{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2025-09-08T14:35:34Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/document/package-nativesdk-libxml2-16","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/nativesdk-libxml2/package-nativesdk-libxml2-16/nativesdk-libxml2/UNIHASH/document/package-nativesdk-libxml2-16","https://rdf.openembedded.org/spdx/3.0/link-name":"055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a"}],"name":"package-nativesdk-libxml2-16","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16","creationInfo":"_:CreationInfo1","description":"The XML Parser Library allows for manipulation of XML files.  Libxml2 exports Push and Pull type parser interfaces for both XML and HTML.  It can do DTD validation at parse time, on a parsed document instance or with an arbitrary DTD.  Libxml2 includes complete XPath, XPointer and Xinclude implementations.  It also has a SAX like interface, which is designed to be compatible with Expat.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a/nativesdk-libxml2/UNIHASH/package/nativesdk-libxml2-16"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:*:libxml2:2.14.6:*:*:*:*:*:*:*"}],"name":"nativesdk-libxml2-16","summary":"XML C Parser Library and Toolkit","software_primaryPurpose":"install","software_homePage":"https://gitlab.gnome.org/GNOME/libxml2","software_packageVersion":"2.14.6"},{"type":"software_File","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16/file/1","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a/nativesdk-libxml2/UNIHASH/package/nativesdk-libxml2-16/file/1"}],"name":"usr/local/oe-sdk-hardcoded-buildpath/sysroots/x86_64-tdxsdk-linux/usr/lib/libxml2.so.16.0.6","verifiedUsing":[{"type":"Hash","algorithm":"sha256","hashValue":"d3d733e31c656b03e26811d65e9997b1f57f291fb142c4280e25d87da194e971"}]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/relationship/016dd749b7bbf6a94a84f71ade40ea47","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a/nativesdk-libxml2/UNIHASH/relationship/016dd749b7bbf6a94a84f71ade40ea47"}],"from":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/fd764849fcb42fc8c35b35808935ed7723b98ed0cdeb605ed5bb1e3cb120952a/nativesdk-libxml2/UNIHASH/license/3_27_0/MIT"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/relationship/87d0566c70151754433e475798fc9fac","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a/nativesdk-libxml2/UNIHASH/relationship/87d0566c70151754433e475798fc9fac"}],"from":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16","relationshipType":"contains","to":["http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16/file/1"]},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/relationship/c4398eeb619cf57ae4eba3ac7e23c0cd","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a/nativesdk-libxml2/UNIHASH/relationship/c4398eeb619cf57ae4eba3ac7e23c0cd"}],"from":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/fd764849fcb42fc8c35b35808935ed7723b98ed0cdeb605ed5bb1e3cb120952a/nativesdk-libxml2/UNIHASH/vulnerability/CVE-2025-6021","http://spdxdocs.org/openembedded-alias/by-doc-hash/fd764849fcb42fc8c35b35808935ed7723b98ed0cdeb605ed5bb1e3cb120952a/nativesdk-libxml2/UNIHASH/vulnerability/CVE-2026-0989","http://spdxdocs.org/openembedded-alias/by-doc-hash/fd764849fcb42fc8c35b35808935ed7723b98ed0cdeb605ed5bb1e3cb120952a/nativesdk-libxml2/UNIHASH/vulnerability/CVE-2026-0990","http://spdxdocs.org/openembedded-alias/by-doc-hash/fd764849fcb42fc8c35b35808935ed7723b98ed0cdeb605ed5bb1e3cb120952a/nativesdk-libxml2/UNIHASH/vulnerability/CVE-2026-0992"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/relationship/fff99e3a0c5eddaf66c5941f6e1d89c3","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a/nativesdk-libxml2/UNIHASH/relationship/fff99e3a0c5eddaf66c5941f6e1d89c3"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/fd764849fcb42fc8c35b35808935ed7723b98ed0cdeb605ed5bb1e3cb120952a/nativesdk-libxml2/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16"],"scope":"build"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/vex-fixed/1ac63d7c6818b3ede0215e27c149da8a","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a/nativesdk-libxml2/UNIHASH/vex-fixed/1ac63d7c6818b3ede0215e27c149da8a"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/fd764849fcb42fc8c35b35808935ed7723b98ed0cdeb605ed5bb1e3cb120952a/nativesdk-libxml2/UNIHASH/vulnerability/CVE-2026-0990","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/vex-fixed/415eef0ded92f55a17245919ea9d413b","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a/nativesdk-libxml2/UNIHASH/vex-fixed/415eef0ded92f55a17245919ea9d413b"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/fd764849fcb42fc8c35b35808935ed7723b98ed0cdeb605ed5bb1e3cb120952a/nativesdk-libxml2/UNIHASH/vulnerability/CVE-2026-0992","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/vex-fixed/cae73dd7991f89e86049cdf9c634b985","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a/nativesdk-libxml2/UNIHASH/vex-fixed/cae73dd7991f89e86049cdf9c634b985"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/fd764849fcb42fc8c35b35808935ed7723b98ed0cdeb605ed5bb1e3cb120952a/nativesdk-libxml2/UNIHASH/vulnerability/CVE-2026-0989","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16"],"security_vexVersion":"1.0.0"},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/vex-fixed/ce644a4e457c610edc9f3d35fe8f17e0","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/055457d65683e395261dd9c0afa11bcc393ecc77f3ce21189418b71955e2b62a/nativesdk-libxml2/UNIHASH/vex-fixed/ce644a4e457c610edc9f3d35fe8f17e0"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/fd764849fcb42fc8c35b35808935ed7723b98ed0cdeb605ed5bb1e3cb120952a/nativesdk-libxml2/UNIHASH/vulnerability/CVE-2025-6021","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/nativesdk-libxml2-2163c460-bd82-568f-b8b4-54369fd41882/285039b261c64fb783ef00ad37683da257cbc8668c6203be82a646da28010612/package/nativesdk-libxml2-16"],"security_vexVersion":"1.0.0"}]}