mod_proxy_html-debuginfo-1:2.4.37-65.module+el8.10.0+1842+4a9649e > 6 6_6 3!pQp)Tξ7]mtZ`fǚ ]mtZ`z3z1+(Ib#S?`RЩ!O᧐wHv_ڕܼN 2`qM|*i0cJS&Tּlõ>Jbh<(U]ۅ}*UGB[B|AWd#A0؊q1MpK֣G @MX阳J;-ȵʎ{RܵVmmoQ{mWvuƷh9e&EeEBU h+,2U`+h>`|KIɓkUb@hd3zNdGޡ57 ;J|݀\xXVMK)$cTa@xCϮgm=j[7G+M] _l͌\ANty^,+xU{vgЀGT,pRP'7ʘʖϘw7,a\"Yb%e8JoGO0af8a04c5502b932362c590c1f149852110c25c230447758066ed07bb232f585639db6c80e8f1cea640643cf4d92a0b5116172825u3!pQp)Tξ7]mtZ`fǚ ]mtZ`[%~Wku?CIRhnv0dD%ރSq8Vl1^52cfx*9#vwJEV2A]$9*cL{Y4vR ф>ـ [=b0nb/`~ZI|$"'3cfuI^l/euѼ{1Ђ#ߙ"*ӹ2S̋3{2?uttBj 3I+L֮@L1Q_1ALJ"_3_BP~}H_,TBC g)S[tsBY~)9tOsy W`BJ+ lUa9CB:޸nR>p@? D H u(,\`eks      ,  \    d    D tg(89 :7G H< Il XxY\4 ]d ^bdeflt u0 v`w x y6`djmod_proxy_html-debuginfo2.4.3765.module+el8.10.0+1842+4a9649e8.2Debug information for package mod_proxy_htmlThis package provides debug information for package mod_proxy_html. Debug information is useful when developing applications that use this package or when debugging this package.fXord1-prod-x86build003.svc.aws.rockylinux.orgXKojiRockyASL 2.0infrastructure@rockylinux.orgDevelopment/Debughttps://httpd.apache.org/linuxx86_64<}<zAAAAAA큤fVfXfVfVfVfVfSfRfRfTfTfT419d2ddb9fa551870838f5f71bfc46c909d1b91bb13f9f4a0599d1b1ac378fba028ea221f2e34ecb3e20d582bf5e8da9ec256a79cb082f24b65a7f43cbb41d33../../../.build-id/51/611f8286364fbb8aa1566fee603a42b4e5e068../../../../../usr/lib/debug/usr/lib64/httpd/modules/mod_proxy_html.so-2.4.37-65.module+el8.10.0+1842+4a9649e8.2.x86_64.debug../../../.build-id/e3/2186e4989620a67b4276f4e03259bde073a14b../../../../../usr/lib/debug/usr/lib64/httpd/modules/mod_xml2enc.so-2.4.37-65.module+el8.10.0+1842+4a9649e8.2.x86_64.debugrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.37-65.module+el8.10.0+1842+4a9649e8.2.src.rpmdebuginfo(build-id)debuginfo(build-id)mod_proxy_html-debuginfomod_proxy_html-debuginfo(x86-64)    httpd-debuginfo(x86-64)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)2.4.37-65.module+el8.10.0+1842+4a9649e8.23.0.4-14.6.0-14.0-15.2-14.14.3f@f@fieN@e̫@d d\@d!d-@d-@d-@doMdJcdcck@cck@c(Ybޅbb2@b8haNaaaawaU`:@`f@`@`@_м@__@_:_^b^(@^@^]]@]߶]҇]@]g@]-@]]@\7\Z@\Yz\T4\\U@[@[[[@[H[u[[[ā@[ā@[ā@[@[@["@[YZ@Z@Z@Yp@Y{Y@Y@YéYéYéYéYX@YYYYx@Ym@YlYf@Ycl@YV=@YGY5GY@YXۡXP@X @X@XwoX[@X[@XEVX)@X@WW~D@W~D@W~D@WKW@VVVVn@VhV.VCV@UK@U@Ua@UF@UQUQTp@T=@T@T @TT_Tk@Tk@S0S@SGS@SS/SS@SSS"@SS5d@S4S&Sz@Sz@S(S@R@RRG@R@R@RsRrF@Ri Re@RVQ@QQޞ@QQo@Q@QQV@Q@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Luboš Uhliarik - 2.4.37-65.2Luboš Uhliarik - 2.4.37-65.1Luboš Uhliarik - 2.4.37-65Joe Orton - 2.4.37-64Joe Orton - 2.4.37-63Johnny Hughes - 2.4.37-62Luboš Uhliarik - 2.4.37-62Tomas Korbar - 2.4.37-61Tomas Korbar - 2.4.37-60Tomas Korbar - 2.4.37-59Tomas Korbar - 2.4.37-58Luboš Uhliarik - 2.4.37-57Luboš Uhliarik - 2.4.37-56.5Luboš Uhliarik - 2.4.37-56.4Luboš Uhliarik - 2.4.37-56Luboš Uhliarik - 2.4.37-55Luboš Uhliarik - 2.4.37-54Luboš Uhliarik - 2.4.37-53Tomas Korbar - 2.4.37-52Luboš Uhliarik - 2.4.37-51Luboš Uhliarik - 2.4.37-50Luboš Uhliarik - 2.4.37-49Luboš Uhliarik - 2.4.37-48Luboš Uhliarik - 2.4.37-47Luboš Uhliarik - 2.4.37-46Luboš Uhliarik - 2.4.37-45Luboš Uhliarik - 2.4.37-44Luboš Uhliarik - 2.4.37-43Luboš Uhliarik - 2.4.37-42Luboš Uhliarik - 2.4.37-41Lubos Uhliarik - 2.4.37-40Artem Egorenkov - 2.4.37-39Lubos Uhliarik - 2.4.37-38Lubos Uhliarik - 2.4.37-37Lubos Uhliarik - 2.4.37-36Lubos Uhliarik - 2.4.37-35Lubos Uhliarik - 2.4.37-33Lubos Uhliarik - 2.4.37-31Joe Orton - 2.4.37-30Lubos Uhliarik - 2.4.37-29Lubos Uhliarik - 2.4.37-28Lubos Uhliarik - 2.4.37-27Lubos Uhliarik - 2.4.37-21Lubos Uhliarik - 2.4.37-20Joe Orton - 2.4.37-19Lubos Uhliarik - 2.4.37-18Lubos Uhliarik - 2.4.37-17Lubos Uhliarik - 2.4.37-16Lubos Uhliarik - 2.4.37-15Lubos Uhliarik - 2.4.37-14Lubos Uhliarik - 2.4.37-13Lubos Uhliarik - 2.4.37-11Lubos Uhliarik - 2.4.37-10Lubos Uhliarik - 2.4.37-9Joe Orton - 2.4.37-8Joe Orton - 2.4.37-7Joe Orton - 2.4.37-6Luboš Uhliarik - 2.4.37-5Luboš Uhliarik - 2.4.37-4Luboš Uhliarik - 2.4.37-3Joe Orton - 2.4.37-2Lubos Uhliarik - 2.4.37-1Luboš Uhliarik - 2.4.35-10Lubos Uhliarik - 2.4.35-9Joe Orton - 2.4.35-7Joe Orton - 2.4.35-5Lubos Uhliarik - 2.4.35-4Lubos Uhliarik - 2.4.35-3Lubos Uhliarik - 2.4.35-2Lubos Uhliarik - 2.4.35-1Lubos Uhliarik - 2.4.33-4Joe Orton - 2.4.33-3Luboš Uhliarik - 2.4.33-2Joe Orton - 2.4.28-8Luboš Uhliarik - 2.4.28-2Luboš Uhliarik - 2.4.28-1Joe Orton - 2.4.27-14Joe Orton - 2.4.27-13Joe Orton - 2.4.27-12Stephen Gallagher - 2.4.27-11Jeroen van Meeuwen - 2.4.27-10Joe Orton - 2.4.27-9Jeroen van Meeuwen - 2.4.27-8Stephen Gallagher - 2.4.27-8.1Joe Orton - 2.4.27-8.1Joe Orton - 2.4.27-7Fedora Release Engineering - 2.4.27-6Fedora Release Engineering - 2.4.27-5Joe Orton - 2.4.27-4Joe Orton - 2.4.27-3Luboš Uhliarik - 2.4.27-2Luboš Uhliarik - 2.4.27-1Joe Orton - 2.4.26-2Luboš Uhliarik - 2.4.26-1Joe Orton - 2.4.25-10Joe Orton - 2.4.25-9Joe Orton - 2.4.25-8Luboš Uhliarik - 2.4.25-7Luboš Uhliarik - 2.4.25-6Joe Orton - 2.4.25-5Fedora Release Engineering - 2.4.25-4Joe Orton - 2.4.25-3Luboš Uhliarik - 2.4.25-2Luboš Uhliarik - 2.4.25-1Luboš Uhliarik - 2.4.23-7Joe Orton - 2.4.23-6Joe Orton - 2.4.23-5Joe Orton - 2.4.23-4Joe Orton - 2.4.23-3Joe Orton - 2.4.23-2Joe Orton - 2.4.23-1Joe Orton - 2.4.18-6Joe Orton - 2.4.18-5Joe Orton - 2.4.18-4Joe Orton - 2.4.18-3Fedora Release Engineering - 2.4.18-2Jan Kaluza - 2.4.18-1Joe Orton - 2.4.17-4Jan Kaluza - 2.4.17-3Jan Kaluza - 2.4.17-2Joe Orton - 2.4.17-1Jan Kaluza - 2.4.12-4Joe Orton - 2.4.12-3Fedora Release Engineering - 2.4.12-2Jan Kaluza - 2.4.12-1Jan Kaluza - 2.4.10-17Jan Kaluza - 2.4.10-16Jan Kaluza - 2.4.10-15Joe Orton - 2.4.10-14Jan Kaluza - 2.4.10-13Jan Kaluza - 2.4.10-12Jan Kaluza - 2.4.10-11Jan Kaluza - 2.4.10-10Joe Orton - 2.4.10-9Joe Orton - 2.4.10-8Jan Kaluza - 2.4.10-7Joe Orton - 2.4.10-6Fedora Release Engineering - 2.4.10-5Jan Kaluza - 2.4.10-4Jan Kaluza - 2.4.10-3Joe Orton - 2.4.10-2Joe Orton - 2.4.10-1Jan Kaluza - 2.4.9-8Jan Kaluza - 2.4.9-7Jan Kaluza - 2.4.9-6Joe Orton - 2.4.9-5Fedora Release Engineering - 2.4.9-4Jan Kaluza - 2.4.9-3Jan Kaluza - 2.4.9-2Jan Kaluza - 2.4.9-1Joe Orton - 2.4.7-6Stephen Gallagher 2.4.7-5Jan Kaluza - 2.4.7-4Jan Kaluza - 2.4.7-3Joe Orton - 2.4.7-2Joe Orton - 2.4.7-1Joe Orton - 2.4.6-10Joe Orton - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Joe Orton - 2.4.6-6Jan kaluza - 2.4.6-5Joe Orton - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-7Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Resolves: RHEL-46040 - httpd:2.4/httpd: Security issues via backend applications whose response headers are malicious or exploitable (CVE-2024-38476) - Resolves: RHEL-53022 - Regression introduced by CVE-2024-38474 fix- Resolves: RHEL-45812 - httpd:2.4/httpd: Substitution encoding issue in mod_rewrite (CVE-2024-38474) - Resolves: RHEL-45785 - httpd:2.4/httpd: Encoding problem in mod_proxy (CVE-2024-38473) - Resolves: RHEL-45777 - httpd:2.4/httpd: Improper escaping of output in mod_rewrite (CVE-2024-38475) - Resolves: RHEL-45758 - httpd:2.4/httpd: null pointer dereference in mod_proxy (CVE-2024-38477) - Resolves: RHEL-45743 - httpd:2.4/httpd: Potential SSRF in mod_rewrite (CVE-2024-39573)- Resolves: RHEL-31857 - httpd:2.4/httpd: HTTP response splitting (CVE-2023-38709)- Resolves: RHEL-14448 - httpd: mod_macro: out-of-bounds read vulnerability (CVE-2023-31122)- mod_xml2enc: fix media type handling Resolves: RHEL-14321- change for CentOS Stream Branding- Resolves: #2221083 - Apache Bug 57087: mod_proxy_fcgi doesn't send cgi CONTENT_LENGTH variable when the client request used Transfer-Encoding:chunked- Fix issue found by covscan - Related: #2159603- Another rebuild because of mistake in workflow - Related: #2159603- Rebuild because of mistake in workflow - Related: #2159603- Resolves: #2159603 - mod_status lists BusyWorkers IdleWorkers keys twice- Resolves: #2176723 - CVE-2023-27522 httpd:2.4/httpd: mod_proxy_uwsgi HTTP response splitting- Resolves: #2190133 - mod_rewrite regression with CVE-2023-25690- Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy- Resolves: #2162499 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2162485 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2162509 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2155961 - prevent sscg creating /dhparams.pem- Resolves: #2095650 - Dependency from mod_http2 on httpd broken- Resolves: #2050888 - httpd with SSL fails to start unless hostname command was installed- Add the SNI support in mod_proxy_wstunnel module for Apache httpd - Resolves: rhbz#2017543- Resolves: #2097015 - CVE-2022-28614 httpd:2.4/httpd: out-of-bounds read via ap_rwrite() - Resolves: #2097031 - CVE-2022-28615 httpd:2.4/httpd: out-of-bounds read in ap_strcmp_match() - Resolves: #2097458 - CVE-2022-30522 httpd:2.4/httpd: mod_sed: DoS vulnerability - Resolves: #2097480 - CVE-2022-30556 httpd:2.4/httpd: mod_lua: Information disclosure with websockets - Resolves: #2098247 - CVE-2022-31813 httpd:2.4/httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism - Resolves: #2097451 - CVE-2022-29404 httpd:2.4/httpd: mod_lua: DoS in r:parsebody - Resolves: #2096997 - CVE-2022-26377 httpd:2.4/httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2065237 - CVE-2022-22719 httpd:2.4/httpd: mod_lua: Use of uninitialized value of in r:parsebody - Resolves: #2065267 - CVE-2022-22721 httpd:2.4/httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody - Resolves: #2065324 - CVE-2022-23943 httpd:2.4/httpd: mod_sed: Read/write beyond bounds- Resolves: #2090848 - CVE-2020-13950 httpd:2.4/httpd: mod_proxy NULL pointer dereference- Resolves: #2065249 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations- Resolves: #2035063 - CVE-2021-44790 httpd:2.4/httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2007199 - CVE-2021-36160 httpd:2.4/httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path - Resolves: #1972491 - CVE-2021-33193 httpd:2.4/mod_http2: Request splitting via HTTP/2 method injection and mod_proxy- Resolves: #1968278 - CVE-2020-35452 httpd:2.4/httpd: Single zero byte stack overflow in mod_auth_digest - Resolves: #2001046 - Apache httpd OOME with mod_dav in RHEL 8 - Resolves: #2005128 (CVE-2021-34798) - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #1984828 - mod_proxy_hcheck piles up health checks leading to high memory consumption - Resolves: #2005119 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input- Related: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path- Resolves: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path - Resolves: #1969229 - CVE-2021-26691 httpd:2.4/httpd: Heap overflow in mod_session- Resolves: #1680111 - httpd sends reply to HTTPS GET using two TLS records - Resolves: #1905613 - mod_ssl does not like valid certificate chain - Resolves: #1935742 - [RFE] backport samesite/httponly/secure flags for usertrack - Resolves: #1972500 - CVE-2021-30641 httpd:2.4/httpd: MergeSlashes regression - Resolves: #1968307 - CVE-2021-26690 httpd:2.4/httpd: mod_session NULL pointer dereference in parser - Resolves: #1934741 - Apache trademark update - new logo- Resolves: #1952557 - mod_proxy_wstunnel.html is a malformed XML - Resolves: #1937334 - SSLProtocol with based virtual hosts- prevent htcacheclean from while break when first file processed- Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache- Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile to be able to handle certs without matching private key- Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel - Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()- Resolves: #1651376 - centralizing default index.html for httpd- Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool concurrency issues - Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1680118 - unorderly connection close when client attempts renegotiation- Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does not respect expiry time - Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer overflow - Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package - Resolves: #1869576 - httpd : mod_proxy should allow to specify Proxy-Authorization in ProxyRemote directive - Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1891829 - mod_proxy_hcheck Doesn't perform checks when in a balancer- Resolves: #1209162 - support logging to journald from CustomLog- Resolves: #1823263 (CVE-2020-1934) - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Related: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work- Resolves: #1823259 - CVE-2020-1927 httpd:2.4/httpd: mod_rewrite configurations vulnerable to open redirect - Resolves: #1747284 - CVE-2019-10098 httpd:2.4/httpd: mod_rewrite potential open redirect - Resolves: #1747281 - CVE-2019-10092 httpd:2.4/httpd: limited cross-site scripting in mod_proxy error page - Resolves: #1747291 - CVE-2019-10097 httpd:2.4/httpd: null-pointer dereference in mod_remoteip - Resolves: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work - Resolves: #1794728 - Backport of SessionExpiryUpdateInterval directive- Resolves: #1775158 - POST request with TLS 1.3 PHA client auth fails: Re-negotiation handshake failed: Client certificate missing- Resolves: #1704317 - Add support for SSLKEYLOGFILE- mod_cgid: enable fd passing (#1633224)- Resolves: #1744121 - Unexpected OCSP in proxy SSL connection - Resolves: #1725031 - htpasswd: support SHA-x passwords for FIPS compatibility - Resolves: #1633224 - mod_cgid logging issues- remove bundled mod_md module - Related: #1747898 - add mod_md package- Resolves: #1744999 - CVE-2019-9511 httpd:2.4/mod_http2: HTTP/2: large amount of data request leads to denial of service - Resolves: #1745086 - CVE-2019-9516 httpd:2.4/mod_http2: HTTP/2: 0-length headers leads to denial of service - Resolves: #1745154 - CVE-2019-9517 httpd:2.4/mod_http2: HTTP/2: request for large response leads to denial of service- Resolves: #1730721 - absolute path used for default state and runtime dir by default- Resolves: #1724549 - httpd response contains garbage in Content-Type header- Resolves: #1696142 - CVE-2019-0217 httpd:2.4/httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696097 - CVE-2019-0220 httpd:2.4/httpd: URL normalization inconsistency - Resolves: #1669221 - `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang - Resolves: #1673022 - httpd can not be started with mod_md enabled- Resolves: #1695432 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: #1696091 - CVE-2019-0215 httpd:2.4/httpd: mod_ssl: access control bypass when using per-location client certification authentication- Resolves: #1672977 - state-dir corruption on reload- Resolves: #1670716 - Coredump when starting in FIPS mode- add security fix for CVE-2019-0190 (#1671282)- add DefaultStateDir/ap_state_dir_relative() (#1653009) - mod_dav_fs: use state dir for default DAVLockDB - mod_md: use state dir for default MDStoreDir- add httpd.conf(5) (#1611361)- Resolves: #1652966 - Missing RELEASE in http header- Resolves: #1641951 - No Documentation= line in htcacheclean.service files- Resolves: #1643713 - TLS connection allowed while all protocols are forbidden- mod_ssl: fix off-by-one causing crashes in CGI children (#1649428)- Resolves: #1644625 - httpd rebase to 2.4.37- Related: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- mod_ssl: allow sending multiple CA names which differ only in case- mod_ssl: drop SSLRandomSeed from default config (#1638730) - mod_ssl: follow OpenSSL protocol defaults if SSLProtocol is not configured (Rob Crittenden, #1638738)- mod_ssl: don't require SSLCryptoDevice to be set for PKCS#11 cert- Resolves: #1635681 - sync with Fedora 28/29 httpd - comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in default configuration; now follow OpenSSL system default (#1468322) - dropped NPN support - mod_md: change hard-coded default MdStoreDir to state/md (#1563846) - don't block on service try-restart in posttrans scriptlet - build and load mod_brotli - mod_systemd: show bound ports in status and log to journal at startup - updated httpd.service.xml man page - tweak wording in privkey passphrase prompt - drop sslmultiproxy patch - apachectl: don't read /etc/sysconfig/httpd - drop irrelevant Obsoletes for devel subpackage - move instantiated httpd@.service to main httpd package- Resolves: #1602548 - various covscan fixes- apache httpd can work with TLS 1.3 (#1617997) - drop SSLv3 support patch- new version 2.4.35 (#1632754)- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All" configuration (#1622630)- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki, #1527084)- new version 2.4.33 - add mod_md subpackage; load mod_proxy_uwsgi by default- remove %ghosted /etc/sysconfig/httpd (#1572676)- Resolves: #1512563 - httpd: update welcome page branding - Resolves: #1511123 - RFE: httpd use event MPM by default - Resolves: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- new version 2.4.28- add notes on enabling httpd_graceful_shutdown boolean for prefork- drop Requires(post) for mod_ssl- better error handling in httpd-ssl-gencerts (#1494556)- Require sscg 2.2.0 for creating service and CA certificates together- Address CVE-2017-9798 by applying patch from upstream (#1490344)- use sscg defaults; append CA cert to generated cert - document httpd-init.service in httpd-init.service(8)- Address CVE-2017-9798 by applying patch from upstream (#1490344)- Generate SSL certificates on service start, not %posttrans- move httpd.service.d, httpd.socket.d dirs to -filesystem- add new content-length filter (upstream PR 61222)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- update mod_systemd (r1802251)- switch to event by default for Fedora 27 and later (#1471708)- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig- new version 2.4.27- mod_proxy_fcgi: fix further regressions (PR 61202)- new version 2.4.26- move unit man pages to section 8, add as Documentation= in units- add httpd.service(5) and httpd.socket(5) man pages- require mod_http2, now packaged separately- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Resolves: #1434916 - httpd.service: Failed with result timeout- link only httpd, not support/* against -lselinux -lsystemd- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- mod_watchdog: restrict thread lifetime (#1410883)- Resolves: #1358875 - require nghttp2 >= 1.5.0- new version 2.4.25- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of LimitRequestFields directive in mod_http2- fix build with OpenSSL 1.1 (#1392900) - fix typos in ssl.conf (josef randinger, #1379407)- no longer package /etc/sysconfig/httpd - synch ssl.conf with upstream- add security fix for CVE-2016-5387- load mod_watchdog by default (#1353582)- restore build of mod_proxy_fdpass (#1325883) - improve check tests to catch configured-but-not-built modules- update to 2.4.23 (#1325883, #1353203) - load mod_proxy_hcheck - recommend use of "systemctl edit" in httpd.service- have "apachectl graceful" start httpd if not running, per man page- use redirects for lang-specific /manual/ URLs- fix welcome page HTML validity (Ville Skyttä)- remove httpd pre script (duplicate of httpd-filesystem's) - in httpd-filesystem pre script, create group/user iff non-existent- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- update to new version 2.4.18- re-enable mod_asis due to popular demand (#1284315)- fix crash when using -X argument (#1272234)- rebase socket activation patch to 2.4.17- update to 2.4.17 (#1271224) - build, load mod_http2 - don't build mod_asis, mod_file_cache - load mod_cache_socache, mod_proxy_wstunnel by default - check every built mod_* is configured - synch ssl.conf with upstream; disable SSLv3 by default- update to 2.4.16- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- update to 2.4.12- fix compilation with lua-5.3- remove filter for auto-provides of httpd modules, it is not needed since F20- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583) - mod_lua: fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments (CVE-2014-8109)- require apr-util 1.5.x- use NoDelay and DeferAcceptSec in httpd.socket- increase suexec minimum acceptable uid/gid to 1000 (#1136391)- fix hostname requirement and conflict with openssl-libs- use KillMode=mixed in httpd.service (#1135122)- set vstring based on /etc/os-release (Pat Riehecky, #1114539)- pull in httpd-filesystem as Requires(pre) (#1128328) - fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348) - require hostname for mod_ssl post script (#1135118)- mod_systemd: updated to the latest version - use -lsystemd instead of -lsystemd-daemon (#1125084) - fix possible crash in SIGINT handling (#958934)- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119) - switch default ssl.conf to use PROFILE=SYSTEM (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- add /usr/bin/useradd dependency to -filesystem requires- fix creating apache user in pre script (#1128328)- enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf- update to 2.4.10 - expand variables in docdir example configs- add support for systemd socket activation (#1111648)- remove conf.modules.d from httpd-filesystem subpackage (#1081453)- add httpd-filesystem subpackage (#1081453)- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- add support for SetHandler + proxy (#1078970)- move macros from /etc/rpm to macros.d (#1074277) - remove unused patches- update to 2.4.9- use 2048-bit RSA key with SHA-256 signature in dummy certificate- Create drop directory for systemd snippets- remove provides of old MMN, because it contained double-dash (#1068851)- fix graceful restart using legacy actions- conflict with pre-1.5.0 APR - fix sslsninotreq patch- update to 2.4.7 (#1034071)- switch to requiring system-logos-httpd (#1031288)- change mmnisa to drop "-" altogether- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide for transition- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)- systemd: send SIGWINCH signal without httpd -k in ExecStop- load mod_macro by default (#998452) - add README to conf.modules.d - mod_proxy_http: add possible fix for threading issues (r1534321) - core: add fix for truncated output with CGI scripts (r1530793)- require fedora-logos-httpd (#1009162)- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- ignore /etc/sysconfig/httpd and document systemd way of setting env variables in this file- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311) 51611f8286364fbb8aa1566fee603a42b4e5e068e32186e4989620a67b4276f4e03259bde073a14b1:2.4.37-65.module+el8.10.0+1842+4a9649e8.21:2.4.37-65.module+el8.10.0+1842+4a9649e8.2debug.build-id611f8286364fbb8aa1566fee603a42b4e5e068611f8286364fbb8aa1566fee603a42b4e5e068.debug2186e4989620a67b4276f4e03259bde073a14b2186e4989620a67b4276f4e03259bde073a14b.debugusrlib64httpdmodulesmod_proxy_html.so-2.4.37-65.module+el8.10.0+1842+4a9649e8.2.x86_64.debugmod_xml2enc.so-2.4.37-65.module+el8.10.0+1842+4a9649e8.2.x86_64.debug/usr/lib//usr/lib/debug//usr/lib/debug/.build-id/51//usr/lib/debug/.build-id/e3//usr/lib/debug/usr//usr/lib/debug/usr/lib64//usr/lib/debug/usr/lib64/httpd//usr/lib/debug/usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnudirectoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=51611f8286364fbb8aa1566fee603a42b4e5e068, with debug_info, not strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e32186e4989620a67b4276f4e03259bde073a14b, with debug_info, not strippedPPhttpd-debugsource(x86-64)2.4.37-65.module+el8.10.0+1842+4a9649e8.2utf-84aca8c00a4af9e1232a468b8f840dc659e0ac0966eb185e1ec0f197bd0be5871httpd:2.4:8100020240812075544:e155f54d?7zXZ !#,M] b2u jӫ`(y0k>c[߀'F5?BjE:r!`Wn!fwG"h(jWD(QeӜ͂JʬIZl1NՆUY=;1ۂ%?o5Hݱk{$@8ì1O#=]UΘ!=N04 tzAPkQ.m },oػ庤3ǀ}S@w xUxRi gL5I2-=g |MVO( Wɼf 1]]{i[$5`/m_|cxm[>U7[M(+REqs#[aV.p^(0Ѹٕ3ɓ0ܗ@^ZjJ ۪쬀K7U̘_R fgRp4!onKNZQ* w]Q1}B! >"B2-Ok+IN[*k9G@/ y)b#JKv;0hje4E38~u.GHa?,OA v; zV!QB_a"o:%S%LcjŧWSS?ҡ =3d-P,-(8'h?)-O&mkfz$ۓx 5K7 ( NPkZy~} JFÇ YsP\*= w8B', y)zK 'tTRn"hBg&c QAqKKrXIܧR/Sh4U د`?¥br w]FlN < }=ߑ?W{ϗҡFODK Х|۵RP!Cqm5`&ShSh@fk C0N7;%PuZ@暛KP1hӠ [fqiw3]o)bt;dť;C;. V]tH01dHRwXE%Hw_)~#M益 pW?#ӌ-pǔ37͊)jm|ll87c@R%ۣiӵr<Ҵ MF6"Xtn;PKua y"Jh^YWq!su2?\U1u-3SlZr 6f 18X˾=%cX qbMc1v?,S:tQk?[UߡN=5Z'Cyu-boD2 Rkl|>ٗ\^3pL4 -L*;z;([ڵ$~Oc}u&T&g>yr% :Iyt!H й>ڀkߔ N71\(NڸV2K;F\Wӿ/㝵W Av Փ^;W홶x7.-V Jٌaٲ Ʀ-SK1 R$HX[+gr:b)ؙa ғ 6ݤ}Q! J,?HPKX߮vbE@oaɱ5,{:H:=73śIȇGAMR;*L29!خOk is#|pE)]#! q<隆5y,<ҡLX14?y[ <;tSQUu)ͦg߉J6 "Dx-R'U1ugKHfEE@'p0.'# !}.elBrOK Fth:wFEQz3+}4ffyŰcFYPi?oŊhnrgͱXNE6IIg9`!%R}ϔB==T GU;U}Pz4tqΉ&YRCg.%YGP8nz )SUsgoH\^d=S=k]^Ě"؞+|ǂ4$80~&^Gg }01"~9Ȗ W>` iK5VSWl9Q[̂ MK;̹7ЍMp|c˂]_O)SEɍf|2|P c^g+=0Ĵ ɬ2gŠ,tKrdM&ڴ5-䴶V7NͰ,qrzY52D~4MMLZԭq6'g7'|׭a,n rشד5"[kTKNW|FgT1}(wGvBesѳT'Ƭ-\U.tq,z (&@΅.b v~yOIXIb~ZTN\t_ZpbqMc&e$[jNS%oO[霷.L{xT~0k-6V|}O'2L<E|k6!K|5 rUlQ䐞7vΨݱlԽEO \%ېԌL wd|Sp.]v) Q2˯ۆZ.ExPO );ǡfKcZ?(\E`0H~֟K ߱f}ps.E, ė&$aP57^f6?o;x] #Q=)OIKd!fId"wmQ|}vr*{%CokP ·8χ;ƗL*:--7!CgkihvX:7!aa+ <ur )2k6_**~kい^}}7/=ˮ]D4lvz|xﭰ#y`B>F T0 H؈%C`g jcL"QiZ$ ?Py~<% 3 OH4h&|^a8:|>/E>xdKN*ZkWC[F])JoЯT70LXVsUM\tdJyW6SjsĒ>M!6.88mR3WZZw@_f׺S #8+?eTxlVF^̖k6w&Rb-i77">s!*03KȰԇ7e>400|#hUhu͊QT(<8v{tαۍ2a/rZğm9/g07=eM. .c㗍Չ. >U%`{[ByMzG41ШvRӒ3LoW3+6?nҿ WP%kgHpqo68i_8>ٱ* ]!X㧻Է6뒠CH-7y /gLă`FWJC2/CD W7l ;YS2sJ8hu'Nrdv)KpmޫL'p F$TeCWHο]<--Dc,C /%Ӣ25?c-:6]-}eƓ>[)DiT$"XI ߢ))j 1aGl%g'LXcmAp҆1p*y5K5IrJ:bKu*9 =Í Y4DJX ªK2>ȋ1pI3q o xh, xo! ZZU/ZRzhF-2 ȎaU[!2+_wӭ,ci/tADRes-;[>)T,_aYA\A 8=8.= z0Uqz-MvS=cC9[ ?~JCܲb%F8Pztr1s]OD*(Alfee)м2UvvŇX|D%*T8Kt,PԨ?_$`Y(.'M "kF;0Z)E[ESc-@2ز6GGi582z 1VJW8;j6Z05y6;O`̬Xr]Kl{~'+nxn!ܳ`[WpxE}tNs3ZgaA'%,=-iI7T(_rR&Qų=ke0p={Ki}>B.=A";JD ъHPBD8||jhWZcap.bGhm^HngĜ@ A "odLT(%d ͱc:hӦM,Y#wPC4w9z¢<!wR,HmE zѿŽƯi}xK3ۦ#F(ff^knM)<\fEiQmvc/2bB cHu Ϧ^n&==.6f,ac2}Sa:/ =υ| VqP8N^ V˝.hL"}G꺐{eq]ޢFXh8YB"rN)"hҜt#KS-\_Q"OfJ+qaZ]UZT'fIٖEI|.TYpV~u4#Y6zx=`TV(n/W գPrLݖ+U0swu]4<%q m Kr'W!ym%u]狱kd =͑()n_^TBrڟY/uUr܇"m@'?ɾa܀ Qظ[>aMCƾWc(D{D&Ky&v[^1L:u2uwvMCUlpyaXCwXӞՠCCPLtRwӰ\I s!Jê5$^vLY]-g&J&aԱ.CP IH IH)V9 ca,Q^ ,ǧJUT! q Plw׹N:o)2G:K}[uEffrC(>#KO3+ˉ]-r~J$xxW|%Nj:t_^{t[ 3NGR> 5YwEuhf0VwSz*ne>)#,n[E/l }yNV~?yq8ͯ=)9 륣mtN=&q/0UB ڽSg Z$[E n K hӡięSok`6Ʃru–$/D}(w~owN#[yl)τMq%s"ZN_* ??1bMXGhE,&kvdٝHş_F,Ŧ u2PqHƒcvj?*]̡W?9sJd'PPZe\6?O7˸u-Wf- G$áLbGNzrH m Elץ§ e\ZM/(sO6)|2ٕ~mW&3[ܥ|=A;)3vPbݻ4.w~? uL0 g5_[ENs\, ΄uc->u*lEɵVՃVwqόtz w &I}Kkr$nd(_]}LGsEIs@%}V7#CPxLn] ~xN)I5Y|+IS.ك08 SsMgiHeֳm"ODEy!W$W(Au\PwMp]ӡ[q~;ROQoشa] `H Z"챶k~^ullTE2]i$}~D;ڸG"Mp~Xp#GBA[l4U; w}q}v&O\$4Kgѭ̤WGoWA`ngí-\Uj$ T %3bA8p=gjSn&+9&GEtc@$ a7|H'KY]A/LVR҇K^HjH&/nB33_?#/q%_.ȏG'EQOŬ{ ٤F cyPtYuPww(w; ]ʼs`p:0 S+"0UV~ L>w@ﴻVhg,9ĕXeM"M^{5Xјg3jbKJ$iY5F"Df\gک/KFl>֬ H$DRw._ג;AAhNޖ٦lPk"ٯ2 Fxܦ+Z\lwӥ fPXcs }6|_vzM9ۈHǏ-o pqe.w/P]#c%YN_ufy?5gY@] (!%^CFv=&6{CϮySXmAIx Za.RKWX>Hb?Nl?'KL)AŮ?,׋Vt],qn h0ΪS|Α4D,GC5uN/Hat^Z_1"*~?pj cİ{Hd+xFSrAa-F{,Ɂ>leλ`qpפ/@3[J$}ާܭ㴧LcAdC2=]k[euʋX6[b~jiSI ˠ! !pLS3ljB/yK2 34ݤy*~K3p;v>:$Ɲe 3!=\bVR]ݻ7v R91C&Ac!I'F4"!=4CM5}bw$XsǸ${1N76pZQp ͛NF?U:uJLdđ]Q>X_;{([H֓cOu,%%p~UC|}+{\+[gH PLZraG/&BOUo|%Yy6y}\@l /[:+Slc RP3)V ?镯A z^Ux-US7W -i4~]Azo4 e ڍP96pM!*Nlrc%fVDܚb YCKrIQ(bG!NxWٿzZH}=JvIJE7ڗDalG @Q0 Δ 8PCC%>Ǩ^00˳fc!x(d$U&yu@"cWzϏk(Hiaգ_Ȉe~lk-aЈ"썔n!%VδY/Ӗ39[݁۝L ,emјϧ3|˼&hUIBV|vC1k,.\WH?Bt܆b5OGm#WN,u{Khb;М񻙒)9&^CC#<4Em###w4._ ہ?%9MgUܽfOpX^>hN oA.c׹:+nͦSTѲ]솗63CS!ãU@|evl`'ҲiXKHKHŤ|(™eAw|^.5D$<\Mvdze)Bsz `&Q5CJ ;y2,Sbv0.s糴Y6¤Ʊٽ|3ndָi>u#%+2u^1期+>_y)ʳqv8 & Jl)\ BQSk+ NJ53noU#I6[I{4)Y{oŧX:%y_جO%}P@ptK4^sKU 37A3 U-7cˣ;[ha !ҫ HU)l&o[qD_>qPԴS{#)~+zĞBݤᐚwS=)R#tD]s4K^Hj +K( ?}>g}n__3JK{ 2DgKjx&'+E{G(jzN$d*I|mwt.3{#+Z%5ͲW\ p|nIWӾfM-OGgASݙڨCK(^#˱TV[s65F)El )M Q|Z8aʏ28cEp@Y?q~IkGTjPI(c,iT'?]Y+/yu L@:`-l:~ ĦIh^(LoXWUG7g&NTu-Ko ~dRrw:g2`<-PGN ,<&}ƪH7|koMu^Xeo'&yGVǰŐ\̌WgC?1X syo哷|5L粈OäU~DZAyD'I6%~5R>s^Ht'Kbٷ4 Bjd&S*o ڗ HXLd3z_ыZ]>w $LVC6JunGɣrv$ ~ KNbq :*=K+*2@ {DRGQ Ԯ]y;rY;oR0?17ƤFi!B̖(q&MbG@ϩ4S~K:1yV6MU]e߽夌fL$2D݆H%DgmmLn=34]Zf=ŋxCu4}A4՛ 0k"Ux whάU @n鈔"syiIS~3?zyqp]Nbn; 38k}rWx B^,Tbk̳꒼YA߷l524Gv\_J NrGnC%sktS_tc@+TF|^eIDQᓳv8p'd$j^9$]}t,Hs6:8 ]o<*ňld d[ 8^b:j}zͫd[KC l`ՔC&ӧcaKV+AVx0BuX+6ϒi/qr.\Fl杶LnmÆغ9_XKhfpg8Htq=O3!5Z!==pv|Q{='(#.ú p=}fj]NC#/Jxhi^2t 2Oy 9%k5r<沘1`-?c>Q\7}1H{)dI0[x7,9cqF[.Zn.%V705"^q(L tSGy͇W;wi"4%4D$3;P m>+ht%K hO8 tiiT+ GzYqȀf5J?rP3;`,owo{\Wpjqe&J¸SʋpǴOTN]2y H;oX)JxpY$aP)s޿u8fy-^{<kl@*WlDl 5PC@r31f#`EuзC1LT: d3~Sk%0^1l)?,UvX )~;xy\u ck[ / 9s7[rE^,*k!8l`ro1|fUȈDݞTKDϽ *y%iP*'(o4>xI{ kU?=%72/ZDngvcQi ڽ7sT+ 1:p>\߃XTerd nV李,rݷ&ndxDXZTA 7iި%Aaj\wId fS)pyC4MuSc1r< |/Fo~[td_ܰp! J9_5i *(#;.Qg=Ï?&J{;AJ*GϗIԻd_Ґ";#97쟰ddmᬆUQ1`ץUd Bqehz'^ _#ÊM<}3kCv~3L&s l!0cYr*c@~1\П5㚼cx.R# +CGr\DAVat-}U#lHVw+XѪ$ cIΜ Jqe|tϋn+XV @Y낾6fg4Z> D TpN$9qq :{T #V}KZ) $bu ?9!17}+6M1|a }fE3f ̂ǔF! /a;p5"j6.9Y~:,>}tQoy;7F+n/e47} ʆ$d7I*q^rYr|1OU5 Xy|ZOZ1~{8uK%ewW5O# b`1<֧5.[p<&eFCcBj',unIz"ԁ0N+H/"G) ú y+YHp%[SiZc]Ҁu.V^ѻ.c؇GF^~XЙon.*Р\a۸j>"o%>.c\Թtc:7BWDQ7X~$M`ިg >e`9Z4`âWg 2@`L`"v-mL:/M*GױؿuN$ʲ?Ӫ.|}? }Mby)2q]qr2 #twc}rZǯ#vzp<ÕN<֥{ ( ӱgm% YDwG v $/!+L]1҃2Tw!L+u@p]$y a5>[-";U(p:gU|O[tLU͑iӄE5BҦ+i ;M^I0"߹~Ҵ;\ַWc??HrtΥe_qp.K E1[ۗ\00GK~p]6UDyM~Ss'a^&f#d#ΔRRfIt3W@05Bd[瀸 D ]5tuN X7E+[W;e~Y*4C &s5\c ;QԀ?N6zHL9ۭXCK.T5ߠthgyPS,MwF `V}NBw A" AI|P=fvK59x"X]]SMzo{Zu֧|;N{}1L,n^ܨOdBc$AhL_T8y/PdPKJ\ڛlEh΅]70p{5Q z],#e%iJ`1ayi?!(\J4ͱ=Ce s+pNunZ@~✳V'-M}YH@0V>{HѡS< Ww 5Y3h]U9Ipx߼"' xFHo!\)R6f_v(@v06ٚL?*^.EK<}X(r/qgFsW,AEeLe׍ PCT@JJNu4bx5lwճmf@0/Pv #hEg(Lӑ<(/˄0w$ݍF( BCek2*4uGʘp7ou#:R[O}I,N\_:]Ӄ4LO;-]ꀴ5XFb Ҧ""e,nz< qgq1Tp `nȤB= zZ!xDū3!VN3L[IoyyƧXfE(\ڒrWOz-&zh0F ϝԓ hLyzu~ϊYRdҙFVuT>2ѡUzw O+M11HH2`Y[4LBIV6xPUp, P/"PgOUʣޕt}F"q!UcW|qjvzϔyGNP8OƒL з' 4 ([l(Od$*cc\3{@q(Bypoq0-wH}o2yk׳0|WU4c4N1J*]A <é-EۮI`2}U% k+ZDn%yv/Y?PiifcJ75>]%>'Lž{4ທ| ̇/LEovx/R}fp_i "8‹+Bˇ^Wtc@q#&LM.Ɵ=QBeDĉIIEOx]jGX,M1ش} 3FFֻ-̱Y6ęXj{4*-z:A TJ司MP-9Ӵfx_oy +*q7;@Ph-ϠrmTyߒ v8/plz8")ϾSd(&|[۰iQ 8ZT:z-X2ϏHi[?9U|R$  I+QFбBMR~)A,rP*|Y]ֽ,.?Ttm/p,QǏfBMc*:ZzZ%7/=al rՒS"CDh$ז?AާAX`Gbիl4ej~"H{no=NځaiQ-+|$z8rZ)z2>|ZEH2I H~i FUWAM%l1{,F@AkrrOr]`$7?%G9'wQ&e`Dm͘co!Fn 99͸DT s@s?3{bIw$Ĕ%tx`Q9"q8ƐQXwG`^oȭ[hDMFgxѳbM1FhJdvsb7KQ%(W_Y[#nF?8{ZA?xGhs:vZ8]/ʲd9 愚{>Q_6KSG#uhOC5d8])E_E˲Y8YT2CΨ2=ZvV׹|iP(xKQ̫G9MK8ƀ6Wkwu$,PU0LBlg$d ՕW߸)[|ȃ=߲ˮnkk{I-dLvj |emT i{w1WeUS hT)Pn<#p!Ǔ(AQ3 euW$pŊ\V6՚ę_ɈFHQ;[b>e~nP&HCֹ A5<2݄锷|䋣N M 7Hn68P? p3taWW?AX9%?BcV~_:[=3R!%~bTs_Œ3G+0~˺u`0AlrQ^KpueV+_q:@ G-Yc9b/DF牕ZC"4^g8}+_B. DZ5$ L< VE߶Q Yn9ټk¾[W^ #n`,ч 7ra$RK+dWL%8>eVK{Ds 򫠞NZjdX1PBMNTQD43zOsҁb_W-l%n&PaD收" ܪ#ׅcϺI'e#$>rcCD<3O -~8 A-N"5GB1xODoo.N#NұX{'tQ࣪4 ,鏹Z0,g"ʪ ;6~S(N :{#; ,\[kpM1ҡvC?m-;F9Ax’f#t6.E9(r4QsՒKr8\$ @yb}luR)-B @=OeL lRuU; *mf]JpyՂ JVc\<"r5rOWJȵŶ?2G c0e8PyE M MzVj:'Bp#3 ~A`"H"yođs,Tw%6T 1k7jםul+u1|c Yx|dHDxXX)%wwF HctYR)7"UaR_$5v8{@ۃ?#v`)Hɧ\013F<ؾU}3"mg^씡jIbUC-{}%/0W? š4e|O0┑ hk'+pO|d$|Ze>ނWp|tXJD9\>AJZ  &] X:h1O.38cwJlB:_sUeH޵v;a KyV (>\[L6:;t*ȅYghh.Slվ 1~[r[(^UwUDpYJ@ӟK %ⶊjDFZP{c!aRս[L%jC 冸WB*ϲP+%I;hhabՔ3 iS?BړmF2ސ=l-D 7_/E1 0\7 us]$.e W~A VBMiv9ȴ̶]m˸K:{00PzFjn%n١4N~ HŪ/3/%mA8{EsGL Iؕco2$G - OHc`ҹ)Ofvi1hOdE0J8So* b'"(HMgqw=]-j'90dI7m yBM&~TL7;dxqM 484XT9Ӥw8+/8۹p4QقQ=:ɣC[UZj0<mϘZO̾ƬM+m]L?>(qqE{p5m? pMۨ9t97ŭn uW|Tz}bLvf-vY" K:vX5MG™$Ժ Ѳ1~0`yՉ)lxto0i{6_HxT@~y|-ť$ϑ;{t&YCxe7VY[$4[Q=xFG)Yl!61QmP~bvt{h_*vx3Olx p~*]ybT b_jjydGr:P 9zx I6A3}^AG.y/RpAw\IxuWM,-@99Nv[ƌOh6V̡a U1@WNl{UP"b G|F GB/!s) 9uM~p:K0ذ^BĂ.٘>K7n|> y5èDj@2&"-تϕڭtKŁ;݌@zX @& >=ơ8M@W /嗉H3lG/[٢%"aA1GK3aN Cr5p@$8p 0PjF5_j>xXA?bo %e`#~k^v[UINůgY4"*,*Utz}IQ;cˊEp0lH]l =;uF.S!Ծ(QhqE. 3Xţ!9Y/Z/8`dnNZ ?GW\Y'.:f!oҪt =Tyu lDkᄜz&Dg$KF^AW@ _~hђ7QyH|sipBA6F-1{ܳr6C09ٻ[Oph  nݲ$ DMWhOhbwPb4Az-L݁Z+ R7Ƽ*Fa“66&;Cܑgq´[+Tss U cP>>`^KoM7b,B}_(/"I0ˋnn0 d-w֓7?qcCrJ.wҳwG͍ I=_0UȍO:T^Dn{›R|[6tUt/; Zf5` z# KvMe7>֋U44!2|{o p!B1k jQ'ǩֈ5q=gK"Mla:B-Z=&pɚ"@7=~P)|6)=BؠsNUv`$f<X谎ZOPgjLd^תMf3H񠰖_klMBK\Y)֘B^R,4&挷9o125.a. 67q. 5z~cm}/s:飫pk X! ,5iiUq){ԭ[˚AMN28hi1Z i.H~>S7ks|HL'th?HiB.b 8[Cr% Y=v{H`TQJg, DP̥||{bt݅%w Kku׷LS)#5X^h­xcH ãƒhoe { pq4yzA]x橓3=<VS\EbvAKI|i>q_Q?9 /adX^5t÷|od{|àO Uu1hSD0h+27*Co/%l'u@z r*di䡷-銹uCl \GhB}m׋!Ɠ `BݯIw'dTSۯ5?aMclۡpG鍚cQWDEBi1C)*](A H+d G;v Ĵ!Q\.@ϩ&_W%N^DZ㭕u.Bl՞X6ykI+3~¨yh[9}A"IY2 FKT蝄EoI"dp)iIV4? A]UDJrNb.gZlRb*/[9H :jmUwx'*9tզ@=D+i?qkwq&ᛤkҦns(vcM"Tkp$}ToI=bil9 !<@n\pzFR_C`]y;+;h= ҽg ;}|,|j Ye8-*43`xVs a,UreNxx\ cY٠7yӳkm#gׇkO'-f'+u8nod6Uf^%@]bv0p[`ULsnp>MSغl["m:u%Y?1x5ADz4Sz|ތvt\^k`Sͻ{Et%]W6ܓ!2˦rڶ*g[PHk4Z釘."`h 3yh@vؤ2{ysh8j#I \ ,C_[TQ!1{qArF|覽Kտ hD"JQ(2D*\;R{eA,kf0aȅ!]C0£IuJHۧߡeM1s\F![aլ|g; ϖ/ñS޼U҃B>\hj`+xO}Ncd@D0uϼo-9yC2t5 tsI1+xu;Z?OjO1X69 .~\XKt'|y{;=I׃>I29ODA(1`ӵB\0bt'J,X`I8Gh`y2T<:XbߞKo$#'/銷RMQ=Hc &I%>CKy\*v>%ēBxF6p yފ ;p2r\O>\pНŎNd'aEO L;+5';[lnE Zk$䢍X Xy')*£صB`bi\S,O 0{rmAŏaC uyHX2đ*ZH?GB MdQ :W-v1(̝H\#Ac1wWT7j Q=6$R[v4BzLdOVIl7)`1}a5xαUҦ=Ȱ5őB2|TKΕtUC<^!s/"NF>/0 us3;<*Vh>ذ"A%,Jcg+Qb 5m|h[KQy;v 6Ǭj 8A=3sx-ۛq$f7,+{otن9c6E !;?CT 9Mٚ;S]}߱d3-Xw{aڣ G6"G\L/r-;F$rTNSoRA3 ",!Op=0:souTat ~B~!%qbdS&`wxÉoZa;تyy':k oHvQZI< B{Cm=ߊh||N (q23`w)y XѺijmλ92d*sKaəYf*BOqŽ Xxx6YK<~2m6#\){HrȴjMA >jAfh'=h9V _y:؋(4я9w1y%IAkcgտ2F۠A$ڥߠmܩTNֽ62hP3f{ekd_eDuďXK; ۰)RH)TFp}&V?~Ze0ʍNP[d[gmg'DpM2`v_Ci]IB(>[ߔ BO# XK"KaFC=:I7*үi[ # U1L-gW<^>|KN6b4jxNwKثt< )b(\"RxKC-:zHg5'BVMz`v9DbH솯H*³Wz$upu~r(3S;; %}T2LZWO'?xi.:Xhu0@fe!^fxwÈю7t}cKT\0+tjK'vw $,ؖ5Ur._) m=C<5|h@Tu_:t Ю, J B__Y4k]ap6 /*C p5mK-~-! Oj ѩLǕHX{&BnZ$WZobf0pU5tw&a} T.Lx]@v<$ܯ͕,cؓS`pھ%Y !sP(vLD5EaEֳ~(\&f[a0y{|!T ں\[`.5q|~I,' F8EGFrd6 lFgfQfbIZB5]Au0)h`X[-\hEX?6,:,[&"F/ 0r_dpAAU  ~^L1 ꭍjqT WflPa8#_1=2>"DJimma%my@&;vZЕ@}~k4H '^.= QMsA芦H~2>?٨DbՕ&Z{X\ M4{q|.7@^lܳ5WVz#ЂYEfNxTKiH72% pw O&*LtI Zmy@'zYGL0$JcͷQ;~lRr0N #M+lNcq'=B`0WRz.:쭭2L]`arX5XZMfDL{bTcr1hEI1CᅑV@ :1NIģoFUq#Fot7'^ FEȐd@" M6uR+V(0*+w^#\8&ŕx!!ESLS&̍tr~u*LN|b{Ѥֆ˭vZ]'N_udA:i= #4ji̥ jxbte@fl7VD+fFWWIX7`GcDv۳?x(~qmJu9(lJ01Bpkc)a@2em#|8]\i(%2?8E,?ut[pG(ɍɺD{mxU Q4On/iviW@"5Wkk6raɮoę֧2-GfA'*=- Xf~O>CQR4̒ ۻ7ͥrȞj/_ak0H6SEz.N$ ,?[}䐁`Y[$ek&xˏ>2 Wi2C>"ylkH"8@1=vca24ZHf{uvV~*: )=VXh!An*$O2^4yZf.1dfRzB`xLNRL;ҢCcU1i.^SG뼢?7H+y!M)'K K!g1#)"5ta)X e%[][VJ;w%.h<_x}ZΞ Eclt̮Ŵw#9.;Z=k[]e#`%=%h3z- ;kSL~% YL{\fL xa#|otL+J}!]'zLƽLt ,1ܗ-aDҐ2(U" pPUB7| 3H=naЎ`TGJ cٯF"gifT,7gQ)^RD@n+G"eK$v>2 LX& ,!&e6]k-?D╣_eWXM2; S\}, QfG׈pCՒwnR`Ck^U$\x7D^!T+5ba[8-ٳF8E5b@.6el6F MtOY-5J5QDxA>{1xI‰s9!fh(ǘo"OOJ)]j!ru"G`6`\*IQ"-_{K>,c&-pHΨv~҆bcB[$mD[;VI,R Dު濕mV2YFXx=VVٲ1h5go ˺b&@$;ܶ~=kJفXG'p9 h^9r .cw /4¨ID&r'rӁɣ\Y. {KIcB9vGZRj F߯Izw@깻{ع`]0W| 8 tG%hvKOdtzjB[c\)KS- U ^1mD?J҃ &?7(GDfE_zV8{S†jNj_ǢJV" Hmv]ܜ]R% Xm^S.VSe]۪!\iu -fG~X̸ ?-<ױb9,!HoZ?_z$2R~RD_$=+K1:X_anHmWch<@ӳ]47bC΄@z=.$q>"¦*$X+ edLt0#zVxvy2V INW v2B OPqJ/:QҢF=m!iYkmoV\ x4BIlORAw3"(_pLCٺC,l`vgZ^D^jb@fvHX|VG|n`jd7xez %1ֿҤ˄Jmk͢a]FQdf [Ç`6i <_]8˸f (Z=Dͭ`bb\6v߄3R)BXyTkډ*crL U1͗߈99`ESntlgzg+N(eoC%Lin3/.2 uQ^{+ %`refq<AJP%Ð#sيESRI ~TY# j`Eʪ8mDzv{T]O&h3pa):2Ն`qفwr$`F< {Gh єī+PiO_&Xje ^#90.ޙ[߃*k nD|%*+` gU*$:y$%͆[ Yd]=Q 2?n"+c_ݬ$޸ >^+Nn!wf4?K- ?Hm> 5OjEe!'H M ', 2evUKY]5ͳfIj&N7/Xf]O.9V<2ҿ WxTa0ucjZj̞3YrG31eh3k龂Nld Qkc&4D`󀅱}*zyF CO0P|Rt +jeʆX7@n~q@>L8>{l ty*ԣI9y͐Ƥ m 4 6fn~^6Cn1&A0=P͍IR5qZ_B煑4=oZzOp ]cG.A+ 4I%"!sdɆ IS߬J t QI)1KRF#yzM(n`l,==x%JC6voRۅ]w b #qSߍ".g{;KN(:vJL|c{Y@Rwͳz'pTAm:k& R[2v}QF?lBAx:x2S,\t { cP$dث;A f&ClɜI‹Dv/4iu0r^,¾֜ gVb(5R_y]UiG T@f1nxbXp͙BR7ĭTcEA(,iDޘkC~ra':>ֺU!K8"> Ila2J$ni)Ҭ$*%<4n X3+i剼k8Ԍ=C6&kNSr,. 4)T\v2{tY`pW; t{Aݯ/kE="ⅮDc>uSeŎ rbѮ9HlFP r%<)a(j4=Z,]29'I2ha%aOv{c柝 cBITJ*MG5EŬ6$TW:pPQrZG{`OM^# V|\z2:pX" %W;9 ^fF> \mrAևLvC̡qǚX T ;d|h&se0=δ10琥٠#$# =.tyQqQ`.:6ȭ#Jj6)ͨrjvC?2ՉW"=3-·r,+kPhJh.gg'6V,rޗoym0g-7WЁ؇w^n.3r.$;8 3cxA4c#I &QBV%9f6ox4]ޣ~ʬ~H߶,+1yoMY6gada+z& "-ur RXJi-${Ĉ+ܫvJz~4L.B tC`NQGmܷ߶1 wf] {WU;^Z(8駱#b U`p=8z PBw!#뮛L ?Fjuui~;}Ru~14OORpDpuX: %%!ۊLTG+y]˱ h < J;-Q`\Y@2| |z5߷昔YdV>r& F@ L, еXYt,ވPtNP(<;/h h[Dar0of w~p,p A (k1a[!+h[ihXڏnxD'c" 6%Je 뎚 y<ەc+E^OYfH+^sL9XyKص@.=(hMXD]REk,\N#YIP᲌0eoV |@T4Q2V] vFL)!տe=Psy>п4b"\ YU7,Ci~ :*k?_}lyGuQu.ڐU7Fyx?j-ا" Yro_.Hvy>/V+E[rc#uGe-2A% |Xl~ӴӉ"UI2iFhK-Vr2/\6Jm[8y|2&>a\ rЉ:;nMqygQz;)2[98H43k=|Qȧ&xە0EdWUs8S~`|jD5$"e,tnn}#JwfWYls󗨦8  rʚV5NQB4{@wE'\?vC>>zKXIxmLyR†.-$5=ed}Lp%m8]X' oYH0wmJXcڟSG<ǵ$^ݞHZ &ANq ;[p#Y iݏ}!%Ј>yYuӝ{PJre0Ѧ "RMmmbE5;ad)oҎZwPIQ][Ki~Ru]k!g8JUҝIc|f@E8Q"R$T]*^o5ѶT:ч9d="?C ^bNN,섢b9j;T5*-#e @KrBa?>Ҩ.w l>b#TN)oT@+9+O9)p6I73WqnD} )zߘϳcM<ïCP9r{4ln҄`Xa=6`(&ˑwNAoH Ҟej" ap&ўa.RI_ߏb8Dv52]gV΅%[`Opx.e`lx=yHGXiňZ +)۸ݡ=^#8xL5{ZV8""(v <Nݺv ^TBCMTFMqBsu!ju xmi}Hr8dJY @ew1> Yn%EH鼢E ʐ۾tÌi-^$6L;bDџڶ,h w*iĿBV=KF JKguN=3e+Z!P5 `!as57vnWs$OFŹz^Fn."U_8 xxyETy^BЦFuӲmh*s[FnN}!@ٴCwv3j<˨[="W?h 38(&*c9j)oS1?|{f­>1Dt?IW@ÚǛcv,K v0|PW`ﰡ &KY;~`&\tA" f Vy.5ȈtU*ɻ%INjb/)Ѐ/7,"1[ 9l#YQ3p~DdIW&:Q#+1wI *v%.-Mw,~RCQcyzC4ҖJOLs2Xtjh5-GxoHUjsC8`z O8xs2|I4Z K7!BјL^2lvĄ #jletB7{ =zF̦69pZXA# HbQ=RbwA㠴}.{8:O9cY]X25ݰ 8x~z\dy\@`_uЎ' V泔.ќ,}zYCtU+ jٓz䯂Ǎm_yUZ8uf^|d7Q,5TT,CxS&KfڴKג.ʆ͕3t`Ÿ!ksnc,w's۞c:@̀K̀qEs]jh4 Gr H7s L6PP3 !v Z eG&hBr) I>St/ 75l8:%OS#_, ?ԄnL n0tUǼWWV;6?w}Oc!<+| Ғ0AO Jm}L/\kbw@FP "_PSؕfF5f؉Wdf iIa?} mm)VӋE9 lVU%狄OGL*iyKTIq 6U L/L EMPDp5- Ξ/ H FW DFKvʂP$Z 5|\qBIOʮ d{Û {$r;x~<*E16L(zx63ΜW84b^(Պ"׮ud4+f(VL93u Csoq+rM)9K;@`U+̨m8)'LjɜҺ=_*gn參N<{GSZ$t#Kߡ>j ۑ_GT\E TWoo_b>e)OLRH` r>gBijX``r&WBbB3H7vB|nf*[ZEYgxB]_e 2[1?n!QGJ 8@$il؅HgnVp{jO=240F+dw^m\Ɲ>6kzXR"h}8m|(]E~'\|~ֵJMPڊ :ӺouH%YnE'mJ8yFoƩ+pmt7VX7 ~Y6dSnKTlcy4R%i~Ud+dLYo#x}5XdIR<7QД< 0b CeQ4NԶLA)LVwpꊡeI-АI@J;Lz J#&?PۂGCm[SZqFӔjT3X. zKr\T}9]jUݿ5r(]yD3 :T|l DQF`-,̜2^#dZGK׻7t$6yhєߥz J] ָƂe=g?i D f&S#ƨغ4$hʘ%H$Zd剀/^&N.[9Q;O y#*#P'ҡUY88DvSZLcvr y '@gSnw-e zEZO.E-FuyvO`"y)bl%f13/=qvXAI?WBP?]S<  "WD&\ O-V%Gor/1Wz.G7CYla/7ы!Qe1](jXZg]:F7p~ |̓V*?Id&ިrl8_!7YCk tW|GVؖE-HWCNFwzd)艞8,[rڥSg?GBg&nۢ* %$ jfoa"S,k6Q] ͦkV+%9L}>LjV$)c zOlɛ7+LRJ@(OfO>J(fXʞDָx~oOd Ra}_7jJZg+A8pq.Hx\ޘ ҾNe4=,M +5nŠ5HB̹Mׅ12d6JcǪr;nUzOxXT g2fݙ/nʄotG+5]sNീuM<62Gľ`zr@dCXQ5+7,S%Ȉ=bC.g׆Q/%&]8F^_0=GWk}D,j7B>twA kf4d]߲jq`jrdͷT)JA!rS*gCawS >"4]7nP1 5Xw*]R[w,8;&!v--@,?i#A>͙OXDWL.M"\>,OwXl cf'Y_V A58ŞU y?UybŒEg - ;R R б@ad@k¸>N|BiOAJ H>զ:@Y bf+Fqj G 0!|CrRB |d!75_;QcvfK jGd &&9hGߔB4e+3O]~~"~x܆)uUEcل*Ɛ>晩 ]07$u pyohW闙f =uH(gXVLv3g3E^ՙGvr 4<>P)xg/LCf՗5AITMR1IzM&jSX2 MC ϔMΆ{ &#K_g*طk\PZ:`=gAȡOf4 )7}+/yv BjX_spF"6;@X2Zx9rADdJ1)A@T=i)Vo4L>6őPvtA~mGZ݇H^kG5JpI4Mxp|ArW9τnubW\zfp@zOG54ϟ4`^aӋsł;` ۟.gSQ5Z[K}n SfbW@"hb JE.=縌$fA= U)6\Fuǘ4ڲCf^֫ O94.wo>x,&Cc_ΐw4uĉ5l2+Kb_zُI;ivzuQTLȌpWUw0=%|QS6XM3Q{0}=D+0PFqল8ϝA~ G#?Ť= )i4*E{ P( \ "W"Af?$I!.Y|8BMl5x|hyqCZ }H(3wx`" awTyΆ%اZf~~2/`k?&<&{o]֓4P"0$ ?JDб'jM/ߢRtSu&[}c4* >9/&Q1ӄl\wW0W.eb:J !,33c|I]IlCABQfCp֖)(ZT-1m̌.%_' m4M}QKs WD `>O0{eScvOow TWP񅁦{4l)]cNPk?mU5-R m 변J/R]☘MjS~R"F;ppdj7"/'|HT0`K$ATG͘Ӭ˅Zo"9y=_V3P<275f}TS {q%0Z%1؛=S +0F5!,s^f0eM6T h͞\3đ\%9Mz9>H40—:CJfTc _Ҧ ZJ"TdAϳ0 噻uyB%V> Vo}n\L]v3g[Y@c@ZM>gg.Я7o@[eՅƤ'8mcjrQ(IҚWѲ[K"M~s; t(J.˧ﶻcb`ij]U.BPNJ E;\=4uHWGS  v_8Bb4WZ=2Sv8:$#n,8#cP!`(/Oط8&!\>qaN͑ЍI6nT$̠9ʝ#_Re+0RM<񕃳P6~"GrWMX)1Z/IH0 -w(r|CP£67n%AIiK &ĺ'-m`SçB r`1+NV;g8L,K{b;.2 -br[qq75I0lȨ invFDfƄN?1=ªb_uh MOy٢CSh]v'SU@bQ o:w$D%5kCȻ@;gg||%qo76$HS%ÿϐqCtNAoflϙ]-b)q}~M. 5%'ؕ \ 3O!JY LB (mϯ8^TA9yWSk ܣ㉆GDʾ X&O4†N=LU|E曂T6pi 0xG5q`3q`G%(pygz (HeE&tqlwU)-e fd"i>TR}g5%/vZߩq4 ]X/ pw*q5]#}LMH>RcJpA5sDIjXѻVV4d-IP* 7jV6ݧ!/; j, _H<) :dEg!pܳ^݉䊝IA2f3V0 /e?O;>ӲuUg9O.o')*+sAܐr P BIj7U2J_۫Ŗ1yvj D1K vۺkz2#@7r|Pq*EgSi%9H򛣅F"TȚ)ʦ͇:듯Idbaӓ1&q}䖇Ϡ;m<|;LD9O.r7  pyRJ].Q<>hP[X69Yd/զ|'EN%Q/Ҽv3d;A;[^ yx3~,z@90T3_"KFIg1ipۆlAװBXf*-PB'Q|=*5ɝJQp"?<)nϏOITna#&{ %]rG[$ jIwnͳS5 P)VXlJUj:$Oy| )竴 %-h<}5 Zw-"=w m9)M;oP׊)ArtrSЖX+1TϾ7䔭WqWPOh1iʘW1DS= +jl 4>c˖,[pp4˟A07r:NXJB35lDrp$H%0nyU^][QfdF=%sy896E CD.}o["{A^ٗ$޴kWE[qz;0t5 lms]CEc ײ7QY^T1I)7ʮ JK/=zOhe|rhWWH~'ӹqC3ڧIJMU0'1.A ,Z w&:< B3ooS*YH%a^F#=ҋ;-8 -#flL(B*чow;W ߞWf:* 3",*C_sz9mx/9dgl UZ*YbE%al4wDjsORW>(|j m`ńv~5"wC-<NK8k)XdB}BAzhSE14҉itvٕͻr "ɳ):9G:2b}JVhWb_Gxêcj%fa9f:3@YC&R]t6-=?Dp]S'jΟ<=x9 mA ޥg*8F8Ii|sݗ]ûzs&uR༩ɮZTa"·w`f2z'וߜ89iQF==EO[FwdP)^?)MlWV34s`8i$~gˁwY;Ad J1ePn9pUr>,1+`ZcoɅavbmO&U^Quap6A;e/i+_YӠ+hť7Ѱb7 MS;(ȸ "Xsֵ ^S0N .fw+Q!̟~ C#[`ju)=6nbp%}iz0dK:qv2wX.b:'cytW-)gyJе{ԳJQ™}w) _$xB%eܪ h>3(;{B01LqVar@03,; >K8NQLҖ2\oCY3nH ҉:΋Y%5cvd{!C'n蝖 YOWY*XHɉy5Ji(# ȯD1[ٿX*VKpS'}|h$I0@ MEPo_^*L=a+/#Ќ³u^vtGhظrQz~$E$(<=4MOkȥ3~ĻM.q"~3GZq(P"!ҜܷTqpO[_CpIwn i\N0̠:(9`;돚 NqKܳC4Bªx1Z!&RkzV@ 9,p D\Ӡ&I;]KтWF>8(.k.1qdi!{ r xp0v9{ Z@b}2jɕhNɞ^.{TaLSffZ0Z5%J*;Ycf[-bM9_e%qV2X3Yn { `lJJidž ~ĺhDe?t7H(<~tة 4pB 7N.DE{)o>ˌ252~ {$Y~5 S&.LQT~m+[#Ȕg+zs#8i'63Z~гDDS}$E:ڭX&D_0`֑x8 :Y}Sk R!F#9Nb٘::2rI`Vo<`򜜳M|F3Юm?JG$r;|}Lz[`X`hDwhM(N:wJ\qoΡ.l)uν"( n?ɿb\м@,CͲ-4_ Y]Ҵ$ѝ AWD8fRh[.U:.wLoǘeP>@bStZv"ؕ?GX]Rrs6dMt5~cͥnOM`R.⋭IT=9-"ۙ"1 ETn?@"=OL;'Eݘ1c͞^sһ-lH\qtBD<)%(莕.8Ek2k>9Z忣qWղPqm bJ\ 95w\K^6sd/5-su;yIčj4_ jYH):&wiD ܭRRs9MLivBԟ h4‡-aCH ?o_lɘD0kf LJ9^ܗ6L9 g[vo cҸtPXR(#¶ kd'cC %/9פ 'ս䡯XI?uZG押Fy棒wB_u 4h4Y'xdm4)y^D1祚y̹'k/^Z b>693gvwqtE`֡Oe;oe9P`Ai`/sG^2\wI9d[8 [W⮀]V W^lVia-?^'uڶjy@ K6D -ZS S%sbf~NcOdB # YZ