{"SPDXID": "SPDXRef-DOCUMENT", "creationInfo": {"comment": "This document was created by analyzing recipe files during the build.", "created": "2024-01-29T11:34:07Z", "creators": ["Tool: OpenEmbedded Core create-spdx.bbclass", "Organization: OpenEmbedded ()", "Person: N/A ()"], "licenseListVersion": "3.14"}, "dataLicense": "CC0-1.0", "documentNamespace": "http://spdx.org/spdxdoc/recipe-curl-native-acd62102-415e-50b8-8fff-b573056aa44e", "externalDocumentRefs": [{"checksum": {"algorithm": "SHA1", "checksumValue": "97a74fc6f80d23afb0a869afef7d6aeb69537301"}, "externalDocumentId": "DocumentRef-dependency-recipe-autoconf-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-autoconf-native-124e4a29-7bee-575a-9a44-2226fa6af9c9"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "5bb12637e41c3f0445eba7575d41e2dd96ce2324"}, "externalDocumentId": "DocumentRef-dependency-recipe-automake-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-automake-native-e3046935-37af-5c2e-b371-e883e5ef1216"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "6263bfc1fa31f57b50185d040a9fb20264aa19e2"}, "externalDocumentId": "DocumentRef-dependency-recipe-gdbm-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-gdbm-native-41413a0a-1570-5d00-a5f5-8d068dbf5997"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "d215c5f241bcb7cc545f5101988bc0628ef3255d"}, "externalDocumentId": "DocumentRef-dependency-recipe-gettext-minimal-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-gettext-minimal-native-d0a27f93-c2cb-5d69-ab6b-b5b2d7da1769"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "b731fafa71c45107926a134ce344c16acb34f25c"}, "externalDocumentId": "DocumentRef-dependency-recipe-gnu-config-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-gnu-config-native-7f998b5b-4a9f-5868-bb80-1279a9b986ff"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "3d5d7e7d986cdbbc845d08cbe1657b960c221599"}, "externalDocumentId": "DocumentRef-dependency-recipe-libtool-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-libtool-native-af5e5210-5bed-5317-878d-15206849f191"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "00fadcb47edcd6b7d3b025c98f80c16ab589158a"}, "externalDocumentId": "DocumentRef-dependency-recipe-m4-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-m4-native-5679b535-f65a-57b6-8760-ded5f4d5578c"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "2bf2a40b1715ab994e46c4340a7fab9c4bce7737"}, "externalDocumentId": "DocumentRef-dependency-recipe-make-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-make-native-df9bc34d-be65-55f4-94e1-8830884fb2fe"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "7a2c343ff8e20f75c064b8c49960da3ac2d8b39d"}, "externalDocumentId": "DocumentRef-dependency-recipe-openssl-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-openssl-native-29712d98-dace-570a-bc97-e67cefc5997d"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "8e9b4d2ee98075ae1c846d76f4e8db405e2bfeb5"}, "externalDocumentId": "DocumentRef-dependency-recipe-perl-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-perl-native-ca4779ec-f2da-58e4-b2de-b4093de4d855"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "82c96dcf798dd15b376660769d7a37d9bdd6142d"}, "externalDocumentId": "DocumentRef-dependency-recipe-perlcross-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-perlcross-native-2c1f6985-82ff-5005-b2a1-d04a20bf908d"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "d75fbdd86139ed86d87f01ee13dca7a03b3ccce4"}, "externalDocumentId": "DocumentRef-dependency-recipe-pkgconfig-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-pkgconfig-native-f02bc6f9-93d3-5de4-bfc1-f49135872105"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "11dd51bcb6f9738e171c40e30b28f2dbbdfd3bc4"}, "externalDocumentId": "DocumentRef-dependency-recipe-texinfo-dummy-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-texinfo-dummy-native-cb9012ff-d8d8-5775-98c1-f58ed5fb9573"}, {"checksum": {"algorithm": "SHA1", "checksumValue": "0b4597a951eb7820899c1d9a05e7254761278301"}, "externalDocumentId": "DocumentRef-dependency-recipe-zlib-native", "spdxDocument": "http://spdx.org/spdxdoc/recipe-zlib-native-1fc15e1f-ff2b-539e-861e-33e08efd56d2"}], "name": "recipe-curl-native", "packages": [{"SPDXID": "SPDXRef-Recipe-curl-native", "annotations": [{"annotationDate": "2024-01-29T11:34:07Z", "annotationType": "OTHER", "annotator": "Tool: oe-spdx-creator - 1.0", "comment": "isNative"}], "copyrightText": "NOASSERTION", "description": "It uses URL syntax to transfer data to and from servers. curl is a widely used because of its ability to be flexible and complete complex tasks. For example, you can use curl for things like user authentication, HTTP post, SSL connections, proxy support, FTP uploads, and more!", "downloadLocation": "https://curl.se/download/curl-7.82.0.tar.xz", "externalRefs": [{"referenceCategory": "SECURITY", "referenceLocator": "cpe:2.3:a:haxx:curl:7.82.0:*:*:*:*:*:*:*", "referenceType": "http://spdx.org/rdf/references/cpe23Type"}, {"referenceCategory": "SECURITY", "referenceLocator": "cpe:2.3:a:haxx:libcurl:7.82.0:*:*:*:*:*:*:*", "referenceType": "http://spdx.org/rdf/references/cpe23Type"}, {"referenceCategory": "SECURITY", "referenceLocator": "cpe:2.3:a:curl:curl:7.82.0:*:*:*:*:*:*:*", "referenceType": "http://spdx.org/rdf/references/cpe23Type"}, {"referenceCategory": "SECURITY", "referenceLocator": "cpe:2.3:a:curl:libcurl:7.82.0:*:*:*:*:*:*:*", "referenceType": "http://spdx.org/rdf/references/cpe23Type"}, {"referenceCategory": "SECURITY", "referenceLocator": "cpe:2.3:a:libcurl:libcurl:7.82.0:*:*:*:*:*:*:*", "referenceType": "http://spdx.org/rdf/references/cpe23Type"}, {"referenceCategory": "SECURITY", "referenceLocator": "cpe:2.3:a:daniel_stenberg:curl:7.82.0:*:*:*:*:*:*:*", "referenceType": "http://spdx.org/rdf/references/cpe23Type"}], "homepage": "https://curl.se/", "licenseConcluded": "NOASSERTION", "licenseDeclared": "curl", "licenseInfoFromFiles": ["NOASSERTION"], "name": "curl-native", "sourceInfo": "CVEs fixed: CVE-2022-30115 CVE-2022-32207 CVE-2022-42915 CVE-2023-23914 CVE-2023-27535 CVE-2022-43551 CVE-2023-27536 CVE-2023-28321 CVE-2022-32208 CVE-2022-27774 CVE-2022-27782 CVE-2022-32221 CVE-2023-23915 CVE-2023-27533 CVE-2022-27775 CVE-2022-27780 CVE-2022-35252 CVE-2022-42916 CVE-2022-22576 CVE-2022-43552 CVE-2023-28320 CVE-2023-27538 CVE-2023-38546 CVE-2022-27779 CVE-2023-28319 CVE-2023-38545 CVE-2022-32205 CVE-2023-28322 CVE-2022-27781 CVE-2022-32206 CVE-2022-27776 CVE-2023-23916 CVE-2023-32001 CVE-2023-27534", "summary": "Command line tool and library for client-side URL transfers", "supplier": "Organization: OpenEmbedded ()", "versionInfo": "7.82.0"}], "relationships": [{"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "DESCRIBES", "spdxElementId": "SPDXRef-DOCUMENT"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-autoconf-native:SPDXRef-Recipe-autoconf-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-automake-native:SPDXRef-Recipe-automake-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-gdbm-native:SPDXRef-Recipe-gdbm-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-gettext-minimal-native:SPDXRef-Recipe-gettext-minimal-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-gnu-config-native:SPDXRef-Recipe-gnu-config-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-libtool-native:SPDXRef-Recipe-libtool-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-m4-native:SPDXRef-Recipe-m4-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-make-native:SPDXRef-Recipe-make-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-openssl-native:SPDXRef-Recipe-openssl-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-perl-native:SPDXRef-Recipe-perl-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-perlcross-native:SPDXRef-Recipe-perlcross-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-pkgconfig-native:SPDXRef-Recipe-pkgconfig-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-texinfo-dummy-native:SPDXRef-Recipe-texinfo-dummy-native"}, {"relatedSpdxElement": "SPDXRef-Recipe-curl-native", "relationshipType": "BUILD_DEPENDENCY_OF", "spdxElementId": "DocumentRef-dependency-recipe-zlib-native:SPDXRef-Recipe-zlib-native"}], "spdxVersion": "SPDX-2.2"}