mod_session-2.4.37-65.module+el8.10.0+1830+22f0c9e0 > 6 6_6 3!pQp)Tξ7]mtZ`f ]mtZ`\JrWjeЈ)MTR!-:ZByGK߃C?b0=a\UԻH[X>HM%{*fbQa R-~ئD hvF*xَiAºg[2~ĸ @p c֋8]0NH(6`hP ,cv(1~DA9Y{$NAz_7O )`0h;C;lDGчʪ3S:y"#(9`2sXME֫,`ſl/O%0ފujFj,+oK`6]5597cb7b4c7ce2b11a25b61d54a571c1e27eb88db1f7af46aa31e5426ad922377ae23c8b99a5be80c6361f0da2eaf89ebf6362ad$/3!pQp)Tξ7]mtZ`f ]mtZ`w[̈́P ߼_9XϷ;Y C?y̼ќ/=coa1ٔh^< gEMbLC-oy[\Zӷ ~RA@ӿv{pI0ݤ nYPPug&yWDWoa-F" 4h}"k a|rSfq, \풪;,Di9IQ).cw{[ZPiC83ɠLْW xxuX)ut/3sl\4ԣ:wbIGerєd?+2̣Z9W+TkD=pj)@G4ׇ50fq#Dxg{%L 4Pn$/3II*h;؆BɡWE<|/UI+&wk܂hа;׉|"_y{ӈ=<$*Jcv9]e2##ن*>_yư~(Ȩ>p=3?#d 6 c!'/ Mh             4 p  Dy(89 :8G$ HT I XY\ ]D ^b2deflt u vw x y<Cmod_session2.4.3765.module+el8.10.0+1830+22f0c9e0Session interface for the Apache HTTP ServerThe mod_session module and associated backends provide an abstract interface for storing and accessing per-user session data.ford1-prod-x86build003.svc.aws.rockylinux.orgKojiRockyASL 2.0infrastructure@rockylinux.orgSystem Environment/Daemonshttps://httpd.apache.org/linuxx86_6492946_/@_`O`Affffffffffff51df0ceeb7dae9922817f4af0554f83fe01d6268025ee08260aeed69be3953d1c8cf97c1980812e57021936c30cdf79f94fa95b6b23ef3e3c2af98cac4ccfb2f7ac98ee5aacbeafb9cb77f4b8017dc6352886da4341f0454c505a96fc71dc8f914db2660e89c1886f8f86bf5ba0691b70a0e92cf58a167b480f2e22ac72cd01b300092098f6b32eaa5d6f27e907214e858aa4c2a74367f01f2591a9aa1605839473044bab2137ec9d24364da74263c3c2e92cf6ec5f9022796cb2f24a360cc6c../../../../usr/lib64/httpd/modules/mod_session_cookie.so../../../../usr/lib64/httpd/modules/mod_session.so../../../../usr/lib64/httpd/modules/mod_session_crypto.so../../../../usr/lib64/httpd/modules/mod_auth_form.so../../../../usr/lib64/httpd/modules/mod_session_dbd.sorootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.37-65.module+el8.10.0+1830+22f0c9e0.src.rpmconfig(mod_session)mod_sessionmod_session(x86-64)@@@@@@    @config(mod_session)httpdhttpd-mmnlibc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)libpthread.so.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)2.4.37-65.module+el8.10.0+1830+22f0c9e00:2.4.37-65.module+el8.10.0+1830+22f0c9e020120211x86643.0.4-14.6.0-14.0-15.2-14.14.3fieN@e̫@d d\@d!d-@d-@d-@doMdJcdcck@cck@c(Ybޅbb2@b8haNaaaawaU`:@`f@`@`@_м@__@_:_^b^(@^@^]]@]߶]҇]@]g@]-@]]@\7\Z@\Yz\T4\\U@[@[[[@[H[u[[[ā@[ā@[ā@[@[@["@[YZ@Z@Z@Yp@Y{Y@Y@YéYéYéYéYX@YYYYx@Ym@YlYf@Ycl@YV=@YGY5GY@YXۡXP@X @X@XwoX[@X[@XEVX)@X@WW~D@W~D@W~D@WKW@VVVVn@VhV.VCV@UK@U@Ua@UF@UQUQTp@T=@T@T @TT_Tk@Tk@S0S@SGS@SS/SS@SSS"@SS5d@S4S&Sz@Sz@S(S@R@RRG@R@R@RsRrF@Ri Re@RVQ@QQޞ@QQo@Q@QQV@Q@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Luboš Uhliarik - 2.4.37-65Joe Orton - 2.4.37-64Joe Orton - 2.4.37-63Johnny Hughes - 2.4.37-62Luboš Uhliarik - 2.4.37-62Tomas Korbar - 2.4.37-61Tomas Korbar - 2.4.37-60Tomas Korbar - 2.4.37-59Tomas Korbar - 2.4.37-58Luboš Uhliarik - 2.4.37-57Luboš Uhliarik - 2.4.37-56.5Luboš Uhliarik - 2.4.37-56.4Luboš Uhliarik - 2.4.37-56Luboš Uhliarik - 2.4.37-55Luboš Uhliarik - 2.4.37-54Luboš Uhliarik - 2.4.37-53Tomas Korbar - 2.4.37-52Luboš Uhliarik - 2.4.37-51Luboš Uhliarik - 2.4.37-50Luboš Uhliarik - 2.4.37-49Luboš Uhliarik - 2.4.37-48Luboš Uhliarik - 2.4.37-47Luboš Uhliarik - 2.4.37-46Luboš Uhliarik - 2.4.37-45Luboš Uhliarik - 2.4.37-44Luboš Uhliarik - 2.4.37-43Luboš Uhliarik - 2.4.37-42Luboš Uhliarik - 2.4.37-41Lubos Uhliarik - 2.4.37-40Artem Egorenkov - 2.4.37-39Lubos Uhliarik - 2.4.37-38Lubos Uhliarik - 2.4.37-37Lubos Uhliarik - 2.4.37-36Lubos Uhliarik - 2.4.37-35Lubos Uhliarik - 2.4.37-33Lubos Uhliarik - 2.4.37-31Joe Orton - 2.4.37-30Lubos Uhliarik - 2.4.37-29Lubos Uhliarik - 2.4.37-28Lubos Uhliarik - 2.4.37-27Lubos Uhliarik - 2.4.37-21Lubos Uhliarik - 2.4.37-20Joe Orton - 2.4.37-19Lubos Uhliarik - 2.4.37-18Lubos Uhliarik - 2.4.37-17Lubos Uhliarik - 2.4.37-16Lubos Uhliarik - 2.4.37-15Lubos Uhliarik - 2.4.37-14Lubos Uhliarik - 2.4.37-13Lubos Uhliarik - 2.4.37-11Lubos Uhliarik - 2.4.37-10Lubos Uhliarik - 2.4.37-9Joe Orton - 2.4.37-8Joe Orton - 2.4.37-7Joe Orton - 2.4.37-6Luboš Uhliarik - 2.4.37-5Luboš Uhliarik - 2.4.37-4Luboš Uhliarik - 2.4.37-3Joe Orton - 2.4.37-2Lubos Uhliarik - 2.4.37-1Luboš Uhliarik - 2.4.35-10Lubos Uhliarik - 2.4.35-9Joe Orton - 2.4.35-7Joe Orton - 2.4.35-5Lubos Uhliarik - 2.4.35-4Lubos Uhliarik - 2.4.35-3Lubos Uhliarik - 2.4.35-2Lubos Uhliarik - 2.4.35-1Lubos Uhliarik - 2.4.33-4Joe Orton - 2.4.33-3Luboš Uhliarik - 2.4.33-2Joe Orton - 2.4.28-8Luboš Uhliarik - 2.4.28-2Luboš Uhliarik - 2.4.28-1Joe Orton - 2.4.27-14Joe Orton - 2.4.27-13Joe Orton - 2.4.27-12Stephen Gallagher - 2.4.27-11Jeroen van Meeuwen - 2.4.27-10Joe Orton - 2.4.27-9Jeroen van Meeuwen - 2.4.27-8Stephen Gallagher - 2.4.27-8.1Joe Orton - 2.4.27-8.1Joe Orton - 2.4.27-7Fedora Release Engineering - 2.4.27-6Fedora Release Engineering - 2.4.27-5Joe Orton - 2.4.27-4Joe Orton - 2.4.27-3Luboš Uhliarik - 2.4.27-2Luboš Uhliarik - 2.4.27-1Joe Orton - 2.4.26-2Luboš Uhliarik - 2.4.26-1Joe Orton - 2.4.25-10Joe Orton - 2.4.25-9Joe Orton - 2.4.25-8Luboš Uhliarik - 2.4.25-7Luboš Uhliarik - 2.4.25-6Joe Orton - 2.4.25-5Fedora Release Engineering - 2.4.25-4Joe Orton - 2.4.25-3Luboš Uhliarik - 2.4.25-2Luboš Uhliarik - 2.4.25-1Luboš Uhliarik - 2.4.23-7Joe Orton - 2.4.23-6Joe Orton - 2.4.23-5Joe Orton - 2.4.23-4Joe Orton - 2.4.23-3Joe Orton - 2.4.23-2Joe Orton - 2.4.23-1Joe Orton - 2.4.18-6Joe Orton - 2.4.18-5Joe Orton - 2.4.18-4Joe Orton - 2.4.18-3Fedora Release Engineering - 2.4.18-2Jan Kaluza - 2.4.18-1Joe Orton - 2.4.17-4Jan Kaluza - 2.4.17-3Jan Kaluza - 2.4.17-2Joe Orton - 2.4.17-1Jan Kaluza - 2.4.12-4Joe Orton - 2.4.12-3Fedora Release Engineering - 2.4.12-2Jan Kaluza - 2.4.12-1Jan Kaluza - 2.4.10-17Jan Kaluza - 2.4.10-16Jan Kaluza - 2.4.10-15Joe Orton - 2.4.10-14Jan Kaluza - 2.4.10-13Jan Kaluza - 2.4.10-12Jan Kaluza - 2.4.10-11Jan Kaluza - 2.4.10-10Joe Orton - 2.4.10-9Joe Orton - 2.4.10-8Jan Kaluza - 2.4.10-7Joe Orton - 2.4.10-6Fedora Release Engineering - 2.4.10-5Jan Kaluza - 2.4.10-4Jan Kaluza - 2.4.10-3Joe Orton - 2.4.10-2Joe Orton - 2.4.10-1Jan Kaluza - 2.4.9-8Jan Kaluza - 2.4.9-7Jan Kaluza - 2.4.9-6Joe Orton - 2.4.9-5Fedora Release Engineering - 2.4.9-4Jan Kaluza - 2.4.9-3Jan Kaluza - 2.4.9-2Jan Kaluza - 2.4.9-1Joe Orton - 2.4.7-6Stephen Gallagher 2.4.7-5Jan Kaluza - 2.4.7-4Jan Kaluza - 2.4.7-3Joe Orton - 2.4.7-2Joe Orton - 2.4.7-1Joe Orton - 2.4.6-10Joe Orton - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Joe Orton - 2.4.6-6Jan kaluza - 2.4.6-5Joe Orton - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-7Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Resolves: RHEL-31857 - httpd:2.4/httpd: HTTP response splitting (CVE-2023-38709)- Resolves: RHEL-14448 - httpd: mod_macro: out-of-bounds read vulnerability (CVE-2023-31122)- mod_xml2enc: fix media type handling Resolves: RHEL-14321- change for CentOS Stream Branding- Resolves: #2221083 - Apache Bug 57087: mod_proxy_fcgi doesn't send cgi CONTENT_LENGTH variable when the client request used Transfer-Encoding:chunked- Fix issue found by covscan - Related: #2159603- Another rebuild because of mistake in workflow - Related: #2159603- Rebuild because of mistake in workflow - Related: #2159603- Resolves: #2159603 - mod_status lists BusyWorkers IdleWorkers keys twice- Resolves: #2176723 - CVE-2023-27522 httpd:2.4/httpd: mod_proxy_uwsgi HTTP response splitting- Resolves: #2190133 - mod_rewrite regression with CVE-2023-25690- Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy- Resolves: #2162499 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2162485 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2162509 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2155961 - prevent sscg creating /dhparams.pem- Resolves: #2095650 - Dependency from mod_http2 on httpd broken- Resolves: #2050888 - httpd with SSL fails to start unless hostname command was installed- Add the SNI support in mod_proxy_wstunnel module for Apache httpd - Resolves: rhbz#2017543- Resolves: #2097015 - CVE-2022-28614 httpd:2.4/httpd: out-of-bounds read via ap_rwrite() - Resolves: #2097031 - CVE-2022-28615 httpd:2.4/httpd: out-of-bounds read in ap_strcmp_match() - Resolves: #2097458 - CVE-2022-30522 httpd:2.4/httpd: mod_sed: DoS vulnerability - Resolves: #2097480 - CVE-2022-30556 httpd:2.4/httpd: mod_lua: Information disclosure with websockets - Resolves: #2098247 - CVE-2022-31813 httpd:2.4/httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism - Resolves: #2097451 - CVE-2022-29404 httpd:2.4/httpd: mod_lua: DoS in r:parsebody - Resolves: #2096997 - CVE-2022-26377 httpd:2.4/httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2065237 - CVE-2022-22719 httpd:2.4/httpd: mod_lua: Use of uninitialized value of in r:parsebody - Resolves: #2065267 - CVE-2022-22721 httpd:2.4/httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody - Resolves: #2065324 - CVE-2022-23943 httpd:2.4/httpd: mod_sed: Read/write beyond bounds- Resolves: #2090848 - CVE-2020-13950 httpd:2.4/httpd: mod_proxy NULL pointer dereference- Resolves: #2065249 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations- Resolves: #2035063 - CVE-2021-44790 httpd:2.4/httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2007199 - CVE-2021-36160 httpd:2.4/httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path - Resolves: #1972491 - CVE-2021-33193 httpd:2.4/mod_http2: Request splitting via HTTP/2 method injection and mod_proxy- Resolves: #1968278 - CVE-2020-35452 httpd:2.4/httpd: Single zero byte stack overflow in mod_auth_digest - Resolves: #2001046 - Apache httpd OOME with mod_dav in RHEL 8 - Resolves: #2005128 (CVE-2021-34798) - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #1984828 - mod_proxy_hcheck piles up health checks leading to high memory consumption - Resolves: #2005119 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input- Related: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path- Resolves: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path - Resolves: #1969229 - CVE-2021-26691 httpd:2.4/httpd: Heap overflow in mod_session- Resolves: #1680111 - httpd sends reply to HTTPS GET using two TLS records - Resolves: #1905613 - mod_ssl does not like valid certificate chain - Resolves: #1935742 - [RFE] backport samesite/httponly/secure flags for usertrack - Resolves: #1972500 - CVE-2021-30641 httpd:2.4/httpd: MergeSlashes regression - Resolves: #1968307 - CVE-2021-26690 httpd:2.4/httpd: mod_session NULL pointer dereference in parser - Resolves: #1934741 - Apache trademark update - new logo- Resolves: #1952557 - mod_proxy_wstunnel.html is a malformed XML - Resolves: #1937334 - SSLProtocol with based virtual hosts- prevent htcacheclean from while break when first file processed- Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache- Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile to be able to handle certs without matching private key- Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel - Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()- Resolves: #1651376 - centralizing default index.html for httpd- Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool concurrency issues - Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1680118 - unorderly connection close when client attempts renegotiation- Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does not respect expiry time - Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer overflow - Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package - Resolves: #1869576 - httpd : mod_proxy should allow to specify Proxy-Authorization in ProxyRemote directive - Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1891829 - mod_proxy_hcheck Doesn't perform checks when in a balancer- Resolves: #1209162 - support logging to journald from CustomLog- Resolves: #1823263 (CVE-2020-1934) - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Related: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work- Resolves: #1823259 - CVE-2020-1927 httpd:2.4/httpd: mod_rewrite configurations vulnerable to open redirect - Resolves: #1747284 - CVE-2019-10098 httpd:2.4/httpd: mod_rewrite potential open redirect - Resolves: #1747281 - CVE-2019-10092 httpd:2.4/httpd: limited cross-site scripting in mod_proxy error page - Resolves: #1747291 - CVE-2019-10097 httpd:2.4/httpd: null-pointer dereference in mod_remoteip - Resolves: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work - Resolves: #1794728 - Backport of SessionExpiryUpdateInterval directive- Resolves: #1775158 - POST request with TLS 1.3 PHA client auth fails: Re-negotiation handshake failed: Client certificate missing- Resolves: #1704317 - Add support for SSLKEYLOGFILE- mod_cgid: enable fd passing (#1633224)- Resolves: #1744121 - Unexpected OCSP in proxy SSL connection - Resolves: #1725031 - htpasswd: support SHA-x passwords for FIPS compatibility - Resolves: #1633224 - mod_cgid logging issues- remove bundled mod_md module - Related: #1747898 - add mod_md package- Resolves: #1744999 - CVE-2019-9511 httpd:2.4/mod_http2: HTTP/2: large amount of data request leads to denial of service - Resolves: #1745086 - CVE-2019-9516 httpd:2.4/mod_http2: HTTP/2: 0-length headers leads to denial of service - Resolves: #1745154 - CVE-2019-9517 httpd:2.4/mod_http2: HTTP/2: request for large response leads to denial of service- Resolves: #1730721 - absolute path used for default state and runtime dir by default- Resolves: #1724549 - httpd response contains garbage in Content-Type header- Resolves: #1696142 - CVE-2019-0217 httpd:2.4/httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696097 - CVE-2019-0220 httpd:2.4/httpd: URL normalization inconsistency - Resolves: #1669221 - `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang - Resolves: #1673022 - httpd can not be started with mod_md enabled- Resolves: #1695432 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: #1696091 - CVE-2019-0215 httpd:2.4/httpd: mod_ssl: access control bypass when using per-location client certification authentication- Resolves: #1672977 - state-dir corruption on reload- Resolves: #1670716 - Coredump when starting in FIPS mode- add security fix for CVE-2019-0190 (#1671282)- add DefaultStateDir/ap_state_dir_relative() (#1653009) - mod_dav_fs: use state dir for default DAVLockDB - mod_md: use state dir for default MDStoreDir- add httpd.conf(5) (#1611361)- Resolves: #1652966 - Missing RELEASE in http header- Resolves: #1641951 - No Documentation= line in htcacheclean.service files- Resolves: #1643713 - TLS connection allowed while all protocols are forbidden- mod_ssl: fix off-by-one causing crashes in CGI children (#1649428)- Resolves: #1644625 - httpd rebase to 2.4.37- Related: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- mod_ssl: allow sending multiple CA names which differ only in case- mod_ssl: drop SSLRandomSeed from default config (#1638730) - mod_ssl: follow OpenSSL protocol defaults if SSLProtocol is not configured (Rob Crittenden, #1638738)- mod_ssl: don't require SSLCryptoDevice to be set for PKCS#11 cert- Resolves: #1635681 - sync with Fedora 28/29 httpd - comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in default configuration; now follow OpenSSL system default (#1468322) - dropped NPN support - mod_md: change hard-coded default MdStoreDir to state/md (#1563846) - don't block on service try-restart in posttrans scriptlet - build and load mod_brotli - mod_systemd: show bound ports in status and log to journal at startup - updated httpd.service.xml man page - tweak wording in privkey passphrase prompt - drop sslmultiproxy patch - apachectl: don't read /etc/sysconfig/httpd - drop irrelevant Obsoletes for devel subpackage - move instantiated httpd@.service to main httpd package- Resolves: #1602548 - various covscan fixes- apache httpd can work with TLS 1.3 (#1617997) - drop SSLv3 support patch- new version 2.4.35 (#1632754)- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All" configuration (#1622630)- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki, #1527084)- new version 2.4.33 - add mod_md subpackage; load mod_proxy_uwsgi by default- remove %ghosted /etc/sysconfig/httpd (#1572676)- Resolves: #1512563 - httpd: update welcome page branding - Resolves: #1511123 - RFE: httpd use event MPM by default - Resolves: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- new version 2.4.28- add notes on enabling httpd_graceful_shutdown boolean for prefork- drop Requires(post) for mod_ssl- better error handling in httpd-ssl-gencerts (#1494556)- Require sscg 2.2.0 for creating service and CA certificates together- Address CVE-2017-9798 by applying patch from upstream (#1490344)- use sscg defaults; append CA cert to generated cert - document httpd-init.service in httpd-init.service(8)- Address CVE-2017-9798 by applying patch from upstream (#1490344)- Generate SSL certificates on service start, not %posttrans- move httpd.service.d, httpd.socket.d dirs to -filesystem- add new content-length filter (upstream PR 61222)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- update mod_systemd (r1802251)- switch to event by default for Fedora 27 and later (#1471708)- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig- new version 2.4.27- mod_proxy_fcgi: fix further regressions (PR 61202)- new version 2.4.26- move unit man pages to section 8, add as Documentation= in units- add httpd.service(5) and httpd.socket(5) man pages- require mod_http2, now packaged separately- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Resolves: #1434916 - httpd.service: Failed with result timeout- link only httpd, not support/* against -lselinux -lsystemd- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- mod_watchdog: restrict thread lifetime (#1410883)- Resolves: #1358875 - require nghttp2 >= 1.5.0- new version 2.4.25- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of LimitRequestFields directive in mod_http2- fix build with OpenSSL 1.1 (#1392900) - fix typos in ssl.conf (josef randinger, #1379407)- no longer package /etc/sysconfig/httpd - synch ssl.conf with upstream- add security fix for CVE-2016-5387- load mod_watchdog by default (#1353582)- restore build of mod_proxy_fdpass (#1325883) - improve check tests to catch configured-but-not-built modules- update to 2.4.23 (#1325883, #1353203) - load mod_proxy_hcheck - recommend use of "systemctl edit" in httpd.service- have "apachectl graceful" start httpd if not running, per man page- use redirects for lang-specific /manual/ URLs- fix welcome page HTML validity (Ville Skyttä)- remove httpd pre script (duplicate of httpd-filesystem's) - in httpd-filesystem pre script, create group/user iff non-existent- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- update to new version 2.4.18- re-enable mod_asis due to popular demand (#1284315)- fix crash when using -X argument (#1272234)- rebase socket activation patch to 2.4.17- update to 2.4.17 (#1271224) - build, load mod_http2 - don't build mod_asis, mod_file_cache - load mod_cache_socache, mod_proxy_wstunnel by default - check every built mod_* is configured - synch ssl.conf with upstream; disable SSLv3 by default- update to 2.4.16- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- update to 2.4.12- fix compilation with lua-5.3- remove filter for auto-provides of httpd modules, it is not needed since F20- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583) - mod_lua: fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments (CVE-2014-8109)- require apr-util 1.5.x- use NoDelay and DeferAcceptSec in httpd.socket- increase suexec minimum acceptable uid/gid to 1000 (#1136391)- fix hostname requirement and conflict with openssl-libs- use KillMode=mixed in httpd.service (#1135122)- set vstring based on /etc/os-release (Pat Riehecky, #1114539)- pull in httpd-filesystem as Requires(pre) (#1128328) - fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348) - require hostname for mod_ssl post script (#1135118)- mod_systemd: updated to the latest version - use -lsystemd instead of -lsystemd-daemon (#1125084) - fix possible crash in SIGINT handling (#958934)- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119) - switch default ssl.conf to use PROFILE=SYSTEM (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- add /usr/bin/useradd dependency to -filesystem requires- fix creating apache user in pre script (#1128328)- enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf- update to 2.4.10 - expand variables in docdir example configs- add support for systemd socket activation (#1111648)- remove conf.modules.d from httpd-filesystem subpackage (#1081453)- add httpd-filesystem subpackage (#1081453)- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- add support for SetHandler + proxy (#1078970)- move macros from /etc/rpm to macros.d (#1074277) - remove unused patches- update to 2.4.9- use 2048-bit RSA key with SHA-256 signature in dummy certificate- Create drop directory for systemd snippets- remove provides of old MMN, because it contained double-dash (#1068851)- fix graceful restart using legacy actions- conflict with pre-1.5.0 APR - fix sslsninotreq patch- update to 2.4.7 (#1034071)- switch to requiring system-logos-httpd (#1031288)- change mmnisa to drop "-" altogether- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide for transition- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)- systemd: send SIGWINCH signal without httpd -k in ExecStop- load mod_macro by default (#998452) - add README to conf.modules.d - mod_proxy_http: add possible fix for threading issues (r1534321) - core: add fix for truncated output with CGI scripts (r1530793)- require fedora-logos-httpd (#1009162)- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- ignore /etc/sysconfig/httpd and document systemd way of setting env variables in this file- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311) 2.4.37-65.module+el8.10.0+1830+22f0c9e02.4.37-65.module+el8.10.0+1830+22f0c9e02.4.37-65.module+el8.10.0+1830+22f0c9e001-session.conf.build-ida83ccc2756f3d29474cccb6ce3b28122e6df64aa9182490a42bd8501052743259125a910cb9004d660e4f4506d022c8617c039fdd778d386179394389ebd60000a3ebfe931794f468ae5b6d14657cf5b369ffb16d0cf1e181aba08948f4e0fmod_auth_form.somod_session.somod_session_cookie.somod_session_crypto.somod_session_dbd.so/etc/httpd/conf.modules.d//usr/lib//usr/lib/.build-id/6c//usr/lib/.build-id/7b//usr/lib/.build-id/8b//usr/lib/.build-id/ce//usr/lib/.build-id/f5//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ce9394389ebd60000a3ebfe931794f468ae5b6d1, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7baa9182490a42bd8501052743259125a910cb90, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=6ca83ccc2756f3d29474cccb6ce3b28122e6df64, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8b04d660e4f4506d022c8617c039fdd778d38617, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f54657cf5b369ffb16d0cf1e181aba08948f4e0f, stripped RRRRR RRRRR RRRRRR RRRRRR RRRRRR utf-8733f81107847e86f35b917d883d5c17f9797091786ae5c08da75e2106617f960httpd:2.4:8100020240701134220:e155f54d?07zXZ !#,ȧ] b2u Q{LY7(e@ #ޖ2 q @LCFܯᵘ*BL.F20;D4n')]ԋ4) Kc'}qϸH3em(}֦LԡZ0l2ז41,4mmڻ/,#_WHAZplI]:"N(jOĂ]3-S킔P|/aC{ɿb%zMZ^eca4K0=ef X4ӓdјxm?=.!Z^2uuK7ǹRQCY& D|B0Q8N‡+/o,rҮv޾Eݚ ]<%vJ T!@)8 #k/ +Hni[S?5liOM_HZ=C7nt 8:P/qUԦPv:ǘ8 #ǀg'+&qr#^)AmWHBX#Vgssȇ߹ xس]blkTn+:E+Zݒj\z_3X.Q": QveYD2]t¨%<8AU)1W~Ӣ{͗6/KʈiV4l6R/%{|jC"N5~آ.3f-{K2Y{ą֯ GF>G6W0PoKx%/OSm zo8^/ ʐhTu|Yz(#qbd[#b2d~y(=a=χa Z (eAsPWf{mcN:Y5mʁ54Dq=/Aʭ Aȝm6B,} X Lm2U7M/]ˆ$g*Ct܇~"0Y"Wߠsȸu(jnqH(;VxPi2z7^䡍Ao]4*ј!Bь>,/MPX7S]!yyCKsǴ 6 _^u^n'6 2"qp ̾2@oA"vi}M+oCNUc=2>b]]9EϞL ~Hݪ''Iw #zs:zR\VD;ֵ k9/5Xӝc迺VA|o`.«-Z}3ujDU/ER2 C@b3Sv 3~aXFbG:QEPP u>?L)mBgO}q$[ *N.XZg`z2qtV>S2W G~ºp`W#t~ZeԘ& ӡBi+f=g#mʩj,Ȕ-Q7TN&nG#rDYp1{;Ec.|)jۂP*"M@^/PK/?`Ig kwdFa 栚jlZV.sbzoBs@7[9^smĎROR$oG%{a5#TpFZ0 M wX:ǢC( CbAy.X[TBNBߩZeJÓV3g¤Y@wNpAXU]GGR1WWIWXo ,{r 5s [qz# ڵ?n]hY> +B2m3AS*. vKZ;^3E.wlc43% ì[]]rtɹE½8tQu3?p`Bq>Fל6% y@O@ 5r(zq?G՛7|\SvqiMCG{{v+N8"6 ជ^Yx'`3x iĢV~6A {+y$VK/NݘiyBQom ,1IU5_*BS ]Ӭ h9b{ K\ґtCAAw ";s8 ZSx2xmCKEfNb^f<.r,Vb !"j/Pp!=l_zL55GdyoYVRxU&soęhsX[uE ûhca^W0af;aL9]> ha2/OxǞ% I s*I彘O,tL(hC-^cT9s(. ո}Ik5y͡>6pǃ1Rpu#>/yxY.kKBLKhC8y#{{}lIyT0ͨTS V#cEC iZ4wn9#^VlˢXD)M6p,ᣍgY"~H,^v[-.ڍwv\$smzm׍SHOa,!|<dK@W8\ouBo 5l)oA*gzFJx:3Hgil\V9*GPv'[T|vuٟD,;J7WS)~d6ihA_TR*%c;hC}3+›v (*~/% < hݲ*$ٳC?VPu0JXbbjFtpٴlGCxU 5dn$1̛aU{|U8wszoxUdVIL/68,?Fdj1`\/ { P7B?DδNA(y@E\3/=T?yi6¸Bs)\U-J+Tۏ-&P2ͤ]1mʀ*ț(׏v9[zɚo LJfSChTo;8IcZ8`f1xqV/s_*J>X+f5 tmţ1s=UC_~[&2}(,"j(aJ3G4i(QRV_iߗcU'-A!t,Gɵ:e}SK.=yc Z>'%BOe8hDL\N65tbR$< AҕMd֛K'yr`WݲdC:[Cb~n EE_=_]x7O [zt0"[H/tm:'[xS{ѝb-]Jua Сr<4ͻ KǾ#w~^ƶ6R-CEE Bc6|&.EޝGݳb9uO Mc ê'  CNb҃StP+ ~3nx.^5VvHc֧T_學~e>op{*b`H3="_A"ڽLmdƥrc_nvےUyzŅumi wd$3ݣ&T&/ƒ+}I5/ʠ F2Mn h`Nk,;Oy|vҐ]\ I>/MCѢދUtl.߇S|ϼ&8fڹ|lM` -UlgNmsTNHl9> qg\A-:Yܶ(AM2 wQ)'Fìt~ikrb\jmi\?Q]^'=D=5u -;6UNnh"»Z-\ ȢgKrwk>{*k^n:4Aɪ#C]a+#;O~I8 b R2h!~_5E-pT귆T؁[ցѩj.Nh.WLh RbL`0]J ~!v/E3 )}u^ 0 9aYK}glX `/djف$ձ8P*DYj c6R >31U}@OT#G"C"=i!;^R:crZ$NdW$/J/0ϥTLZ4 r/l''Dѐ`-xt; P fyB 3 oJ$blG+FF1걁B97&ķe!c\GyJ *Tp\HF4M۟KכKrUK[[iExXO1ڬ( E*V1e!maI-:5S]_97m Mj<CGb .&˧ޱM.*|H<ou3KdBkzW?\-(h/@`yK69t))F*?v|ӋKp&7鰮9OIo>P{ĩc@u=ø>5NaCVcޣiH~$W,8[W\>Sč~O4w j%s]+UCWYAy Sʧ´~ޡ ^1G+{ /Y=Q6P˿s V=|D0{vLBFm[iE J)Bi/@nˇMvYɕ59m/1*'w2Xp#QgPJ2ѸUc$u\0Pa x^O҉,i_CJOǺEC?c6VnOюRr cTM{bf܇VShVS$w}ڣ"& Pa}М rbV~jq⠞Vd^PkW侞MQ P(Ip6gV Pj>N6[R6*5oWZeF8, k?p`sج-jVG<6G˶3]͛RhI>tc!'$NHQM \1 O;znDɍ(A X3ihv@(rY%qpj&8TvWq8fxQok?G* )`]cGċR7}g[ _IvN GO8A_j7.}X!Ŝ7,w-Q+"X MixlHCI?AEٴ; Lb3 a)_䒂 򧵒/|!;4G.[jN{IGj4jq Dmj V/2pO66.oɒXI& ?/=! }z(Ρ[us^捒f.҆x9`ld ;ɕh#绗&wI{1N˜KIi Z*`2!Ɖ$Xp7b y24ʢ]_ +Ż/Z>EheBrQNm'QNFX>.> _wN,U\mw{brm+}H6p[fZ3hRo#i-L%kW%q4=XD虰C#̉n\78EL,d7X#7n1lyA$⭋+FntHɘj'U N<4\E1'cNb|=d _W$R[8GUb~_abg`T^ aNXG}r F ?0g.j]ME!^?yd laj}&jMf6B $~WN3H4):2Mx0_-M27C6|Sd̤p\E/jYL-L>p# WtrUsC/QItʈ$ z$cM"Sp 0bH#o*(R֛4#B">0@K hϜD;+\eYZFElJum8s xw./x//Ih(; g)AV@jMٱd ^`x2Na-à %(`QɱssvG uTYaKb[[etgS4vhn&aj2sNק7k:#J.)$oB߭/xf"A#zQl>'KY5%Bͽ6Z2 lģ` `<K7zׅC WNf=B.hg 0jve|;% h$^5ս1`/^Κb!vɧm^\T0l vѢ>! l PrU$ÉN(&߅Kj"IA+Μă-+b{%V:au^]Fvl_C/K!Dʍ[DD<{a*c̕ǍX[o~QabljBpEK;aUc멕34top0R3aB+oWf™cNmcKW1}D/cl;ٺ̽Տ%;nɊ$"8OqEyX<:_?֣, EUtSI ).YM~<@6ԑճ7ж=,~qޕRs' Q7y`KOҴH؉7te^EG_1,$f V i{P_iFNGB69Mx"D]6;@@ ]u'g8׎+mbIX+ؒaHeWwnjDOՖ^5$xN㎐aFN_"BP3s.@=J/65]ҎnT _A~ijqo5g>j</M'ߚ;i3z@sfz4yb0El :.9~$ (uvuBô(2KD摭 I0?}tECqU y40@] [SAhlBl$Y(S |DR@5;Vâ_.{BqHt5 nƝsQNw׭He$h -RTN6{+]ű.hܴ)Y҅Tk댶lQ0m /1d=KFɡ6-̚>j9Sjtv2nƲwwNgG ̒hnʸߎm-r(ً0bqʭeKWHN<;aMguuWoi=@j=4A*%~*yȄ>#e>i;6wb'>j & &g!q==vi2yB^>{(®to Ek j(O^gQg`^EyteeRk7E(nHd$tgЮ->F:]ɸ9_i]X'hxn'lmii Lf֠6Gi2ġjDio啞\)8yԏ;Ƨŗj+[]ro@`a&g£GVwX:WGhkIT2 }ʼny-v('W%ksF޷,YPf̖sfuJj\֋C:4[Lr[Wݺ4+֚Bmd&.֍.dP` `XZ ]cIggrFE8~JPA,aD،Cwcq~Je-WbP98;5?J2*Z۩N@T5,HI]>>R. QSc 1()E}27udCL]Id]ZFw'ꪩ4Y0zmf9lr`w50Mno1hEGce#ёhkYQjeaƘ1wΌp@?b 7BHC;-H5I98檧 ~K(x"JDތ0ܥ-M_ gZmڿP0Q}# a\NIAI;9JbU'2 D]:G<x]*v`І"~Gͥ5~WK2ֲ85L2:9<`t64sIn~tCW5eoeWzOti>mϷ_n0#ҍ' edւR *<Dges Yޥj@H6+Uޜʪx={/*QVt߹'* J4P7_ ݸΈ:5ĸlm%mOv gn10b6I}72 pj:wX;Y*OR>I˅QEq.l'G^p4BQz+yAlp 2UJm/_D=_YyePsJo*{.y6#f#FJ%=>OVf[ }y~؛KQY~C4fD(Yo,JJ559Ԗ9b~}fy>hRGS\5pV-4#R#O$A>'̌{oM㻷xpj8(WR8~6deXd4_wP1s9*I Ayqa*eZk7 rO$d5im;'odF:qCgzWzdzIe!{|ߋn3$a3ǘAo VdqVHAz,yּnoz.|b2n l qk*7_-u,#Ⳕ^.bWNrKGԊ!qNFk1kG˄L3n5t #0,[E|?@"]B}rMv|j5딭p%3v4l Ewwq:*u"C!2KYh3t[aR CU#`ɫ?!Ѥ(Y/#>vH_qq +:odMg|dZP\}H`aU#BA%m&ʣkE2qADĉĕ;QjiXk(_&>GH ێGd8\H),h!XP뺺 ҹVẮ۶=enjx3✶pA;.yz`w&|Q_X=HNbiS%Y`23\ԍB۹0+SuJ;鞦~6zJ)cjk T <6کZ:]& ! YשD i ùPNLZ,bkV^S E"iW(bHA\s7(wAx -x=k|,dsH*>qzFl3aFտG'JVoKSPG;} 66bC$h.e1Q 05jIULŇ'*.ȋjeEnr^fAl1:k(Ŋ' n U%)YQB,l)$c_w׊zGHEu/#,㗟F'LNK $0ˬef>se8‹Q3E[̭gz:{N4%x7,$VyՕ| `N qh|=ޘLVbuhDw?8w[RA޿EQic^50K 5g#~3U r&R&l Ԋ@yaI&'{e@ȧ@hj0%[ e m~#9j7u#bbv:ٿbsE5a\dUsTw2mcK} [v56}4ctjb.Vi&ɥ[u\RI"nfo%Nwαir Hx i?˔_x[LG(RPŐq6Pgp"3W[T)`֥ʨM#a8kka!hT0xәbđeVƬvVXՙ -Iy/0Rg[e(`䙻7+"f~IDBnkAJC[v?!x> Ȧ)ѐaQr0$i5E>:@KPȖQ}lp!1,;*N h?\hB@O؝oF=jT+^楿jY\ONLafjƒ;n-Ԯ*2S)q$B̡Yq59' YyyQ2/dD/P-"-qk]+m 'ԩLTt=v+tO|u4ߠSR[GA.yA9#Z ,GyrnĔ|ŋw231EtGU5{z2M_Iʩy]rQ\[ :-#2)m=rvl }{327C@oUKY.,I\ů,!{2:,3ԋtsi.qur'y5aG9H,t0oB1M.>!*T@o$8M{CH~֐l;>8f} YvSzVfldetO]s08̰陟,bi4Y]\!aGJc%ػch iId(7)UݙU;9 Hʠ^y9Ce4<J#hn8rs4б>Pc=$&$*y A[t|:V/^P:g>v-k4zB%K̻cNoD3nQ&[$Eor}5\}+B(?o8 Ɍ8c깫Fg2,X&vZA+?J»3d]`vY64ynz\PѴ뵭tǹZ yRPT8- =~C9l.hd'8ittA_= ,gr? e7q98`xStŹU PЇwqxup@1[E a o-W$,X?J@n!cz 88sF$}]3ն#PXc owVsM8h|cwqşp1c6W*^RAk%@GϚU [vXH|:&NJFGlJy3fǭ-ħ%ȶ?~c֛OC8L_h3ftI=B^ӂ?*ϰ:*TrcCRPZul|Vr5Eu fT\8(iUn⏴’F͍yoqVl7]<.l +4:}X2{miU_^% |6ʹ 4Χ?$ƅ$6FuE)bl,CwMiy)4 ՔnZA7mRZ1`~B aDvP,n q rO6]i=)LT:;:r2&DƷ|o+4K èY.@qBJ1%}C!76aHTnS( VO6Żc?0ZfC8I9as7s*#c RKg"7 FqG @;G%H nNbKv4.S)k/ 'J춫]W 5c`'7['AG ;/VR>{- 8F)1\{ AȲ,cVc {^]lh`3 .~?e\l} b9G^/Zx_nxD`pU:-]Mk$˳Uv&w&3͹[u2w~@ew;i86ܛs\fN71,;h ^6\Ҹ"ժ P]iUo2vrD j/dXA2 oo$TA`KK'K_F.!@m.+b$[bDV^q*/ )""+w~Q-zon{]}S^`bQAaԷ˹J jͪn(h3rV wSs2'V6Ӿ?| [j=TWC]*)S3DJTD9Uϒd} GA&]&}OrMba%8IL4jVɖd4( 6OQAhNpѱD] YוѲq)! V</@5i_%ɰXLBȇQx/t\TX(2d+&2E3H!`ӷ@t5"+YܥUB%C[ sGV >+RމEN}O.#Z?d"3xZp]7M%28^,P2H>MW*Z_]rPpoآgBlbwf V"> "JW_h98M[tkD&È9QWWr@K@%RMV'iD4b0VZ.)Q dG|F W{r[D1Ɏ+9|{e2o+XfPӢ⹹R4߻O'`F6t>/&_fI׾ A5ށ |Q`Ф۴pZ;~*: f8bC)gZЩPhY_t!ʰN+x!U_d"a0(o|},_lt ? (Az鴛Кґk,_!`Ԩ$h/z*vP7+t] \C? )ߌΒ.9Oй8b;*]D(e>Kq[W/\h/dP ZHv"vUƫd6FwplFMDL1d'`E7f|(ଠ{ȼoo }mY 9&RB )&7"|yJ0=h6ƒVK.NAUY0uL~|Dz𘆼%No3#G0q?It]> AKQs F!e r!B#\zYPMX4AJba1vp22~[@td`Sǂu!ӚT?6UΚ-$]X5NImivtpD΍jݫVE(}ec(7EUyV;r1fAaFTo.-ڻJī%kzUz7 +ji15;S?4HB j*%$Jh @T.*U??߱ʓ,j7}(R3pa X W#RR{ܵ4cnF~ܨ%gI`p]5ByROsi5{DOVǐ\8EvN"^' HK]+fXSrdIVj= N2} /\bI5P0hm}敊 6 qRYA]Fx䘇`&vQ\dI3|.Iot}9 !@ky?%h6eVxŚ~NW A=D(jڬrd%g; jյF]`aOG[Tx*: : P+'A@ -bA8: gD-eYcH[K4I&VvVc2+o j J}3krrtdf⿾c%#xw{4߶DtWuY7icնvRP2 "4#D+17~H8w:`pxr+2 G>%ꙓ}ؓuΩf]?;‚2P&)܋I)4P諄g1>C”<-n(09SXVmQo"Cs"x2N咚ZĬ^%1 bw,2DHqu{b~2L;pGM;XdPdiPJ W(ic۹oNQݬ*i"{h-D j,)=فBvN 2nU<&51Z^W&9|ej .y)rM#鬏.֔&iMK?9clu4"ars,Kz='&1@CGp)ewuU!eVk:sx- lLӮ}TKk`2^z76jH\g3:+ EA#N4 u6+c{Ă"HTise~i^WMc י\3{I~A?L ':5>D]e|¹+ڶ"mN$XH' U{GJkE*S!VjfpM`L{eIsM;Ri9.{/4AaН[!DOh\EByp?83<2*W %Q*e 0*R.=2R ij_N}PaZ i,^<#4UC%haёjUܸ`Pee|ؾ{6YO٪N/)nfVS x%f_0L:< t2v1J62t]%%.ṽEJ|鴬].m6wFA?m GLuFZfB|AAi>]6;usf}F>"RA8͗_z` :)7A@Pi 9ޔ)_RoG/xmͱbi; .|4u"T!8t=⚾q4nA%1 ft(o 5׍qK:M5Ye$L?ץ,T]OuU +6]>+[u@h)q5!;ظd;P,#; :Ժ5JUNzNKPAI§уD/D z,u:؉LVf\xKx\KhQ^LB=~@{na eOE1/j]e(8X _kj]ɇS#IAeElGd RnM;k3|=\Y<=츶0WTS*֘x &;h0$+ 麡0 tƅl>(I$oֆ]yfpyT7^(RrU6-(GImc1+Q )\sZ?^nzYm }Cصf!)<KW,DPrijQ%@sjTz~)$!FX̌d.*eKA G8tpǾ~x'MbZiKj il U(xY:HY@']/Yx" ,ֹL #Cn԰ &Qb!Z1m裆2F.5&<sGTw;eqv[QFeCu_ B'cI rVf]?N{!۲T9<{Jy*(5~MT_+~2cN_dpΫ#`9sT)5&e+y -Uj~tub])>@zޒ90t/ZLUKVKpb'yD)|< _8,}6޴*JN.{BrTq+wNIekF-ĭ+{M5n eJ`Ҙm/kh)T"R0#•MT,YnRhB؉yɒ^o{ґW`'[e{jDG"`*qă*ahx_mƘSgXygءyIBM`sX k.cğCbVt, )A-v7? EH@"2m4Y_| ދL`UzSU-<:tNenHWCekײ&KsG>S (RSzƬ:3`*yLeqm9@ ]*w~[h"\~̒u9>I/1@^iHie-!(.?AHЃi(Ԟn@ Hy5/n.eؒ# E9 idq(Os5ţ-_iЖtВI+Pus j1釬f??i7BYz%Dwwҹ=M_q޸!GE BϚI'Ξӈ㚾1@Oi O>lOsQ-%ɓc/j]0ctj(} jʊ |v1>qI.j`{NcI)Z*tuY|4w̹*xq],,Y3z*]q\Xߚ=mSdggaL?lmE6Rziw?&/KC1q6&M;X> |B,D1xU0A:g?|Hq"m"j+0ŭ&t=8 -!k.M<Ι>uNl4F_12Ge?|odCkukC&͗SC-*m :M_!J\3S s—]QW :uA?p⸷~2p /!(h.k 6%k_¢#@qPOw6wCu*}c~5%'_ ꕼ!~%rY)y࿨Qa{ʸֽmؾ5<q?/y6YE=vh:$eCpBf)Nnp>te:g>6R/ }Ԙ,aF1 [J}J'1d%6g Z<%;~p5o jc(GMRG)hTƺNu@7f|k\~>+af5g,ZwSs}.$9zy R^2e#t5`ēNA:C&̃Gicҭ4mH?c0ѺP; c:3߀ 6j> K,{++N\fnb KNr4zAlؙ>,Vqv{I(8촴I@$0G`lg ak߿/5s5f'G*s΄Y~qq>3%fz C{It`[e"VrqV'&m=ܮ3K))M#ܛAu|XjW-x j d9!y:dÃVւ0#5hvg!jufJ=u;ڦuw7s$GKѨts=Io::?g}Qx ߠb ףd\_p]@ q;:{jGo}!JɩJ e{)\UڛF8H:oQm Vv|ՀWa'0X)Sg wv';Sd`u0fEt $Hoqqm?,6Ƙra9,#&Л "I4”=ChΫ KeAZ1WIp*`I}}Nd>qkF0g]=Kb 죓TOSS{Ӣch}Q@smV֦kv2k֐VUi/{+S@j9&/k`ژҹ,Lg&V- V>:^+>d ثMv[ӔTd-n];0@͔sot޸82Z:rGtmpE->PBqUqSܨPڄ"p |#}lN~\َqeu&Xq[S!wyj qȮ{A(wa6D+=v_Vvq$m4_/@s1Odcz.B񾓏ARWpwi\S~ PCmS58tԷqZGf w~O7QT]KG,#Ǿ.s.HsC5i#Aɡ_,ٕ8e{ tN6 n}"Tڵ$fTg9 e 2gu%~  "~)W92 ! c 'EѮ N2x$\#К;VuY7B~Rty`-&5A9lS׽iJMGoj䞀:WEGjS&j5M&C0i3ZPۙDwZӾf3}< ,CѡRD|L\/$Y҇mv(G4OÛ^q(Oʳk,foqgo!{tt%h=E*B#'=:O p]2MRT20M*DT  &(ыf;lxp#yt"W\L>aze,i0a!ƿbUYna!O+\" tHvX#..sb*wXd=5o~Ȱ[yh2 "PX:7&Ňǻa?yf~%r{zZ9v?[q55%}k]#4{_t8ny /> e3|MX~^Fl/ v(OՑ(np5'V8^Sv?Br@Zw!j:DԫFtqHf];ojⰬ*j-(>L︖ȡ|!xoCRګ%LK_@`G~x/bxhcډϋJ; :;!~xej޶)(yC>Jts d_ۛBWhCه{e!qwZؠAE=/Ly2.I+Yge_' 9 Bv'V"Z_2n %lSE=" Cɏ>ZYf76OJ>>M;:Dzvs Z)n?l]bEy YXJG֎!Ű~FQdRU P\;"qO9!C7!ǭ +r(@lg;thc/q2`ܯHŸi)\J:a$-BJ&/j) .+GWVI~ r<ǐN~v=y Yс!zVYSv\e> 8ށ쑦Oj~mhysR~h4 SjZNeljV٤jne̬0υ~J]ھqcsPwU3gFu63T%iVH&火ᠳ^BTjKFK0~FUiOʙVUoOzo}hkH0{ދ$g B;5ZY;pQ5-Xh4EIlyV RswEa@v/LJ;) Oڵk.=;"dN5[)vғQ.9OFxSw-;t~$1|K (oTUZ]A\fV=!x>ѻh!qw' !0dE@bntG_E.e^& ۭ+a sf}BɖO8 {)~q*.-DR(j*  f)b+5_2MS)ZMUvj&1Q\̊Y6CUYZSb!R#-ĶZ%!pyٮa#C&Oͻ˼Di &5xSH*LLFx9v^,3hV4KF4^_G ptl~T(w8HCRzuŌ?YUiwgIaF"P+YpdbT]Tۺ\|@8+Av!k:aSfU4,2TcqG{L }t<`sAc ?AnYpb*ܺ]t};)Ndh)R83B4;_deO62_6QźXPJ%DYyn ]G b恖P4v0)'EFɋY@d/#+w{lͦ k9'(λ6o.@ȣQA+5NW/_(ڲ֠=aȭLQ? LBDzV1X̋3iHދg.D|ҬGN_ ߶EP?7>Y1oYK jȢB\Pu}Q4b˧jpNWr! ăck}L~Ǚ~g5[GC`!jJ\Egۖy>)YC0ot2C{ |\+B灝(t}Q9;q ʈɎ.Y~'_Ud)Kɹ &j— xº6+_O.{7dmXSgz#E.z\0W76f["XuPk?͕+ASG\= xZHTL}"![rṖWE8>%i2S#4qZ äR^1pBqAN0=ooϒxDI7ZhԎ=c&OɢڢhN84EEug5y#W;cS&_|f{ɩ ɭ_K y>P17ZnJ㽖ؚ!$_ f `o9¨ ;H/΄ñ"l3NnY)L-чТq\2kM5Vp]q>ˑg;tM_NP#> UiVOtR!!FR84 EgUovĶ2:B27d3 Pz~9]%WUʗʣLG~_)"苎K:5IEԴ$bs ꜞy?[Nu$m]A 7!5Kނ[Y.Iցm~znp((+y Вd-08sǯr(⧝Fq:E.5qX ۴ՉJ-" h/[g%+ l4 }axf RlHRa]D}!/a.gޘ^R\Odմ'~Ze-ȾƧj X_ݴVK};;[ قE7-wi8%(MB3-ʞw?A, L%b*eeŷnaIKѵ2CFㇷS76jf4 D~QGTZx3W0lцfvRuAdT8WqL [CmhVD2^yb#"iNpy0՘iN>?f=i :`=t&n=Sj~(='rCOUygcGI1ZC7@ 19>\s:-f+.$| :8G1 Ux_Fehy*.B4^~=Wk}yULŊn;Me060^Ĩ?(0z+h&D-q)T};:MM/bCXAN-@hp #VrJG]y`!x & Tr7 w@/P5M&.k%PDZ&}9= S=I 2xXCfo)7YBלkcɏp̟Xeo mE)mn!{R/us:iLjdSƧL9?R>\F&Nv=fW>~E#yif.ڪ|SV"T9Dni9kcO94)9t$9PWb ;ˈvscK 51FbcR5Df Հg5~J+9ZN'd-3G㋂05Gj|-D܅Ι.a9fN`W-<Ě֏ Zžp }S__I.C6^G \^pIF >-Pjoߙ0".nQDxa5pt(3= )mGl>+ټn*Y&1uTJsQU&^|ƌ?k,pWd`V8+ΘrŒ;C`s0_+z#ͨ?sgK\ Ez#j[kNhR.wB];6Vp2dFBvjt!W UڦM7%qYڱ2}x@&P/8#™$ʹQwz6l(`y+/Pߎb豽IQI~BV)`V xX?7g[&z'v]6G}ܳ8ȢȵQP/ޭ5h01X S#[hu&nrqSO5H>yCF+q9,=WP29s{,Ð0U%X PHj>w%j)?!- "j]2psGxsG-[=ȗN2jEޢñzxlj3[k_:ؘ1wMh}yT7?rϐ2z* ;OcDps7pWzׄјorä_K`o|:˳6`ފl`P L鞬,\LpP „ׅf,`w_ȧInf7l6@oG YZ