{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2025-07-09T04:43:09Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/document/package-nativesdk-libgnutls30","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/nativesdk-gnutls/package-nativesdk-libgnutls30/nativesdk-gnutls/UNIHASH/document/package-nativesdk-libgnutls30","https://rdf.openembedded.org/spdx/3.0/link-name":"e09989431f4b292b4de0b1d791af5ac82bd22c9e2c25e22e76f0e1d34903de1e"}],"name":"package-nativesdk-libgnutls30","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/package/nativesdk-libgnutls30"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/package/nativesdk-libgnutls30","creationInfo":"_:CreationInfo0","description":"a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e09989431f4b292b4de0b1d791af5ac82bd22c9e2c25e22e76f0e1d34903de1e/nativesdk-gnutls/UNIHASH/package/nativesdk-libgnutls30"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:*:gnutls:3.8.10:*:*:*:*:*:*:*"}],"name":"nativesdk-libgnutls30","summary":"GNU Transport Layer Security Library","software_primaryPurpose":"install","software_homePage":"https://gnutls.org/","software_packageVersion":"3.8.10"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/package/nativesdk-libgnutls30/file/1","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e09989431f4b292b4de0b1d791af5ac82bd22c9e2c25e22e76f0e1d34903de1e/nativesdk-gnutls/UNIHASH/package/nativesdk-libgnutls30/file/1"}],"name":"usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-tdxsdk-linux/usr/lib/libgnutls.so.30.40.4","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"ee6f1e0ffcbe11b9de43f5766f7ea3961bd91155b0c231ca2ef3ff33d0887322"}]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/relationship/8ed2198f3104d9f781c891365dec27cd","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e09989431f4b292b4de0b1d791af5ac82bd22c9e2c25e22e76f0e1d34903de1e/nativesdk-gnutls/UNIHASH/relationship/8ed2198f3104d9f781c891365dec27cd"}],"from":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/package/nativesdk-libgnutls30","relationshipType":"contains","to":["http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/package/nativesdk-libgnutls30/file/1"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/relationship/94e02f85382c6150863eb9910373d0ed","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e09989431f4b292b4de0b1d791af5ac82bd22c9e2c25e22e76f0e1d34903de1e/nativesdk-gnutls/UNIHASH/relationship/94e02f85382c6150863eb9910373d0ed"}],"from":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/package/nativesdk-libgnutls30","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/e032e763b5f37815e88a1e60c11b87a72ba3ea33ecb71b8995fc8bf30f5b4a11/nativesdk-gnutls/UNIHASH/vulnerability/CVE-2025-14831","http://spdxdocs.org/openembedded-alias/by-doc-hash/e032e763b5f37815e88a1e60c11b87a72ba3ea33ecb71b8995fc8bf30f5b4a11/nativesdk-gnutls/UNIHASH/vulnerability/CVE-2025-9820"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/relationship/aa49c61394f894aa0b130eeba2cd2b0c","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e09989431f4b292b4de0b1d791af5ac82bd22c9e2c25e22e76f0e1d34903de1e/nativesdk-gnutls/UNIHASH/relationship/aa49c61394f894aa0b130eeba2cd2b0c"}],"from":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/package/nativesdk-libgnutls30","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/e032e763b5f37815e88a1e60c11b87a72ba3ea33ecb71b8995fc8bf30f5b4a11/nativesdk-gnutls/UNIHASH/license/3_27_0/LGPL-2_1-or-later"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/relationship/e74914f79d7b51d2251908f6eba632b7","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e09989431f4b292b4de0b1d791af5ac82bd22c9e2c25e22e76f0e1d34903de1e/nativesdk-gnutls/UNIHASH/relationship/e74914f79d7b51d2251908f6eba632b7"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e032e763b5f37815e88a1e60c11b87a72ba3ea33ecb71b8995fc8bf30f5b4a11/nativesdk-gnutls/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/package/nativesdk-libgnutls30"],"scope":"build"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/vex-fixed/7085ca4d5448b9b14c60335ca11c93a2","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e09989431f4b292b4de0b1d791af5ac82bd22c9e2c25e22e76f0e1d34903de1e/nativesdk-gnutls/UNIHASH/vex-fixed/7085ca4d5448b9b14c60335ca11c93a2"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e032e763b5f37815e88a1e60c11b87a72ba3ea33ecb71b8995fc8bf30f5b4a11/nativesdk-gnutls/UNIHASH/vulnerability/CVE-2025-9820","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/package/nativesdk-libgnutls30"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/vex-fixed/7deb93bc712a9f140f0bb42dbd9fa9e1","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e09989431f4b292b4de0b1d791af5ac82bd22c9e2c25e22e76f0e1d34903de1e/nativesdk-gnutls/UNIHASH/vex-fixed/7deb93bc712a9f140f0bb42dbd9fa9e1"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/e032e763b5f37815e88a1e60c11b87a72ba3ea33ecb71b8995fc8bf30f5b4a11/nativesdk-gnutls/UNIHASH/vulnerability/CVE-2025-14831","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-gnutls-6ac4c34d-6bf0-583f-80cb-9e68c3a4dea3/2894811cda29128324a8b1b7ea1a38a682c3c5766974e6a940f7c3c66222506b/package/nativesdk-libgnutls30"],"security_vexVersion":"1.0.0"}]}