{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2025-11-05T07:00:46Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/document/package-nativesdk-curl","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/nativesdk-curl/package-nativesdk-curl/nativesdk-curl/UNIHASH/document/package-nativesdk-curl","https://rdf.openembedded.org/spdx/3.0/link-name":"ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0"}],"name":"package-nativesdk-curl","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl","creationInfo":"_:CreationInfo1","description":"It uses URL syntax to transfer data to and from servers. curl is a widely used because of its ability to be flexible and complete complex tasks. For example, you can use curl for things like user authentication, HTTP post, SSL connections, proxy support, FTP uploads, and more!","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/package/nativesdk-curl"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:haxx:curl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:haxx:libcurl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:curl:curl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:curl:libcurl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:libcurl:libcurl:8.17.0:*:*:*:*:*:*:*"},{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:daniel_stenberg:curl:8.17.0:*:*:*:*:*:*:*"}],"name":"nativesdk-curl","summary":"Command line tool and library for client-side URL transfers","software_primaryPurpose":"install","software_homePage":"https://curl.se/","software_packageVersion":"8.17.0"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl/file/1","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/package/nativesdk-curl/file/1"}],"name":"usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-tdxsdk-linux/environment-setup.d/curl.sh","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"7944337674400e06c88ce8533cd4365da616ef00710c7734507f68cc7573a6b3"}]},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl/file/2","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/package/nativesdk-curl/file/2"}],"name":"usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-tdxsdk-linux/usr/bin/curl","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"0e9e4c905554deda5e617ea1c321c3e365b5ec00d1a1721a4ea33218a04d9e04"}]},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl/file/3","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/package/nativesdk-curl/file/3"}],"name":"usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-tdxsdk-linux/usr/bin/wcurl","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"934ec87a5cac8dd683a3dccfd0fa1c46c70f350e050df9d3fec2fb6bf9851075"}]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/relationship/1dff52559caf80b6504b9d1cfda3dcc0","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/relationship/1dff52559caf80b6504b9d1cfda3dcc0"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"scope":"build"},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/relationship/d1c40757ad27385fc442c72a4a0b6ceb","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/relationship/d1c40757ad27385fc442c72a4a0b6ceb"}],"from":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2024-32928","http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-13034","http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-14017","http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-14524","http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-14819","http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-15079","http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-15224","http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2026-1965","http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2026-3783","http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2026-3784","http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2026-3805"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/relationship/e4586ba54ebe8985cfde12ef23fc7389","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/relationship/e4586ba54ebe8985cfde12ef23fc7389"}],"from":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl","relationshipType":"contains","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl/file/1","http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl/file/2","http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl/file/3"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/relationship/f375840e50c1cd5515ed9b24e4320fd3","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/relationship/f375840e50c1cd5515ed9b24e4320fd3"}],"from":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/license/3_27_0/curl"]},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-fixed/26871bf70538bf1c0cca23edcd9aff49","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-fixed/26871bf70538bf1c0cca23edcd9aff49"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-14819","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-fixed/27358ff16f79009977a37290270e40bb","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-fixed/27358ff16f79009977a37290270e40bb"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-14017","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-fixed/2eef6cd56b73280ac1d76dcdc718339c","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-fixed/2eef6cd56b73280ac1d76dcdc718339c"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2026-3784","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-fixed/54305f79299e19732353a239e15d0fc7","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-fixed/54305f79299e19732353a239e15d0fc7"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2026-1965","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-fixed/5ab5e64894375c8af913b212afc055ea","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-fixed/5ab5e64894375c8af913b212afc055ea"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-14524","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-fixed/5e22383fd568df306b9ddf2a5dffd0ab","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-fixed/5e22383fd568df306b9ddf2a5dffd0ab"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2026-3805","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-fixed/a5d7e9c92350c8af15f5d710157eaf91","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-fixed/a5d7e9c92350c8af15f5d710157eaf91"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-15224","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-fixed/b2b8bc10555c7c11c1c9b009a36b2495","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-fixed/b2b8bc10555c7c11c1c9b009a36b2495"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-13034","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-fixed/d1c0444e233caa483931f263c802ea2d","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-fixed/d1c0444e233caa483931f263c802ea2d"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2025-15079","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-fixed/eccc6502dd263bf88a0ac27335f26e20","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-fixed/eccc6502dd263bf88a0ac27335f26e20"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2026-3783","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0"},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/vex-not-affected/af0f7b5ba6bd4410f04fa1f70381c943","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/ed935595f101c9b2b863059431c408b3bacd9ecd4f9a985ba96e4f810ac169e0/nativesdk-curl/UNIHASH/vex-not-affected/af0f7b5ba6bd4410f04fa1f70381c943"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/b45fb114570107872509acc9ffece1455855723fe6c103e8da3abfd72c3d4050/nativesdk-curl/UNIHASH/vulnerability/CVE-2024-32928","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/nativesdk-curl-08226664-f1fe-558c-b792-bd6459c13272/89acee4aa2815c7a8c9c1fefa74e8803e6ab79c7815db08cf368dd71daf4ddab/package/nativesdk-curl"],"security_vexVersion":"1.0.0","security_impactStatement":"CURLOPT_SSL_VERIFYPEER was disabled on google cloud services causing a potential man in the middle attack"}]}