec6a65f698b00ed14bcff76c965710a6a5e00dd0ef112a7f7510/nativesdk-qemu/UNIHASH/vex-not-affected/f124e7c51b481669a70b6bb9706ac3cc"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/0ebbcb18868e98ac21f4d126ee0c18224a419eb99d3824a83343b00be36689e2/nativesdk-qemu/UNIHASH/vulnerability/CVE-2023-2680","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/nativesdk-qemu-73b50db1-68d9-511b-b396-0360258e2016/cbbbd362096706b85f042745ab16952d6381004d04e8ab847e7271caf06a0842/package/nativesdk-qemu-user-ppc64le"],"security_vexVersion":"1.0.0","security_impactStatement":"RHEL specific issue.","security_justificationType":"vulnerableCodeNotPresent"}]}