mod_ldap-2.4.37-64.module+el8.10.0+1717+030a9fed > 6 6_6 3!pQp)Tξ7]mtZ`e` ]mtZ`n{}9ù;.{\YQ+BǸg&`RM E"U6yx6yψDK֗Haewz(hJ)14A6ɾꐍHN(+N.Gv =]# ۧ/z;ɫևz;Be#7WDk.`ӆ0fq84aKagõ|-"eFU!2u:H:{:t̡PJr2ݲQ01йgy X3&G_ebz=D`d^ PeکcwۄZۖ;~pFSpEOy徕thmܲM= 5iT]߳s UrLj HR&;#>BeuIS'3i,{iDm[܆s2GJ%!K&5ɊxB{L NCJ8+ c$ʧo:=W5f2 e/0>C/.F)O$/4ꆷ'x>p=?d  3 j  =Xrx     2Px(89 :6GHIXY\X]p^badefltuvwx4yLCmod_ldap2.4.3764.module+el8.10.0+1717+030a9fedLDAP authentication modules for the Apache HTTP ServerThe mod_ldap and mod_authnz_ldap modules add support for LDAP authentication to the Apache HTTP Server.eXord1-prod-a64build004.svc.aws.rockylinux.org"KojiRockyASL 2.0infrastructure@rockylinux.orgSystem Environment/Daemonshttps://httpd.apache.org/linuxaarch646/AeX@eXeXeXeXeXcbbbdd396fe056e8ab167abd7b2cb5145b42210bfea38452968ff02a03493fc8fc2e3a59758bfcfb2171f7f8e568c1d606a23264b20494825a8bb80936d2babf6c3fb8e20104a73528014526fae1cc40ef59f67118687b75acd34cc306bbd96f../../../../usr/lib64/httpd/modules/mod_authnz_ldap.so../../../../usr/lib64/httpd/modules/mod_ldap.sorootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.37-64.module+el8.10.0+1717+030a9fed.src.rpmconfig(mod_ldap)mod_ldapmod_ldap(aarch-64)@@@@@@@    @apr-util-ldapconfig(mod_ldap)httpdhttpd-mmnld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)libpthread.so.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)2.4.37-64.module+el8.10.0+1717+030a9fed0:2.4.37-64.module+el8.10.0+1717+030a9fed20120211aarch643.0.4-14.6.0-14.0-15.2-14.14.3eN@e̫@d d\@d!d-@d-@d-@doMdJcdcck@cck@c(Ybޅbb2@b8haNaaaawaU`:@`f@`@`@_м@__@_:_^b^(@^@^]]@]߶]҇]@]g@]-@]]@\7\Z@\Yz\T4\\U@[@[[[@[H[u[[[ā@[ā@[ā@[@[@["@[YZ@Z@Z@Yp@Y{Y@Y@YéYéYéYéYX@YYYYx@Ym@YlYf@Ycl@YV=@YGY5GY@YXۡXP@X @X@XwoX[@X[@XEVX)@X@WW~D@W~D@W~D@WKW@VVVVn@VhV.VCV@UK@U@Ua@UF@UQUQTp@T=@T@T @TT_Tk@Tk@S0S@SGS@SS/SS@SSS"@SS5d@S4S&Sz@Sz@S(S@R@RRG@R@R@RsRrF@Ri Re@RVQ@QQޞ@QQo@Q@QQV@Q@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Joe Orton - 2.4.37-64Joe Orton - 2.4.37-63Johnny Hughes - 2.4.37-62Luboš Uhliarik - 2.4.37-62Tomas Korbar - 2.4.37-61Tomas Korbar - 2.4.37-60Tomas Korbar - 2.4.37-59Tomas Korbar - 2.4.37-58Luboš Uhliarik - 2.4.37-57Luboš Uhliarik - 2.4.37-56.5Luboš Uhliarik - 2.4.37-56.4Luboš Uhliarik - 2.4.37-56Luboš Uhliarik - 2.4.37-55Luboš Uhliarik - 2.4.37-54Luboš Uhliarik - 2.4.37-53Tomas Korbar - 2.4.37-52Luboš Uhliarik - 2.4.37-51Luboš Uhliarik - 2.4.37-50Luboš Uhliarik - 2.4.37-49Luboš Uhliarik - 2.4.37-48Luboš Uhliarik - 2.4.37-47Luboš Uhliarik - 2.4.37-46Luboš Uhliarik - 2.4.37-45Luboš Uhliarik - 2.4.37-44Luboš Uhliarik - 2.4.37-43Luboš Uhliarik - 2.4.37-42Luboš Uhliarik - 2.4.37-41Lubos Uhliarik - 2.4.37-40Artem Egorenkov - 2.4.37-39Lubos Uhliarik - 2.4.37-38Lubos Uhliarik - 2.4.37-37Lubos Uhliarik - 2.4.37-36Lubos Uhliarik - 2.4.37-35Lubos Uhliarik - 2.4.37-33Lubos Uhliarik - 2.4.37-31Joe Orton - 2.4.37-30Lubos Uhliarik - 2.4.37-29Lubos Uhliarik - 2.4.37-28Lubos Uhliarik - 2.4.37-27Lubos Uhliarik - 2.4.37-21Lubos Uhliarik - 2.4.37-20Joe Orton - 2.4.37-19Lubos Uhliarik - 2.4.37-18Lubos Uhliarik - 2.4.37-17Lubos Uhliarik - 2.4.37-16Lubos Uhliarik - 2.4.37-15Lubos Uhliarik - 2.4.37-14Lubos Uhliarik - 2.4.37-13Lubos Uhliarik - 2.4.37-11Lubos Uhliarik - 2.4.37-10Lubos Uhliarik - 2.4.37-9Joe Orton - 2.4.37-8Joe Orton - 2.4.37-7Joe Orton - 2.4.37-6Luboš Uhliarik - 2.4.37-5Luboš Uhliarik - 2.4.37-4Luboš Uhliarik - 2.4.37-3Joe Orton - 2.4.37-2Lubos Uhliarik - 2.4.37-1Luboš Uhliarik - 2.4.35-10Lubos Uhliarik - 2.4.35-9Joe Orton - 2.4.35-7Joe Orton - 2.4.35-5Lubos Uhliarik - 2.4.35-4Lubos Uhliarik - 2.4.35-3Lubos Uhliarik - 2.4.35-2Lubos Uhliarik - 2.4.35-1Lubos Uhliarik - 2.4.33-4Joe Orton - 2.4.33-3Luboš Uhliarik - 2.4.33-2Joe Orton - 2.4.28-8Luboš Uhliarik - 2.4.28-2Luboš Uhliarik - 2.4.28-1Joe Orton - 2.4.27-14Joe Orton - 2.4.27-13Joe Orton - 2.4.27-12Stephen Gallagher - 2.4.27-11Jeroen van Meeuwen - 2.4.27-10Joe Orton - 2.4.27-9Jeroen van Meeuwen - 2.4.27-8Stephen Gallagher - 2.4.27-8.1Joe Orton - 2.4.27-8.1Joe Orton - 2.4.27-7Fedora Release Engineering - 2.4.27-6Fedora Release Engineering - 2.4.27-5Joe Orton - 2.4.27-4Joe Orton - 2.4.27-3Luboš Uhliarik - 2.4.27-2Luboš Uhliarik - 2.4.27-1Joe Orton - 2.4.26-2Luboš Uhliarik - 2.4.26-1Joe Orton - 2.4.25-10Joe Orton - 2.4.25-9Joe Orton - 2.4.25-8Luboš Uhliarik - 2.4.25-7Luboš Uhliarik - 2.4.25-6Joe Orton - 2.4.25-5Fedora Release Engineering - 2.4.25-4Joe Orton - 2.4.25-3Luboš Uhliarik - 2.4.25-2Luboš Uhliarik - 2.4.25-1Luboš Uhliarik - 2.4.23-7Joe Orton - 2.4.23-6Joe Orton - 2.4.23-5Joe Orton - 2.4.23-4Joe Orton - 2.4.23-3Joe Orton - 2.4.23-2Joe Orton - 2.4.23-1Joe Orton - 2.4.18-6Joe Orton - 2.4.18-5Joe Orton - 2.4.18-4Joe Orton - 2.4.18-3Fedora Release Engineering - 2.4.18-2Jan Kaluza - 2.4.18-1Joe Orton - 2.4.17-4Jan Kaluza - 2.4.17-3Jan Kaluza - 2.4.17-2Joe Orton - 2.4.17-1Jan Kaluza - 2.4.12-4Joe Orton - 2.4.12-3Fedora Release Engineering - 2.4.12-2Jan Kaluza - 2.4.12-1Jan Kaluza - 2.4.10-17Jan Kaluza - 2.4.10-16Jan Kaluza - 2.4.10-15Joe Orton - 2.4.10-14Jan Kaluza - 2.4.10-13Jan Kaluza - 2.4.10-12Jan Kaluza - 2.4.10-11Jan Kaluza - 2.4.10-10Joe Orton - 2.4.10-9Joe Orton - 2.4.10-8Jan Kaluza - 2.4.10-7Joe Orton - 2.4.10-6Fedora Release Engineering - 2.4.10-5Jan Kaluza - 2.4.10-4Jan Kaluza - 2.4.10-3Joe Orton - 2.4.10-2Joe Orton - 2.4.10-1Jan Kaluza - 2.4.9-8Jan Kaluza - 2.4.9-7Jan Kaluza - 2.4.9-6Joe Orton - 2.4.9-5Fedora Release Engineering - 2.4.9-4Jan Kaluza - 2.4.9-3Jan Kaluza - 2.4.9-2Jan Kaluza - 2.4.9-1Joe Orton - 2.4.7-6Stephen Gallagher 2.4.7-5Jan Kaluza - 2.4.7-4Jan Kaluza - 2.4.7-3Joe Orton - 2.4.7-2Joe Orton - 2.4.7-1Joe Orton - 2.4.6-10Joe Orton - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Joe Orton - 2.4.6-6Jan kaluza - 2.4.6-5Joe Orton - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-7Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Resolves: RHEL-14448 - httpd: mod_macro: out-of-bounds read vulnerability (CVE-2023-31122)- mod_xml2enc: fix media type handling Resolves: RHEL-14321- change for CentOS Stream Branding- Resolves: #2221083 - Apache Bug 57087: mod_proxy_fcgi doesn't send cgi CONTENT_LENGTH variable when the client request used Transfer-Encoding:chunked- Fix issue found by covscan - Related: #2159603- Another rebuild because of mistake in workflow - Related: #2159603- Rebuild because of mistake in workflow - Related: #2159603- Resolves: #2159603 - mod_status lists BusyWorkers IdleWorkers keys twice- Resolves: #2176723 - CVE-2023-27522 httpd:2.4/httpd: mod_proxy_uwsgi HTTP response splitting- Resolves: #2190133 - mod_rewrite regression with CVE-2023-25690- Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy- Resolves: #2162499 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2162485 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2162509 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2155961 - prevent sscg creating /dhparams.pem- Resolves: #2095650 - Dependency from mod_http2 on httpd broken- Resolves: #2050888 - httpd with SSL fails to start unless hostname command was installed- Add the SNI support in mod_proxy_wstunnel module for Apache httpd - Resolves: rhbz#2017543- Resolves: #2097015 - CVE-2022-28614 httpd:2.4/httpd: out-of-bounds read via ap_rwrite() - Resolves: #2097031 - CVE-2022-28615 httpd:2.4/httpd: out-of-bounds read in ap_strcmp_match() - Resolves: #2097458 - CVE-2022-30522 httpd:2.4/httpd: mod_sed: DoS vulnerability - Resolves: #2097480 - CVE-2022-30556 httpd:2.4/httpd: mod_lua: Information disclosure with websockets - Resolves: #2098247 - CVE-2022-31813 httpd:2.4/httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism - Resolves: #2097451 - CVE-2022-29404 httpd:2.4/httpd: mod_lua: DoS in r:parsebody - Resolves: #2096997 - CVE-2022-26377 httpd:2.4/httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2065237 - CVE-2022-22719 httpd:2.4/httpd: mod_lua: Use of uninitialized value of in r:parsebody - Resolves: #2065267 - CVE-2022-22721 httpd:2.4/httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody - Resolves: #2065324 - CVE-2022-23943 httpd:2.4/httpd: mod_sed: Read/write beyond bounds- Resolves: #2090848 - CVE-2020-13950 httpd:2.4/httpd: mod_proxy NULL pointer dereference- Resolves: #2065249 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations- Resolves: #2035063 - CVE-2021-44790 httpd:2.4/httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2007199 - CVE-2021-36160 httpd:2.4/httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path - Resolves: #1972491 - CVE-2021-33193 httpd:2.4/mod_http2: Request splitting via HTTP/2 method injection and mod_proxy- Resolves: #1968278 - CVE-2020-35452 httpd:2.4/httpd: Single zero byte stack overflow in mod_auth_digest - Resolves: #2001046 - Apache httpd OOME with mod_dav in RHEL 8 - Resolves: #2005128 (CVE-2021-34798) - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #1984828 - mod_proxy_hcheck piles up health checks leading to high memory consumption - Resolves: #2005119 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input- Related: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path- Resolves: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path - Resolves: #1969229 - CVE-2021-26691 httpd:2.4/httpd: Heap overflow in mod_session- Resolves: #1680111 - httpd sends reply to HTTPS GET using two TLS records - Resolves: #1905613 - mod_ssl does not like valid certificate chain - Resolves: #1935742 - [RFE] backport samesite/httponly/secure flags for usertrack - Resolves: #1972500 - CVE-2021-30641 httpd:2.4/httpd: MergeSlashes regression - Resolves: #1968307 - CVE-2021-26690 httpd:2.4/httpd: mod_session NULL pointer dereference in parser - Resolves: #1934741 - Apache trademark update - new logo- Resolves: #1952557 - mod_proxy_wstunnel.html is a malformed XML - Resolves: #1937334 - SSLProtocol with based virtual hosts- prevent htcacheclean from while break when first file processed- Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache- Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile to be able to handle certs without matching private key- Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel - Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()- Resolves: #1651376 - centralizing default index.html for httpd- Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool concurrency issues - Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1680118 - unorderly connection close when client attempts renegotiation- Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does not respect expiry time - Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer overflow - Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package - Resolves: #1869576 - httpd : mod_proxy should allow to specify Proxy-Authorization in ProxyRemote directive - Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1891829 - mod_proxy_hcheck Doesn't perform checks when in a balancer- Resolves: #1209162 - support logging to journald from CustomLog- Resolves: #1823263 (CVE-2020-1934) - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Related: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work- Resolves: #1823259 - CVE-2020-1927 httpd:2.4/httpd: mod_rewrite configurations vulnerable to open redirect - Resolves: #1747284 - CVE-2019-10098 httpd:2.4/httpd: mod_rewrite potential open redirect - Resolves: #1747281 - CVE-2019-10092 httpd:2.4/httpd: limited cross-site scripting in mod_proxy error page - Resolves: #1747291 - CVE-2019-10097 httpd:2.4/httpd: null-pointer dereference in mod_remoteip - Resolves: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work - Resolves: #1794728 - Backport of SessionExpiryUpdateInterval directive- Resolves: #1775158 - POST request with TLS 1.3 PHA client auth fails: Re-negotiation handshake failed: Client certificate missing- Resolves: #1704317 - Add support for SSLKEYLOGFILE- mod_cgid: enable fd passing (#1633224)- Resolves: #1744121 - Unexpected OCSP in proxy SSL connection - Resolves: #1725031 - htpasswd: support SHA-x passwords for FIPS compatibility - Resolves: #1633224 - mod_cgid logging issues- remove bundled mod_md module - Related: #1747898 - add mod_md package- Resolves: #1744999 - CVE-2019-9511 httpd:2.4/mod_http2: HTTP/2: large amount of data request leads to denial of service - Resolves: #1745086 - CVE-2019-9516 httpd:2.4/mod_http2: HTTP/2: 0-length headers leads to denial of service - Resolves: #1745154 - CVE-2019-9517 httpd:2.4/mod_http2: HTTP/2: request for large response leads to denial of service- Resolves: #1730721 - absolute path used for default state and runtime dir by default- Resolves: #1724549 - httpd response contains garbage in Content-Type header- Resolves: #1696142 - CVE-2019-0217 httpd:2.4/httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696097 - CVE-2019-0220 httpd:2.4/httpd: URL normalization inconsistency - Resolves: #1669221 - `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang - Resolves: #1673022 - httpd can not be started with mod_md enabled- Resolves: #1695432 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: #1696091 - CVE-2019-0215 httpd:2.4/httpd: mod_ssl: access control bypass when using per-location client certification authentication- Resolves: #1672977 - state-dir corruption on reload- Resolves: #1670716 - Coredump when starting in FIPS mode- add security fix for CVE-2019-0190 (#1671282)- add DefaultStateDir/ap_state_dir_relative() (#1653009) - mod_dav_fs: use state dir for default DAVLockDB - mod_md: use state dir for default MDStoreDir- add httpd.conf(5) (#1611361)- Resolves: #1652966 - Missing RELEASE in http header- Resolves: #1641951 - No Documentation= line in htcacheclean.service files- Resolves: #1643713 - TLS connection allowed while all protocols are forbidden- mod_ssl: fix off-by-one causing crashes in CGI children (#1649428)- Resolves: #1644625 - httpd rebase to 2.4.37- Related: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- mod_ssl: allow sending multiple CA names which differ only in case- mod_ssl: drop SSLRandomSeed from default config (#1638730) - mod_ssl: follow OpenSSL protocol defaults if SSLProtocol is not configured (Rob Crittenden, #1638738)- mod_ssl: don't require SSLCryptoDevice to be set for PKCS#11 cert- Resolves: #1635681 - sync with Fedora 28/29 httpd - comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in default configuration; now follow OpenSSL system default (#1468322) - dropped NPN support - mod_md: change hard-coded default MdStoreDir to state/md (#1563846) - don't block on service try-restart in posttrans scriptlet - build and load mod_brotli - mod_systemd: show bound ports in status and log to journal at startup - updated httpd.service.xml man page - tweak wording in privkey passphrase prompt - drop sslmultiproxy patch - apachectl: don't read /etc/sysconfig/httpd - drop irrelevant Obsoletes for devel subpackage - move instantiated httpd@.service to main httpd package- Resolves: #1602548 - various covscan fixes- apache httpd can work with TLS 1.3 (#1617997) - drop SSLv3 support patch- new version 2.4.35 (#1632754)- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All" configuration (#1622630)- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki, #1527084)- new version 2.4.33 - add mod_md subpackage; load mod_proxy_uwsgi by default- remove %ghosted /etc/sysconfig/httpd (#1572676)- Resolves: #1512563 - httpd: update welcome page branding - Resolves: #1511123 - RFE: httpd use event MPM by default - Resolves: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- new version 2.4.28- add notes on enabling httpd_graceful_shutdown boolean for prefork- drop Requires(post) for mod_ssl- better error handling in httpd-ssl-gencerts (#1494556)- Require sscg 2.2.0 for creating service and CA certificates together- Address CVE-2017-9798 by applying patch from upstream (#1490344)- use sscg defaults; append CA cert to generated cert - document httpd-init.service in httpd-init.service(8)- Address CVE-2017-9798 by applying patch from upstream (#1490344)- Generate SSL certificates on service start, not %posttrans- move httpd.service.d, httpd.socket.d dirs to -filesystem- add new content-length filter (upstream PR 61222)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- update mod_systemd (r1802251)- switch to event by default for Fedora 27 and later (#1471708)- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig- new version 2.4.27- mod_proxy_fcgi: fix further regressions (PR 61202)- new version 2.4.26- move unit man pages to section 8, add as Documentation= in units- add httpd.service(5) and httpd.socket(5) man pages- require mod_http2, now packaged separately- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Resolves: #1434916 - httpd.service: Failed with result timeout- link only httpd, not support/* against -lselinux -lsystemd- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- mod_watchdog: restrict thread lifetime (#1410883)- Resolves: #1358875 - require nghttp2 >= 1.5.0- new version 2.4.25- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of LimitRequestFields directive in mod_http2- fix build with OpenSSL 1.1 (#1392900) - fix typos in ssl.conf (josef randinger, #1379407)- no longer package /etc/sysconfig/httpd - synch ssl.conf with upstream- add security fix for CVE-2016-5387- load mod_watchdog by default (#1353582)- restore build of mod_proxy_fdpass (#1325883) - improve check tests to catch configured-but-not-built modules- update to 2.4.23 (#1325883, #1353203) - load mod_proxy_hcheck - recommend use of "systemctl edit" in httpd.service- have "apachectl graceful" start httpd if not running, per man page- use redirects for lang-specific /manual/ URLs- fix welcome page HTML validity (Ville Skyttä)- remove httpd pre script (duplicate of httpd-filesystem's) - in httpd-filesystem pre script, create group/user iff non-existent- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- update to new version 2.4.18- re-enable mod_asis due to popular demand (#1284315)- fix crash when using -X argument (#1272234)- rebase socket activation patch to 2.4.17- update to 2.4.17 (#1271224) - build, load mod_http2 - don't build mod_asis, mod_file_cache - load mod_cache_socache, mod_proxy_wstunnel by default - check every built mod_* is configured - synch ssl.conf with upstream; disable SSLv3 by default- update to 2.4.16- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- update to 2.4.12- fix compilation with lua-5.3- remove filter for auto-provides of httpd modules, it is not needed since F20- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583) - mod_lua: fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments (CVE-2014-8109)- require apr-util 1.5.x- use NoDelay and DeferAcceptSec in httpd.socket- increase suexec minimum acceptable uid/gid to 1000 (#1136391)- fix hostname requirement and conflict with openssl-libs- use KillMode=mixed in httpd.service (#1135122)- set vstring based on /etc/os-release (Pat Riehecky, #1114539)- pull in httpd-filesystem as Requires(pre) (#1128328) - fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348) - require hostname for mod_ssl post script (#1135118)- mod_systemd: updated to the latest version - use -lsystemd instead of -lsystemd-daemon (#1125084) - fix possible crash in SIGINT handling (#958934)- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119) - switch default ssl.conf to use PROFILE=SYSTEM (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- add /usr/bin/useradd dependency to -filesystem requires- fix creating apache user in pre script (#1128328)- enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf- update to 2.4.10 - expand variables in docdir example configs- add support for systemd socket activation (#1111648)- remove conf.modules.d from httpd-filesystem subpackage (#1081453)- add httpd-filesystem subpackage (#1081453)- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- add support for SetHandler + proxy (#1078970)- move macros from /etc/rpm to macros.d (#1074277) - remove unused patches- update to 2.4.9- use 2048-bit RSA key with SHA-256 signature in dummy certificate- Create drop directory for systemd snippets- remove provides of old MMN, because it contained double-dash (#1068851)- fix graceful restart using legacy actions- conflict with pre-1.5.0 APR - fix sslsninotreq patch- update to 2.4.7 (#1034071)- switch to requiring system-logos-httpd (#1031288)- change mmnisa to drop "-" altogether- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide for transition- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)- systemd: send SIGWINCH signal without httpd -k in ExecStop- load mod_macro by default (#998452) - add README to conf.modules.d - mod_proxy_http: add possible fix for threading issues (r1534321) - core: add fix for truncated output with CGI scripts (r1530793)- require fedora-logos-httpd (#1009162)- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- ignore /etc/sysconfig/httpd and document systemd way of setting env variables in this file- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)2.4.37-64.module+el8.10.0+1717+030a9fed2.4.37-64.module+el8.10.0+1717+030a9fed2.4.37-64.module+el8.10.0+1717+030a9fed01-ldap.conf.build-id1c0d207948dee3cb2f4061971b6563d05691100ad80206e7c720cda4dbfaf4981222919cae41mod_authnz_ldap.somod_ldap.so/etc/httpd/conf.modules.d//usr/lib//usr/lib/.build-id/ac//usr/lib/.build-id/c4//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ac1c0d207948dee3cb2f4061971b6563d0569110, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c40ad80206e7c720cda4dbfaf4981222919cae41, strippedRRR RR RRRRRR RR RRRutf-87bb066dbbb757ec33bb9ce7e046dd15fa4be03b2a3dcf9b2ffd0c2b27e111962httpd:2.4:8100020240214151717:e155f54d?07zXZ !#,'w] b2u Q{LXH9G,7(4۔K zy\8F2-?7ܺ:e TvHA7)&dcM/MoUС)a tbJ_qct{UX3hҙ> z@{O#7(_t+4n#{{gYhU n6қn3'D}=տvHwUS(ሦطFX<<)QvecTȊ0~Ys"G_-hKbah@@ZJ&(Dґe8,llQO@)v!_neD,,BS۵$MPX.oB^ XV{ !@L*b=yH7̅Y+ua,h)xM{$vI1v#%+k`/jc#pnD$cq<&{ʖB"x,,!!M]o%K4$Yml`aӯT* VفPﯣ}ID۠*Ƀ?]h%U=XY= G2SL] %8}8=]M B2?YZj* P_{ɛzUR^"/;b!WQ+TR"~VIkN ݱ-UAɶwF/e H1yFfAzĥ#Obc-bTVɤȆ=xw.ױ^K r]Uh>B. {N[÷ M5 떻[brMQO|Y[ -o~=c`/[%XRYW:!?moz+o2|ZդQ}= ęimvέuQ^/X#vvOI Νs2qߚV%(v޹;0BZQi.y#,}*K& ٣k[ڧB꾛kdWUZ"7*VjI` QU40!cOi op9f\fDG+ve15"ò'fqJYzy`:+}}&<# #\d?ǎ-vG/xin+q_X1b+8{Y8V˲եLE*2HLE 1 Π- PJE_&( Nُam!Fǜ}I=]۬3,=,{v\*<-3#~W~JHa>𐀈i2nW]; r3 ËD 0 WAbQ]x"+r]<!-+U])nmյ nTO}v`K"7,IGh2P$jEaM [־ RPزVPDT2)I'`(CMl 9=dEʸm{`~8Ar\\b',!_1#Y5PfM\aֱ!<ܛ GXӯ}#]EY5isl ewכpRBR4ҟ[_({6}e[~JY?Mb~J!hjRȮp;o]=ϼvvlHyݯƉItcb}ћF2W9bomV6\a<'GcB`Ҭq.9"[Xo59(3Y7|1T_$[~IhyȨyEzVWH]q*%4xK #*`5I <)C]S鶩0 Ĕ2iB;Taza)4aX ~ &׃F,gf5:Ni%xےOo(H?Uث(K-<<># I׆fI׃6B4$BYYԃl7 \UݡT 4O[]Pt.'.dM KJÜWH_K.ퟖݘe=nrݤAO qלU G ~uҗ\U$Pɍ#+A{ɭ#:.r{(B[V:k|9I R'؎>"Hdm@=P+I ?q0}N7Ca'(~1&' )(c_,|"-oH wRㄪՠ:upZlam1g}"`Z9+F6L^u>u:bG`c@jBο>ע1Yl_vfR\~def9 }Jw強t0i;q /Bs.CH.nl#$We4*l|4{S#lkg@#6' p._`;:,@tBKݣfh-dѻ;߁cBE)#]y~a|#kS/zSX0㌛ZntLS@}sISO͆9Rph>{ʻ+&խ/ÅdXReuSq@,*c4D!=>f>ܩ>@:Aw_LAa\oL͖Ʊץ5Y@`j1;p멥&)Q}ZOozN ? :%d+?{:05ge"Խ('_Kԉ\ɡDͨM(]zV :#NH9ߴB +Hewp}o!o/XrY Fk 0D;D:x`g>KH-h.̺ʱVǷ/y!YQuY\̺]HAH{vqFfLdZVbŽr2pϮw[(}%^ :`qWHՇ3fUu( Yvf~8S,'Ň%AG^.ȮʔB݀vIw4*['~ £5BdL*0ثc<wd}Ϫ,@7lTs$GN\ycRY6:O,߆W2t=՞Rl 3b/kɢGU;<Q!( $m65n(dhnq)W7jV yqƕ^ī7fMŪ2-Fԕ98rKrBQ6y/ aLHu:YǙ'bpa3&o5\ *}KO$' <_"m3bJ|O m TȆn RueFV1)?AlQw~cslijIwSR#>E_ȥ*hlY@Kk|nm㜆]*1zZ#A#3zr<0J6""m;/$Ȑsenn?dP=[ oxD098R5ѦndKnBE,xzKL{T@$YmKZ\sC9I01F[~͂W^A`ʛܾ}+*tRN+3 e]3)CJ6<$B,<1*~8:В5GmgM6u' j Q/IpʨTFq?q#VS SM|ew20EomDK"F$DеX(l:u*Fv؆6kNR<_I j3Ft!Zo# Y狅fr'QO`ݽxd#N7\T@'?XU5Y,e]q׎?`@,MJ;mJ 2nNڀxG,c!kɘ8+hfL(xoLDJӔgsk\3AYmCljSN!͠C'R\@;گ #`0C*QbG톦*̝~ ]bB@]է¬7:5"/b.|D_cP.yd n]b߇)N!±ϧ}$hf_Vþ7WIj(O`VaT ,^U-k\iBYޢy %Iݭ0LQ$$ӯĤ$Ծ0l4D;zcg ~*# .24*t{)8}Y3)k;]!3s1^!!hhDӜxxSf:IF؃~:3dT2|N-v޼OӍGC9Vœq*JyNҺSJBYcRİ0ߥ=YC$jD. deTFJwwuԢ?ࡅׁA 3|lL '6N VؓmMdxyѽ=Nyey@fvApW!hÞ,Po1^6D$Ҙ?0ёA"NUCzoN1p%FЀ]!TBA0G'U-Kd'IsӯK/[>V eKMB<(g˙"Z8[a:!v xUZq5没>jLD?* y6E )d HG>%GILvD21`uEO uIڀ=-'0fX^!7ġҺ&yh+Ȟ Rg,ZN 3[²N>1:d.@T")X vd5xEP1C3S^,ͬr*BMvw) fFR- z/k AZ`ed:U 1b,T&d_T+Ycץl sSW.Wl.+D*RK bfv`tײ(d.,WX0}2j#[FjZf۪HbOyX]UeheNTl. !ņPo’V^z~a_9m‚r;^mnu~4R#PV> D'VN[sZ67x5;,M6@3Vx릿8вK,8hU˥ɛ?\Ԉϝ ^8NɖQmqN2k%y;Iʏ]4Wf}6VzOs &ӄ3=үŭ8ao #l7W7~Ԣڏ[[kF=;PH*ZCZԛ']xc5 ojM.6 qS7O\sX{|bjdF|QQ;'k%$٠bP3GJλl֭2kD(!'Ar (|$Z!3Wũ^Ի`{.pTzZsn@p[}C)CV^5ffy{ @{7Tsu URi;!0b"BbpHo~> (Eíy;S.},'܆L/ |z&雙̑Zb>Pjb$m#3~x.I;Jz*ѕkd}!_Z9P O#!hSgnz|O%ljY>Tb~ëf*!!pWB埪M#3n A &ik SmPC]f7M?NO'ouuSU;=,G'\o5~GAIBb2;WWao/gCS4(<E|$'lu(9i~"3/ n;TXV  .ɶӚ3qN EKNF>yRKMnBGַhU KU*?$PWӣD3 _;|YXGE\5'k4NamW5v@8-Ucν>\ipS(=FO0}0f[`[6. | =DN HDݥFZ0|r1[`:#ͭMR9yV%6r/|Op_ų 0cXgxKSlR$h$!9>{aT-KUvSrCfZtPQG-zabJNUù u ƙelfm0lb0ql ~7a)2ȫDd\XAࣥ885+o. +dŶɬ]/͆.U!7-32!Z^jԼٞpw\alڏpɦ3P.*LjKyv ^th \1 NjvAnrYdHSsDb!3/[N*\0"E.=AwF#DcفNV_ G]xn{뫆dN8yXުp*$J@H}j ۰[GSlKhvA::2+rrts[^CLϿ10*`Е!927]rWi ޴J0tfhWsLDQM:12{"4qAe"=HmCrwɌ&;Ny6mz:#xԭےNqAYо4y@!Y1T1=Y9(~(|"EQȈ)Q&(K IdD^ڟ8686ax -E%ўX7G0=r 0]XXm*mA~PX Jtg'Ij,=/NVop^bxm6"=F'%Su)Uf~*Ô;FOgBT*''J2ئKewaKv} 0ߣͯQn FYMkT}t7#@auD^*f4ǚ51"Y~o)8Ɖ ;E?I=s5հbڭhGp䡊(1՟<3gRX\ @Лgr;6I4hRj/Iq<@PlDhl*ll!;K.wqn53N[``qQd*lGM܌W@.nu2҆Db:)#-A$%RA 6/7C*O̮ƠRRRgqx\2!}mDnV N!=i>v-#z4yv(2Mn\?(N-(6WoztfIsȲM 1B:b rB[Uټ&#%x5ao)dwE^AoLY}(N|k+zwPП-7rvz3I2,(,@)(Qj,'Q}zۋ"CGL"3|coɡ/P5)?vZ+&mgV +}`>Zն6ݑѻBC˪xV-'գZK)C^;| Ri9"WvϵP"S8ׯ͉'n~,ځȌ87磼b]iPnGofu4ylI\OO=@ԥKDEk0!x'Kw gT .52hz&{eqVBQuC~k6"eJIhaߡ7*]uRkP0knI}P>vv#El %Jhy? _ ع+gI7[l[(E4O aEM|tÎx][QE4}k` 7^E>:ҍaa8:W4)]ad2˒M|FZa{w|AC bJRN$gB!=T/dTXSTKTM1 '4EcLqɀ6 :s Ҽ`rY@B"egʠe"axjrP#еep A :8vHM)_5dk]h? &Dm`P 熴T( " _G]qXw"btrߕc_ „n&/a,{*xR.:ÛH/g)5~nŹBBK?1{)ގa/VsLCR|, QVZ-9㳱Úba?`/ _n0ܚq ٭5m]cVb1(xd t bx@+5PuIci`$"9ť f)F}{5Ô(Oa(}殊L<9߱'ym&,AT<6gTB9R4(GrDyhϐ?3'1(AR Tj1ޣGb"agWR-TVWU1 .l~EgXՈ'ڿ&Ú1H{4V1E{&%ӵz-ϋU۩bB%\֡d.UPLy\P#>~!+CR^[R$9s jyFt.^=a@|2Sc:%@JOI7+͟ ~ =SǍ! qqM|uWy;)Z+,j>hC(/5=7EE J^T-FBd 껼p|Dž*hRZ,uh)t(hqޑ@2tcuSޔO䀻ߞ+?NKV8򋨍sU,DŽwi|&+ZOKjQfp.!&H\x܉xui(~!{?1J^3g}aw4xX z! ~UPV\ڎX:oYӭp\77[dN@LSd-mϩ+ heȼ@x3Zhug{ݰ(I{XGO98 ko(Rځ_W$ӵP+"d7ZNo}f*/j7B\ŞNU|W &`FlsWYx=:n5 V$i;-|nB |3{q2}=֊NW1`t7 _<$<%8t!1:gRB8(,=dV$5rri~ݜu56^"QEO;!dѳVAm\/Q`q{=BZJ`0N+Xqu2bI[A0Q˅K.<Vކuu[`Sd$GAOpUI_%!IWBCTުb==(v{ F؃&NHٷpްqlxA!?g!+J!:! hsM*Z_|"gE-td/1ߗo4cal3aӧ-2FT/yjmQA0:XrXTp$ƵF~"WxЖI޵'뱈E/ZrXyMm6w(#JA]dKnJW|:`3TH&LNäT*Mi2֛*lH.X.ku,M2ݐv]hI,3/g9)7z13~ pt J҅ZN[UO,?8on d% z彈{ﴰf%t">x?dmm ߘ=1p5Âf'9T`L/A Qۢ&~8ͦo"$!(8*t˃xѦa76/>njLDLF0)x^[0emPH_A!l Q{i*A&O bZF;^'Ox "lszMNr"h.!y|ባ0X=B툲9@T 6`.A/gkנZ*q/8Q*% I\:}Y2䖾 2;+:9]'sms$6]f7D!1c`S5 &IASs] Z"4]ם_Ͱ{oT|[9槝g?*d`@mW7!Zͧ8D;7tmUex@`' SmьhVE 5K$|[4, P>6ܪ;\+aqvעZmQ?=/>I?SrN%h :^s?uʦ\ˆWڣeV'k "ITu€Vewj[S\y>pӦ&&>ԏ6ʟ>}x.T%b8+i9_mߪtFv_Qq )b/LVx1 NzmBe$,hkRYl iN C;>#rCh&'Hб(()DB!l%QIz#jCЫu3ZOEF]#A`ˌp Ӯhbx_~ .aY|S:LJ4b%b%!.ZGu!-.>x'FM:M<pE UЋŨ]o4V腬]kKQp ƚu=g1ʾdp0}H0vÝC3UQh@>v>jY`7|̠ЌVC@˸]QT{;9Q*Eh (XҒ Of \ew V3)OaR\cL_^G >_rZ~` w~ERS'ka,_3-*֋0ʏBX5>RLd/YMrE@ORײh]9R/dv[yqh$BYz<0e]Ҕ@WG$4:G]rb^ðS,+OX. ]Vt8O5ࢁC7*3pψuyE99Ns@r,1hO}L.}r;ЖwYJ7q_R6+-*P4~*FTlh0ֲb,\8cw*oϳ2hxS%MM $\(e^ a  2. lqώ!vJ,/ZR-ZL.'?UvovQEo0LGMBQi!n#B㷘=NT845wք`ÁP9e⼿(OKEG\(N K4|զOm#ޣvapF!6P`z6+aA*{?ipE|#yZt$)ѷ2lp ƹ/nGM^|qa%+ܨ7 CWżTUe0nvoṋf_`&W ]sae! k|-A&)v:ADkTTxƹ#4aJH%IdHv_@o?Ӎ0gxk2XD$0S2 w]O%p6ɐcGBJ>V[^asNKt/fHPwtCf>%x.`S1as)]7عRؼa/zi$҃DzxݥCgoJO[׊?peͷ#$z4)$*(1Y3H| Ϲv>gq);]s_:9%d2$5ݲqJ% C}}gh(~3޹sc.V NA⪩;HPh Kg){kõ63[g:Fa)p? ĝvUwe>Ӵ_e7:pM;VE QHQtܼ1> Zfzr/V} jVBpȀpxݻ:Rص\^~EiP|"->RkSٲCa)Je,2ԦuJ/-(%폠H;^${:BY + U:\H-PLXLr +_?N㔭il`[U5&m~?WUmйu??Ύ>zuO$QU_jޯ6_#B=WĖNQ[ϳĀ#uLj~kFooV^`9u+d{U%[%^hN>I7BؿdQk˧52[OfC*CxIiNf(MnpQ&i}-&IR( ƣ~H@:{{z$G,2gbb"nA<'CF4 `-z;>uflq[4))Ob7D](;);>< bʎ%tc0ydD>d=~3"S/v6O%C4 E'=rd1*QvI|=LD?joJ"ęnOq8pN\b.z#ˏ8SR7V}&f n jzL24-F8nR$ 1OtҘUH$* f": 'g)92Ϣ^B114 ,$ԃo}>-m"g OA\g쇄ഭ GLL]ީ\ۆTvy)}%~Tqxs"-75 QbK7ɪ= mE[r5Qk/ywysPJu")zǫ5 /(2/Bczt9xE` '-&02y9`fI5~>ncۋ ȬZI>xDƎķ0ǚb,\o;37I . [[GLk1 D/3i-"3 N>[?7E&Wt/4bɜ2=q`|B #GZ{V| wT5`ZQө;c)8/a=ڔ6-ñ;#x'~<͌5iw&'s!; :[Pus"(4Z4 5E\3X:!* GkǤӕ$FVU|]sbERK?>n&@x-nqk1^~eS,' 9cW~6 :%=f`}<Yrg~lX&.'>h2N:{^/y-AA]wL6\4o%֎2Ü^&:<96GFf8̯wu*dym*%%V]j劖I nٚdAokO5lpqjj޽t^-@)ktD =84r jQƓJ Sq4yx:.sYt#&zW]q97|wD/IûMcR c߷iPB-PCv<c)̍ܳv ]vO V{$qO"M|'_rS{uJ+7/z1S>R(!;&CWG@ kNp1 (s7?nkgONAmh}#coLl3=7,P7Iii$y$`U9-=I2s3,H˔* k%CJH‹&&ѡ<@ZlBCe*kD)>Y5%s el!a苷uv<JDd|ED|?S4`{b+E i*jX,F SXşl$^ylo©Fٻe%͙#VM,ЁE_@Z_ QM@* Sx*["d~PeB:gI`PAh<`?|%_&ˇhq:YDdxBi2ڶIĄ,w,z=p FUm"cؽ|F~>3z.uL2TFˊ4Uw,6$Ȃ';J{ +[ ǀ 񪃴!8ٟhQ]GAQȍQFZ=Rȱ+cTa.K{^J=.C.#̗_-<-A 89)) bGɋPC?x=(UWhU<;w0%9NJ-pPAo 0}5H`^Sv.|0yolUo=m_!ͯAv^r:CZޚ_OVixPi+]Z`{ZDˇ=힐_}ROf' ؾ3nf)?$5-{b,4 ܤP"Lo QD$" ?vl%QAΏDdC33\%)!;bh s%p8@vj%dW0\5m[헤1y-*CJ<[mNIvónu(H4E]f0j$$(ʂ8-.'Ȍ1j\صzhXaktP eae>N4'*3*ew%d01'!,.V|3іO9 Eurd?FU{igaHJ2Z)|E_7cłm'HWjC NoJ>gp,ƿj{|*4b,:"Jl!x9s9/B㋸Ԓ'3k57Jg|I<Υ#Yf9l<$\ m!GWFg{w6XpЄms^Xl(̬m" ~q@9Ɯ|ZÌ Z\ָ$2;Ok.a6ǝ]#Z'\miib/Ȕ{%qmZsU&[{Yz2a 'J[O=NUu f6Oi/A ޲b̟ woL O\ 8?Wɶ`BvB~ۆ^nvotZvS?s\0ݍs#! CYmܠh逸wxjS^/hjݙ?vaMZs;٫*3GzOqʰ$'hO4@p ! НJ:pYa?fѠح ?;nPc"=hEL-[!8)Ί iF*R@wG)~cW))UrA449+Ҟ&&}-0tnj ~ I%="p`>MO?aYVЏi :aX=vqqH.-c Y&@#j 5R56pˏ̼m0Eް#WۃxID>=OQ4 S*rf\orgQ(`XWbY{ %.B )g{ j{i]GM$?*_ђ?]D_ hMKÏ>P%O-}(Srz$t SQPп]C\\ 6+Pp ;f 32I#KVcg'|" "1םE{JxA6dI PvVSVZ}Z}PtγLV5J~5DMz89@2tiшkf Đc$GڷrTPL aN]YRYk+MgPǺ4~j%EHd\}Ux9M˖ћ;q-ɶw D1w [ 1>FeMQ#+[-}9ȑwF 9ݸH!+rBN407 تN YrQ-ڡ:q'E5eS Bja2(x,8x\LFSM0H$EM i"T̛glj@ts;A "-yh X F"J`苨U1oX1aE^V5O1CC$BZ=)•5-n`zhϔ{D~9nѮ$bw :\fѳs Y^Uf;6`IhObZwKyt mh7EZCsH}ʹ=Vf& ^%$[5)b y4o=9'י MS6Y/:ݴj7no(V,4ہ5g͆4['SZ8%΢m>FE.x fGjJU a;0q2Wf[ СJxHo%tPo`4mwX:PV< cF,E蘓6SjLix@~+YعrbJ-S $7e魽g_?EKmaG^m $^ ycZfCunMR @/ ^~c9v]݉(ߞuo%X}Jyn>gawdC1 ej _Ž6ND738Q\“gIalkcqYF7!Or5smz8˦k%'k,DDv^fެнJg㽫Qv%-ٟ9Մ;z{B$Y)O)"UpeɳXrT![Ln`='~S`Xw,9;VgW:nq^<>a:(-h{M[3K%JLrwn _ˉLg:e qLM?D^i5HQ P1~.n6Q7`_{e[I\.^!qdK2 Ve>Aė,ז+'BAP^GԢ%/\#qQ"1boXTYkYX\zPO]WYƿ*tP4Q(_ۣ#Ƨ^J?SߎĿ~TiπTYrTql,1 qf !>G^7IF+7K5%iSR 'P7d~bAN`Z$R.dTږ&s(ơyyN4! .$7x<35Oy6CU\ѿ55%y9S.Ҟ^̞Z[d%1֠ߊUW/>2%(>yK83/B;B<2Ͻa)ZxD!|%l6c^ YVy>i042bS_AV/ !٬}9#-an\4֭H4lH 8Yz@Q/Ap&GXƎƴ.M)m鞢^Ȥ<,މ>Pn3?XVb/:(g<1U e(үDOܰ|),Z[&6k+:ݦE췝cq4ރTGϥBJ>*aAUt1sd o]5ZR}'ucEHBRu(E$ۜ2!Ky%Ll_3"KGN_NRoђUٿY+ U^[$bUHTBsVa~^w ca fpX(-YZURjD'8#Z6P.1+Y9_%O/}z8Z\ y톧W* '\4 PItZ">S񍄨gx=8`ώpnZ="W6MM9L>W9}M1Kp Ke[i~ЮanD+ݶu7WK}ߩjeYC'4=4cH}W6XpeZڜ}E+Bq+gf8$ _71VQ3lY֋uKm-qmq=RaŚtK緢 ~s(znIEw&$@x5Tq"%r33#D訮sc@^wֆ WvdV/ABX=/=[՝k2a. -xVi5:Pm'xb67孻jk; qޢ5 FUP Q6;˚!ٿ>gZ%+5os/22N4a9fBCV7} 9it@7g4"(seɦb3:2! WM݅ZQ9ھa7%ٜ* c/ݞ@ecg^liFlqW\WslG]4l{[$sX4&ka詵HK"YNk3!Lp&ㅷfꁑ?r@ZT;R|;SKh o/LfOΔ",Dۦߧ\5~Pnn $Zr]*߸ѬZ*%8d',c,:k+A I.oB2ɩQ&-(ZA^g8Z 21f[7dp:3%t%`mW)m u -y#?^t7B D4]7䋎L|~Z y Uyg|c-nwqiCMYbtwU Miǰ7,#L1Z}KxI~k^Z=ն4 0cS4YpNGU8^Qrcx2ckd.r$G%qH#r⦤T Df涀v<v@܉6i'I5RA_(<ʚ@|5$e+L6+[{O+?'Iʛ|OK8go{ ]y9Eֺ 7L[*`hI.K8T3, M_d>V[ s@Ia6l%N%X {,n@9 ֩Fs$AD5]~>{ί GrC9V #h_rn])d@b=f\}ݹZKD{N$M zrbd<*b&EZͷZ,H-sA00J~ {|q$7ZcYC_sR_6rpM6N0qL<[ukW@”Gd@b<ˊ>5ZkYVQf{-j@t!eB%!%dHՖΚ)bQ+ym8XH-@XT~ ۆRQ .8ߏSCYmSM#Շ'kONVtl)g ~zɟ=/;eV j|?Za|"'XDך=dLn~brA6&F[ 33̘ ~TLqkt sAg_y:;jJUb$?s]*e] ȇo([Ս8:uMϾ͡,3y6"\Nga^֜SXjJY]I$I Id*gѣ/np L[?2cͧSwmGXQU2x9|'_ݦj>2yB 3zj~KG t6@j!4 o}_"c.U5 HƇj!fQQ!>0CXdC0F)k3 E3aaA.kk#dhWՁ4qt&icc]xl {*ajsˤ!ۊOI{LjG!!BRRv4yﶨ;u~Ƣւ]Z8*+LnoHz=W^j^_AĮ_Q:Q00bc#>Vź'{H>ѝ :;VpLCJhCU#;"CgpR`DQa ̡n cX1u{*m>aΗ)j;5D/2<%"ibjÇOS'm4/}?!á]Vi-{yB;j0o qaɝUd}:qU7OANWt<(L;lbW),(#IgV-]D]:, &M{$s>̬و$aIs$ly1m`MeL2pH6Re>XoLm`U&e#,)14ٙwL0Au*mpZYi>nRa("H [cƀ9HO0K_*PQO/ IgWOR.ÍqU v|L4 ƥۍX\9Ĭp2LIY&Iqw)=0Nq (1S _ ּG1ĝꏳ{?P6*2L\UmUheó˵YI&7DXb6:wOseU&.RVwuo<\}OB;wꈵV+ǚqΐRv)Ψzsw $>j O < _? D,Ov*Ex\R#EBaVYԝ.]U!0#_ :L6HI){grF.|Pm]pZlA͠N>P] ^t ^:ˇ脁)T8?* zlFNbm /i~ULj6nvAuvGtd\X˰G$yҼRyE![Ja$/M)zhqؘ_D9S+ԀI k.H˚J&",B̺1F̭%;P ¾RUrxŗ)D֥w = $$fdik0SiRjˈrjje}ֽV_cGGzl[BZ=?8#ceR*xiu,&S/rh 9ka1`|𒽊bh4n+}@X31 . *+XX(g8VԞ Χ]qvq%7KсƯXK8!TјT#DbWQNkjT7EchsnR42esJcwI \j5|#bUc I $^B~x3-zX[HHIaK&0CxH闌ϖLP={ [ HJ;@RݜwKD k'8̺vt% CÞEs#m’B@uoQCݨ6%x__,c؎i0X]E0|$4?ĥ#`ڊR'U$ _T;ii !pCSugb/cqѬW) TPo΂6~_K8GĽ XJcàam%V-J@]zДj^"mwi" ?))LסsP:Ԇ[du&kㅆzM<$rNQQ1 s`ŝM_Nlu! {XJnsxñBtKR(@7hav Ͷ-=X<%ta{t@m_Vr[ rj7RJag`7PHLLQ A;6ڠ@SJcXKaX/4gJaZb]Nek!a1,0k/yC^QbeH^<:bS)+=|e Z.3ĬmrŧyQ Un_7ݍ".K'hz}VaVrE 0k3O_/EY/ȟm)ч#}aVK@o1-kQ*"vHjlF=I D(12Xa:F&)9")~̿ O 3[F1? ~8JAMh)#]V`e3@s%0]-MBF2K2D[ĎTR<)JR=\)v@fX~bOXlOY4P?2Q .@+&T $2_]i(qkg_tH0R .QiZ9sIԭASbVňFpYއaMCUlHiQ~FtX$RZ7%ns>KWUkx2< y/%IÁaCjY d忸#UGmcK׶F\%-X'Exzp?՜_`5 _dL7;yYjI6 Ȗ؃i!M@AӖ2 9ZHg>{zJM YjPPpF!|D#Yɳ1כ@W՗AwN|.QlB_tӀ00*xQ(iE !,P~z|P Z1m^X)O +0VXls2?+CVODuIR: )uýИB¥ jpsaWRo)l 4n+t8n8שYwE8-mH%þ7/x#*pk0f`vUDmKVcBa{o8,F4,̠XJ|WrB @#6f"JuC,~`߮Xz# I\mS:*,hѯq"Fcfl49vdzI!GE۬Tc9_5qc䘂s,-C32y#ш~:Q-h}SB1%QO25eTX^HVTP: DB]w6e5:p[_PlF]A`×2Jj zd_8A8HCqi?qf^ ݕ[54 g]1/ % YmzMkRSR](,ڐgqeyz}_`Hնji<XYRA=\QX>yHP_@,(c1]$g09}#ڟ]޾A:=u9 )0=;CcS.. T+[ϱV?tf/͗)( e))&R182ikijpx؄rX@. Uν_(&t7g-(Q? İ#pn.DN6nݩxaY2FDvCJ$%pmrS#27EВ1@abߖQf:+CfЂҵH?PGt!ӫJ5_Gh-SpD;#0gj?H \Nx'>jś1*#9'>sYZQT'Vx{Ejn D%#bB<γ~WQF99\m&d9'z[>Ey*t@{[ .=By[һ:4hsp}UmrQř;f4@7_SB$pW%lU ]8\}BzXl=!,d.-Xn/le?!d 7OoYLkmZ ZZvTӜ"Z8#,E 7&SBLVg>-F]+yH)\'ybN+^ո4W.>gBa_ qd"tC]QG^ɰ70swÖߘ V:id <(C000> n4} _쳊u Ór޲ LbHWu4V:xg* EcXuNt5f/oBEB7m-l'9NĂ:@Pr&r)Q;(NV*n4ą]*/ϠKܽVMSmme5qg|4BzK5>E;Ϭr,2D͓͢y>oǧyvtznk?\T@Zs)\S3-ԍH7C|B*2]g"RIwSpL ۥxRק2HΌ5 y FvAZ nE9eWfў|^SiuXOVvE?^€Fϛ'ӶS7渓Jk)>0mtrN k.NZɃ\PZ~"R}/~C JT[6^Dm130' CNz6IHn'@D:{j<$q:Ct+W'sLse/gqۗb^8*K[pRDOX}}s?<uxޫK)a=o9t-/3RZ Ѝ֔6KE{eڭ㤉H9)iND)a5tĈƫ"^[<@N_k3JޘX¬y0po4/r,9=Q fux_DqZ~L,WW /򀀞^Գ2()7>nvŻWWCEEKO|[nC7eƛ˺nbergf:Lft(_t(lоhGPT0E+X$`+nI4jrJ1vQ] SŴܚ53ٮdu|hb˔zɐ NL!Is̼iƐcE^-A㿀Y< w:*<!#*l3#x|(H@72)_DNpK>v_@>-D. Wuߙ3΂a(уvWB4:^$=U2"bV,}P;ʥ[R;3Y\F;V7WED#ů]vQ}NC rmB,\J(7`Co5+uWmkߑ1P_0)i`rI Nc3 Lô K[)ΎanfzSi2J( 1.aNPa#Fnh:QPZ9`eD L9\sY0)ݤ:I\ AdkZ}..OFpC M9ņ (|=o;hQ>( ; AhzqTH5"W>\0奄w$ 2Lyd=s39=^SKsq_ςHL#|ǣ`$_E"}0/i*9}(b (õO+lZ)}堙4l IpB[mK[S8:3nφ˱? kֵNlDu{~ѱ] FK8xNVEȑ!Nn̯R-uIbb3p ?A '"k>nJlOݸuWUu̜CF=#-J%w^.|'8Y 81_r$4ԷߒCD9pYG%AĥumuMKmmi[3HAkԢBUkijol1=9ȏWϧdr2j5M4U>AC BԫBhjYfux8kT"eEQyH.?W7?Xb=r  z̒Z>eUNDCcn3!7{ıjKgcM'~9>.$ile(-F;h~B=tE'GƋOpliw$V 'd1]XcP0v]b Q1UoTs6c$=DYQM/^o&>&X(j פZ$[h[Y.8Mi%9'JQ['~KƾEI >ӆ*fc 6_Һ%B5tSɁ,@<u"4u69y?7/.=: j\i6K8mR?(5`=in:[$ǿRġGN) Fs)~<+{lI$i0j( cl8xTrfAKL Pq<6bP̭ X1 3[A7dQfxfClϪ>/iHep^X@bȑx;'xa@Ş >qh&Zg(0Kpt?XwR<-M]j~v6ܱZ$OAV9&>_H;5}82v2<P^RM'uEcUQ( )|A3ks dvsj/ΈptAޭGg$و7c `x^gF5[(pUT^೜ڎ+\'KP?1^XqW,q}χ e֗P"å_PodI1o$ptҋ6͐N. +K/TPP*Ud _kbp9r"r82r3L w>Q졢uq'[ ٘nMB̹- >>s~̦ A'D8}jx'Ko m$c_C774tS^Ҏ1SloGe"^BLu;ٕ nt*Z| U3`jЬ~ʝcǜ4mZȑJQC]UM-ƚ/ M1"KWr= 4<+7ʖeyPI3۳Ӎ?M:3v]'PP>TFpP\Gw ͝lx1z^*ʙQ9\#wL:U"!"u؊CZ K}( ۉUq}dJ +_Vهz0xrȵ:ҁ9AE1`t7#@qK1Pjc>Z9gbՔ(P-RpK=UX^u(<.J*h JEnQ9HG*ek5 hhv =Ɠ^xJzZ^%\m`A9-R XcVaV:,[Y Fp{AȮOJ9鑗daO۪o~]PXᣯ'ۭhNң ?71V![<2>1eMHPŰב_qSaŭρNp*12)D4sfI%{ON+?a?Ci׼};PN b&WI$,br˺ R]+Q׶c,ˌ5IE&o6:rT1*nB6 AQ3j2N?|6G8/O@Vun:EYQ\3wjc07LEpuPq;.=zsNV s/!J+j(y8$+ntU?Xk4wB  u q#~TRp+xKDw4C ~6qES-7-)笂 nm,Z[Ҹ>T n?UkRI4j\8ĿIUt-4tsQUoUHgl|,ҧ[Vŧ<Nd !8P{D*o_m *1[as hw.m"^hU-sˉm?3Q6%X#:?=Qn 7lAe3XHtȎbH] c!ҺWYSD;-sP*2L CYyqN dzj49U&