mod_session-2.4.37-65.module+el8.10.0+1840+b070a976.1 > 6 6_6 3!pQp)Tξ7]mtZ`f1 ]mtZ`;_j[R.&E<(mLzi[e^!\9HՕi*2cm?UCd`m8eAD5 ETuWLOsBY5e7hiD=fy@ŇtĠ`;BCZ}l:p9LG/ y)rpvU)RpFmbAbnQV {U?8Sr@ICQa+ ]O ; a?,‡Qٞ4S !4Ųj8SE4#9%t\ENI"vRҝ^.sȾ 14|#KgDaH-PZLҪID-L0zH8=,?~§{{gUXyWWhy+KTo C0k*,a"Jd?W rDLm.$x.`B m)fc2ab2eb03f225b997723c37aedfd21f84ec5277069f3a223f81353a8eec4048a949331db3fe3a9ff12a082de6a725c1811099ad&c3!pQp)Tξ7]mtZ`f1 ]mtZ`ao$-CjN u!k{7!znOkߖN|E[^V?7׽0Z0c:~K (~i Rq{W5Ky9ר V$Q#U2Wڲc5#pL;'`lnkMii^c^gLxҲۢ):cM^}sN)6M{1꽄TZ@%TJ-=#,;St&NBB6>P[xQfSWɓoRi^RLt)7*?c?C\__t?łqrPi>[h,c>`g!^)4axtOrxB#ynōȽ|+9&Vmc~&5e3jc1.{]vS=' m?1 kˏKb;f.Y_ZJaX LN\XȨ>p=_?Od 8 e!'/ Mh             4 p  Dy(89 :9GH Hx I XY\@ ]p ^b^deflt u v0w x8 yh$(Cmod_session2.4.3765.module+el8.10.0+1840+b070a976.1Session interface for the Apache HTTP ServerThe mod_session module and associated backends provide an abstract interface for storing and accessing per-user session data.fEord1-prod-x86build003.svc.aws.rockylinux.orgKojiRockyASL 2.0infrastructure@rockylinux.orgSystem Environment/Daemonshttps://httpd.apache.org/linuxx86_6494269p_/@_hO`Af|fCfBfBfBfBfBfAfAfAfAfA51df0ceeb7dae9922817f4af0554f83fe01d6268025ee08260aeed69be3953d107bb825418706bd3a7150db9e44c0c4a248f3b31c83f50604058517060ac738c543020e86968280652b2893d2957a2f18fecfd7f232ed6a5cf19c207ab991b497045200354fcd2d220d55f9f2fd17656526248e17c1b63415cb05b8da26369e5549df836a784ac6eb0eb66cbbe6daf385bb7865e2bb34a83013de044eb85c738785600654cb344786369a4ba6b6c3a5bab4bd88612ca83feb7e6048852dee076../../../../usr/lib64/httpd/modules/mod_session_cookie.so../../../../usr/lib64/httpd/modules/mod_auth_form.so../../../../usr/lib64/httpd/modules/mod_session.so../../../../usr/lib64/httpd/modules/mod_session_dbd.so../../../../usr/lib64/httpd/modules/mod_session_crypto.sorootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.37-65.module+el8.10.0+1840+b070a976.1.src.rpmconfig(mod_session)mod_sessionmod_session(x86-64)@@@@@@    @config(mod_session)httpdhttpd-mmnlibc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)libpthread.so.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)2.4.37-65.module+el8.10.0+1840+b070a976.10:2.4.37-65.module+el8.10.0+1840+b070a976.120120211x86643.0.4-14.6.0-14.0-15.2-14.14.3f@fieN@e̫@d d\@d!d-@d-@d-@doMdJcdcck@cck@c(Ybޅbb2@b8haNaaaawaU`:@`f@`@`@_м@__@_:_^b^(@^@^]]@]߶]҇]@]g@]-@]]@\7\Z@\Yz\T4\\U@[@[[[@[H[u[[[ā@[ā@[ā@[@[@["@[YZ@Z@Z@Yp@Y{Y@Y@YéYéYéYéYX@YYYYx@Ym@YlYf@Ycl@YV=@YGY5GY@YXۡXP@X @X@XwoX[@X[@XEVX)@X@WW~D@W~D@W~D@WKW@VVVVn@VhV.VCV@UK@U@Ua@UF@UQUQTp@T=@T@T @TT_Tk@Tk@S0S@SGS@SS/SS@SSS"@SS5d@S4S&Sz@Sz@S(S@R@RRG@R@R@RsRrF@Ri Re@RVQ@QQޞ@QQo@Q@QQV@Q@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Luboš Uhliarik - 2.4.37-65.1Luboš Uhliarik - 2.4.37-65Joe Orton - 2.4.37-64Joe Orton - 2.4.37-63Johnny Hughes - 2.4.37-62Luboš Uhliarik - 2.4.37-62Tomas Korbar - 2.4.37-61Tomas Korbar - 2.4.37-60Tomas Korbar - 2.4.37-59Tomas Korbar - 2.4.37-58Luboš Uhliarik - 2.4.37-57Luboš Uhliarik - 2.4.37-56.5Luboš Uhliarik - 2.4.37-56.4Luboš Uhliarik - 2.4.37-56Luboš Uhliarik - 2.4.37-55Luboš Uhliarik - 2.4.37-54Luboš Uhliarik - 2.4.37-53Tomas Korbar - 2.4.37-52Luboš Uhliarik - 2.4.37-51Luboš Uhliarik - 2.4.37-50Luboš Uhliarik - 2.4.37-49Luboš Uhliarik - 2.4.37-48Luboš Uhliarik - 2.4.37-47Luboš Uhliarik - 2.4.37-46Luboš Uhliarik - 2.4.37-45Luboš Uhliarik - 2.4.37-44Luboš Uhliarik - 2.4.37-43Luboš Uhliarik - 2.4.37-42Luboš Uhliarik - 2.4.37-41Lubos Uhliarik - 2.4.37-40Artem Egorenkov - 2.4.37-39Lubos Uhliarik - 2.4.37-38Lubos Uhliarik - 2.4.37-37Lubos Uhliarik - 2.4.37-36Lubos Uhliarik - 2.4.37-35Lubos Uhliarik - 2.4.37-33Lubos Uhliarik - 2.4.37-31Joe Orton - 2.4.37-30Lubos Uhliarik - 2.4.37-29Lubos Uhliarik - 2.4.37-28Lubos Uhliarik - 2.4.37-27Lubos Uhliarik - 2.4.37-21Lubos Uhliarik - 2.4.37-20Joe Orton - 2.4.37-19Lubos Uhliarik - 2.4.37-18Lubos Uhliarik - 2.4.37-17Lubos Uhliarik - 2.4.37-16Lubos Uhliarik - 2.4.37-15Lubos Uhliarik - 2.4.37-14Lubos Uhliarik - 2.4.37-13Lubos Uhliarik - 2.4.37-11Lubos Uhliarik - 2.4.37-10Lubos Uhliarik - 2.4.37-9Joe Orton - 2.4.37-8Joe Orton - 2.4.37-7Joe Orton - 2.4.37-6Luboš Uhliarik - 2.4.37-5Luboš Uhliarik - 2.4.37-4Luboš Uhliarik - 2.4.37-3Joe Orton - 2.4.37-2Lubos Uhliarik - 2.4.37-1Luboš Uhliarik - 2.4.35-10Lubos Uhliarik - 2.4.35-9Joe Orton - 2.4.35-7Joe Orton - 2.4.35-5Lubos Uhliarik - 2.4.35-4Lubos Uhliarik - 2.4.35-3Lubos Uhliarik - 2.4.35-2Lubos Uhliarik - 2.4.35-1Lubos Uhliarik - 2.4.33-4Joe Orton - 2.4.33-3Luboš Uhliarik - 2.4.33-2Joe Orton - 2.4.28-8Luboš Uhliarik - 2.4.28-2Luboš Uhliarik - 2.4.28-1Joe Orton - 2.4.27-14Joe Orton - 2.4.27-13Joe Orton - 2.4.27-12Stephen Gallagher - 2.4.27-11Jeroen van Meeuwen - 2.4.27-10Joe Orton - 2.4.27-9Jeroen van Meeuwen - 2.4.27-8Stephen Gallagher - 2.4.27-8.1Joe Orton - 2.4.27-8.1Joe Orton - 2.4.27-7Fedora Release Engineering - 2.4.27-6Fedora Release Engineering - 2.4.27-5Joe Orton - 2.4.27-4Joe Orton - 2.4.27-3Luboš Uhliarik - 2.4.27-2Luboš Uhliarik - 2.4.27-1Joe Orton - 2.4.26-2Luboš Uhliarik - 2.4.26-1Joe Orton - 2.4.25-10Joe Orton - 2.4.25-9Joe Orton - 2.4.25-8Luboš Uhliarik - 2.4.25-7Luboš Uhliarik - 2.4.25-6Joe Orton - 2.4.25-5Fedora Release Engineering - 2.4.25-4Joe Orton - 2.4.25-3Luboš Uhliarik - 2.4.25-2Luboš Uhliarik - 2.4.25-1Luboš Uhliarik - 2.4.23-7Joe Orton - 2.4.23-6Joe Orton - 2.4.23-5Joe Orton - 2.4.23-4Joe Orton - 2.4.23-3Joe Orton - 2.4.23-2Joe Orton - 2.4.23-1Joe Orton - 2.4.18-6Joe Orton - 2.4.18-5Joe Orton - 2.4.18-4Joe Orton - 2.4.18-3Fedora Release Engineering - 2.4.18-2Jan Kaluza - 2.4.18-1Joe Orton - 2.4.17-4Jan Kaluza - 2.4.17-3Jan Kaluza - 2.4.17-2Joe Orton - 2.4.17-1Jan Kaluza - 2.4.12-4Joe Orton - 2.4.12-3Fedora Release Engineering - 2.4.12-2Jan Kaluza - 2.4.12-1Jan Kaluza - 2.4.10-17Jan Kaluza - 2.4.10-16Jan Kaluza - 2.4.10-15Joe Orton - 2.4.10-14Jan Kaluza - 2.4.10-13Jan Kaluza - 2.4.10-12Jan Kaluza - 2.4.10-11Jan Kaluza - 2.4.10-10Joe Orton - 2.4.10-9Joe Orton - 2.4.10-8Jan Kaluza - 2.4.10-7Joe Orton - 2.4.10-6Fedora Release Engineering - 2.4.10-5Jan Kaluza - 2.4.10-4Jan Kaluza - 2.4.10-3Joe Orton - 2.4.10-2Joe Orton - 2.4.10-1Jan Kaluza - 2.4.9-8Jan Kaluza - 2.4.9-7Jan Kaluza - 2.4.9-6Joe Orton - 2.4.9-5Fedora Release Engineering - 2.4.9-4Jan Kaluza - 2.4.9-3Jan Kaluza - 2.4.9-2Jan Kaluza - 2.4.9-1Joe Orton - 2.4.7-6Stephen Gallagher 2.4.7-5Jan Kaluza - 2.4.7-4Jan Kaluza - 2.4.7-3Joe Orton - 2.4.7-2Joe Orton - 2.4.7-1Joe Orton - 2.4.6-10Joe Orton - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Joe Orton - 2.4.6-6Jan kaluza - 2.4.6-5Joe Orton - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-7Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Resolves: RHEL-45812 - httpd:2.4/httpd: Substitution encoding issue in mod_rewrite (CVE-2024-38474) - Resolves: RHEL-45785 - httpd:2.4/httpd: Encoding problem in mod_proxy (CVE-2024-38473) - Resolves: RHEL-45777 - httpd:2.4/httpd: Improper escaping of output in mod_rewrite (CVE-2024-38475) - Resolves: RHEL-45758 - httpd:2.4/httpd: null pointer dereference in mod_proxy (CVE-2024-38477) - Resolves: RHEL-45743 - httpd:2.4/httpd: Potential SSRF in mod_rewrite (CVE-2024-39573)- Resolves: RHEL-31857 - httpd:2.4/httpd: HTTP response splitting (CVE-2023-38709)- Resolves: RHEL-14448 - httpd: mod_macro: out-of-bounds read vulnerability (CVE-2023-31122)- mod_xml2enc: fix media type handling Resolves: RHEL-14321- change for CentOS Stream Branding- Resolves: #2221083 - Apache Bug 57087: mod_proxy_fcgi doesn't send cgi CONTENT_LENGTH variable when the client request used Transfer-Encoding:chunked- Fix issue found by covscan - Related: #2159603- Another rebuild because of mistake in workflow - Related: #2159603- Rebuild because of mistake in workflow - Related: #2159603- Resolves: #2159603 - mod_status lists BusyWorkers IdleWorkers keys twice- Resolves: #2176723 - CVE-2023-27522 httpd:2.4/httpd: mod_proxy_uwsgi HTTP response splitting- Resolves: #2190133 - mod_rewrite regression with CVE-2023-25690- Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy- Resolves: #2162499 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2162485 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2162509 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2155961 - prevent sscg creating /dhparams.pem- Resolves: #2095650 - Dependency from mod_http2 on httpd broken- Resolves: #2050888 - httpd with SSL fails to start unless hostname command was installed- Add the SNI support in mod_proxy_wstunnel module for Apache httpd - Resolves: rhbz#2017543- Resolves: #2097015 - CVE-2022-28614 httpd:2.4/httpd: out-of-bounds read via ap_rwrite() - Resolves: #2097031 - CVE-2022-28615 httpd:2.4/httpd: out-of-bounds read in ap_strcmp_match() - Resolves: #2097458 - CVE-2022-30522 httpd:2.4/httpd: mod_sed: DoS vulnerability - Resolves: #2097480 - CVE-2022-30556 httpd:2.4/httpd: mod_lua: Information disclosure with websockets - Resolves: #2098247 - CVE-2022-31813 httpd:2.4/httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism - Resolves: #2097451 - CVE-2022-29404 httpd:2.4/httpd: mod_lua: DoS in r:parsebody - Resolves: #2096997 - CVE-2022-26377 httpd:2.4/httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2065237 - CVE-2022-22719 httpd:2.4/httpd: mod_lua: Use of uninitialized value of in r:parsebody - Resolves: #2065267 - CVE-2022-22721 httpd:2.4/httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody - Resolves: #2065324 - CVE-2022-23943 httpd:2.4/httpd: mod_sed: Read/write beyond bounds- Resolves: #2090848 - CVE-2020-13950 httpd:2.4/httpd: mod_proxy NULL pointer dereference- Resolves: #2065249 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations- Resolves: #2035063 - CVE-2021-44790 httpd:2.4/httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2007199 - CVE-2021-36160 httpd:2.4/httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path - Resolves: #1972491 - CVE-2021-33193 httpd:2.4/mod_http2: Request splitting via HTTP/2 method injection and mod_proxy- Resolves: #1968278 - CVE-2020-35452 httpd:2.4/httpd: Single zero byte stack overflow in mod_auth_digest - Resolves: #2001046 - Apache httpd OOME with mod_dav in RHEL 8 - Resolves: #2005128 (CVE-2021-34798) - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #1984828 - mod_proxy_hcheck piles up health checks leading to high memory consumption - Resolves: #2005119 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input- Related: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path- Resolves: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path - Resolves: #1969229 - CVE-2021-26691 httpd:2.4/httpd: Heap overflow in mod_session- Resolves: #1680111 - httpd sends reply to HTTPS GET using two TLS records - Resolves: #1905613 - mod_ssl does not like valid certificate chain - Resolves: #1935742 - [RFE] backport samesite/httponly/secure flags for usertrack - Resolves: #1972500 - CVE-2021-30641 httpd:2.4/httpd: MergeSlashes regression - Resolves: #1968307 - CVE-2021-26690 httpd:2.4/httpd: mod_session NULL pointer dereference in parser - Resolves: #1934741 - Apache trademark update - new logo- Resolves: #1952557 - mod_proxy_wstunnel.html is a malformed XML - Resolves: #1937334 - SSLProtocol with based virtual hosts- prevent htcacheclean from while break when first file processed- Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache- Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile to be able to handle certs without matching private key- Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel - Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()- Resolves: #1651376 - centralizing default index.html for httpd- Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool concurrency issues - Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1680118 - unorderly connection close when client attempts renegotiation- Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does not respect expiry time - Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer overflow - Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package - Resolves: #1869576 - httpd : mod_proxy should allow to specify Proxy-Authorization in ProxyRemote directive - Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1891829 - mod_proxy_hcheck Doesn't perform checks when in a balancer- Resolves: #1209162 - support logging to journald from CustomLog- Resolves: #1823263 (CVE-2020-1934) - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Related: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work- Resolves: #1823259 - CVE-2020-1927 httpd:2.4/httpd: mod_rewrite configurations vulnerable to open redirect - Resolves: #1747284 - CVE-2019-10098 httpd:2.4/httpd: mod_rewrite potential open redirect - Resolves: #1747281 - CVE-2019-10092 httpd:2.4/httpd: limited cross-site scripting in mod_proxy error page - Resolves: #1747291 - CVE-2019-10097 httpd:2.4/httpd: null-pointer dereference in mod_remoteip - Resolves: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work - Resolves: #1794728 - Backport of SessionExpiryUpdateInterval directive- Resolves: #1775158 - POST request with TLS 1.3 PHA client auth fails: Re-negotiation handshake failed: Client certificate missing- Resolves: #1704317 - Add support for SSLKEYLOGFILE- mod_cgid: enable fd passing (#1633224)- Resolves: #1744121 - Unexpected OCSP in proxy SSL connection - Resolves: #1725031 - htpasswd: support SHA-x passwords for FIPS compatibility - Resolves: #1633224 - mod_cgid logging issues- remove bundled mod_md module - Related: #1747898 - add mod_md package- Resolves: #1744999 - CVE-2019-9511 httpd:2.4/mod_http2: HTTP/2: large amount of data request leads to denial of service - Resolves: #1745086 - CVE-2019-9516 httpd:2.4/mod_http2: HTTP/2: 0-length headers leads to denial of service - Resolves: #1745154 - CVE-2019-9517 httpd:2.4/mod_http2: HTTP/2: request for large response leads to denial of service- Resolves: #1730721 - absolute path used for default state and runtime dir by default- Resolves: #1724549 - httpd response contains garbage in Content-Type header- Resolves: #1696142 - CVE-2019-0217 httpd:2.4/httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696097 - CVE-2019-0220 httpd:2.4/httpd: URL normalization inconsistency - Resolves: #1669221 - `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang - Resolves: #1673022 - httpd can not be started with mod_md enabled- Resolves: #1695432 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: #1696091 - CVE-2019-0215 httpd:2.4/httpd: mod_ssl: access control bypass when using per-location client certification authentication- Resolves: #1672977 - state-dir corruption on reload- Resolves: #1670716 - Coredump when starting in FIPS mode- add security fix for CVE-2019-0190 (#1671282)- add DefaultStateDir/ap_state_dir_relative() (#1653009) - mod_dav_fs: use state dir for default DAVLockDB - mod_md: use state dir for default MDStoreDir- add httpd.conf(5) (#1611361)- Resolves: #1652966 - Missing RELEASE in http header- Resolves: #1641951 - No Documentation= line in htcacheclean.service files- Resolves: #1643713 - TLS connection allowed while all protocols are forbidden- mod_ssl: fix off-by-one causing crashes in CGI children (#1649428)- Resolves: #1644625 - httpd rebase to 2.4.37- Related: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- mod_ssl: allow sending multiple CA names which differ only in case- mod_ssl: drop SSLRandomSeed from default config (#1638730) - mod_ssl: follow OpenSSL protocol defaults if SSLProtocol is not configured (Rob Crittenden, #1638738)- mod_ssl: don't require SSLCryptoDevice to be set for PKCS#11 cert- Resolves: #1635681 - sync with Fedora 28/29 httpd - comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in default configuration; now follow OpenSSL system default (#1468322) - dropped NPN support - mod_md: change hard-coded default MdStoreDir to state/md (#1563846) - don't block on service try-restart in posttrans scriptlet - build and load mod_brotli - mod_systemd: show bound ports in status and log to journal at startup - updated httpd.service.xml man page - tweak wording in privkey passphrase prompt - drop sslmultiproxy patch - apachectl: don't read /etc/sysconfig/httpd - drop irrelevant Obsoletes for devel subpackage - move instantiated httpd@.service to main httpd package- Resolves: #1602548 - various covscan fixes- apache httpd can work with TLS 1.3 (#1617997) - drop SSLv3 support patch- new version 2.4.35 (#1632754)- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All" configuration (#1622630)- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki, #1527084)- new version 2.4.33 - add mod_md subpackage; load mod_proxy_uwsgi by default- remove %ghosted /etc/sysconfig/httpd (#1572676)- Resolves: #1512563 - httpd: update welcome page branding - Resolves: #1511123 - RFE: httpd use event MPM by default - Resolves: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- new version 2.4.28- add notes on enabling httpd_graceful_shutdown boolean for prefork- drop Requires(post) for mod_ssl- better error handling in httpd-ssl-gencerts (#1494556)- Require sscg 2.2.0 for creating service and CA certificates together- Address CVE-2017-9798 by applying patch from upstream (#1490344)- use sscg defaults; append CA cert to generated cert - document httpd-init.service in httpd-init.service(8)- Address CVE-2017-9798 by applying patch from upstream (#1490344)- Generate SSL certificates on service start, not %posttrans- move httpd.service.d, httpd.socket.d dirs to -filesystem- add new content-length filter (upstream PR 61222)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- update mod_systemd (r1802251)- switch to event by default for Fedora 27 and later (#1471708)- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig- new version 2.4.27- mod_proxy_fcgi: fix further regressions (PR 61202)- new version 2.4.26- move unit man pages to section 8, add as Documentation= in units- add httpd.service(5) and httpd.socket(5) man pages- require mod_http2, now packaged separately- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Resolves: #1434916 - httpd.service: Failed with result timeout- link only httpd, not support/* against -lselinux -lsystemd- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- mod_watchdog: restrict thread lifetime (#1410883)- Resolves: #1358875 - require nghttp2 >= 1.5.0- new version 2.4.25- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of LimitRequestFields directive in mod_http2- fix build with OpenSSL 1.1 (#1392900) - fix typos in ssl.conf (josef randinger, #1379407)- no longer package /etc/sysconfig/httpd - synch ssl.conf with upstream- add security fix for CVE-2016-5387- load mod_watchdog by default (#1353582)- restore build of mod_proxy_fdpass (#1325883) - improve check tests to catch configured-but-not-built modules- update to 2.4.23 (#1325883, #1353203) - load mod_proxy_hcheck - recommend use of "systemctl edit" in httpd.service- have "apachectl graceful" start httpd if not running, per man page- use redirects for lang-specific /manual/ URLs- fix welcome page HTML validity (Ville Skyttä)- remove httpd pre script (duplicate of httpd-filesystem's) - in httpd-filesystem pre script, create group/user iff non-existent- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- update to new version 2.4.18- re-enable mod_asis due to popular demand (#1284315)- fix crash when using -X argument (#1272234)- rebase socket activation patch to 2.4.17- update to 2.4.17 (#1271224) - build, load mod_http2 - don't build mod_asis, mod_file_cache - load mod_cache_socache, mod_proxy_wstunnel by default - check every built mod_* is configured - synch ssl.conf with upstream; disable SSLv3 by default- update to 2.4.16- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- update to 2.4.12- fix compilation with lua-5.3- remove filter for auto-provides of httpd modules, it is not needed since F20- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583) - mod_lua: fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments (CVE-2014-8109)- require apr-util 1.5.x- use NoDelay and DeferAcceptSec in httpd.socket- increase suexec minimum acceptable uid/gid to 1000 (#1136391)- fix hostname requirement and conflict with openssl-libs- use KillMode=mixed in httpd.service (#1135122)- set vstring based on /etc/os-release (Pat Riehecky, #1114539)- pull in httpd-filesystem as Requires(pre) (#1128328) - fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348) - require hostname for mod_ssl post script (#1135118)- mod_systemd: updated to the latest version - use -lsystemd instead of -lsystemd-daemon (#1125084) - fix possible crash in SIGINT handling (#958934)- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119) - switch default ssl.conf to use PROFILE=SYSTEM (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- add /usr/bin/useradd dependency to -filesystem requires- fix creating apache user in pre script (#1128328)- enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf- update to 2.4.10 - expand variables in docdir example configs- add support for systemd socket activation (#1111648)- remove conf.modules.d from httpd-filesystem subpackage (#1081453)- add httpd-filesystem subpackage (#1081453)- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- add support for SetHandler + proxy (#1078970)- move macros from /etc/rpm to macros.d (#1074277) - remove unused patches- update to 2.4.9- use 2048-bit RSA key with SHA-256 signature in dummy certificate- Create drop directory for systemd snippets- remove provides of old MMN, because it contained double-dash (#1068851)- fix graceful restart using legacy actions- conflict with pre-1.5.0 APR - fix sslsninotreq patch- update to 2.4.7 (#1034071)- switch to requiring system-logos-httpd (#1031288)- change mmnisa to drop "-" altogether- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide for transition- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)- systemd: send SIGWINCH signal without httpd -k in ExecStop- load mod_macro by default (#998452) - add README to conf.modules.d - mod_proxy_http: add possible fix for threading issues (r1534321) - core: add fix for truncated output with CGI scripts (r1530793)- require fedora-logos-httpd (#1009162)- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- ignore /etc/sysconfig/httpd and document systemd way of setting env variables in this file- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311) 2.4.37-65.module+el8.10.0+1840+b070a976.12.4.37-65.module+el8.10.0+1840+b070a976.12.4.37-65.module+el8.10.0+1840+b070a976.101-session.conf.build-idd264dc2da992a85b13f53c47ea52d2329bbe75bc0810598895b72770296ab9106fccc30c6adb050bdcef6eaab1277ff41a2682846aac4fe1ea8b67696e878ca1fc926973dd7e0dc5f32894047a5d07f7b6a53872c12b6dd6475f054fb2068emod_auth_form.somod_session.somod_session_cookie.somod_session_crypto.somod_session_dbd.so/etc/httpd/conf.modules.d//usr/lib//usr/lib/.build-id/07//usr/lib/.build-id/3a//usr/lib/.build-id/43//usr/lib/.build-id/67//usr/lib/.build-id/90//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3abc0810598895b72770296ab9106fccc30c6adb, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=43050bdcef6eaab1277ff41a2682846aac4fe1ea, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=07d264dc2da992a85b13f53c47ea52d2329bbe75, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=907a5d07f7b6a53872c12b6dd6475f054fb2068e, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=678b67696e878ca1fc926973dd7e0dc5f3289404, stripped RRRRR RRRRR RRRRRR RRRRRR RRRRRR utf-8c52852d8b8098ee5ef8a8768dd22b1f6072e4350d9ec790496012b56115a6c55httpd:2.4:8100020240723155411:e155f54d?07zXZ !#,ȧ] b2u Q{LY8ZWm5 lh8z ؈@׀B-N]{Nd*KM^!gfB_:]CK SwD\D̔ßn& iDnѩE"4 xF B@)#CtӰ_TLqEFCt둬N?/D{%AI]f@kP Dܹ!a#Ӟeɍ>'b<THgoJqb33@kMp *__%z?ߥ9ӕw;b)1K{k5PJM٪~)UBm]ޙy=+cָ|'\EN3ڛ65i_+w`jzXif:tӬ^ӱ(hvI__ET= ~j :(<-j\QM z8x/|9WL 3%Û QN>9inĝ ڎimyzk*S?)qd~K+) ٖwb68 ecZ%ümLu  UkPz4G(Xl3٩;a>7uRS@> Usmd;>⍞cGBo+Y$-Ϲ7 ^!:J8-5]l#) KBNNg-$p !n_|%iІ )>/q!2Fx+ "$ q ug/'/*-+- ZȕLdA=Tk5]wzXod!/'[0E2Zs*Q0:Qav<`849mRJ Ow DC DDZ=ߑ֝kTӔ [~_B~6:)(PzGM~VhKI7jْLj,qjP)PO#X-_e6{v+4V!\_ w"{.L~td:~??[87ݠ 9`΢ۤmAQQ[B\AP ~[B?ڱsY^ n^` ;pim)AɦyꏞoPPu/ k)#"a#hQ_gќ;_upf,OkxQ%LcKKU 1Prb RKﬔTUY{l,V g]DY)=n. x:Al & qYtt`i\Wl]j! iJf ʸ$1lDvu)eǬ U8'fǣ܄XTI˚,<{!,+g<݇w^01;ԇ-,y{B/J?6xCHO?YoIL#"F8[^ÆOX' ,D&a=R"OuP? # a?Uy\q?&DTܐ St$asݙR^\A2س'2X-*c[V'Ѝ2_WpV"*Vf ж Þ^؜G@zp a!^!d877X@ٹP.ʁLȬ$d8I$qKNqÛbPFxBS><\c Η0p_߷@<#Dmݍ@QU &R) Jq2JV{(K"FքfvWYح Ֆbb\YOARsUϿB@gS{LA-%,A( o_IſsP*).ơK"Ҩ {3z;Їmd G%:[O#jnCZ 1&3;MkJD1f vŁl V}" @r<Ѫ̣J/Lj^ɜ|˨ڣ.01o BW0#^Q&ŃsKdp#V 82W8 FHNp"?#V.i`DM尘qXg| b;',i>,ve*©UeIr Ed- }~N)p&Q\rzki|ƙ>8$%dvf5k, HϞ [],6buѠX`Q$&^,pg|7暊Həb?!S N.D§!2J\]b ^ETCd7ݧ_aOˊ{@-n^A=/\Ou#qr6W/Jw~VcJR{(1QRh b,HWJԥy]OK.HXKKF2}nneo/^J_&ZXFجpҢb=EFWgQpQ6bkw/=%Fdzp)+"m &<%n<&|ȹK_yvI˧@ [v>G~lE"Qe,tdfQbTI,8Ev觟.fZD*ZvFN(HTx:7~977i,%A^&gҀ IkWx'L<4/-a# ZSdDA(0 1o]LJQ45{#,mԾp:{հMHۧޙUvFBPr9z7PBQD&3څ )K'T}I* yG-*t1e#i㯱&j'f?TcP:eQcQ@ \ktm..Lb:Bq58E;,2ڧ.Y>:;>m[n:C=+>FNOv`r۸zumv?0:B΁%/ՑL8޷)^#MKc3X"| HɃtix^H|R =2ۼep͡I\uޏEE [ŞvgJG`P-C[̾n7J}r`-{ɒ;v-'W_&KE'ub2l[#tvh1iTɽ-tG1'A֬uԨMy#mLÞ{õ_WGVĄSuA qj<-urC' HO^7 s?_7!w:#Cc:xׄĤ?u!5BʯIڧpǢV ,Q:S1J*֑`I+)qp/eGMZ%ʃ*~$S \ZNU1KXgƚsP)=|6)i޵fW}NLuhE-k ĝXw\'۔G]mc":bӶEvz7QQ[oe1z,|8YGQ)8xtҌiY}PBR;gxnSUD0ħgPokj<J@׃vf+ iK3Y Bwm/ 0\\1ɤP'/fR=q"(ں[|nz+tU`UA^o.F`ClMGS{}KJGGx8N 0$+_jbhhcYP)ݑl5}V<]4#b0a m~8j) /!N kfPm[yJaM^pN6:mq }Ip}{?q ;@\hZk$moEvJ֧vUݣw=ol|;+gqpc3*e$GYO˻t+d ڶFQ2/vխ )idͭhJL˝MzNhKQIݹMaz(\ V?R>d?׎2`sg> uFf8ujqKj<$Y8dNAK\Ï3''T66n*[bjh\EO _U&֟#˫>%Q'uwN.UCheLS|PO̺ `>bⳢ z=[}dІ6s@Qi}'pnSˉ|un}\ hX8L`Ք@51x=(ܾ֭/6VyIwZi!Tzܬ꾊P=) @rVN,b-`')Ģ~ѯLDY1 Yݝk҉2iߏԍ)z#f2o;%oH9xY*l&#j&gjj%Iߪu)oӘ= GP9Z P+qQT}=MVttF3A8/HHicuszS|[lH|=#?BXEX6xR 8/;*H14 qđ [ll@ Ʌ?̠{FL & *P]ZӁaRޣݐ=t8WCy \I/0W֍sb/DSܨH3լ&FNo5³H+mu?r9tlC6((k~L Bw|$˫ifŤ\UP!Fڻ?,hZ +"qd6eRaѵmNXT~[ {)X$?}z#U>i('2gKb߃IƦ.0-&rF{N+3  ށ?S$Z(,hB*"d'~YtiX'%E**FP٧^neוM4!n>#Fdo|¼1IZx>P)FZ;#AC>9 ?7Ks31k8[IdibRo_u1muCѝ^y`UwxåJb_20@ B.B:!To@ymmG%kzVR XGsKDЕق ̽&\9M\ϫYv u@AT/π,wvQs{ۏa"qGSlMMv:vAq SqSZimBѦ)|[?'W1zűTujlUk>?Ko0-4\.|@Tv|׀%~/WwTkfexb+n 80'ؓz{2U7Yo`r l6\axWbN^*qLQyM;HM~D`10".%î<){^`l ‚h0,gZj&jPL; D9&cvWPUfl[AmJWzB=wLz]$͒ZciZȷAnAQb Og6yUfJ4y z >BRk*(`=sVi/ՁSl(}d D8$=IrLURh?aI 52y .* 'BQd4]% {?qYV΅ߥJ,ֹWT^)e2bHZlaV_[sIovK{>P#&9r ]{t9˛)Yӛ Ȳ 1wh0 ) 6ms -Z8eNb:D#.x&:흋*7^_eF4CÑ]U|MïS/G\wc3Ga2D/4XAl#DsضBp"0oDupuq⮮v |5'~ 2͵;: ,pwv?hofiquB#T_c4uX0W2/0|bHͯ3g|yᴟΟ䔚һ#fUkp_y1RQ^Cz>5}. xRl VRꭧ9 @HJywk'Γ yzY_kci0i]teƯFTGdL mTYi auyNRg6-_/xT$)w)M*Jp~? *zZ8Z#Z9>"j̱*2VWt? P*xF/>6N0A_Ҩ D H=੬O ӻ>2xϡZG^\PDz}ֱ^2 xOr{ԗ@ac?(M<$+T.>fm M4+NJVư&\rgc}VJ9ރkاyjJ#'svI_)T;S.Vy#^j:Q1sɖpo `ޭΎF@۬*4] 0t 8`q}Dv,v?YxR(o]',?͖0j80#x?tsNoojF"f#m%蘷"$i^}ZWkx7ooP~g_OR'S_"no@_Q[t(J@LVLs+،EBjcL(|Ǒ$ Qõudž԰X[if2>FUrCG-w i1h!A(I"Brĵ >Aa45b(P*cS/Tyroql.%uCUkO=4L:%b@d1%2|)tgp*`q('#?6pRgnaD[Am-o[v,b e4)P478XJlKrzJ Upk R"B!jRy~X.fUV*oY3zpa?_:Cr ͢4qR@kॅ;#/D0y:i}U З;3S+eGɶ6l|_1I 쮵$t1ra\j҃԰N@Ƙxvo300TBȊg󎈥`킼’f8ͯ6GSK'_k :)WYk6i-zVvGd1䏫%9,c8 Wf-6mG#~߈%gPP{ffyf,ʄh2e4[Oar()ESu6-1[< +%= }jb,eݧ_R*87K;ǧ!`;[{iXF$aLqŸtUA~a6CH0E_Crۺ=!G䔨x3am.Kh sX#7-bu) ˊ;*ȹ^ߥ{%3m|5: }wbeхK^Z3ǐ1< [?VGb3`!k4+=+i^Eio N+p.EϮ LbʽD5{ Oe;)EyD/#|}6:czt+Q58vx ;0$'!3%p c-p [(bc-@͂g<|};]a$Gg ERHl 8aw;PC ;[_е-1?UCW[E'r  Ѓs|W]e,ɬ#qCѡuHI*dX,CCv%՞ڦ(BR&[u|hK~ ÁM3q-BK6!/LqsAw란XV8 \a渲wǭܙ&-ܶպH"e VhCgzRBmpjpǓ@# is d%{{a*Y"ln_<8}mS~5 "DRӕ5ru\ Մ^jI崄UC} &?`e!pjȚq}*#=OKb:}ʄ?ڂ0'{m9l /byp)9Rz*.xxↃxRTtڙ͐*+@.{4Q9}p\";~5u^f.>Se-Ur ]FCk"RQY~J1R`(}(*jOU& ҆5\Ϡ `"Phz\@z|oqnJoGͬo4~%zՓ;TB)Le8VkV6CJZ*/(إKj `#e<ݒ$CwfUP$|$t a=ű*n徐|ЏK}["v-ڄܺj(#Ï  gL9 ~znv`OZf5D@~nʔh몳j x\\=8W׻+TV{nC3961V"R\m3vBȠ0B2Qfl{5匟4 Ki(Fmwtc]_ sZ˺U_2fCxM?&}`G&sTa7[}pqvh*-;$Vɥ]RR4 T-JMǧߵ 4)v2So*81p/{anإm aiݘ]\߯S=uC-of-T?D,~^8$ 1f@&Gb뀝d_:- $!ihޣ*Ehniu/dSYI{-XcOT*s3\,ƺPl v׭ fv %"_SLv|@9KC!eia6. )hއ ]AغC䍷#\=7rMc) s"2Sꆯ}Bv5` Y~Nx|Xx_Q̙wNw2~/E^QXLΪ2hDtm0U*|,Z{2D5PL}!X_>6|!_xBq3gmdHTdئ[2&mRaNG+8c^exwLRo!EhtngNg2<>-w-W*3k5_ڑ^ťȦ#xPLVbZQs^l"Զ(:RT P rk@ a9K5ּн"^{1 D+僥g]#ع9Rfֽ1UJkA sjbI1p&Xb)!K t@DN1 BQTy_X|'02 XU=95m&TݍStQ0eQvpNȶڣ$Sox)h\676+ <XUT|#XzF%] 2b?˃Żvɴh*~)<.AKvȈ!y Z h-t@hݻ&rWt̫[9'z\=fi0Cw'w$S_n*]Ө$yF'n}vn/#+N׍otr㪰XQu)tqvs`|.B禆D+P y |V N["p0n ѤŚCQ$ ƨGP`^ U่?$1U@1<$#/@HMl4V,QKvt{3%&q3ԞQۜRwk}*$#lM(uγe!a;Q{XOC L#f5DNڹ|&6r [+3Qu@,0_{Ylފ 7yRc+ES&:̱0]iWّ@=~Lh4ٻc &{Hg`28 K[1WdqmT?D~M>9}ʎ_u6T#r P{=TEH}` @[;_LĔ-Ɨ:p)Z(9 M446l.1eMyic,=RFeЖM^jէjVW`} $oGAyb'~%sZ~fcXW}4VT+ dz0d}Dř̲QGoG3,C%*ٷFj0Id91nhiI9[skBA렝BbA8IL4 46M ҆69`%ʚJ9RTRs7TK,bF3XqRcW)k :I*=+kAfmsOB!zy^p9!-ϭ4$ME\naeZKq yjx7S"]nN=(sP]! n &3{b4%i氮cJwX˞̣쏯a„ \vٞ``Z%T؛hhDx{gJ~"Dq CiCn:Lo 괫a-]jw_K,ł p&rFcO΃!)qn1Y7Q V'gNj8\ vP(Kl-66kB*hWwbӍO9HY4:8s:)qr>.`] G ь-4UKDDfm£3)d:0KeіB(C#YzFBRx;cܚ47mAmYE]CK 8f`.N{ TyFdOm罂[M>VkFndd]T# w2ލUv`.j\R%N*(Si ?, "U ʒ・@A >ܒy}|=Vwd`FST Wo سܬY :VT2i nogǣ.6G;ўhI-NKZ.M}\֒L;@Na5M-HvLnT4kD1 =ސ;>0!dPh Z86zaܱbL ԈOe" Ι,5#M2{. \DTa\"0sB=jE\sZݣPxRrgB~98T[=/)0&! Q.F5YZߎ/&zc ֩ҧ+*CCW˅ș'w#+CةWV2`r_[|$ C aB&s(ak;m&l; RWE^v^X|T. IΙ蠛5T8*E0DJ,z.pϋ̔e "ptJ z$XWjԿ[; >%k ݪ/0*zޛ80{4(ڄbJv:Ml%rp*H_K`t'{x /Ks)( Su#[sP U GqzƞG"|/we:y7E5f=>|miSї_ sp7o߹؏(}a~D h^M\x[F,J`!&Ўד'|C5ݸa 25)Hзv*)?BP7Y䶣kUcqno҃)9V{4O"9T3jщKj="ŦDxWWU=ӫ"OB .B}m0C}JSʏөo!! .j[0˜fJCtÊ2Qz#77N|kr0' MVӾ@Cv T_Eqq9+6 ,iχ_A +2IwLGh~>`4vG~3 O'׮2CF!lNR7I aw 2;SŰ _!;VжA4措6K"vPF&k|RJ7-k UsF}pxkYvM+0nӋf8Ͼh5&Oe٨v}RYvϢ=|^GB_`Q93|RUuC!3YZl M DE͸H#][ȶ`oR(8ĪLOGmRI7Eʐ@Clou4䭯''E4~fR0ԸX!kcPT2;tb5`}[%ֆ 7Жݤ,=@,Iwe`e!(ihH[&@'B(]'ijow8eᑔtR# $S<,"+W{&CPI_nJ0MBne[7{.OIZ9:&ߪItA'<–hfLXIs1H֣`Tq p? 4OcW}E-YʆH 2y묆ǽ ZǦsS.ኆHy؜ z_?SN;x<,m"8Jl1n1$̅)cJL0ڊ:-*r#w;ÎY)DJz&Վq tI)ңKT#KW5eۗ~4}4ƍ')}g;~FYwP 2m~GPHP lrr;=r SV@ jα \qxnYz3Yn7z$?VvVB gE|&v0i1ClfÔ LF Ŋ`xNy" 5?6Y6S|pVH&ꪊ Im@ XeC#`lFP [H{4 :H@0yIeN0ƌl0]r~i\ oE+;Ɩa@2Ml=쏘>`Zi$+ ;ʹ`RDn/ ww/y{Z^*(u:W*g3ܡM~tfd^1Ju!DwI d *c>3RZxX2BAJy mLt92_>-: ҘIJ_Nnt8~Re| ̀,mtn6FJ&1kd_w͚=yzM W2UKAw#z` ijjɓʂ49l [?ݔ%U))b/ bsI ' &lh܀5Hw.n=QE~!#e4'_! F$`Hm gRmuR L,|Qu ʘAo`Mw'] FD $t{e)zrCmftEWXdwIDg¾Jm I$P ]@Nކɝz|2z*"pOpXun{"qIǰX)8j, XRh[Y@9X,/ vlJ[*rNR8OZv&#cyΩ9\h}~T ݣ p2r0C GF XW axJi[^}qSD tYٮ0SFQUpkM{w|Hn)[@# x̑؝{ Z{tbşir]}V0^N]C>#8Xin=|Աg Rң({8͌-203Z3Q3 o$K6K?+΀PKJ+oCǣ%b#eR_m׽AUQy^-Uۜwbg IA:eǐC]E}+w7a$k(Uݻo$emGs$*zįipC4MlS`тZT*\*͢F- .o"inf﷋z.ֆ+\Eޣ>=Οv ŘԲri'}'$^t(.X 37~QgZ B;@WͅOtpSR-h̑Ng=Ō pB䊐g/lz.U4P1f¼d 77'4NШt˯ s.;;8믮C  Nu=/#EŒ7a;{'A%MJe&b^'9nN6| 9 eU@N*=RMcJ3:#yŏW3SW'af\`v7_Vta_Q7~yȩC +$B7n_aL0~-ZBג'~q2Xc^[lgi eњuF%M8OSe`FJ˫%|VRgr2-yICG;~WjAd+@_IfIu=Ʃ֋]:hXlX]Bw Z){%{ ;{FJWT8o?`7 RZ0 x"fҟd㐒,8r6=+QG/8_(ܻahJF\QJMY1ЯXQ%)U-d8'%r '; Tk5E}ei^~5l6T'̇Hv(8slCW H54Ge,2=A|i,+^Zx`B^j G7ȠT4@T?θA{BcBB9,qAPDt\V3G0@(,BP=}s5K`fM O4XdO 5_88 cVu}/qP]C33S2ьT[@=vȲע DWt@ !t.؏;rDA:}1u4G5k2kgNz<(*s7n仾xrd4[>|vc#-8~۶K5wJU(;fݖBՉqpഽӦj4$6CW蝧ne,䓗t!5A(Ŏ)T͙\wqMf`$h)1|/\hfo@#1#PX2 ÝNN,Kc~T(Ò%:h"ўjְȥi뷝rg+wKMKz0>~h]ۭI]F_? t@P7XmbԷ]Xه.K~<_l肉ծG AZ'>FuMtm?tc[T KwA:f ",I u<geP@HxqHm4g$iڬM^L~)gm^qY:Gj>Mw WzcB8p/JۚZՂR!wzJ2J\5dZL}bBʹ|/(wa;TiuJF3pVb6l+dž݆{ؠo'! #Zez"д`1vхzimwd& 6|7#PjKS܀W ܣjC-t0B)tyТ}y}/Sѱ QªF;/ncΚ Mq-4;WN!sMAXW-UwiN$?o'RC+59 Ë,Z8k曓ߺ1(SmDi#f&w{$m+-֋}ٺ-r[stYZdk#Sz7gYkT:x3* X/z)\'=k#٭rꖩ!>ڨOtZp?ܮhpC{E/gF6ٞz-] m)@*6P;aGڈ^ 6T y(c)GLwA+-K.d]=ՑIY sC>{mȢ𭸲ᆕMUtx!&2폻oX+߷=~ɄUjZkNVGd$c'e fꑚuuu~vI.mKB I4EYTru5hʗ8*x626@qN4<Y4܁YB)kWT27:ۺOC3NϺ8T_^; e^zLp`ñTf7']Pw|#~fyԁs"]$UbF)[LWe7ֺ">E67NS7зBt]hMETDۻ<,ZO<5'+ \6;?L[gOi`C6fC"YBB#ŌT^h= ͷv*Cow LLg`xT| Uq: WP &Lz;6??UDą"_Mb^%E7D}xjLgW+[g ;˿i_$蝪YElϫ+y:RE ā׉a]F9+((ʕr>Q\t7qlXc%t>̍aR.TpUnIE>PծPC! ?5yZӧI4M{Tz n<+EVY ރvOtO{fe{n˷b`zG&I5 8l) &poA{Ef/a=̰@h֦M=rVߖy5 P;Z{>ݤ=gKqqU#/|?\G߼7xd&f#0qpʄ> c}*!= oDt[;$E) $?EE֑G-rV@Woq+y}D*|Q.+~џ0 )΂E2 N>JӔWZ&]g+gbpuw* ev@38*yuG`]&# \32JlMgfI;x7)Ja߾hwyu]Nfvu8+$d˿эf֌ A9rq˝FX2:Yt81y--Mok玮GJnn;,sr"!P[+In ӆm9 ;REd\ Vl`zS!Ӯ#&KYډ4 9*l9W~6CX۷3GnXD!ڇ JH&\6w1e1@ wp9 Lu:iZͨ:LzU7,#G4!GMJ(h0 Kx66| aXLkԝ()<g8c2UJ>[ wuDŽy亂+=An"aQ9hZ! Z0䮱/a3KVJ4T\{fL)4^]Jn̫oDM"-eY;`@~,<$RrE,g`']E}tY[ J{8 5^$r'%fls#tEΖS4VD=&;dS>hpi֪C }I+2jd+ Loʽ[_^ FnώrG69 /uMn!"=C 9 _Z} 6'1e` i!9 =w`ӺhA8˟ѴHЫ%cޢ9\Mn@}oRlLm:m@/GLAKH @q{wޚOG|3lyk,;puF'[C[?uڵWYqeX " (q,n_7 :9ypL ^OUxYFڹE12^h-/wyyGa5fW&7<:i(fL/ ɯ^tɬ_ҼHmڙCzww`ezgňob0)5Kî ,({L:/V99la0' V(Zt$}V+ /ޕ\=2bJ*vT} O'k#S^:,fhȼ[uѷŋKg. Cn$ .a|5.R d9ՑOPʐf32K!u?acǵt>hqa[cX^LI CIG +16L|j)۲iKG^K%\=@l6/2,ˉ@BOx$r 8,]$&y@G-~n)+ xD8D$b,[*\"Z8WR/;W]VN!D􁷙1kޭѣΥx:Y[_u{ʵQ} G@xT ,`rnc)ӫ-oFtBM`FvLk.7ifNeꮤo 8,a]\n5B^*7&]SV?N@y(>:ٸ`m'S,NϩR%_Daz҂7)DY-NўG5mhW%&B7-n6J*TfG #z·ئBM~(TV M9#쪖oR9\vLC,9eѷ\4a:<W9`Bʾ^SV#(2!ܓ5( {%L hwnMxکb2NHd',| =휢kntdڃV /:i+ 6l|O$sV_k5 s.B6+_$*X{]x5ql փϥeYÊ3 vL]Į69ZO*,[T #:s#gf=.%st㉂,tѴY  F6P_,[VyzUpL-ēH rd\-PW,m-Lp7A4D$,YF LnE\BL~w+)6.0t+>&lFp7?ܢ|m5&؊G?t&8yFO31n]rVޟGn>Jg8Ý7_3V`uzX ȇh5}P""v3be`TquOG}@72q^r$r)>7M(=CʐQ`^M-F/*c2[rrr2oD?ñloЂ~_ɳ kH;O*;)BIrE `lʴmЍDW{[IO? a!pI !#Y*_ L9',&6Uk&_TUU,e[YpG)O8eKO_ܓO( Tiᕇ8'?QF{dJ@-W%!~Y[t5$|&ҌP pŽ| YF2@`t;o,5>98h;Pp`nT|*uzخ"PEfj >J\`n3W'+Fx4.D4G lV7@ '' %H̽PA vLN&g 1Fen`)HW.inc!LF l+#Pېd@e c?E a3Q sY5I;ʋ ,GtFy^` Jnd T'P]NLM8LȶDB!4:N48t+zN9: 'ILʯs 3@C\OIjCr$+ QC>ţ)L%#jo;$+ւRI^]c +3I3h :p!kX1fX΃7J7-d6 bP`qhok0qPnZUBPF|?B2Kȏ$jo ",2?D>v;F{ ؚd"3w#yu|fuM1Y`JcNG >IǞD~7S_0?WX lJwHڣ÷]>Y3Z?- R|o^a%"w#|$! pzR!Ixgd: i'X~,~UhWB1Se~]"t.{U2VfoQ),8 ״w^t k'h ƸclVFsZ<:Lof*@<"N#闐Y[9~ҠOPiiD6&{Oen|@E'su@Df9׃2vښ\7=Q#n/,ՠهpdRh.}gA[䚯UW^e#2)i\[n 8MLjα~eqGm1UIyT CY@7  IeEh[e>8Y-{&7[WU6 '#qŝJլ6++f8Ʌ&:4qڎ nc6Rl8.%[[W 6NB!rg\K=Jt*$-Y$B*3#0BkK *@#<3:P&YhÆPyg4cTZ冪:xbTb*F" h7?r=Q9ˆ~wWO 4E D&/#HkbYFn"x)Kmҏ14ǺjT:!mEE "Z <@:=bi R51Uv Np`5ֆP # Z93\4r]',k*߱fL?qO G@Gn.Eò59ZN'UT2FMϺwF;ysRqd]RCdJ&\k*s:$Zqy\̾ߓ>V^uQҡoW|%].+c;rԝE|>1qpovFc86S+1H1&{2+|ДO1f||Q3{7ޫ~X(sOHLE o* {QߘyY#BFLP0g 2|QLpGBsDP":bFeh˟NhB:54RA9}A|ZDḹ6#>5]P9v/O|^%ai6ל.(0{6mdy&q4Z;JG -UZ9_ZUl_$ g]3+9w恍Dm:s_<:㕧HDү&.`POyclCL5e/H"olvIeֹ0jv=aB|02xdD3Jǯt4lG?t^^[W(Es>~JS3' {Y;[kIQm ؕRF͝Z><|Q(9cg39z@ߚq~)PyhGΜZ2839>PGSq>˿vp-yH"׶oVWXZ*|PXs_ȃZj6 ;8="+o'*+8|;~[:Xخd`c}vc.an1>hYP$  hs[Mam$ťsT}?KH,ݱ?_Gfu:yRUY/Arqaݞ{M9zibTr&D2 {GHDNuyY _Vߓ:hJ")GH&FndCB+8)R]-.籯6 "A:aG x.bŏMq,<V<Lya.'^o'Yvxs\,PLu"Q쎑Z4"ƀ }-i̠l«#H,[:D*_jU:3gY[o3}G6Hg?kP i„vN皝Ɔ3JkŮIm~ORU?@ŝUz Շa¢m+uJsSW6Mm^;W8⵪->ީVP!Ǔصj 3@I@tJ5WW_-XELm=QqT(s@-rJMd+9(ϘG{Hy'UsmKC=4NV56< YZ