{"SPDXID": "SPDXRef-DOCUMENT", "creationInfo": {"comment": "This document was created by analyzing recipe files during the build.", "created": "2023-07-20T16:33:00Z", "creators": ["Tool: OpenEmbedded Core create-spdx.bbclass", "Organization: OpenEmbedded ()", "Person: N/A ()"], "licenseListVersion": "3.14"}, "dataLicense": "CC0-1.0", "documentNamespace": "http://spdx.org/spdxdoc/recipe-zlib-native-1fc15e1f-ff2b-539e-861e-33e08efd56d2", "name": "recipe-zlib-native", "packages": [{"SPDXID": "SPDXRef-Recipe-zlib-native", "annotations": [{"annotationDate": "2023-07-20T16:33:00Z", "annotationType": "OTHER", "annotator": "Tool: oe-spdx-creator - 1.0", "comment": "isNative"}], "copyrightText": "NOASSERTION", "description": "Zlib is a general-purpose, patent-free, lossless data compression library which is used by many different programs.", "downloadLocation": "https://downloads.sourceforge.net/libpng/zlib/1.2.11/zlib-1.2.11.tar.xz", "externalRefs": [{"referenceCategory": "SECURITY", "referenceLocator": "cpe:2.3:a:*:zlib:1.2.11:*:*:*:*:*:*:*", "referenceType": "http://spdx.org/rdf/references/cpe23Type"}], "homepage": "http://zlib.net/", "licenseConcluded": "NOASSERTION", "licenseDeclared": "Zlib", "licenseInfoFromFiles": ["NOASSERTION"], "name": "zlib-native", "sourceInfo": "CVEs fixed: CVE-2022-37434 CVE-2018-25032", "summary": "Zlib Compression Library", "supplier": "Organization: OpenEmbedded ()", "versionInfo": "1.2.11"}], "relationships": [{"relatedSpdxElement": "SPDXRef-Recipe-zlib-native", "relationshipType": "DESCRIBES", "spdxElementId": "SPDXRef-DOCUMENT"}], "spdxVersion": "SPDX-2.2"}