mod_session-2.4.37-64.module+el8.10.0+1717+030a9fed > 6 6_6 3!pQp)Tξ7]mtZ`e` ]mtZ`U,b4iߘMk_YGM:GDG &6Hd;`*Je]302 ~{xݭv (4nTxS+Cd)MburtlJ$fk0+zHVIISvMz A{-UUn/4P& •,Ms(]\&`&+nC."12?`,'#>>NDv:zр ~vnacL/ǦUHz`̲w A8`uUf2XbMKݠ.6ac9759375231718ddb9cf588842458b34c9f252640b11ed2bba769b3bd9315ddf28cfe86bf7be97f701016f459c8c38a42ac9583!pQp)Tξ7]mtZ`e` ]mtZ`4 W6 R 2?5AB'#RN3xu/o:}{Wi-[b+c]Z_#n0wYi2:>qV&umgqpLh_@jtvxAelw;`ی+=ABM%zGg+؄pňc&NsW`tl8w˴풂KkIV= 4*x߭2[S֥vL3f:#}aI8aͮ:fo_ KZIo,؆O9x 81_@Pno)F8f}LT81ΑCdq$4U>p=?d 6 c!'/ Mh             4 p  D k (89 :8G H I XY\| ] ^bdeflt u vLw< xl y`dCmod_session2.4.3764.module+el8.10.0+1717+030a9fedSession interface for the Apache HTTP ServerThe mod_session module and associated backends provide an abstract interface for storing and accessing per-user session data.eXord1-prod-a64build004.svc.aws.rockylinux.orgL_KojiRockyASL 2.0infrastructure@rockylinux.orgSystem Environment/Daemonshttps://httpd.apache.org/linuxaarch6494926HAeX@eXeXeXeXeXeXeXeXeXeXeX51df0ceeb7dae9922817f4af0554f83fe01d6268025ee08260aeed69be3953d193f0322f8a516862d74e6fefd51b989aa74bd56fb25ae523d9d3bf6c27f89ad2bb9c7cb204e21111740c56ff46a41dfc355638201bba31773cb1fde308aa261de784c2502c24ec4d63b397566c0e2f1db16c4ab783448d8b49863389981ee9b7bf79d822c07ed49e278564541b7d70cee7781fb2bd481e5ae9044c3698e130bce5a8cf155d6036b0f1100b53688a818deafb0c10d58404ef4fe9a64c7ed47d9d../../../../usr/lib64/httpd/modules/mod_session_cookie.so../../../../usr/lib64/httpd/modules/mod_auth_form.so../../../../usr/lib64/httpd/modules/mod_session_crypto.so../../../../usr/lib64/httpd/modules/mod_session.so../../../../usr/lib64/httpd/modules/mod_session_dbd.sorootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.37-64.module+el8.10.0+1717+030a9fed.src.rpmconfig(mod_session)mod_sessionmod_session(aarch-64)@@@@@    @config(mod_session)httpdhttpd-mmnld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libpthread.so.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)2.4.37-64.module+el8.10.0+1717+030a9fed0:2.4.37-64.module+el8.10.0+1717+030a9fed20120211aarch643.0.4-14.6.0-14.0-15.2-14.14.3eN@e̫@d d\@d!d-@d-@d-@doMdJcdcck@cck@c(Ybޅbb2@b8haNaaaawaU`:@`f@`@`@_м@__@_:_^b^(@^@^]]@]߶]҇]@]g@]-@]]@\7\Z@\Yz\T4\\U@[@[[[@[H[u[[[ā@[ā@[ā@[@[@["@[YZ@Z@Z@Yp@Y{Y@Y@YéYéYéYéYX@YYYYx@Ym@YlYf@Ycl@YV=@YGY5GY@YXۡXP@X @X@XwoX[@X[@XEVX)@X@WW~D@W~D@W~D@WKW@VVVVn@VhV.VCV@UK@U@Ua@UF@UQUQTp@T=@T@T @TT_Tk@Tk@S0S@SGS@SS/SS@SSS"@SS5d@S4S&Sz@Sz@S(S@R@RRG@R@R@RsRrF@Ri Re@RVQ@QQޞ@QQo@Q@QQV@Q@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Joe Orton - 2.4.37-64Joe Orton - 2.4.37-63Johnny Hughes - 2.4.37-62Luboš Uhliarik - 2.4.37-62Tomas Korbar - 2.4.37-61Tomas Korbar - 2.4.37-60Tomas Korbar - 2.4.37-59Tomas Korbar - 2.4.37-58Luboš Uhliarik - 2.4.37-57Luboš Uhliarik - 2.4.37-56.5Luboš Uhliarik - 2.4.37-56.4Luboš Uhliarik - 2.4.37-56Luboš Uhliarik - 2.4.37-55Luboš Uhliarik - 2.4.37-54Luboš Uhliarik - 2.4.37-53Tomas Korbar - 2.4.37-52Luboš Uhliarik - 2.4.37-51Luboš Uhliarik - 2.4.37-50Luboš Uhliarik - 2.4.37-49Luboš Uhliarik - 2.4.37-48Luboš Uhliarik - 2.4.37-47Luboš Uhliarik - 2.4.37-46Luboš Uhliarik - 2.4.37-45Luboš Uhliarik - 2.4.37-44Luboš Uhliarik - 2.4.37-43Luboš Uhliarik - 2.4.37-42Luboš Uhliarik - 2.4.37-41Lubos Uhliarik - 2.4.37-40Artem Egorenkov - 2.4.37-39Lubos Uhliarik - 2.4.37-38Lubos Uhliarik - 2.4.37-37Lubos Uhliarik - 2.4.37-36Lubos Uhliarik - 2.4.37-35Lubos Uhliarik - 2.4.37-33Lubos Uhliarik - 2.4.37-31Joe Orton - 2.4.37-30Lubos Uhliarik - 2.4.37-29Lubos Uhliarik - 2.4.37-28Lubos Uhliarik - 2.4.37-27Lubos Uhliarik - 2.4.37-21Lubos Uhliarik - 2.4.37-20Joe Orton - 2.4.37-19Lubos Uhliarik - 2.4.37-18Lubos Uhliarik - 2.4.37-17Lubos Uhliarik - 2.4.37-16Lubos Uhliarik - 2.4.37-15Lubos Uhliarik - 2.4.37-14Lubos Uhliarik - 2.4.37-13Lubos Uhliarik - 2.4.37-11Lubos Uhliarik - 2.4.37-10Lubos Uhliarik - 2.4.37-9Joe Orton - 2.4.37-8Joe Orton - 2.4.37-7Joe Orton - 2.4.37-6Luboš Uhliarik - 2.4.37-5Luboš Uhliarik - 2.4.37-4Luboš Uhliarik - 2.4.37-3Joe Orton - 2.4.37-2Lubos Uhliarik - 2.4.37-1Luboš Uhliarik - 2.4.35-10Lubos Uhliarik - 2.4.35-9Joe Orton - 2.4.35-7Joe Orton - 2.4.35-5Lubos Uhliarik - 2.4.35-4Lubos Uhliarik - 2.4.35-3Lubos Uhliarik - 2.4.35-2Lubos Uhliarik - 2.4.35-1Lubos Uhliarik - 2.4.33-4Joe Orton - 2.4.33-3Luboš Uhliarik - 2.4.33-2Joe Orton - 2.4.28-8Luboš Uhliarik - 2.4.28-2Luboš Uhliarik - 2.4.28-1Joe Orton - 2.4.27-14Joe Orton - 2.4.27-13Joe Orton - 2.4.27-12Stephen Gallagher - 2.4.27-11Jeroen van Meeuwen - 2.4.27-10Joe Orton - 2.4.27-9Jeroen van Meeuwen - 2.4.27-8Stephen Gallagher - 2.4.27-8.1Joe Orton - 2.4.27-8.1Joe Orton - 2.4.27-7Fedora Release Engineering - 2.4.27-6Fedora Release Engineering - 2.4.27-5Joe Orton - 2.4.27-4Joe Orton - 2.4.27-3Luboš Uhliarik - 2.4.27-2Luboš Uhliarik - 2.4.27-1Joe Orton - 2.4.26-2Luboš Uhliarik - 2.4.26-1Joe Orton - 2.4.25-10Joe Orton - 2.4.25-9Joe Orton - 2.4.25-8Luboš Uhliarik - 2.4.25-7Luboš Uhliarik - 2.4.25-6Joe Orton - 2.4.25-5Fedora Release Engineering - 2.4.25-4Joe Orton - 2.4.25-3Luboš Uhliarik - 2.4.25-2Luboš Uhliarik - 2.4.25-1Luboš Uhliarik - 2.4.23-7Joe Orton - 2.4.23-6Joe Orton - 2.4.23-5Joe Orton - 2.4.23-4Joe Orton - 2.4.23-3Joe Orton - 2.4.23-2Joe Orton - 2.4.23-1Joe Orton - 2.4.18-6Joe Orton - 2.4.18-5Joe Orton - 2.4.18-4Joe Orton - 2.4.18-3Fedora Release Engineering - 2.4.18-2Jan Kaluza - 2.4.18-1Joe Orton - 2.4.17-4Jan Kaluza - 2.4.17-3Jan Kaluza - 2.4.17-2Joe Orton - 2.4.17-1Jan Kaluza - 2.4.12-4Joe Orton - 2.4.12-3Fedora Release Engineering - 2.4.12-2Jan Kaluza - 2.4.12-1Jan Kaluza - 2.4.10-17Jan Kaluza - 2.4.10-16Jan Kaluza - 2.4.10-15Joe Orton - 2.4.10-14Jan Kaluza - 2.4.10-13Jan Kaluza - 2.4.10-12Jan Kaluza - 2.4.10-11Jan Kaluza - 2.4.10-10Joe Orton - 2.4.10-9Joe Orton - 2.4.10-8Jan Kaluza - 2.4.10-7Joe Orton - 2.4.10-6Fedora Release Engineering - 2.4.10-5Jan Kaluza - 2.4.10-4Jan Kaluza - 2.4.10-3Joe Orton - 2.4.10-2Joe Orton - 2.4.10-1Jan Kaluza - 2.4.9-8Jan Kaluza - 2.4.9-7Jan Kaluza - 2.4.9-6Joe Orton - 2.4.9-5Fedora Release Engineering - 2.4.9-4Jan Kaluza - 2.4.9-3Jan Kaluza - 2.4.9-2Jan Kaluza - 2.4.9-1Joe Orton - 2.4.7-6Stephen Gallagher 2.4.7-5Jan Kaluza - 2.4.7-4Jan Kaluza - 2.4.7-3Joe Orton - 2.4.7-2Joe Orton - 2.4.7-1Joe Orton - 2.4.6-10Joe Orton - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Joe Orton - 2.4.6-6Jan kaluza - 2.4.6-5Joe Orton - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-7Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Resolves: RHEL-14448 - httpd: mod_macro: out-of-bounds read vulnerability (CVE-2023-31122)- mod_xml2enc: fix media type handling Resolves: RHEL-14321- change for CentOS Stream Branding- Resolves: #2221083 - Apache Bug 57087: mod_proxy_fcgi doesn't send cgi CONTENT_LENGTH variable when the client request used Transfer-Encoding:chunked- Fix issue found by covscan - Related: #2159603- Another rebuild because of mistake in workflow - Related: #2159603- Rebuild because of mistake in workflow - Related: #2159603- Resolves: #2159603 - mod_status lists BusyWorkers IdleWorkers keys twice- Resolves: #2176723 - CVE-2023-27522 httpd:2.4/httpd: mod_proxy_uwsgi HTTP response splitting- Resolves: #2190133 - mod_rewrite regression with CVE-2023-25690- Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy- Resolves: #2162499 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2162485 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2162509 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2155961 - prevent sscg creating /dhparams.pem- Resolves: #2095650 - Dependency from mod_http2 on httpd broken- Resolves: #2050888 - httpd with SSL fails to start unless hostname command was installed- Add the SNI support in mod_proxy_wstunnel module for Apache httpd - Resolves: rhbz#2017543- Resolves: #2097015 - CVE-2022-28614 httpd:2.4/httpd: out-of-bounds read via ap_rwrite() - Resolves: #2097031 - CVE-2022-28615 httpd:2.4/httpd: out-of-bounds read in ap_strcmp_match() - Resolves: #2097458 - CVE-2022-30522 httpd:2.4/httpd: mod_sed: DoS vulnerability - Resolves: #2097480 - CVE-2022-30556 httpd:2.4/httpd: mod_lua: Information disclosure with websockets - Resolves: #2098247 - CVE-2022-31813 httpd:2.4/httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism - Resolves: #2097451 - CVE-2022-29404 httpd:2.4/httpd: mod_lua: DoS in r:parsebody - Resolves: #2096997 - CVE-2022-26377 httpd:2.4/httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2065237 - CVE-2022-22719 httpd:2.4/httpd: mod_lua: Use of uninitialized value of in r:parsebody - Resolves: #2065267 - CVE-2022-22721 httpd:2.4/httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody - Resolves: #2065324 - CVE-2022-23943 httpd:2.4/httpd: mod_sed: Read/write beyond bounds- Resolves: #2090848 - CVE-2020-13950 httpd:2.4/httpd: mod_proxy NULL pointer dereference- Resolves: #2065249 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations- Resolves: #2035063 - CVE-2021-44790 httpd:2.4/httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2007199 - CVE-2021-36160 httpd:2.4/httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path - Resolves: #1972491 - CVE-2021-33193 httpd:2.4/mod_http2: Request splitting via HTTP/2 method injection and mod_proxy- Resolves: #1968278 - CVE-2020-35452 httpd:2.4/httpd: Single zero byte stack overflow in mod_auth_digest - Resolves: #2001046 - Apache httpd OOME with mod_dav in RHEL 8 - Resolves: #2005128 (CVE-2021-34798) - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #1984828 - mod_proxy_hcheck piles up health checks leading to high memory consumption - Resolves: #2005119 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input- Related: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path- Resolves: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path - Resolves: #1969229 - CVE-2021-26691 httpd:2.4/httpd: Heap overflow in mod_session- Resolves: #1680111 - httpd sends reply to HTTPS GET using two TLS records - Resolves: #1905613 - mod_ssl does not like valid certificate chain - Resolves: #1935742 - [RFE] backport samesite/httponly/secure flags for usertrack - Resolves: #1972500 - CVE-2021-30641 httpd:2.4/httpd: MergeSlashes regression - Resolves: #1968307 - CVE-2021-26690 httpd:2.4/httpd: mod_session NULL pointer dereference in parser - Resolves: #1934741 - Apache trademark update - new logo- Resolves: #1952557 - mod_proxy_wstunnel.html is a malformed XML - Resolves: #1937334 - SSLProtocol with based virtual hosts- prevent htcacheclean from while break when first file processed- Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache- Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile to be able to handle certs without matching private key- Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel - Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()- Resolves: #1651376 - centralizing default index.html for httpd- Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool concurrency issues - Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1680118 - unorderly connection close when client attempts renegotiation- Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does not respect expiry time - Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer overflow - Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package - Resolves: #1869576 - httpd : mod_proxy should allow to specify Proxy-Authorization in ProxyRemote directive - Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1891829 - mod_proxy_hcheck Doesn't perform checks when in a balancer- Resolves: #1209162 - support logging to journald from CustomLog- Resolves: #1823263 (CVE-2020-1934) - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Related: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work- Resolves: #1823259 - CVE-2020-1927 httpd:2.4/httpd: mod_rewrite configurations vulnerable to open redirect - Resolves: #1747284 - CVE-2019-10098 httpd:2.4/httpd: mod_rewrite potential open redirect - Resolves: #1747281 - CVE-2019-10092 httpd:2.4/httpd: limited cross-site scripting in mod_proxy error page - Resolves: #1747291 - CVE-2019-10097 httpd:2.4/httpd: null-pointer dereference in mod_remoteip - Resolves: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work - Resolves: #1794728 - Backport of SessionExpiryUpdateInterval directive- Resolves: #1775158 - POST request with TLS 1.3 PHA client auth fails: Re-negotiation handshake failed: Client certificate missing- Resolves: #1704317 - Add support for SSLKEYLOGFILE- mod_cgid: enable fd passing (#1633224)- Resolves: #1744121 - Unexpected OCSP in proxy SSL connection - Resolves: #1725031 - htpasswd: support SHA-x passwords for FIPS compatibility - Resolves: #1633224 - mod_cgid logging issues- remove bundled mod_md module - Related: #1747898 - add mod_md package- Resolves: #1744999 - CVE-2019-9511 httpd:2.4/mod_http2: HTTP/2: large amount of data request leads to denial of service - Resolves: #1745086 - CVE-2019-9516 httpd:2.4/mod_http2: HTTP/2: 0-length headers leads to denial of service - Resolves: #1745154 - CVE-2019-9517 httpd:2.4/mod_http2: HTTP/2: request for large response leads to denial of service- Resolves: #1730721 - absolute path used for default state and runtime dir by default- Resolves: #1724549 - httpd response contains garbage in Content-Type header- Resolves: #1696142 - CVE-2019-0217 httpd:2.4/httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696097 - CVE-2019-0220 httpd:2.4/httpd: URL normalization inconsistency - Resolves: #1669221 - `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang - Resolves: #1673022 - httpd can not be started with mod_md enabled- Resolves: #1695432 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: #1696091 - CVE-2019-0215 httpd:2.4/httpd: mod_ssl: access control bypass when using per-location client certification authentication- Resolves: #1672977 - state-dir corruption on reload- Resolves: #1670716 - Coredump when starting in FIPS mode- add security fix for CVE-2019-0190 (#1671282)- add DefaultStateDir/ap_state_dir_relative() (#1653009) - mod_dav_fs: use state dir for default DAVLockDB - mod_md: use state dir for default MDStoreDir- add httpd.conf(5) (#1611361)- Resolves: #1652966 - Missing RELEASE in http header- Resolves: #1641951 - No Documentation= line in htcacheclean.service files- Resolves: #1643713 - TLS connection allowed while all protocols are forbidden- mod_ssl: fix off-by-one causing crashes in CGI children (#1649428)- Resolves: #1644625 - httpd rebase to 2.4.37- Related: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- mod_ssl: allow sending multiple CA names which differ only in case- mod_ssl: drop SSLRandomSeed from default config (#1638730) - mod_ssl: follow OpenSSL protocol defaults if SSLProtocol is not configured (Rob Crittenden, #1638738)- mod_ssl: don't require SSLCryptoDevice to be set for PKCS#11 cert- Resolves: #1635681 - sync with Fedora 28/29 httpd - comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in default configuration; now follow OpenSSL system default (#1468322) - dropped NPN support - mod_md: change hard-coded default MdStoreDir to state/md (#1563846) - don't block on service try-restart in posttrans scriptlet - build and load mod_brotli - mod_systemd: show bound ports in status and log to journal at startup - updated httpd.service.xml man page - tweak wording in privkey passphrase prompt - drop sslmultiproxy patch - apachectl: don't read /etc/sysconfig/httpd - drop irrelevant Obsoletes for devel subpackage - move instantiated httpd@.service to main httpd package- Resolves: #1602548 - various covscan fixes- apache httpd can work with TLS 1.3 (#1617997) - drop SSLv3 support patch- new version 2.4.35 (#1632754)- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All" configuration (#1622630)- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki, #1527084)- new version 2.4.33 - add mod_md subpackage; load mod_proxy_uwsgi by default- remove %ghosted /etc/sysconfig/httpd (#1572676)- Resolves: #1512563 - httpd: update welcome page branding - Resolves: #1511123 - RFE: httpd use event MPM by default - Resolves: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- new version 2.4.28- add notes on enabling httpd_graceful_shutdown boolean for prefork- drop Requires(post) for mod_ssl- better error handling in httpd-ssl-gencerts (#1494556)- Require sscg 2.2.0 for creating service and CA certificates together- Address CVE-2017-9798 by applying patch from upstream (#1490344)- use sscg defaults; append CA cert to generated cert - document httpd-init.service in httpd-init.service(8)- Address CVE-2017-9798 by applying patch from upstream (#1490344)- Generate SSL certificates on service start, not %posttrans- move httpd.service.d, httpd.socket.d dirs to -filesystem- add new content-length filter (upstream PR 61222)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- update mod_systemd (r1802251)- switch to event by default for Fedora 27 and later (#1471708)- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig- new version 2.4.27- mod_proxy_fcgi: fix further regressions (PR 61202)- new version 2.4.26- move unit man pages to section 8, add as Documentation= in units- add httpd.service(5) and httpd.socket(5) man pages- require mod_http2, now packaged separately- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Resolves: #1434916 - httpd.service: Failed with result timeout- link only httpd, not support/* against -lselinux -lsystemd- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- mod_watchdog: restrict thread lifetime (#1410883)- Resolves: #1358875 - require nghttp2 >= 1.5.0- new version 2.4.25- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of LimitRequestFields directive in mod_http2- fix build with OpenSSL 1.1 (#1392900) - fix typos in ssl.conf (josef randinger, #1379407)- no longer package /etc/sysconfig/httpd - synch ssl.conf with upstream- add security fix for CVE-2016-5387- load mod_watchdog by default (#1353582)- restore build of mod_proxy_fdpass (#1325883) - improve check tests to catch configured-but-not-built modules- update to 2.4.23 (#1325883, #1353203) - load mod_proxy_hcheck - recommend use of "systemctl edit" in httpd.service- have "apachectl graceful" start httpd if not running, per man page- use redirects for lang-specific /manual/ URLs- fix welcome page HTML validity (Ville Skyttä)- remove httpd pre script (duplicate of httpd-filesystem's) - in httpd-filesystem pre script, create group/user iff non-existent- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- update to new version 2.4.18- re-enable mod_asis due to popular demand (#1284315)- fix crash when using -X argument (#1272234)- rebase socket activation patch to 2.4.17- update to 2.4.17 (#1271224) - build, load mod_http2 - don't build mod_asis, mod_file_cache - load mod_cache_socache, mod_proxy_wstunnel by default - check every built mod_* is configured - synch ssl.conf with upstream; disable SSLv3 by default- update to 2.4.16- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- update to 2.4.12- fix compilation with lua-5.3- remove filter for auto-provides of httpd modules, it is not needed since F20- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583) - mod_lua: fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments (CVE-2014-8109)- require apr-util 1.5.x- use NoDelay and DeferAcceptSec in httpd.socket- increase suexec minimum acceptable uid/gid to 1000 (#1136391)- fix hostname requirement and conflict with openssl-libs- use KillMode=mixed in httpd.service (#1135122)- set vstring based on /etc/os-release (Pat Riehecky, #1114539)- pull in httpd-filesystem as Requires(pre) (#1128328) - fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348) - require hostname for mod_ssl post script (#1135118)- mod_systemd: updated to the latest version - use -lsystemd instead of -lsystemd-daemon (#1125084) - fix possible crash in SIGINT handling (#958934)- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119) - switch default ssl.conf to use PROFILE=SYSTEM (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- add /usr/bin/useradd dependency to -filesystem requires- fix creating apache user in pre script (#1128328)- enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf- update to 2.4.10 - expand variables in docdir example configs- add support for systemd socket activation (#1111648)- remove conf.modules.d from httpd-filesystem subpackage (#1081453)- add httpd-filesystem subpackage (#1081453)- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- add support for SetHandler + proxy (#1078970)- move macros from /etc/rpm to macros.d (#1074277) - remove unused patches- update to 2.4.9- use 2048-bit RSA key with SHA-256 signature in dummy certificate- Create drop directory for systemd snippets- remove provides of old MMN, because it contained double-dash (#1068851)- fix graceful restart using legacy actions- conflict with pre-1.5.0 APR - fix sslsninotreq patch- update to 2.4.7 (#1034071)- switch to requiring system-logos-httpd (#1031288)- change mmnisa to drop "-" altogether- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide for transition- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)- systemd: send SIGWINCH signal without httpd -k in ExecStop- load mod_macro by default (#998452) - add README to conf.modules.d - mod_proxy_http: add possible fix for threading issues (r1534321) - core: add fix for truncated output with CGI scripts (r1530793)- require fedora-logos-httpd (#1009162)- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- ignore /etc/sysconfig/httpd and document systemd way of setting env variables in this file- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311) 2.4.37-64.module+el8.10.0+1717+030a9fed2.4.37-64.module+el8.10.0+1717+030a9fed2.4.37-64.module+el8.10.0+1717+030a9fed01-session.conf.build-id68ca7bd1323bfc621f545e1fda0a745f3a15e977fe4032c6ac03acfadd46fe264c2b4dcccb07ca12f3cc805c15e8aad7b43282b2aa4b53cd82dbea3783ccd20e10c83db8bc6fd09a4ed690bc76d2eefb0bf1356de10179aa5621f1957af0f8mod_auth_form.somod_session.somod_session_cookie.somod_session_crypto.somod_session_dbd.so/etc/httpd/conf.modules.d//usr/lib//usr/lib/.build-id/54//usr/lib/.build-id/71//usr/lib/.build-id/9c//usr/lib/.build-id/9e//usr/lib/.build-id/a8//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7177fe4032c6ac03acfadd46fe264c2b4dcccb07, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9edbea3783ccd20e10c83db8bc6fd09a4ed690bc, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5468ca7bd1323bfc621f545e1fda0a745f3a15e9, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9cca12f3cc805c15e8aad7b43282b2aa4b53cd82, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=a876d2eefb0bf1356de10179aa5621f1957af0f8, stripped RRRRRR RRRRRR RRRRRR RRRRRR RRRRRR utf-8e2845e66dbfe25f67f392fa0b6d4e763249a87e75427f6db10d159466006a8e8httpd:2.4:8100020240214151717:e155f54d?07zXZ !#,Uy] b2u Q{LXH9uMQ+G?7yP^5F?2}7GKn:;bA!ѪO!'>> pҚ\kk{\C?d)N yU'B -'縓hK?NUKQS9SZ gEӫX^Lg!jےY·p[A2RUm/40l|x iHrjE6ǶE2*s$bm`Jm.]xetWe|f5(X,k hE%sHh:^E =@Gu_b tzG'`sXu?_?p&$ю-x0~/+Џ䕣`ҟZh.dI' g 8\#(L V Xu"R[O곃꡸5{ݐҐ>G4Ic#d,[Z197`23=UnvB]F}CZX'tb- -/YFL5RAE\)`;so چYiGA0ҵaz{.ll2e2jTаCL+yd0-r۞iqGKᄧ]@'J!W{{Ky+1!g)[W8$7>UT: d yc|iӖKm z48Thf@dXF'}f uB|$j{C-cpyq㳝&sXOX{N٥rt{s^`6]s"X͏ [d/zaZQ!$h{Q:n*vH{6T0g1!4!ѝ 8c/mLsU8>9htсuʭ+\Cy2db=-I^Ԅ>A } #X08ݯkXm5M&nb[z kt7gKw8a,"tXKUC,4̓HVcȐ" h :o2p[S_଱ 8)]?"EGnz'.(ٽ7[ rxOw|Jt?b{(Д#"Η̌r_w}o_Ze?.M%Tm·]',=6%ե?ޫ)T!ܬ;xk4P͏B#q@W M#9nʿ1WDŽ Rct>@fKYrrżA*Hdp[7/ f ٟ;ʜwQ5Fx~ؙh#idQP|RF3. E#-xŊ`@无+]rX^<ǵ!jyL⓫vZk |Y=gq =\1=s}2 1j+cUl(e+BRd7;P`!!D!G9iuFayzѶw0q}V**197k']Juo\ kW^)4SC'DYZdj:R'5̨R+؇3^oɎZ Q{"f՝+-5~݉'?N]RSt( :s2YFOFW&<a'%T(6 HCW5,GD@83/t31oQ.=8 ݸ=X쨧>' -bԡ03n9% >9mOh[(s F5=,M)NRc NX@>Y'&G(z3vh vp=*yo~hR$6*'f,`nv~N"UrkCֈO46l\Ԡ@ ײWtffxxېabqUЛ(y3P;j+)m-H,{y%qOgrk0?3n29v‰kuÖk T)>'ilo;fQչ V$q;"M{zDyDM7I=kb>=4!m4Y8.iԞcKC0C:n}KTGlLؑ{onK+f @Xzv!i{ ipΒ~|rIPH.n$&&3\GAn2 Uh-  'cc$97]ݒqѰi]‚"S [hҀA*ݒp̄n6X.ͥTM3?@Wy-J|!ƍL$LtRnft}3-"e>"3NZln8wT19]<.DJg@8Tվ}BNt eM&hP.y\hrqn'08(hl;;b[4)l6~9Z s,M#+Z(d dN~2mbB9 3u +\7Il,, pKEr'Oh & Hv0G s酴e 9<^#f=?<'udoD?Lr/9,vz1Fx>sY\o# T\|%k>=+Bb4_}fU 0`1JMn}"9GgWBq"?cH ȏE%$,e0*\嫚?t)j^aķ;L]4E5ܬ[˄9Y4|p|ec6 w&;sRjoi eSOmI*E-:chA9Y@-ѕIz ^*YiRSNie y\Ɔ:< ^;[5.C 'aaQܳ߄+XB#5W 4PVBE4KK{Z4E[LKj\ Φ_x{&y4ƼdPVTiHi{R_߷ KH΄@7w,3l3WB"VJb>.65p[d"{l6dP ~k>%ܜ"]#tex'e>M:OOC7_@þn/[ݧY^\$_FLy5w3Le oa©bK&9 'ƛ5c+ЅN` Q y ZpW6eߏǎEűP>A#cmJ=i^Zצ0U=D,ZJX2/HP+L kx#'G´[&e2s%?l)hhQ37q2  sMG ,Jq,sRaAVP+*KSOE>Vwx1=ªnNWĿЧv[ [1sO;fvH%ebVIpakCElWAIa&|N|G.  y٬-gygsEŲUe)s}*_-rP-DA:2y8ϟ{j#Z~,yX"FVSJ}.3`8>.#4w/: ˞uk?ϐ&N zDŽqZ3n5Na#$CR̝g툹O_qt gO8ٻ)@-ʼ|W(Bjٻo:U'&ΖljpR!xe* J9L|Dr__v~/PКbξ2 ` yU#BYe:Hc: N͟Jֳ$sѮn^g x/%8.YpdFGKomK4U^_YA #l1u= St)B>9'^H7::y~Gwz<[eDs0[X3)=Fߪx {N<Mc [WAu8d}0 j0Տ /.$,N) ~(P8"[Hg[o[%ziZNdEkR'y~ZKߞa[ZWKrʚgV- Dq AQȓHu!D0a;ٹNvX&4\ˌBx@SGчʺAqAtҳ+ ٞ3 .yh4&\lr_FHcw W(8O5MawN)eϼbLm"4JX^h,iρE'l[lL(W@'o3jW0ȱUR 'q*Հcc;c4`jKuQ}K>@@-qAoϴ 4@O9kdRÜgdw,_pvKP0fDM#2xw,oax* ;D3չG6D6EF=%?^=u:T[ D+H,"tiCkRJE]ȋ̜HShA(ΫHWSD0Foql̮2 r+um"^yDFԴ?GgjTP>5X(&ߐ/GfUZ-HhQп1 CVfEiIK)2a(.M/?rj0% eV-tz WXM/?'X!6I>bAÆ7}v S'ا޽].J7Pnv0'&KHk.v | p'6ZiIuZ4":-X.dO.Χ}tTa%#.ne/`8]Y"S:N >ʤ=emH]S~1lhꡨX֢EJlytJO>%ٸeQ;6P )b|z18mG_/?pFCDlwM??B/{z~$=IVj)U7ҁe؁ ?ʙBv=9l?i9U䉖T1Zw$k4V\wʑKV)+h70,aPyOБW|՗剮CGowTtԼd/qzV9Y)61¨sZAN;B<d_+1=Dtl(+B:m (q.,%'kT"A3D ?]D"ޅ'>"]1 ԣu5>Pnq/ )jM l,(?sڰjg>4vV'x"?7)ʏp_Fm (ʀ3a^SzGm+ &h*ڄF)K Hjưfz]᫲ '>I){f3$|o6AE;%DӔZx*s6YQFfXdžnh(o ViDelvkA9Bs޴)O+у#|`.+2y==$;J|wVקYܟZg|bHpg.= e=֒9jMyf pa(º+_.ݕT)Jk~`Vak%C`~/s06?֕wN}[<ϚȞl.{92Zd*V<Ph^?j&Y] DŽQ=ju۹kϡQˀXac W@fY\iFF ʲ)Ȭ? 74˩?rz%F(K0Xi+r"Uga(tT&"*̣8c”n#ڭ װ?6F_[f+*jk- SbD%?h8srp}`x@4?,2L.\CPO 3d=:x2lZL%(sa\'QW>7W)\|y %Df꿕hZL] # XЊ>8 [W, 6JOg3sYcr1TJ4]蔇 icMvmG!ƫ)Ӎ/ ŏZ- ӆeKVp>ofa: Q>2HIav/QOYumFfķh'Ųl{Lu.Ib֌{z]zM^o)@ Yki}hq%Bj{t6I7(Ai+]:/UڦZUw3Z sPEoNNmYSTG _4٘j//fF }|᥈<$]v1 ew"jvમ kσ 5YED~ˬQ'j͇1W3(%a|~Q wd+=5̛,5t T\be_ "殴$wމ,eU١V3qخ,-g8^lxI I\ Kk^z+s)9Bk ⼊1l|K*p5E.gP ؑ$áE-h"UOSс@Nyrk+4&(}s[ ΈU|d&1j3ZVCSwS4Nf|KN}/"yp^3feGhfZo(t6@<@\¼_H VDޓ׍HEwdAB0Tz_vod}ߜ[>/ 0);,k1փw+> \2&ЎGkXs$ũ72ɃBMu5!Yͪ@+f? n`369m,*?:$oJNCϠNoZZfGm̛;ܓ+#b%zv`gk-.;SҒV`7ɫzQBZv)OXt+TKH FL=SO_3FZ| at} hơ\6ÚÝT])\?@JwH/",i>ۦnpSLڔ%w\Fߜ2bIџ9cm3RsrEsmtBgEI ~ƦdT<}4Cb$ ~!HZz1x*)T,`S2` c$F죽?܌Jz)Rljw`kĽ@W1-^pR9[Qu`_i#ߦ} d^G oE?ˢ`;i!J 7W [!*$K'W݂'% Fzo ?x:_pqDOtGˇ9Gk`rr ϨDzkJ|` f]Ͱ+` K8/7B#B# Li}*tDjM|x)(N$"pW fWQ.Tsasd .*;1B!^>ԴA+;g}C9t);+'l{yIX7BDj#?ri,$`0&v3DuX*K8Q_1t{w80j)+˧4T7m~O5Zݚ j<8^BO!%\|F7?01R yAGx'-O3ћ_4pǧ:rcn9v+j+5p{g"F+k+`_^CدVpy(H)ZC99%hq a6!r/Tߧ~P^`? ϰ3p/mqG|ZO.vVPB!] G\zRT r"#p,θ=J_Q=йAamˎwqf*Mz, 3/ Pbi# iZ )_EoE7t s!,Is,ƾgc[@_+3kήKҹ 9wٖu eF];:xh\zaѲ>Ivh A].9fdB]ixdYuR3/)]K=ԫЬ -Fӌ5X~a|T=>H#y\oܖ'Ι=Qڷ̢Fj]jٟ~ܵ"3,+qh:xN:JW9 c#\d fZ#BMsNL 0X-İhEMvt@P~F̀,J2~ga޿6yԉeZK6yXl8 ;FJ@m7kmqMd@'Ed0) I͜1Q1-C%bNHV,byr73}cYct:Fqz867B06)dh`JOJQ=%ۼUzG!0$ rk` c$k?a[him|s[0WgNˬtAw0[-:3/,8+m%#(5)W|hSd,֖,R*><÷f>m? 1?`$+}v"cpy$fM6dqΏS}N &ecF:]Rğ`ol^ƙ(Dнbb(V"'ݹGAPXBڎ O aW޾SwS?$0US (Cj\>Oε~裵ތk:X3Z3I*o a|f\smG)^6ꐺ; v^nځzҦdį?|۞\/+(NU6U2wǾFs.H<,,2K(ꓗpKݒbGıbJTϾxi(wC[c/L4u {>\u hꠘx9'`o 4E6MPU򑦾CbQ<2;:}hO{Zw-iz›`tYwAEm5:.Y$^Th۫2b5:»qS7,{quAJܟ@d5J63J?9>H:ZeՒNdz߄Y TƷ蟃<Ǥ;HC |eN痖̪=̤beғ(Q%iq: &&)9( aDe$o{7׸m0|2[g`DWIJYϿ*d`جDwIzVo &5ՆF[ Vj\JIjmƅa;)ț\0?aĭ0h!H/ uȁhX:5M WC{K}ׇ1K /2SuE j줓ɬ6Jɛ?Me39[{^ubnvOxii_CЄe{1C,ٷ)x0A&YRYw3^MZ6 Q>zXH2dҏ+. Q"ʞwKh7q ZA(\i3;vJ'1xɼN%O+hk%4R$*hTt_!Bm.%{̀k&уA[^ť];遨e)$$nZM}-Vm<~Qֳ$E.AyVcODC@W1D1bɱ)3-`q.W 돯Oϖ J !$|[ m$7˔:$'՗F e@OV rbO<..?%<)dw kAhkl6,@GR1%v;3 ][L)2ȹCH ".Dݓr-9B5)oq(x>"~temhHkBo>)4j!avͦ*ɫfj?]OrrX zc~D)2XD䁮CѰ ι/ Z=`M|Uy'CCJUm4/b OM?oi$S^_yC!%$,ז uRI{3boWg !,c]}G\7x+<@N!Ȟl `ht(ރcyStI9j+i.}5vV⢶tE)ָ tL8] V 1$y4irLj;ɓA)n@lD>Ht)6cbk؀9~+Ո[M hFkNnw >;X"mJtq^dUԜUWʫ$!Fb9u.&(+|QP5o1EŤMвp}tk5ގftqMOEkחe+RWCtC"]{iQᔃWyKtL6x4:%&P= _Vߡan'7>~4`>Ht)L0r' -C],g jiAbmpYbH4@WKajgR./| Ra[>M&QlI1-zԈ.{|R'WhlUx,oQ8Pr1q B*؟ jV|Ɓ/yN 9%^ wk0a| &0oA ,"rx0NzښoRbmޢmLC”,$sG@vmcƔH[ >a ? zd3}E:,`bߋzߙqp?M1? ҭ(3eY Q<gڰ8Y6R k~C՘`&%|cHV&EM`kq?@!?[khBr!FA/]-N*VI%,Ώ<*;;7CBLU|9UlMF!ܓl52-uAYkV0mQ80˗0-ǀ9}3ls :jڝQVIZ_3NZuu>eGݾ5 ;\=İZ6L)d w@{pl˟Ee`ZdY7"ت3 S^7GŚ^6#HɈ1ÉL!4ϒƞ<R>߹ECti\W̦X-ᭋ0 ]^_oj\cZPB;im402rL+ؚ[) 8i~v\#dtl2]8מ}u$iTm)!F[hKI^Yl q7qM7Χo=vdee߮|(Ba*e*YUCjDEuOF)7/z afN]lI u(6*7  S>gpԄH:dNpd ];uF\^Z%ʇeA؁I.{73q$Y},*j!:(Nn{͓|K|JoO8>?ͣ!\MBLGcpqy3='l6q֧D| U;R.soi#KA^]m뙫9Z$Hfr4vo`H¸4%1H,L  n@;"r mNh[׏/ͩ^."=94 2vNd:4hL w*T\za;jH:̥49qhST8C8J} µ2mkz&x )5Tmc9?;kNn",ٕxcxcHK}t!Mm#2@Y8/{iBRw"BaB$:,{ŋ3" I[І ٩;&ur˳#ML+rߦ9WL:q8knA9Y&T0MA ^:xdb RJ&~ɼc.[tL 2|Vj˹ԑؚMP{1#o#N *0>8S"m  aiDD M96L#~XGN:/VL+lɈϚAPPhXggDGT=N]g`N \DIq17)qz׹?v6cє {TfAJI,RH#^k$\NyDkWږ݃>3bΔK &#

Fsd? L}|mw Mv=Q,7Y(~Ǥ˗[ǯV3tZu c7hoUhS\ N Ayj#Bpǯ8-7U.JZsϒYQYcرޣF)A!CzrՊbZFxfR=IuKD٢ w!lzC3e`mrRj:=xcNf+QF` n6$'U|@vbK~n^r E{夝G(ܸ,#`O2X7$CEw|!|Z#4f7/)J04gn6+C*S.%D_DbhU'/:gpX܂_R7Af H"|ԙ9#!4+Ґs(qxҫz?ԵaJ" Vg̜;ʨ?rQjp=k* 0)DL\_Q<<K0-,} ^Y-)xF,yN(Ĕ .I[+¶>$sW;{8I[O[N:6Sx IrcDF쬇ݚdj?7/(C)l2 ؋ٹHkFW nH%C_ !p2?[:HyCDףiXT͐/U%t/3p6@r!܅سbFH(eo] AB['LPN 7*ۡgyj䄯+D=h<,K 2QqpMK␙=dڙ6 Jڃta@@OPhԝ{=.rZtX%O2ēdVCNm8ff9M.+8ttj Wd݋"iyvw\Ë[#,wT&rҷ+:**$eAĦmgLd8wpT)wɝa|̌s8 ix#0b+`~_Y]/(ߍlwRFp=?\`Iz_`c3Ϳq1+B۩]!TsCHWgUn[uST𥸭֟lߧtu?F fd_Y0,S&0koGBQSJF*:b R~3F]t=dESt"t>cۼj ą4BD=]~),Pej)ۙ=GxWEޑ8c M\_>V5Il^NDU}byfVRVvOEʌvs?h`H 3X"pL7BB;"i59++J RQ9q%XDZr{AFɂ2^5GW,Ngp*]ozl2ñW~`B;bhvͭfZ e|M…27!.LkqPA(rrNcƕly?`q61%p~Gj|{ 6DcRH8Y\夛}WCĮŽ[$* }]>k3@buV5AEe @9fġR`D|oLF'!nui7زe5?$D1f"l7L1 ;?Ge.1"` ?@Mѱ>;n_ҭ[*+Ki\>VSL #yդMٹMw?m+ Our~0.  <,aiVEiY|?d^'dNU9 oD< Ff|ovR4͗SٶYu0cϨφTTŐjp:xt/4f3/PZs}&jwtd҆2moIZ܂vy;6?JԳ/[s&^G!Fen7"_ 6 ]R&Fy DzZ~Δ*߆ u92{E<[J^l\p[X@ual$1L>Q6:-;6tį,u?*퇫&t?*y\,f?B߄icRHވ좂>y|tI#@^"2 Z&\7 | q0A?EU+yz~p3鰩_TtI63a>dUcuI-1St-@&HhOOhyr᭚>Y >vЋ .6n[]xTFx&hrj4m@ ;dr7m FnPDn S8-9m5tT>-I?ʇ@pdߧ!ܻɕ|J!7/D}e"+Ll12ǻ>Ԓ ;/ֽC+iO R=^ ,Y@"Yrߵ߃0dq[*& ڼ|N{eDtQ}|5pOO$ҍ#; xqs"}&FC|IhsڮTmC'Z_tvu@@iB"Y6f|og3|f?ʵ7"p1 Pªgg˜qmIy:@6~L~Sޕ$?𧸞:uw1ly!R 69ClU"qERz*jnٗ}:\m}C"1FS<ೕ܇/!\ ڌGN_ Tw8&z p.׮qcIBUNĹOՃR&^w>"Hp]1,pw:wQXMGAV8اLSG! SE8$|nIlm%:6V"Fpi"SDY5KL0㞃 i!a#ӟ=D)@3W!{11i*eEۨ*`Y0D_Quñ:rV]_/=WZOE]AS%n5đ!Hc|LE ' hK\R""XM2cDXK Tqo$gDǔO*"͟SU\ 2HcuOkz2}Av-m4*њtda6)1 ӊ`ZRZ؊)=!zIUBXB":t9MlZ0`4q(67ΜChbppk|0*2H Aoϸz0\318*/iC&CEL0U)$}eBάvЫ0`\BM'ءw1FJDGֲ  X+F@e? ,H:gLe+D:Ѵ8kҚz8a}hqOpuG)FP*3„z|k%]huln;) {^2}p-nꢅt7((x޹?W^WݦQhTiR) ,[hA9gOǞc9jthz︊s?ԛ m)B߭F8T i{-cJDзxX([`u&-fwp\Dĝ< $pYny#VrSJhٓ*p<_Zm_4^a>8EP $+b8\`w.OOy['T^Š mlE5^쥚ڲ!ogSLCB0>w:vQOQ+H03'I%$P}xAD Խ'cR^AȕE7bIV_1?:6l7-n7MUo+Lim4udA_5Y-&$=+dn(,X ^IK2?eLtIFt[oҪ)hX:#W/BҤLu$IWʞ__^%nJ+4NVEOB'hhpŀ( ȵOƈ c F1k[otH"Rُ@P`qe>hso9x6-'Z8}::cf%ǜi*8h>Y=p4AKTYLgpҚ0oBPƳDTcO1yNsd%W/S?净J p<Ǜ{ذ'I/9c) b1eIG@1&"  AV^@09$2=a2QBQy܊4f_TDSh.W+[p}5s!|dq<dѠBA$VbaT{ϋ%Z]ۉ)G35Q=5zmָ^jç_<+OAHҌ'fidKp0Lxj`"R n;m|Tp.&aWE1Ѕ!yi hH\Tu{a>V7^qb^/V}L*S@=v\za(^L pe@X夈 >UWpС)2ېs-GTOft[Jp"j˭F}V0^\#u }c$'z #)׵~G߸pNhl OxQ/=$ Q7m0IO&Yoct¡&~*10tbK[p=^eQIavbPk'ƚٖ]N[4D;=Hj߹5Kź*<= <Vֺ|o zinFOhҐAv_&lnCJn*ǒkgRgq-nL/( [1sH%Pl'K #˞=BMx8$!mXWoZY2M7Jtw0s}ew=A/p-u8*7}GUߺߝ GU4`rLmBun?N794blAXt$'˃a:>8a j!] x76eXfhTm1á𮅔B|MzTdy'+__xZ) >bV}<⍥Ŧ ѴB92Q%*`30BX6PojxTjϟ( 1IbwR泮jk]ܚm~M&8i @8Ehq_Z'|оajcs'.Ӯ4ӂ[vba@3G<ݫ*-H$Uxmz+;WǤC[A=@E{jӣAJ%Ǘ mtơ/i4[$JbñE6{e.%ή1^BC<5W!t}%P-tA {.ݚu /A:ڈkA_> # ݃5kvE2cb@F{pm솪ѷo T?aiߠ3k2nU ɦ&g+[ w&;aKR߸";9yA&b[& m3wԜ/oT8'x-}5b,Wo ~@`CbOTUky2~EL/7!^K[ eZ1ItW ͍(XAFӓ #bL[. no!|&蔅i]s"E#-k4<2+ w/'k/Nv̲6򧶦E58A]eV':BT,)Hx4`3rdk !0a1xuOk500# /&+n,MQo 4ßdʞo#{R!УN$ $tsFE^9_Gu]fSR\%B8+(&Ec߹g:ܺo!FQ4q+qB'A1W8hC5Z']TVMݑTp̥Rd,kod|p3K1mQA= P?@r&GhѩzzJG_Ij96:NieRP̯Z aPY{wBHY=)l?n' WMJDT)Oe'4 5OVmJv7=|CpKdS(w->HEyPLԯBȱ 1ĥ~hPإ]󍤬BWsdUG3}SRF1{OiGՠeU ZMUgկ ^$ BiAЂ[9$ tn`Fs1 +|-a1mXj X$8R5HVS>FIղщ[]W2/[]Sn].Ӝ.\pn߈#DǡΌ+G$C;;k$>zS=ОJʷ?2  =:)2Qu.YM+|<^Wj,Eǝ$b-FB^T,K>!0QRMX[Z~ XKѨ]&mY4YZ{oHĻ`] 5VN1UO{Bu\>{( 0R$TZTUNQq/:WlkHUEA!Fv߽ѹN݁=!RJm {o)8n5<撹<@ J]* S'ȁ{D_5ʡ]d_4 4:7KC qL[clh Zw*H[\LC|xv 'Y$Rrp:Ґ9;-[N6VE}3 xuJ)꒕ 0̀~A47 m:+:sM0ntuhķD8BXm|U-m^Þ7Fs:QQ%݅c_%TtY.^P{ n}J+SjF;4K3ȅaip?2%KPI_A7 W*N:d+u#ϒ]Dt>NaE%xpw%n?CuEk|$a *uԽmѼq AMPX# MwLM^*O;J03,#W]iqDh ``FHOyp<]s[ 8$5}nu#=X87e'9BT9n XND΋v/u^ Ҡ︪]