mod_session-2.4.37-65.module+el8.10.0+1842+4a9649e8.2 > 6 6_6 3!pQp)Tξ7]mtZ`fǹ ]mtZ`,@ѳDBO/9ji fu3o1N` {\G9kȥ h;6*<–p6'U=7Džff8}ފda.5zw9'ĘT;!HkC"ڲ@+76s5D~iv!@:_CL7DSu6] H-cﭲ`M 7-ߧ #A{8yARx5Ԓ5G|CM&e aW$ e~d.3ɋyw=oAG?my( k0ܷR\XXWȕ"g3^4CW Y=K~yi:!ŭ| RJgPu=F5cff82dd4d25d52094a8ce9cfbf4008f7c6edcabb577bd9b1e04c25ff2d33383457154dad857052a785d026204177ac6a076c8963!pQp)Tξ7]mtZ`fǺ ]mtZ`G#X1 E3` .} :ZRHNWvPHxd:W;r 7.i4]67Jxh+bqiW$&vi+< T!6 Th5«}a?w'1CΠ .4tqg葫sYҫF*wphňpr},yG}4܋7ECMK'sQ@k?B8"|C%WE7J=^_ "8ہۺ*cKؠ[k,1o.|h>$uwOHdɳDsXpoeQ GiؘFǏΩ>9bu6V` Prs1[i\kd.Ip.BG"cU5pbψPxNEU>p=k?[d 8 e!'/ Mh             4 p  D k (89 :93GT H I XY\L ]| ^bjdeflt u vw x< yl04Cmod_session2.4.3765.module+el8.10.0+1842+4a9649e8.2Session interface for the Apache HTTP ServerThe mod_session module and associated backends provide an abstract interface for storing and accessing per-user session data.fOord1-prod-a64build001.svc.aws.rockylinux.orgLwKojiRockyASL 2.0infrastructure@rockylinux.orgSystem Environment/Daemonshttps://httpd.apache.org/linuxaarch6499642HAfÙfMfLfLfLfLfLfLfKfKfLfL51df0ceeb7dae9922817f4af0554f83fe01d6268025ee08260aeed69be3953d19ecf8aaf2ab14f57003c99a01a4d1cb36d4ad17e11b65a0e5308e026064eeaa06a36c05324f97fec04f2746c2117983d972ec1ebb55fc12d803d3f64b833077d8548107258607790eb92369e74610da6683f137a17b4dc4522dfa0be08c351a292393ea9dafefe0315f3fe2dbf5133fb9e81ddffee6a572d7b48fa980ae396e3c3cdc68796116c2b1dc99efb43d69d1cd2054241a1a53933b7e65dda6e2efaee../../../../usr/lib64/httpd/modules/mod_session_cookie.so../../../../usr/lib64/httpd/modules/mod_session_crypto.so../../../../usr/lib64/httpd/modules/mod_session_dbd.so../../../../usr/lib64/httpd/modules/mod_auth_form.so../../../../usr/lib64/httpd/modules/mod_session.sorootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.37-65.module+el8.10.0+1842+4a9649e8.2.src.rpmconfig(mod_session)mod_sessionmod_session(aarch-64)@@@@@    @config(mod_session)httpdhttpd-mmnld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libpthread.so.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)2.4.37-65.module+el8.10.0+1842+4a9649e8.20:2.4.37-65.module+el8.10.0+1842+4a9649e8.220120211aarch643.0.4-14.6.0-14.0-15.2-14.14.3f@f@fieN@e̫@d d\@d!d-@d-@d-@doMdJcdcck@cck@c(Ybޅbb2@b8haNaaaawaU`:@`f@`@`@_м@__@_:_^b^(@^@^]]@]߶]҇]@]g@]-@]]@\7\Z@\Yz\T4\\U@[@[[[@[H[u[[[ā@[ā@[ā@[@[@["@[YZ@Z@Z@Yp@Y{Y@Y@YéYéYéYéYX@YYYYx@Ym@YlYf@Ycl@YV=@YGY5GY@YXۡXP@X @X@XwoX[@X[@XEVX)@X@WW~D@W~D@W~D@WKW@VVVVn@VhV.VCV@UK@U@Ua@UF@UQUQTp@T=@T@T @TT_Tk@Tk@S0S@SGS@SS/SS@SSS"@SS5d@S4S&Sz@Sz@S(S@R@RRG@R@R@RsRrF@Ri Re@RVQ@QQޞ@QQo@Q@QQV@Q@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Luboš Uhliarik - 2.4.37-65.2Luboš Uhliarik - 2.4.37-65.1Luboš Uhliarik - 2.4.37-65Joe Orton - 2.4.37-64Joe Orton - 2.4.37-63Johnny Hughes - 2.4.37-62Luboš Uhliarik - 2.4.37-62Tomas Korbar - 2.4.37-61Tomas Korbar - 2.4.37-60Tomas Korbar - 2.4.37-59Tomas Korbar - 2.4.37-58Luboš Uhliarik - 2.4.37-57Luboš Uhliarik - 2.4.37-56.5Luboš Uhliarik - 2.4.37-56.4Luboš Uhliarik - 2.4.37-56Luboš Uhliarik - 2.4.37-55Luboš Uhliarik - 2.4.37-54Luboš Uhliarik - 2.4.37-53Tomas Korbar - 2.4.37-52Luboš Uhliarik - 2.4.37-51Luboš Uhliarik - 2.4.37-50Luboš Uhliarik - 2.4.37-49Luboš Uhliarik - 2.4.37-48Luboš Uhliarik - 2.4.37-47Luboš Uhliarik - 2.4.37-46Luboš Uhliarik - 2.4.37-45Luboš Uhliarik - 2.4.37-44Luboš Uhliarik - 2.4.37-43Luboš Uhliarik - 2.4.37-42Luboš Uhliarik - 2.4.37-41Lubos Uhliarik - 2.4.37-40Artem Egorenkov - 2.4.37-39Lubos Uhliarik - 2.4.37-38Lubos Uhliarik - 2.4.37-37Lubos Uhliarik - 2.4.37-36Lubos Uhliarik - 2.4.37-35Lubos Uhliarik - 2.4.37-33Lubos Uhliarik - 2.4.37-31Joe Orton - 2.4.37-30Lubos Uhliarik - 2.4.37-29Lubos Uhliarik - 2.4.37-28Lubos Uhliarik - 2.4.37-27Lubos Uhliarik - 2.4.37-21Lubos Uhliarik - 2.4.37-20Joe Orton - 2.4.37-19Lubos Uhliarik - 2.4.37-18Lubos Uhliarik - 2.4.37-17Lubos Uhliarik - 2.4.37-16Lubos Uhliarik - 2.4.37-15Lubos Uhliarik - 2.4.37-14Lubos Uhliarik - 2.4.37-13Lubos Uhliarik - 2.4.37-11Lubos Uhliarik - 2.4.37-10Lubos Uhliarik - 2.4.37-9Joe Orton - 2.4.37-8Joe Orton - 2.4.37-7Joe Orton - 2.4.37-6Luboš Uhliarik - 2.4.37-5Luboš Uhliarik - 2.4.37-4Luboš Uhliarik - 2.4.37-3Joe Orton - 2.4.37-2Lubos Uhliarik - 2.4.37-1Luboš Uhliarik - 2.4.35-10Lubos Uhliarik - 2.4.35-9Joe Orton - 2.4.35-7Joe Orton - 2.4.35-5Lubos Uhliarik - 2.4.35-4Lubos Uhliarik - 2.4.35-3Lubos Uhliarik - 2.4.35-2Lubos Uhliarik - 2.4.35-1Lubos Uhliarik - 2.4.33-4Joe Orton - 2.4.33-3Luboš Uhliarik - 2.4.33-2Joe Orton - 2.4.28-8Luboš Uhliarik - 2.4.28-2Luboš Uhliarik - 2.4.28-1Joe Orton - 2.4.27-14Joe Orton - 2.4.27-13Joe Orton - 2.4.27-12Stephen Gallagher - 2.4.27-11Jeroen van Meeuwen - 2.4.27-10Joe Orton - 2.4.27-9Jeroen van Meeuwen - 2.4.27-8Stephen Gallagher - 2.4.27-8.1Joe Orton - 2.4.27-8.1Joe Orton - 2.4.27-7Fedora Release Engineering - 2.4.27-6Fedora Release Engineering - 2.4.27-5Joe Orton - 2.4.27-4Joe Orton - 2.4.27-3Luboš Uhliarik - 2.4.27-2Luboš Uhliarik - 2.4.27-1Joe Orton - 2.4.26-2Luboš Uhliarik - 2.4.26-1Joe Orton - 2.4.25-10Joe Orton - 2.4.25-9Joe Orton - 2.4.25-8Luboš Uhliarik - 2.4.25-7Luboš Uhliarik - 2.4.25-6Joe Orton - 2.4.25-5Fedora Release Engineering - 2.4.25-4Joe Orton - 2.4.25-3Luboš Uhliarik - 2.4.25-2Luboš Uhliarik - 2.4.25-1Luboš Uhliarik - 2.4.23-7Joe Orton - 2.4.23-6Joe Orton - 2.4.23-5Joe Orton - 2.4.23-4Joe Orton - 2.4.23-3Joe Orton - 2.4.23-2Joe Orton - 2.4.23-1Joe Orton - 2.4.18-6Joe Orton - 2.4.18-5Joe Orton - 2.4.18-4Joe Orton - 2.4.18-3Fedora Release Engineering - 2.4.18-2Jan Kaluza - 2.4.18-1Joe Orton - 2.4.17-4Jan Kaluza - 2.4.17-3Jan Kaluza - 2.4.17-2Joe Orton - 2.4.17-1Jan Kaluza - 2.4.12-4Joe Orton - 2.4.12-3Fedora Release Engineering - 2.4.12-2Jan Kaluza - 2.4.12-1Jan Kaluza - 2.4.10-17Jan Kaluza - 2.4.10-16Jan Kaluza - 2.4.10-15Joe Orton - 2.4.10-14Jan Kaluza - 2.4.10-13Jan Kaluza - 2.4.10-12Jan Kaluza - 2.4.10-11Jan Kaluza - 2.4.10-10Joe Orton - 2.4.10-9Joe Orton - 2.4.10-8Jan Kaluza - 2.4.10-7Joe Orton - 2.4.10-6Fedora Release Engineering - 2.4.10-5Jan Kaluza - 2.4.10-4Jan Kaluza - 2.4.10-3Joe Orton - 2.4.10-2Joe Orton - 2.4.10-1Jan Kaluza - 2.4.9-8Jan Kaluza - 2.4.9-7Jan Kaluza - 2.4.9-6Joe Orton - 2.4.9-5Fedora Release Engineering - 2.4.9-4Jan Kaluza - 2.4.9-3Jan Kaluza - 2.4.9-2Jan Kaluza - 2.4.9-1Joe Orton - 2.4.7-6Stephen Gallagher 2.4.7-5Jan Kaluza - 2.4.7-4Jan Kaluza - 2.4.7-3Joe Orton - 2.4.7-2Joe Orton - 2.4.7-1Joe Orton - 2.4.6-10Joe Orton - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Joe Orton - 2.4.6-6Jan kaluza - 2.4.6-5Joe Orton - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-7Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Resolves: RHEL-46040 - httpd:2.4/httpd: Security issues via backend applications whose response headers are malicious or exploitable (CVE-2024-38476) - Resolves: RHEL-53022 - Regression introduced by CVE-2024-38474 fix- Resolves: RHEL-45812 - httpd:2.4/httpd: Substitution encoding issue in mod_rewrite (CVE-2024-38474) - Resolves: RHEL-45785 - httpd:2.4/httpd: Encoding problem in mod_proxy (CVE-2024-38473) - Resolves: RHEL-45777 - httpd:2.4/httpd: Improper escaping of output in mod_rewrite (CVE-2024-38475) - Resolves: RHEL-45758 - httpd:2.4/httpd: null pointer dereference in mod_proxy (CVE-2024-38477) - Resolves: RHEL-45743 - httpd:2.4/httpd: Potential SSRF in mod_rewrite (CVE-2024-39573)- Resolves: RHEL-31857 - httpd:2.4/httpd: HTTP response splitting (CVE-2023-38709)- Resolves: RHEL-14448 - httpd: mod_macro: out-of-bounds read vulnerability (CVE-2023-31122)- mod_xml2enc: fix media type handling Resolves: RHEL-14321- change for CentOS Stream Branding- Resolves: #2221083 - Apache Bug 57087: mod_proxy_fcgi doesn't send cgi CONTENT_LENGTH variable when the client request used Transfer-Encoding:chunked- Fix issue found by covscan - Related: #2159603- Another rebuild because of mistake in workflow - Related: #2159603- Rebuild because of mistake in workflow - Related: #2159603- Resolves: #2159603 - mod_status lists BusyWorkers IdleWorkers keys twice- Resolves: #2176723 - CVE-2023-27522 httpd:2.4/httpd: mod_proxy_uwsgi HTTP response splitting- Resolves: #2190133 - mod_rewrite regression with CVE-2023-25690- Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy- Resolves: #2162499 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2162485 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2162509 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2155961 - prevent sscg creating /dhparams.pem- Resolves: #2095650 - Dependency from mod_http2 on httpd broken- Resolves: #2050888 - httpd with SSL fails to start unless hostname command was installed- Add the SNI support in mod_proxy_wstunnel module for Apache httpd - Resolves: rhbz#2017543- Resolves: #2097015 - CVE-2022-28614 httpd:2.4/httpd: out-of-bounds read via ap_rwrite() - Resolves: #2097031 - CVE-2022-28615 httpd:2.4/httpd: out-of-bounds read in ap_strcmp_match() - Resolves: #2097458 - CVE-2022-30522 httpd:2.4/httpd: mod_sed: DoS vulnerability - Resolves: #2097480 - CVE-2022-30556 httpd:2.4/httpd: mod_lua: Information disclosure with websockets - Resolves: #2098247 - CVE-2022-31813 httpd:2.4/httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism - Resolves: #2097451 - CVE-2022-29404 httpd:2.4/httpd: mod_lua: DoS in r:parsebody - Resolves: #2096997 - CVE-2022-26377 httpd:2.4/httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2065237 - CVE-2022-22719 httpd:2.4/httpd: mod_lua: Use of uninitialized value of in r:parsebody - Resolves: #2065267 - CVE-2022-22721 httpd:2.4/httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody - Resolves: #2065324 - CVE-2022-23943 httpd:2.4/httpd: mod_sed: Read/write beyond bounds- Resolves: #2090848 - CVE-2020-13950 httpd:2.4/httpd: mod_proxy NULL pointer dereference- Resolves: #2065249 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations- Resolves: #2035063 - CVE-2021-44790 httpd:2.4/httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2007199 - CVE-2021-36160 httpd:2.4/httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path - Resolves: #1972491 - CVE-2021-33193 httpd:2.4/mod_http2: Request splitting via HTTP/2 method injection and mod_proxy- Resolves: #1968278 - CVE-2020-35452 httpd:2.4/httpd: Single zero byte stack overflow in mod_auth_digest - Resolves: #2001046 - Apache httpd OOME with mod_dav in RHEL 8 - Resolves: #2005128 (CVE-2021-34798) - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #1984828 - mod_proxy_hcheck piles up health checks leading to high memory consumption - Resolves: #2005119 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input- Related: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path- Resolves: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path - Resolves: #1969229 - CVE-2021-26691 httpd:2.4/httpd: Heap overflow in mod_session- Resolves: #1680111 - httpd sends reply to HTTPS GET using two TLS records - Resolves: #1905613 - mod_ssl does not like valid certificate chain - Resolves: #1935742 - [RFE] backport samesite/httponly/secure flags for usertrack - Resolves: #1972500 - CVE-2021-30641 httpd:2.4/httpd: MergeSlashes regression - Resolves: #1968307 - CVE-2021-26690 httpd:2.4/httpd: mod_session NULL pointer dereference in parser - Resolves: #1934741 - Apache trademark update - new logo- Resolves: #1952557 - mod_proxy_wstunnel.html is a malformed XML - Resolves: #1937334 - SSLProtocol with based virtual hosts- prevent htcacheclean from while break when first file processed- Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache- Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile to be able to handle certs without matching private key- Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel - Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()- Resolves: #1651376 - centralizing default index.html for httpd- Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool concurrency issues - Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1680118 - unorderly connection close when client attempts renegotiation- Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does not respect expiry time - Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer overflow - Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package - Resolves: #1869576 - httpd : mod_proxy should allow to specify Proxy-Authorization in ProxyRemote directive - Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1891829 - mod_proxy_hcheck Doesn't perform checks when in a balancer- Resolves: #1209162 - support logging to journald from CustomLog- Resolves: #1823263 (CVE-2020-1934) - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Related: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work- Resolves: #1823259 - CVE-2020-1927 httpd:2.4/httpd: mod_rewrite configurations vulnerable to open redirect - Resolves: #1747284 - CVE-2019-10098 httpd:2.4/httpd: mod_rewrite potential open redirect - Resolves: #1747281 - CVE-2019-10092 httpd:2.4/httpd: limited cross-site scripting in mod_proxy error page - Resolves: #1747291 - CVE-2019-10097 httpd:2.4/httpd: null-pointer dereference in mod_remoteip - Resolves: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work - Resolves: #1794728 - Backport of SessionExpiryUpdateInterval directive- Resolves: #1775158 - POST request with TLS 1.3 PHA client auth fails: Re-negotiation handshake failed: Client certificate missing- Resolves: #1704317 - Add support for SSLKEYLOGFILE- mod_cgid: enable fd passing (#1633224)- Resolves: #1744121 - Unexpected OCSP in proxy SSL connection - Resolves: #1725031 - htpasswd: support SHA-x passwords for FIPS compatibility - Resolves: #1633224 - mod_cgid logging issues- remove bundled mod_md module - Related: #1747898 - add mod_md package- Resolves: #1744999 - CVE-2019-9511 httpd:2.4/mod_http2: HTTP/2: large amount of data request leads to denial of service - Resolves: #1745086 - CVE-2019-9516 httpd:2.4/mod_http2: HTTP/2: 0-length headers leads to denial of service - Resolves: #1745154 - CVE-2019-9517 httpd:2.4/mod_http2: HTTP/2: request for large response leads to denial of service- Resolves: #1730721 - absolute path used for default state and runtime dir by default- Resolves: #1724549 - httpd response contains garbage in Content-Type header- Resolves: #1696142 - CVE-2019-0217 httpd:2.4/httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696097 - CVE-2019-0220 httpd:2.4/httpd: URL normalization inconsistency - Resolves: #1669221 - `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang - Resolves: #1673022 - httpd can not be started with mod_md enabled- Resolves: #1695432 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: #1696091 - CVE-2019-0215 httpd:2.4/httpd: mod_ssl: access control bypass when using per-location client certification authentication- Resolves: #1672977 - state-dir corruption on reload- Resolves: #1670716 - Coredump when starting in FIPS mode- add security fix for CVE-2019-0190 (#1671282)- add DefaultStateDir/ap_state_dir_relative() (#1653009) - mod_dav_fs: use state dir for default DAVLockDB - mod_md: use state dir for default MDStoreDir- add httpd.conf(5) (#1611361)- Resolves: #1652966 - Missing RELEASE in http header- Resolves: #1641951 - No Documentation= line in htcacheclean.service files- Resolves: #1643713 - TLS connection allowed while all protocols are forbidden- mod_ssl: fix off-by-one causing crashes in CGI children (#1649428)- Resolves: #1644625 - httpd rebase to 2.4.37- Related: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- mod_ssl: allow sending multiple CA names which differ only in case- mod_ssl: drop SSLRandomSeed from default config (#1638730) - mod_ssl: follow OpenSSL protocol defaults if SSLProtocol is not configured (Rob Crittenden, #1638738)- mod_ssl: don't require SSLCryptoDevice to be set for PKCS#11 cert- Resolves: #1635681 - sync with Fedora 28/29 httpd - comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in default configuration; now follow OpenSSL system default (#1468322) - dropped NPN support - mod_md: change hard-coded default MdStoreDir to state/md (#1563846) - don't block on service try-restart in posttrans scriptlet - build and load mod_brotli - mod_systemd: show bound ports in status and log to journal at startup - updated httpd.service.xml man page - tweak wording in privkey passphrase prompt - drop sslmultiproxy patch - apachectl: don't read /etc/sysconfig/httpd - drop irrelevant Obsoletes for devel subpackage - move instantiated httpd@.service to main httpd package- Resolves: #1602548 - various covscan fixes- apache httpd can work with TLS 1.3 (#1617997) - drop SSLv3 support patch- new version 2.4.35 (#1632754)- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All" configuration (#1622630)- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki, #1527084)- new version 2.4.33 - add mod_md subpackage; load mod_proxy_uwsgi by default- remove %ghosted /etc/sysconfig/httpd (#1572676)- Resolves: #1512563 - httpd: update welcome page branding - Resolves: #1511123 - RFE: httpd use event MPM by default - Resolves: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- new version 2.4.28- add notes on enabling httpd_graceful_shutdown boolean for prefork- drop Requires(post) for mod_ssl- better error handling in httpd-ssl-gencerts (#1494556)- Require sscg 2.2.0 for creating service and CA certificates together- Address CVE-2017-9798 by applying patch from upstream (#1490344)- use sscg defaults; append CA cert to generated cert - document httpd-init.service in httpd-init.service(8)- Address CVE-2017-9798 by applying patch from upstream (#1490344)- Generate SSL certificates on service start, not %posttrans- move httpd.service.d, httpd.socket.d dirs to -filesystem- add new content-length filter (upstream PR 61222)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- update mod_systemd (r1802251)- switch to event by default for Fedora 27 and later (#1471708)- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig- new version 2.4.27- mod_proxy_fcgi: fix further regressions (PR 61202)- new version 2.4.26- move unit man pages to section 8, add as Documentation= in units- add httpd.service(5) and httpd.socket(5) man pages- require mod_http2, now packaged separately- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Resolves: #1434916 - httpd.service: Failed with result timeout- link only httpd, not support/* against -lselinux -lsystemd- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- mod_watchdog: restrict thread lifetime (#1410883)- Resolves: #1358875 - require nghttp2 >= 1.5.0- new version 2.4.25- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of LimitRequestFields directive in mod_http2- fix build with OpenSSL 1.1 (#1392900) - fix typos in ssl.conf (josef randinger, #1379407)- no longer package /etc/sysconfig/httpd - synch ssl.conf with upstream- add security fix for CVE-2016-5387- load mod_watchdog by default (#1353582)- restore build of mod_proxy_fdpass (#1325883) - improve check tests to catch configured-but-not-built modules- update to 2.4.23 (#1325883, #1353203) - load mod_proxy_hcheck - recommend use of "systemctl edit" in httpd.service- have "apachectl graceful" start httpd if not running, per man page- use redirects for lang-specific /manual/ URLs- fix welcome page HTML validity (Ville Skyttä)- remove httpd pre script (duplicate of httpd-filesystem's) - in httpd-filesystem pre script, create group/user iff non-existent- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- update to new version 2.4.18- re-enable mod_asis due to popular demand (#1284315)- fix crash when using -X argument (#1272234)- rebase socket activation patch to 2.4.17- update to 2.4.17 (#1271224) - build, load mod_http2 - don't build mod_asis, mod_file_cache - load mod_cache_socache, mod_proxy_wstunnel by default - check every built mod_* is configured - synch ssl.conf with upstream; disable SSLv3 by default- update to 2.4.16- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- update to 2.4.12- fix compilation with lua-5.3- remove filter for auto-provides of httpd modules, it is not needed since F20- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583) - mod_lua: fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments (CVE-2014-8109)- require apr-util 1.5.x- use NoDelay and DeferAcceptSec in httpd.socket- increase suexec minimum acceptable uid/gid to 1000 (#1136391)- fix hostname requirement and conflict with openssl-libs- use KillMode=mixed in httpd.service (#1135122)- set vstring based on /etc/os-release (Pat Riehecky, #1114539)- pull in httpd-filesystem as Requires(pre) (#1128328) - fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348) - require hostname for mod_ssl post script (#1135118)- mod_systemd: updated to the latest version - use -lsystemd instead of -lsystemd-daemon (#1125084) - fix possible crash in SIGINT handling (#958934)- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119) - switch default ssl.conf to use PROFILE=SYSTEM (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- add /usr/bin/useradd dependency to -filesystem requires- fix creating apache user in pre script (#1128328)- enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf- update to 2.4.10 - expand variables in docdir example configs- add support for systemd socket activation (#1111648)- remove conf.modules.d from httpd-filesystem subpackage (#1081453)- add httpd-filesystem subpackage (#1081453)- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- add support for SetHandler + proxy (#1078970)- move macros from /etc/rpm to macros.d (#1074277) - remove unused patches- update to 2.4.9- use 2048-bit RSA key with SHA-256 signature in dummy certificate- Create drop directory for systemd snippets- remove provides of old MMN, because it contained double-dash (#1068851)- fix graceful restart using legacy actions- conflict with pre-1.5.0 APR - fix sslsninotreq patch- update to 2.4.7 (#1034071)- switch to requiring system-logos-httpd (#1031288)- change mmnisa to drop "-" altogether- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide for transition- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)- systemd: send SIGWINCH signal without httpd -k in ExecStop- load mod_macro by default (#998452) - add README to conf.modules.d - mod_proxy_http: add possible fix for threading issues (r1534321) - core: add fix for truncated output with CGI scripts (r1530793)- require fedora-logos-httpd (#1009162)- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- ignore /etc/sysconfig/httpd and document systemd way of setting env variables in this file- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311) 2.4.37-65.module+el8.10.0+1842+4a9649e8.22.4.37-65.module+el8.10.0+1842+4a9649e8.22.4.37-65.module+el8.10.0+1842+4a9649e8.201-session.conf.build-id563c71cce5803b0461d638932cfa2ebf9f655d1fdbcb0dae05579bf038ce4345a4eee025566d9ac06b6eee47283e0fc3a04d2f296b949877c8f3eda0e156ab1875ba45ab79ab6280dd549c89e1d243d6e3ef2f67d2e263e3e02b4d2dac8ae9mod_auth_form.somod_session.somod_session_cookie.somod_session_crypto.somod_session_dbd.so/etc/httpd/conf.modules.d//usr/lib//usr/lib/.build-id/17//usr/lib/.build-id/36//usr/lib/.build-id/3d//usr/lib/.build-id/8a//usr/lib/.build-id/fd//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -fasynchronous-unwind-tables -fstack-clash-protectioncpioxz2aarch64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8af3eda0e156ab1875ba45ab79ab6280dd549c89, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=fde1d243d6e3ef2f67d2e263e3e02b4d2dac8ae9, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=17563c71cce5803b0461d638932cfa2ebf9f655d, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=361fdbcb0dae05579bf038ce4345a4eee025566d, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3d9ac06b6eee47283e0fc3a04d2f296b949877c8, stripped RRRRRR RRRRRR RRRRRR RRRRRR RRRRRR utf-8a25e51d250194487a28e6898b405d2543cff15c7fc156a6fe0682d39e74f8786httpd:2.4:8100020240812075544:e155f54d?07zXZ !#,Uz] b2u Q{LYZ믤&pߺ'PIuݦ w4ftcf4U‚c}nTm`,10%xW<@/n~Q &p#YcT }[sxadU81@H9 f#|2w$ 2i`W81g  bC=x27TEAuk(ċf #fe}J&QVX ̫_Ԅ5 y/I!0ᒰLrb-36Pфt!%вg_)za6S'39Dw9{7,h:bSF':0ƷsVUpǽ5+!cR׃&i- *ŵr\c&m{(jND hd\CxyGo ,F] [s6\xm/RPx_̧Rz6I|L}j37A&Grg*W'muexʤWbd#cyֶUg|dzX\XEsjףuo%1adl  40i:9 .mF1~alz`RΛZ*43^U' 욲CWƣuƽ_ ,0`܂dx3 PV"Ӑ`<C'֣ ]SĞ?Dqn}i(;$8',B&k""OcX9mu@is}o cz,nވ\6 @ɪ:440"k!%Q r+*%2Iu~QgPuEBGDU?YeqlkkQz~T>'Q~BYDg8l*(c4pM.@ݮ+mM}SMֳkXW$E\ ̊gLOm0J<.y/s eBz?8ڬ^jgQ`6z0VF߽ø,u^Ga˛L $dsc}ã%JŬccb~U~C,_uǓ$?heXdm%(>0ϚD?Ce'dBp(&L#j/Y5t2xSX~W&|y d-2)mLޥ7"k icZ/2T%GD[d  ƥ/"Owr'svw(gSβ4p7N<ʙs8y>V1?6zRXu`DRmx=3:/}fyIR+,Ч]edV2CP?cFBP<`"Lp8m0AAm}lS{=>2F *)`~ 0oՄOXBugHyL$Q 5V˝~jiX$_WlKR/Uk_,歄s7ɏ!oFxc>@I>zFܶEÂZ!!X[~,jrɋlwE6Fr쳉 {] /2#Kk^ESYO mzN#?0m"^#tK[1'KySWQ좺PA%׫yl?=01:w ռw)>J]Y6p;1f]|@~Dzr۰.G<<[߼aaZAhY6;uTn Rٲ+gH;W][EF! ~2,ukC(ڔ{JFUでDL(H.7EZO⤓)P|@& =tL{'%vB\}w{ى1R SM5D)}>ds_4I3}瓒Rn\5rb]l ѥu8?tmS@-ÈU˜% G&VK%VLU(=ɁW; uCO`;^YBr5J#H싯W>t N}~!aLTD/xF]8 %w`ͧ6.Dz)R$I*Osȃc #i<=ܼѪ%-n#y~Vx,7 : XuF,_#D" K L2s¸YpH1&Ł܉g O  ~k`1j[ V"- 9?UkBp?G:<D&ц&sO8XR*L}/PK#Du xhhOfCIKI˯aK_}M17'CR聈Dt12evb ?*sI%auSmefѯ4%tǍ-)̕)a%!)/;Mi쫕6Ν o}{sazuP^"@Df M܀dzФԕǿMeWK(KV$ FlC @ s<٘0Ɨ9D:!Z?ܺN]2 0lQ=)DI'r½0 oY@(lE;"K~:c/zދ2(E{U{#'b) bnCAܞz F>bO-r+.#Y7\~ HmdLo ̺ǿ3n >eMJH +u vII*ChOrlcus Ҙ(PG6]UX"}k -Ki@>F},Ǝ^]V_%4T0_[y, M/C1 Zb;<ȗJ{]ZI5є$МLݕ3㜫\`%hw$8&N yw=[8=5)xyн삮gKըHA1b)n`_~_RG":zVdei `z0&:R-b. @f-ԵW:G!bup)LŴBvA$/l`x y\&x_pӾPY1 ]I1)qXLJfqElYb$LChq}{hq hƗxw8 |¤oCxwV%W9wvB{;N<]QPVt,\MI:xiU1Nl}ghD5 hìm|b]i"R ֯vIg^r~%7>5c\W/J>K1]yfunw6ls$3(HI]_4̤xQxjt0]8#>&g v$E z&kQK㚛 mOy ǩ>$qMf%50ZCta\ou(υb ewBo6R+/aru)ǡ L.%(-r-!(pveN2􂽝̐B,UyŎS&eep8 ϙa9_r{; 7TjywL_9*7m.d&6H;K& xT? BrZG,9˴4is^'r'Y;.G)(גjXaV;cX"dd6Ob畏?MR⅍&Rz DVV c/#v w>7oJ׭,l \$L|У~Dlauv=™…֎؉j?Q*4Jݧ'dwR>RV`=Fk=m`N r sԿ[$O*iϝc&ʔƶtkW+ߝT=*??xaqu:,z#>|LL,jt}_ó#4E~+߸&U75bkcj2?CuToWY'csK:ayE\?RuSfO4tk'$A& kFZe2G"텍T 3҈-OvѠ,'leHyzps`j]qX6YFinPDj ǒ/w:io8ig$ '\]e(V vi-Ps[$d<#i(Ek{ᷞfbB6aGpof'1Wr/B߳* pGp8E¬P6K\]7Uw4^ LK|0P9۾{v65DZLCb9Gb" }n~W[vjI/^2|g/٢pRPʝVb e<0&&Aot_QG6`™^(WU^85Pyp]9:uKzmN#^8zd52!J?ԼC1[Uali=&E7]t*Y~Mt(k7ҙLn*gE=kC^(ݭQG1q.#uvPoo@ԮuWŒ_Sݩ#rTz#d[[5tv[_?%r\̦q6' amekA!T.*πVE A !v| IC|E Zb.yɚzD-W{y)uSWfY}jnkپlFB$ xS/;( cG^ PY%ƗQ(9ʄ'd=:QsR\@j>*uIkY#qVj;iZ7qU:>bUeLBJ`5 0hI7mR"ãJ'@i?5BUkSu 8-m-0o/y!i>r.PbJO{A!%i'FhŸ0ZxyW]jP2[E[Ae8H~`l׽Pv,#AA`GY˙ ) (ȟyv  B^$w8j2>!/<ptL\\Iي 2w,|S {7vE+iʊ 8\{s6pfvwe P m:;dY@w!1jM b0Z[OŋAjۣZ 3 < MzEjY)oV Od("S GTxccK'sWmjnK]'Wۯ%emT-J9>o_ha6$lO1y@bCOY بEټ?L.<E!eL%yDFg\._w7}Ds=Xڔ&Irq3V_<QzHy o %ٍ{ٞT'$PQC-JjoBz%>~h6|ql6()߈AR%x-3\(FcoE?2dk&=O)ԟ:M3YHa:(YzOگj/͆FZjKo@ਞΎܡ5.6 !@^%3Gb{Lk ǁh(" VA+S]蜛Q& NH'<1jn)>,{6.yb;dw#4hRP-71jVXMM5Gfs{ lW 79~rF&9ۈ L{1۲ ?5{E=udQٲ0`׮h%%hFQ_tϸvR$Ah(a1BhHYG }#XDЇ{;R?}w"K@F=`S=G%AHJy KBXˆ/AyXI7Oe h/YQN ¨KCG8Qq Z9']w 3q;ⷨ.,$?g({BgsI{9$׾Yowh)b/uv{S#9]'Mn-X!nQNٓ)L@'nXn l9ρ±lحD4*~,a~iQ^_(%vU2MٍPZ: V2gFfW& &vhp.lq\;zȎ ߏٌ}em3EJfiA|Txz @_ %j9=O$!w_?3M>&T)}?-Bp=G'Y$%4&N"jaE;ϠPXs:+&c/S{``+>( lL(#4o p_$0@1mRιcTv_+kW1CN`H0Wۦ:zLgQ'֬Nm> lBh/:G.a2zpnd&d|Uj'+[z5hݵ }DdEe]JcxR+ :o 5 5Ov.>枛险7=NF joEƛ&*s7f +}.G4g2M3ךҲ/m ;bHg#2-,4/'C-{5hwB@#l/'5$N%qa4W7N{hL%_*U7ٚ]J.OWTOaW2@{: IFkX,vࢍ;p Ds#Q[9!S9hd X@ -)پVɎ [Ո +Uذ~5䖖qUg&a7Te[s(W;iޝT_̛WPNU8حөY[7lb/!&tT#t?P753ҳ 6? wy= iI[ҫ CɬYM揾VrbgwhDs+ܿ=Usuܷo`K NR|V 6mr3B¦GXO|h x&{;͇^qsn"^1pF0:/P$4hZt0} 렓T8mI5@G@M0آj%>F[@$'k/ H'i-4L#&?sbG=nlHVЪ~V#o"sKe޷kaZzR ER27'wfzqc<ƚܭ /ELd*H/mFڏ ADj]+T(-ؾD(2-]]Nj_]m 35AHfesTl=e'TȶExrx/+ғ"bNiR2Ý%V;̑R%wal8oLAi/ Uۜ,70ŖB-%TQ(euZ6[%©"8dT{}C3wGFQv4X!gEĹ9UGK% {fmuRHC! [֔ ѓ"->(C /~ExTd !C5#!4Vo2&&GXcrY,W9bQlBϐʒr۽%YaB(,A}>A^] u3A^-F\#p"Ujunf8{t$czj]ul9]JDNqr[YH;_Ͽ7avGix~>qO:)FKsp B"2s)l௏I 5ViA0"Qg)Dp ^EFAC4A`?FrW%^e(}a-%_;Z{Zeƍ7j&;7gj'QN]! P%wm^lJ+X' I=N)16B82hیƤ٦!") 1Wt"sew%_ p'CUU%",/RDЏaK@f0I( |B_`\T/(gI{3B$27 J{_ߴLJl5Ӎx 3BBόQdtIoGnmdv&lę2roX+sVj>*gH<62D)a~u5/_2+uݧ "؂`f)?u͋fDZTt@- ٙ]CtDGk8f0 ] ;{TC7Ι XJBn%oz؋Ih4`eN:0+uFߺ|]kj44SG*wjNh͙(œrcYM3&%?TOIr F:sn"dgr(ڤ^ L8]#kN1ocf Iat0#fMT?lyBEL<{Q)Ԟ7NV0Bd 6g#Y#~KZ!6׮:rS: FiPxsCa qtHx̡xrgzKu0"kʪ]аT5Zy,/c1"h&Hڱ:n"Y]:94&d/_[׊pK Wߡ`v!hjύ,$@@Q @!>M/ a6ŇQZz퓈& y>F#ql38s᳞VR5nm"[OޘBm2IWVVݹ'Pnĺobtt7a-=c>\'u Jx>bԯrQ>ɋϸr}>vh^Νp8c z 8[lcyl2<|DɺG^玽g.JokBQڣtwZ|WB{MYDsSiY 8pns;R H/kox=˗ +2Ok ?<舃Hb#i͆Vu"ŬIlLp٪LRz[6b9Fџė.Gb*>]<ǖ$3V\ܛ0=/=-QHSMw̸BZk;씋ԸHރ* >6rZ 7vXg![ ,N}BFq- zr T]ƉPak6A/MNvSe)7y~lvu McH$uzW~-ȭ.uI:.Өx5ZOV1SAɋ<3Sc9ULrь͔ T%h36?'1O"2r@%|k^6}iBxvOըs3p!2%-bֳ$F8<=+XW8M`n%wGL R&‡QF%hk/"7]Ɩex+P/0Ț;-`Y֘Q=4*aXG ,: _;3m;)c}`rv|KozyӴU'_ XS*}< )\ӉԈ?Hpk>xoxoIc.@7#n 0F``A׬J6{.W4<#G@R0纎ZYND\69䁘LGB27rxEN:& "pCXĥՄ(@TX79>_C[T_ѭQ\k[XU4-s۶H["ȟ}l @(h!B=}MDm,˸gʣMuTl"Gwv3G'||dXr U- tE#-ߚ5]MA'0;ȉ V$q2hJ>`/9TxpD&8î-Gˮ*_q*፨J^V-+Җ95FipN25-@ӷK8Ba¨J }qgfnqoNӗƴDr12ܖH;c+D݉=h\C`0-SJH(^Q۫c<Մ36&k!_Eq*K.E&zY42{Ԕ%\Ph7zprq^K}H~1i }+4~.piy5ۄvofq2 .< ETWE2^υ8 O]i4OW_ h:{JQ\S4񗘙B)ă!z7>=ɚhZ"0]\c:Xb1P|em2Q9iMu`#)0!Q;||4(=;ϧHL_H @2mm.WU2..`o߫:Lk5%hLb015'$bB*1\=~X`Is–Υ{,Ymy8J3c6'~de jVil+;S+V>ˆpjquKAC]-Me{--m d_-S?Z~g/9}$3Z~5֤r*oݠUzdNFo߰hiYC a݉>* 4__2DށO4r{YQ0=YAN:B,ǭ]bԐTwN_*hֻůb>|M`8~'  <ѧ)2&O$d~8ot4zrէ0b;  $T&o0Xy3Rf>~~9 2'w}2Bll9={y@e&Yѣ5S4*$ЯĂXm0 {|dH+ᾜɵLLbS8>(Z BdQ3zɵ ^URܘ5zDk(~QiG$p2R*ȏ68SgsMCwv 2i8ǯ[ٹ#;˅u_:z[Vt GV&s /lEeS#:z[׍}.I6_w`0QGEϡ=(~%s_%m JUJ&l넫{H WHڡI1zcf)@^{9&7]A/+,/ )PBA[l5ഴm&~BѯWvvɓDgwspk0H[!a"d* =)K%&8<;1l-EAx$Uj,Zthhz:5`,g4Eoբ#0_bJu|W02f=Qpj: cb7f ϭǑ# ϯT!L ^~|Mk;|T"3U[ G7hk\Y`vިUΥQM.=;mR N?+;3/3&^)$Z !&WZTs" ?lPLu. M+7*2#Q:j52r;k|q"PeHw b/b:0H3.5u'2>qbv # :>k?@2p^V'sZSLPk֨0Uy@i(&f]"%r!J֛/Vol>{0zN}C}%`{ixU'l#Aܤb|#V'f;Nɬ~ "X>zE.Qv<vklI@tއQ;w\CsM[T T0 +)<<5Y#w ȯ"a9!eiЗٓ /Pv(ó`uUre^K%VW).[#K]qZ:EkV}XJqnX)F#heD9V H00 V{0iBA>hxQ:#fizbU@ \Qc^iݵ9sƽ;)ʰ zW10RnbVg_?21EU͒Dɋ\tTyr |(K*/ۏ5E[zA'13Vyu#s3ҰGCE76G.H- "ӶJc3L?0si1IYTVuv۩u'VM ,)W>!w :ѤLmD e0q0/H#pk}) OaG0f_ e3.AU RܦQ bݦG$N$b ^x|[,PC@\a AܱΊb\;}e@Z_@kj>G)1mgfMy(f;)ӣhʵ {eM J'[\( .3JEjvj*I?םZkn7[gԺtxڞA=VA&o]ϤlhwEZu$^*+o1j+oo}ʤmKʙznÀ5 ihN{F<ɀ"=`EĨq9N[g eoDB&ٰ%B_+ᵭI/>aWTv G׊}=4g"|,&ȠSs}hSP4G/bsdˬx#RR&UVvXza{NLroQҁE̼eM_k3eq0Sc8MCΜoF~]/:6 ]#p#-40Uȯw'vE0s:8ǧW|} 8a`0Q{7a&pOEu;ܻlm g!{AUy[7-AX0#'X)dYw)||5r^7p@`;;Hw :_m90`F;=<|N!I YvEQ]IW/kgx>KЮ+tSPPZԞJ@J<ʲ vbХI|9 BkWp}hJ,/XK6 Cu7s<˳Q=53Wa?\"ƁQ K5HC=t:CcqI;D?& *+nf d](OpӾ$ ڱPr v~ LV=i#HI#s]kXoEgUUVdNlX%$.CҙP7Yu+l/6808㗣Q-@Q&L6Zm ǪXq<3H:Peǂ&jTggV.Dj\x$"7K /󧘎5+bZ(H86,Z6fjֳH J?,Q#~=.:6;Jc/ᖃs^j!?nWlDQU'{ׁl No2 EpoaH*o Ncf3ق~"}k1+&iU7J08ֲLph@_u` ^6Rj%֫ɾZFpk.bƝ pTjޏCMQ*HmB|-&JK1IU:P(O) -t/~D$XLȨdcCjߵ)?g XjάTzn:c9f7$"E Dܨ@4LD_9qBYJnKT╥-o#!.6Sf>#ܕfiw5*|5Tuo-nJ[^èǸ* H޷1H^{Y)麜`fpTrZtjlFP9Mx9< Uwԯ&SG3k#5aJ$5WKI';YGZV߉Dq>?IRһo=0)4y|(O+a@ay`Ɩ21@AtvSA>6c):}eFNI?h2S"hqh8"i(^Wn20D,yvT"%uI/N l!آѴZvzI>AYKSR Aycw҃I Oݺhz mۄ 6TҌB%.M٘>ȥ&3Nʏd_PyN34}0(*asO^.ᨇu`PIFwh=Mq2M=dybNX1YOmAظS(0a. )e)9H{;gp WNjNHcR8ɄAzf5G;q*xY+eJ |^SzNj] 3)_+71_e!n;9 yt^w4QĜ09R91nԜ`|_nNQ=Bg1t%1̺cQ#M~YW/nvrg;Ԛ].9Mh[K1btbVPvWE8 tOjve/:+D]2s7|ĥ1 f]L7IZ$328H|eF'V<a̫5|c2%,APdK>5bLy#RǙClG;_G㒣s ?\ַw|Dse` .W[x;A_@U0_=.&e-?~b uPOKVnQk`П<8wgq hI/s.ICTqm#gmzMR|7ሓk&`.hgp6ߓp, 9{,PYΟDgZr՗\/ĺm 3lO؁XT@xAD<1AI ,MXE̻GHs [r񸲪z?8 ČشyNճ8G9 JR4Q@P?YT%_+ n$ Ã9wftp4^&Y67`'ڝon;[! ⫔㜵 *dYZc[, tBѿKҾ\tO$M[2yi7`uS5c gCO%`ӫ8B48;1M_nO<.\JĆWROaC)25^&u6HI8h݌K'{8|l NʖfK,Iy31颪6ðIZ! #e{sr$DKqƽ`&[85))aL '$B^^J- y:cPܵryx;#iXPK+G*DHS$͛68 ܣ!ln Oj9&Ax& H~i91;BW Xq|%}jر sw4Eq#bb V.؇D! 3O?3^|嚁?[p [eOrFL^5Ph}Kw;(<Ә7Fa܈{#<ݐs1˗/-wgIEɉ4qHFW'٠EAq 'Ii ?UAx[)tsRVh-t&dyxr#p:SLG 16t7b3ɷm\ɳ4}+\A&xOttd'74,wW[Fb ,iq~A |'L/B0 MŐ P֡&  /VKQylVݨm@ !|ѷ(#&* X&SC" {wpYBup|7F"F ,Amgz-䊭s{Z Cg&TxYd/wdE Nb44ak Z Na$]n{긶ŦdNZz^e/3IEva SFHj04L3mZ<1M)q`\ GYLD%&q(ӯW@`*ר:LAWCT_}YՔ?݌)nt ,I@F"{haڤPq| 8)7RfivqX@Yh|lo+a~1|RG0uޞ>&F`V^gZTj#OgXĪoO%|=&iؐ w?$tL,>,G;;I,;kԨ9ΚnOr(sP)Y ',E!Y㠁1%( |&Ω'(y18~mQs*лfv3 umbZTnיWWU$K5p롐.td]Bו:Okbxʪ*kD(%_@`u4ׅ) 7ij$7dv=WLҖjltdԿ٩7f%!l{Mmw6l!N7k@9MeaN*|,bFؚ Jb-Xg}޵58i[?7WBs>z,"Fa;0Ӵ(e#hQh6r|GCHN@bV[^p[JTەlU*R]4G}tˁ8܋~'j[2Qkg툠t[.**֫Q[/7FfU_xY[@'sͨq0.N׸]EL,Z=۔.QTv.U?h!KUӎIs9z\z?X?(7-#.2-vgp߽l(VNٙb8JK _i Up>]jpܚ{F OFј*R`n!NCs?]sh"98:-ówg3ףOq.g$6=8F3`Ïn+# B:`4KG݉!Dxe^יk{9e$cRpBU1Kr>z+M;|IL[=!^G( g]9s+0VK9>E,JtU7w=֬lpĚV"*tSǏ/,$x~ r_mYc5m#6'U*bh007a7N_Y#8u6o™0KP47^c#.k$ 60g4r岘'!?GnocWݖu-"QZSq>>&nO`%S!`_iZTZ@^ UYh2.#}q(ԅX<z7DUƖᇝq%$P9~Gx+r%'ךd `(l~g[d$5? XMa |w9h_~R툭XĊWнS?}{p?O|ďp[ 81sE-ڥۂ-l>GM`ؐozhL/5*D؎ 5Q H9EvwJ VŹ^n'LɠV&Hb aܹon`%X=7;֭$aOYj{0TE{VQb܁j1V%Gt/\?.=+gm1  Q$nPiv0ɚ+0-qsw).{ Y.R3B }/HRXFގ3:tkGޠY6@PӀt-~RÙ2L}X38b6S",fƔ2vprYJEgB$o?4`/@v`o?7!x˴eT'`OLlΑs%ػHnhCyklȴY*rkJqDߘʇ-UTPZv 18z>cW[X2< hI_c#CZ[CzEUA_3ܲZ+hU .dl17\5B .έNcńݼl.y_YW6Kݽ_hW#*8#*YfFpl|B/4a~/_GGm5:K&gU/g [y T [C<_{TC,}x2+"f՟"ʌ2o_q!㮉]v# =& B\QV)ZS2YjӺf7ΥvvP0<0S=jXM #2zL!°l~b# (~kAڜld]L8 ]-z'\!'+LF~x a/rRmc700ģupMr̢턠Efg)=٦L.QbB1ꂺ Tr *V|rS~; È2s ŬWꚬ6$X"sBDQXjN 8z|lj+$>pˀr1>c(fseF?} q+Nb=خbU`/,Cn;Vw6x1_"ú%؜/aq#ݣNzSswZ) x{)Sp_D@j0 (R+BX=ia#?Jx" }6[G\gBRbb .W2j?C6^@!֔1uÞ-@xnWg.nw!-RF|H$éݖC JSAf[*Sdx͑afڂvxxg}MDP<4/t UJ@O}th}~_4 cfr&= }1\8 XNK3u?T&.4E'E:B/ >2QF3~\VHjƒ죟\T4! |aG]vԨ2^T'd e? Vj+n[ Ϥ?VN up[t6(O[CKFR+ еdÍ4c֊ջ IY7>4f %DHi}GH_D1Ԝ M sX F͛( YM\^TQpue ڙɩ#_2c Gzm4kw_zG*Gf[R]:Sj^6 _1[bnEzuRev.?R -^4aEYwc$פT9,lsc_G'ߗ[C_S`K/AW60{ J %y㵊:*=Z$xE$WP:r jmWԲ}g@-ݣo:ABC)"G#J[4V]G20??=2gɣ+< E#?V+Ӥԥ(ZZΧ|WڜO,̓Qv!T"Y6w~kR%tI ؀MkXK-Zfn_W fi 4<PV`R@yAx۝p=W eHĭK *gKjXtiv~BG?t:ӈ/ `qG PK!ڂNQry~2V5?I)4s nO_3>,Kۃ~MH2>vjXѱ E.iɅqdoJtS4r+?mIϲOxoE$q>^TBJ;.o; Nm7錾x/98Avz匟 j"OdحvjTNiSf'UiCjJs56%>}TRʼnA˛şMo> 0I\$(ЂMU^>j,TMAp r"u]`xD>o`!r)"!\e UCvgYجB`eg9b./@vS.b>BJladu1&?!e, grpWu\>#Fɬ˞xlL73v OΊb.@]I._nnwʎ7 ˇ@F+T2X%+ƿi?RHh,X2&6kc9NwHTE"⌣sb,E'\DVjc^>TWÝҸ63}2*+b2fins8WC׸su>.% Ő<*)ˉdQ09?~ -\8lO@ $[c>'ڎ\=%- YZ