libwsutil8-2.4.14-lp151.1.2 >  A \U/=„kQXQy-Xyô<ש=e1SPQ uUȗ +*FrIgŪyGڬ[Vj xܺw]k6sNpe1)9WϕCl#g g6R.],AQ sfO!88Np~| ˧OB~vkrd1ڲQ0,2XsanTG/6xD]R@72d6eefa73ff86df3759f42fe883433d808f0f6ea3e40f5dfc892cf251a78cb8683ed1ec821cf21bc40bce3bb9b30be5751edcc8.\U/=„H8S8"Ph ?av*n:nӬ9qoo0+Zw5O ǩ ^t3Ǣ01ixwFg pkqGKID;-&QN8H虚0GXݨ*~FO/Nz7Dϙa[,@ )cN":DlRɖ]0ShY\\}gD#%ݧ p@h?Xd   >  &08 < @ H   l^(8;9|;: ;>E@TFcGxHIXY\]^bcdefluv wxyz TClibwsutil82.4.14lp151.1.2Library for wireshark utilitiesThe libwsutil library provides utility functions for libwireshark.\Scloud103@openSUSE Leap 15.1openSUSEGPL-2.0-or-later AND GPL-3.0-or-laterhttps://bugs.opensuse.orgSystem/Librarieshttps://www.wireshark.org/linuxx86_64@\S\S_ae96f012c02ca19ec705272ec49a6082650c0faa7d8ee121cf6055fad8101880libwsutil.so.8.0.0rootrootrootrootwireshark-2.4.14-lp151.1.2.src.rpmlibwsutil.so.8()(64bit)libwsutil8libwsutil8(x86-64)@@@@@@@@@@@@@    /sbin/ldconfig/sbin/ldconfiglibc.so.6()(64bit)libc.so.6(GLIBC_2.11)(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libgcrypt.so.20()(64bit)libgcrypt.so.20(GCRYPT_1.6)(64bit)libglib-2.0.so.0()(64bit)libgmodule-2.0.so.0()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.1\@\\8@[[[[Q[WZľ@ZSZX@Z!D@YY4YW@YbY@YyYm@Y1S@Y;@XX@X@XAXlXbWXQ4@X-W@WҤ@WҤ@W^@WW@WXWcVяVV^V@Vl @Vii@VMV U5@UU@UU`kUSRobert Frohl Robert Frohl astieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comjmatejek@suse.comastieger@suse.comjengelh@inai.detchvatal@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comtchvatal@suse.comastieger@suse.comtchvatal@suse.comtchvatal@suse.comastieger@suse.comastieger@suse.comastieger@suse.comecsos@opensuse.orgastieger@suse.comastieger@suse.comastieger@suse.combadshah400@gmail.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comcrrodriguez@opensuse.orgcrrodriguez@opensuse.orgastieger@suse.comastieger@suse.comastieger@suse.comzaitor@opensuse.orgastieger@suse.comastieger@suse.comcrrodriguez@opensuse.orgastieger@suse.comcrrodriguez@opensuse.orgdimstar@opensuse.orgastieger@suse.comandreas.stieger@gmx.demeissner@suse.comandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.de- Wireshark 2.4.14 (bsc#1131945): * CVE-2019-10895: NetScaler file parser crash. * CVE-2019-10899: SRVLOC dissector crash. * CVE-2019-10894: GSS-API dissector crash. * CVE-2019-10896: DOF dissector crash. * CVE-2019-10901: LDSS dissector crash. * CVE-2019-10903: DCERPC SPOOLSS dissector crash. - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.14.html- Wireshark 2.4.13: * CVE-2019-9214: RPCAP dissector could crash (bsc#1127367) * CVE-2019-9209: ASN.1 BER and related dissectors could crash (bsc#1127369) * CVE-2019-9208: TCAP dissector could crash (bsc#1127370) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.13.html- Wireshark 2.4.12: * CVE-2019-5717: The P_MUL dissector could crash (bsc#1121232) * CVE-2019-5718: The RTSE dissector and other dissectors could crash (bsc#1121233) * CVE-2019-5719: The ISAKMP dissector could crash (bsc#1121234) * CVE-2019-5721: The ENIP dissector could crash (bsc#1121235) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.12.html- Wireshark 2.4.11 (bsc#1117740): * CVE-2018-19625: The Wireshark dissection engine could crash (wnpa-sec-2018-51) * CVE-2018-19626: The DCOM dissector could crash (wnpa-sec-2018-52) * CVE-2018-19623: The LBMPDM dissector could crash (wnpa-sec-2018-53) * CVE-2018-19622: The MMSE dissector could go into an infinite loop (wnpa-sec-2018-54) * CVE-2018-19627: The IxVeriWave file parser could crash (wnpa-sec-2018-55) * CVE-2018-19624: The PVFS dissector could crash (wnpa-sec-2018-56) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html- Wireshark 2.4.10 (bsc#1111647): * CVE-2018-18227: MS-WSP dissector crash (wnpa-sec-2018-47) * CVE-2018-12086: OpcUA dissector crash (wnpa-sec-2018-50) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.10.html- Update to 2.4.9 (bsc#1106514): * CVE-2018-16058: Bluetooth AVDTP dissector crash (wnpa-sec-2018-44) * CVE-2018-16056: Bluetooth Attribute Protocol dissector crash (wnpa-sec-2018-45) * CVE-2018-16057: Radiotap dissector crash (wnpa-sec-2018-46) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.9.html - packaging change: temporarily disable upstream tarball signature verification, use hashes from signed release announcement e-mail- update to 2.4.8: * CVE-2018-14342: BGP dissector large loop (wnpa-sec-2018-34, boo#1101777) * CVE-2018-14344: ISMP dissector crash (wnpa-sec-2018-35, boo#1101788) * CVE-2018-14340: Multiple dissectors could crash (wnpa-sec-2018-36, boo#1101804) * CVE-2018-14343: ASN.1 BER dissector crash (wnpa-sec-2018-37, boo#1101786) * CVE-2018-14339: MMSE dissector infinite loop (wnpa-sec-2018-38, boo#1101810) * CVE-2018-14341: DICOM dissector crash (wnpa-sec-2018-39, boo#1101776) * CVE-2018-14368: Bazaar dissector infinite loop (wnpa-sec-2018-40, boo#1101794) * CVE-2018-14369: HTTP2 dissector crash (wnpa-sec-2018-41, boo#1101800) * CVE-2018-14367: CoAP dissector crash (wnpa-sec-2018-42, boo#1101791) * CVE-2018-14370: IEEE 802.11 dissector crash (wnpa-sec-2018-43, boo#1101802) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.8.html- update to 2.4.7: This release fixes minor vulnerabilities that could be used to trigger dissector crashes or cause dissectors to go into large infinite loops by making Wireshark read specially crafted packages from the network or capture files (bsc#1094301): * CVE-2018-11356: DNS dissector crash * CVE-2018-11357: Multiple dissectors could consume excessive memory * CVE-2018-11358: Q.931 dissector crash * CVE-2018-11359: The RRC dissector and other dissectors could crash * CVE-2018-11360: GSM A DTAP dissector crash * CVE-2018-11362: LDSS dissector crash - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.7.html- Wireshark 2.4.6: This release fixes minor vulnerabilities that could be used to trigger dissector crashes or cause dissectors to go into large infinite loops by making Wireshark read specially crafted packages from the network or capture files (bsc#1088200): * CVE-2018-9264: ADB dissector crash * CVE-2018-9260: IEEE 802.15.4 dissector crash * CVE-2018-9261: NBAP dissector crash * CVE-2018-9262: VLAN dissector crash * CVE-2018-9256: LWAPP dissector crash * CVE-2018-9263: Kerberos dissector crash * CVE-2018-9258: TCP dissector crash * CVE-2018-9257: CQL infinite loop * Memory leaks in multiple dissectors: CVE-2018-9265, CVE-2018-9266, CVE-2018-9267, CVE-2018-9268, CVE-2018-9269, CVE-2018-9270, CVE-2018-9271, CVE-2018-9272, CVE-2018-9273, CVE-2018-9274 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.6.html- Wireshark 2.4.5: This release fixes minor vulnerabilities that could be used to trigger dissector crashes or cause dissectors to go into large infinite loops by making Wireshark read specially crafted packages from the network or capture files (bsc#1082692): * CVE-2018-7335: The IEEE 802.11 dissector could crash * CVE-2018-7321, CVE-2018-7322, CVE-2018-7323, CVE-2018-7324, CVE-2018-7325, CVE-2018-7326, CVE-2018-7327, CVE-2018-7328, CVE-2018-7329, CVE-2018-7330, CVE-2018-7331, CVE-2018-7332, CVE-2018-7333, CVE-2018-7421: Multiple dissectors could go into large infinite loops * CVE-2018-7334: The UMTS MAC dissector could crash * CVE-2018-7337: The DOCSIS dissector could crash * CVE-2018-7336: The FCP dissector could crash * CVE-2018-7320: The SIGCOMP dissector could crash * CVE-2018-7420: The pcapng file parser could crash * CVE-2018-7417: The IPMI dissector could crash * CVE-2018-7418: The SIGCOMP dissector could crash * CVE-2018-7419: The NBAP disssector could crash * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.5.html- Wireshark 2.4.4: * fixes for dissector crashes: + CVE-2018-5334: IxVeriWave file could crash (bsc#1075737) + CVE-2018-5335: WCP dissector could crash (bsc#1075738) + CVE-2018-5336: Multiple dissector crashes (bsc#1075739) * No longer enable the Linux kernel BPF JIT compiler via the net.core.bpf_jit_enable sysctl, as this would make systems more vulnerable to Spectre variant 1 (bsc#1075748, CVE-2017-5753) * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.4.html- Wireshark 2.4.3: This release fixes minor vulnerabilities that could be used to trigger dissector crashes by making Wireshark read specially crafted packages from the network or capture files (bsc#1070727): * CVE-2017-17084: IWARP_MPA dissector crash (wnpa-sec-2017-47) * CVE-2017-17083: NetBIOS dissector crash (wnpa-sec-2017-48) * CVE-2017-17085: CIP Safety dissector crash (wnpa-sec-2017-49) * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.3.html- Wireshark 2.4.2: This release fixes minor vulnerabilities that could be used to trigger dissector crashes or infinite loops by making Wireshark read specially crafted packages from the network or a capture file (boo#1062645): * CVE-2017-15192: BT ATT dissector crash (wnpa-sec-2017-42) * CVE-2017-15193: MBIM dissector crash (wnpa-sec-2017-43) * CVE-2017-15191: DMP dissector crash (wnpa-sec-2017-44) * CVE-2017-15190: RTSP dissector crash (wnpa-sec-2017-45) * CVE-2017-15189: DOCSIS infinite loop (wnpa-sec-2017-46)- downgrade to lua51-devel in order to drop Lua 5.2 from Factory (can't upgrade to 5.3 because that is still not supported)- Wireshark 2.4.1: This release fixes minor vulnerabilities that could be used to trigger dissector crashes, infinite loops, or cause excessive use of memory resources by making Wireshark read specially crafted packages from the network or a capture file: * CVE-2017-13767: MSDP dissector infinite loop (bsc#1056248) * CVE-2017-13766: Profinet I/O buffer overrun (bsc#1056249) * CVE-2017-13764: Modbus dissector crash (bsc#1056250) * CVE-2017-13765: IrCOMM dissector buffer overrun (bsc#1056251) * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.1.html- Trim filler wording from description.- Gcrypt is now default - gtk switch was redone to accept value at the end instead of 2 options- Wireshark 2.4.0: * SS7 Point Codes can now be resolved into names with a hosts- like file. * Wireshark can now go fullscreen to have more room for packets * TShark can now export objects like the other GUI interfaces. * Support for G.722 and G.726 codecs in the RTP Player (via the SpanDSP library) * You can now choose the output device when playing RTP streams * Added support for dissectors to include a unit name natively in their hf field. A field can now automatically append "seconds" or "ms" to its value without additional printf-style APIs * The Default profile can now be reset to default values. * You can move back and forth in the selection history in the Qt UI. * IEEE 802.15.4 dissector now uses an UAT for decryption keys. The original decryption key preference has been obsoleted. * Extcap utilities can now provide configuration for a GUI interface toolbar to control the extcap utility while capturing. * Extcap utilities can now validate the capture filter. * Display filter function len() can now be used on all string and byte fields. * Added an experimental timeline view for 802.11 wireless packet data which can be enabled via the "802.11 radio information preferences. * Added TLS 1.3 (draft 21) dissection and decryption support * The (D)TLS Application Layer protocol (e.g. HTTP or CoAP) can now be changed via the Decode As dialog. * The RSA keys dialog for SSL keys has improved feedback for invalid settings and no longer requires the IP address, Port or Protocol fields to be set in addition to the Key File. * TCP Analysis will detect and flag more spurious retransmissions. * Many new and updated protocol support * New and updated Capture File Support: ERF, IxVeriWave, Libpcap, and Pcap-ng * API changes: IEEE802.11: wlan_mgt display filter element got renamed to wlan.- Wireshark 2.2.8 (bsc#1049255): This release fixes minor vulnerabilities that could be used to trigger dissector crashes, infinite loops, or cause excessive use of memory resources by making Wireshark read specially crafted packages from the network or a capture file: * CVE-2017-7702 CVE-2017-11410: WBMXL dissector infinite loop (wnpa-sec-2017-13) * CVE-2017-9350 CVE-2017-11411: openSAFETY dissector memory exhaustion (wnpa-sec-2017-28) * CVE-2017-11408: AMQP dissector crash (wnpa-sec-2017-34) * CVE-2017-11407: MQ dissector crash (wnpa-sec-2017-35) * CVE-2017-11406: DOCSIS infinite loop (wnpa-sec-2017-36)- Wireshark 2.2.7 (bsc#1042330): This release fixes minor vulnerabilities that could be used to trigger dissector crashes, infinite loops, or cause excessive use of CPU resources by making Wireshark read specially crafted packages from the network or a capture file: * CVE-2017-9352: Bazaar dissector infinite loop (bsc#1042304) * CVE-2017-9348: DOF dissector read overflow (bsc#1042303) * CVE-2017-9351: DHCP dissector read overflow (bsc#1042302) * CVE-2017-9346: SoulSeek dissector infinite loop (bsc#1042301) * CVE-2017-9345: DNS dissector infinite loop (bsc#1042300) * CVE-2017-9349: DICOM dissector infinite loop (bsc#1042305) * CVE-2017-9350: openSAFETY dissector memory exhaustion (bsc#1042299) * CVE-2017-9344: BT L2CAP dissector divide by zero (bsc#1042298) * CVE-2017-9343: MSNIP dissector crash (bsc#1042309) * CVE-2017-9347: ROS dissector crash (bsc#1042308) * CVE-2017-9354: RGMP dissector crash (bsc#1042307) * CVE-2017-9353: IPv6 dissector crash (bsc#1042306)- Allow opening capture files from desktop without asking for privileged credentials. bsc#1025714- Wireshark 2.2.6: This release fixes minor vulnerabilities that could be used to trigger a dissector crash or infinite loops by sending specially crafted packages over the network or into a capture file: * CVE-2017-7700: NetScaler file parser infinite loop (bsc#1033936) * CVE-2017-7701: BGP dissector infinite loop (bsc#1033937) * CVE-2017-7702: WBMXL dissector infinite loop (bsc#1033938) * CVE-2017-7703: IMAP dissector crash (bsc#1033939) * CVE-2017-7704: DOF dissector infinite loop (bsc#1033940) * CVE-2017-7705: RPCoRDMA dissector infinite loop (bsc#1033941) * CVE-2017-7745: SIGCOMP dissector infinite loop (bsc#1033942) * CVE-2017-7746: SLSK dissector long loop (bsc#1033943) * CVE-2017-7747: PacketBB dissector crash (bsc#1033944) * CVE-2017-7748: WSP dissector infinite loop (bsc#1033945) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.2.6.html- Wireshark 2.2.5: boo#1027998 This release fixes minor vulnerabilities that could be used to trigger a dissector crash or infinite loops by sending specially crafted packages over the network or into a capture file: * CVE-2017-6467: NetScaler file parser infinite loop (wnpa-sec-2017-11) * CVE-2017-6468: NetScaler file parser crash (wnpa-sec-2017-08) * CVE-2017-6469: LDSS dissector crash (wnpa-sec-2017-03) * CVE-2017-6470: IAX2 dissector infinite loop (wnpa-sec-2017-10) * CVE-2017-6471: WSP dissector infinite loop (wnpa-sec-2017-05) * CVE-2017-6472: RTMTP dissector infinite loop (wnpa-sec-2017-04) * CVE-2017-6473: K12 file parser crash (wnpa-sec-2017-09) * CVE-2017-6474: NetScaler file parser infinite loop (wnpa-sec-2017-07) * wnpa-sec-2017-06: STANAG 4607 file parser infinite loop - restore license in about dialog boo#1026507- Disable gnutls on SLE11 as we are unable to meet the gnutls requirements there- Wireshark 2.2.4: This release fixes two minor vulnerabilities that could be use to cause Wireshark to go into a large or infinite loop by sending specially crafted packages over the network or into a capture file (bsc#1021739) * The ASTERIX dissector could go into an infinite loop CVE-2017-5596 wnpa-sec-2017-01 * The DHCPv6 dissector could go into a large loop. CVE-2017-5597 wnpa-sec-2017-02 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.2.4.html- Obsolete the ui-gtk in the ui-qt to ensure clean non-conflicted install- Cleanup a bit with spec-cleaner - Properly set ethereal symlink based on UI and set it to proper subpkg - Update conditionals on wireshark to only build Qt or GTK depending on the interface, because upstream now only supports Qt5 - Update the caps code in spec but keep it disabled - Enable geoip only on platforms that support it - Enable libnl only on newer releases - Update desktop file and icon caches - Drop not really needed patch wireshark-1.10.0-authors-pod2man.patch - Use full commands for icon/desktop cache for gtk mode as on sle11 it was not present yet as a macro - Split shared libraries properly to subpackages- Wireshark 2.2.3: * fix export related bugs * fix UI bugs * bugfix and corrections updates for dissectors * updated protocol support for BGP, BOOTP/DHCP, BTLE, DICOM, DOF, Echo, GTP, ICMP, Radiotap, RLC, RPC over RDMA, RTCP, SMB, TCP, UFTP4, and VXLAN- Wireshark 2.2.2: * CVE-2016-9372: Profinet I/O long loop (boo#1010807) * CVE-2016-9374: AllJoyn crash (boo#1010752) * CVE-2016-9376: OpenFlow crash (boo#1010735) * CVE-2016-9373: DCERPC crash (boo#1010754) * CVE-2016-9375: DTN infinite loop (boo#1010740) * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.2.2.html- Wireshark 2.2.1: This release fixes a number of issues that made it possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. (bsc#1002981) * wnpa-sec-2016-56: The Bluetooth L2CAP dissector could crash * wnpa-sec-2016-57: The NCP dissector could crash * Further bug fixes and updated protocol support as listed in: * Bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.2.1.html- Wireshark 2.2.0: * Bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.2.0.html * Drop wireshark-pkg-config.patch because code is now in upstream * Drop wireshark-1.12.6-fix-QT-PIC-PIE.patch because no more need for build. And create errors at build Tumbleweed. * Rebase wireshark-1.10.0-authors-pod2man.patch- Wireshark 2.0.6: This release fixes a number of issues that made it possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. (bsc#998099) * The QNX6 QNET dissector could crash wnpa-sec-2016-50 CVE-2016-7175 * The H.225 dissector could crash wnpa-sec-2016-51 CVE-2016-7176 * The Catapult DCT2000 dissector could crash wnpa-sec-2016-52 CVE-2016-7177 * The UMTS FP dissector could crash wnpa-sec-2016-53 CVE-2016-7178 * The Catapult DCT2000 dissector could crash wnpa-sec-2016-54 CVE-2016-7179 * The IPMI Trace dissector could crash wnpa-sec-2016-55 CVE-2016-7180 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.0.6.html- fix permissions warning on appdata, does not need +x- Wireshark 2.0.5: This release fixes a number issues in protocol dissectors that could have allowed a remote attacker to crash Wireshark or cause excessive CPU usage through specially crafted packages inserted into the network or a capture file. * PacketBB crash wnpa-sec-2016-41 bsc#991013 CVE-2016-6505 * WSP infinite loop wnpa-sec-2016-42 bsc#991015 CVE-2016-6505 * RLC long loop wnpa-sec-2016-44 bsc#991017 CVE-2016-6508 * LDSS dissector crash wnpa-sec-2016-45 bsc#991018 CVE-2016-6509 * RLC dissector crash wnpa-sec-2016-46 bsc#991019 CVE-2016-6510 * OpenFlow long loop wnpa-sec-2016-47 bsc#991020 CVE-2016-6511 * MMSE, WAP, WBXML, and WSP infinite loop wnpa-sec-2016-48 bsc#991021 CVE-2016-6512 * WBXML crash wnpa-sec-2016-49 bsc#991022 CVE-2016-6513 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.0.5.html- Drop external wireshark.appdata.xml file, use the upstream bundled one instead. - Use the bundled appdata file as a template to generate the proper appdata files for both the GTK and QT GUI applications; install separate appdata for both apps.- Wireshark 2.0.4 (boo#983671) This release fixes a number issues in protocol dissectors that could have allowed a remote attacker to crash Wireshark or cause excessive CPU usage through specially crafted packages inserted into the network or a capture file. * The SPOOLS dissector could go into an infinite loop wnpa-sec-2016-29 CVE-2016-5350 * The IEEE 802.11 dissector could crash wnpa-sec-2016-30 CVE-2016-5351 * The IEEE 802.11 dissector could crash wnpa-sec-2016-31 CVE-2016-5352 * The UMTS FP dissector could crash wnpa-sec-2016-32 CVE-2016-5353 * Some USB dissectors could crash wnpa-sec-2016-33 CVE-2016-5354 * The Toshiba file parser could crash wnpa-sec-2016-34 CVE-2016-5355 * The CoSine file parser could crash wnpa-sec-2016-35 CVE-2016-5356 * The NetScreen file parser could crash wnpa-sec-2016-36 CVE-2016-5357 * The Ethernet dissector could crash wnpa-sec-2016-37 CVE-2016-5358- Wireshark 2.0.3 (boo#976944) This release fixes a number issues in protocol dissectors that could have allowed a remote attacker to crash Wireshark or cause excessive CPU usage through specially crafted packages inserted into the network or a capture file. * The NCP dissector could crash (wnpa-sec-2016-19) * TShark could crash due to a packet reassembly bug (wnpa-sec-2016-20) * The IEEE 802.11 dissector could crash (wnpa-sec-2016-21) * The PKTC dissector could crash (wnpa-sec-2016-22) * The PKTC dissector could crash (wnpa-sec-2016-23) * The IAX2 dissector could go into an infinite loop (wnpa-sec-2016-24) * Wireshark and TShark could exhaust the stack (wnpa-sec-2016-25) * The GSM CBCH dissector could crash (wnpa-sec-2016-26) * MS-WSP dissector crash (wnpa-sec-2016-27) * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.0.3.html- Wireshark 2.0.2 (boo#968565) This release fixes a number issues in protocol dissectors that could have allowed a remote attacker to crash Wireshark or cause excessive CPU usage through specially crafted packages inserted into the network or a capture file. * CVE-2016-2522: ASN.1 BER dissector crash (wnpa-sec-2016-02) * CVE-2016-2523: DNP dissector infinite loop (wnpa-sec-2016-03) * CVE-2016-2524: X.509AF dissector crash (wnpa-sec-2016-04) * CVE-2016-2525: HTTP/2 dissector crash (wnpa-sec-2016-05) * CVE-2016-2526: HiQnet dissector crash (wnpa-sec-2016-06) * CVE-2016-2527: 3GPP TS 32.423 Trace file parser crash (wnpa-sec-2016-07) * CVE-2016-2528: LBMC dissector crash (wnpa-sec-2016-08) * CVE-2016-2529: iSeries file parser crash (wnpa-sec-2016-09) * CVE-2016-2530: RSL dissector crash (wnpa-sec-2016-10) * CVE-2016-2531: RSL dissector crash (wnpa-sec-2016-10) * CVE-2016-2532: LLRP dissector crash (wnpa-sec-2016-11) * Ixia IxVeriWave file parser crash (wnpa-sec-2016-12) * IEEE 802.11 dissector crash (wnpa-sec-2016-13) * GSM A-bis OML dissector crash (wnpa-sec-2016-14) * ASN.1 BER dissector crash (wnpa-sec-2016-15) * SPICE dissector large loop (wnpa-sec-2016-16) * NFS dissector crash (wnpa-sec-2016-17) * ASN.1 BER dissector crash (wnpa-sec-2016-18) * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.0.2.html- Recommend wireshark-ui instead of requiring it (boo#961170) to support text-only use- Add CVEs for boo#960382- Wireshark 2.0.1 fixing the following dissector crashes boo#960382: * NBAP dissector crashes. wnpa-sec-2015-31 CVE-2015-8711 * NLM dissector crash. wnpa-sec-2015-37 CVE-2015-8718 * BER dissector crash. wnpa-sec-2015-39 CVE-2015-8720 * Zlib decompression crash. wnpa-sec-2015-40 CVE-2015-8721 * SCTP dissector crash. wnpa-sec-2015-41 CVE-2015-8722 * 802.11 decryption crash. wnpa-sec-2015-42 CVE-2015-8723 CVE-2015-8724 * DIAMETER dissector crash. wnpa-sec-2015-43 CVE-2015-8725 * VeriWave file parser crashes. wnpa-sec-2015-44 CVE-2015-8726 * RSVP dissector crash. wnpa-sec-2015-45 CVE-2015-8727 * ANSI A & GSM A dissector crashes. wnpa-sec-2015-46 CVE-2015-8728 * Ascend file parser crash. wnpa-sec-2015-47 CVE-2015-8729 * NBAP dissector crash. npa-sec-2015-48 CVE-2015-8730 * RSL dissector crash. wnpa-sec-2015-49 CVE-2015-8731 * ZigBee ZCL dissector crash. wnpa-sec-2015-50 CVE-2015-8732 * Sniffer file parser crash wnpa-sec-2015-51 CVE-2015-8733 * NWP dissector crash. wnpa-sec-2015-52 CVE-2015-8734 * BT ATT dissector crash. wnpa-sec-2015-53 CVE-2015-8735 * MP2T file parser crash. wnpa-sec-2015-54 CVE-2015-8736 * MP2T file parser crash. wnpa-sec-2015-55 CVE-2015-8737 * S7COMM dissector crash. wnpa-sec-2015-56 CVE-2015-8738 * IPMI dissector crash. wnpa-sec-2015-57 CVE-2015-8739 * TDS dissector crash. wnpa-sec-2015-58 CVE-2015-8740 * PPI dissector crash. wnpa-sec-2015-59 CVE-2015-8741 * MS-WSP dissector crash. wnpa-sec-2015-60 CVE-2015-8742 - adjust wireshark-1.12.6-fix-QT-PIC-PIE.patch for upstream changes- BuildRequire pkgconfig(Qt5Multimedia) too.- Enable netlink support, requires libnl3.- Wireshark 2.0.0: * Completely new user interface (QT) * ~/.config/wireshark now used over ~/.wireshark * File format debugging support for BTSNOOP, PCAP, and PCAPNG * New and updates support for 3GPP TS 32.423 Trace, Android Logcat text files, Colasoft Capsa files, Netscaler 3.5, and Symbian OS BTSNOOP File Format * Support nanosecond timestamp resolution in PCAP-NG * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.0.0.html - adjust wireshark-pkg-config.patch for upstream changes- Wireshark 1.12.8 [boo#950437] The following vulnerabilities have been fixed: * pcapng file parser could crash while copying an interface filter. wnpa-sec-2015-30 CVE-2015-7830 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.8.html - drop upstream wireshark-1.12.x-allow-gdk-pixbuf-deprecation.patch- Wireshark 1.12.7 [boo#941500] The following vulnerabilities have been fixed: * Wireshark could crash when adding an item to the protocol tree. wnpa-sec-2015-21 CVE-2015-6241 * Wireshark could attempt to free invalid memory. wnpa-sec-2015-22 CVE-2015-6242 * Wireshark could crash when searching for a protocol dissector. wnpa-sec-2015-23 CVE-2015-6243 * The ZigBee dissector could crash. wnpa-sec-2015-24 CVE-2015-6244 * The GSM RLC/MAC dissector could go into an infinite loop. wnpa-sec-2015-25 CVE-2015-6245 * The WaveAgent dissector could crash. wnpa-sec-2015-26 CVE-2015-6246 * The OpenFlow dissector could go into an infinite loop. wnpa-sec-2015-27 CVE-2015-6247 * Wireshark could crash due to invalid ptvcursor length checking. wnpa-sec-2015-28 CVE-2015-6248 * The WCCP dissector could crash. wnpa-sec-2015-29 CVE-2015-6249 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.7.html- Conditionally set lua52-devel BuildRequires for openSUSE versions newer than 13.2. Wireshark does not compile with lua 5.3.- Fix Factory with QT (PIE/PIC) adding wireshark-1.12.6-fix-QT-PIC-PIE.patch- Wireshark 1.12.6 - The following vulnerabilities have been fixed: * WCCP dissector crash CVE-2015-4651 wnpa-sec-2015-19 boo#935157 * GSM DTAP dissector crash CVE-2015-4652 wnpa-sec-2015-20 boo#935158 - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.6.html- force -fPIC build to make QT5 happy.- Wireshark 1.12.5 [boo#930689] - The following vulnerabilities have been fixed: * The LBMR dissector could go into an infinite loop. CVE-2015-3808 CVE-2015-3809 wnpa-sec-2015-12 * The WebSocket dissector could recurse excessively. CVE-2015-3810 wnpa-sec-2015-13 * The WCP dissector could crash while decompressing data. CVE-2015-3811 wnpa-sec-2015-14 * The X11 dissector could leak memory. CVE-2015-3812 wnpa-sec-2015-15 * The packet reassembly code could leak memory. CVE-2015-3813 wnpa-sec-2015-16 * The IEEE 802.11 dissector could go into an infinite loop. CVE-2015-3814 wnpa-sec-2015-17 * The Android Logcat file parser could crash. CVE-2015-3815 wnpa-sec-2015-18 - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.5.html- Build the qt frontend against QT5 in Factory (only).- Add wireshark-pkg-config.patch: actually install wireshark.pc, which is part of the tarball. Seems only cmake based setup handles this for upstream. - Add wireshark.appdata.xml in order to show up in AppStream based appstores.- Wireshark 1.12.4: - The following security issues were fixed: * The ATN-CPDLC dissector could crash. wnpa-sec-2015-06 CVE-2015-2187 [bnc#920695] * The WCP dissector could crash. wnpa-sec-2015-07 CVE-2015-2188 [bnc#920696] * The pcapng file parser could crash. wnpa-sec-2015-08 CVE-2015-2189 [bnc#920697] * The LLDP dissector could crash. wnpa-sec-2015-09 CVE-2015-2190 [bnc#920698] * The TNEF dissector could go into an infinite loop. wnpa-sec-2015-10 CVE-2015-2191 [bnc#920699] * The SCSI OSD dissector could go into an infinite loop. wnpa-sec-2015-11 CVE-2015-2192 [bnc#920700] - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.4.html- Wireshark 1.12.3 - The following vulnerabilities allowed Wireshark to be crashed by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. + The WCCP dissector could crash wnpa-sec-2015-01 CVE-2015-0559 CVE-2015-0560 [boo#912365] + The LPP dissector could crash. wnpa-sec-2015-02 CVE-2015-0561 [boo#912368] + The DEC DNA Routing Protocol dissector could crash. wnpa-sec-2015-03 CVE-2015-0562 [boo#912369] + The SMTP dissector could crash. wnpa-sec-2015-04 CVE-2015-0563 [boo#912370] + Wireshark could crash while decypting TLS/SSL sessions. wnpa-sec-2015-05 CVE-2015-0564 [boo#912372] - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.3.html- build with PIE- Allow build with functions deprecated in gdk-pixbuf 2.31.2, fixing build for openSUSE Factory, add wireshark-1.12.x-allow-gdk-pixbuf-deprecation.patch- Wireshark 1.12.2 - The following vulnerabilities have been fixed. + SigComp UDVM buffer overflow wnpa-sec-2014-20 CVE-2014-8710 boo#905246 + AMQP crash wnpa-sec-2014-21 CVE-2014-8711 boo#905245 + NCP crashes wnpa-sec-2014-22 CVE-2014-8712 CVE-2014-8713 boo#905248 + TN5250 infinite loops wnpa-sec-2014-23 CVE-2014-8714 boo#905247 - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.2.html- remove gpg-offline, now part of source-validator, also fixing SLE 12/sbin/ldconfig/sbin/ldconfigcloud103 15569601522.4.14-lp151.1.22.4.14-lp151.1.2libwsutil.so.8libwsutil.so.8.0.0/usr/lib64/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Leap:15.1/standard/e4d06eef20c4eeffe574e31ebae2dbaf-wiresharkcpioxz5x86_64-suse-linuxELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=882217254060c1660c1c588be97486e469e2e11c, strippedPRR RRRRRRR R R R RL qv߄C@t>utf-859583f4758c08ade216167bd6ab5791a3dd71c24164c313f8d25aec588f80827?7zXZ !t/륻] cr$x#Dzwͺ4~fo||hd=v]'VN˼U'~ +QVa#c8,{ T~BBF?/?goA܉Gf[rkN~&f8Dq+PUV_a~ф#gqS<̀o/'][0'B?1i.ؿ[XbHKkv E4+(nB th /%jk#PI,E? ZPF*SU?&5ŞKe8f ?k˧6F$8zaɧjQ=,wv4^rHdFTq#`-d,X n|nlxW UBci>IT5F|3ua o=jaen΢y0r`?bDtbM?.i_Qx!F?︂ie35F%BK}D|_㒟OYiKgR\Q1ybHW.Ey#k4 DlC944$}0( `9(4zUَǯ_$TUW!Rnf1Nt`}yvwٌAvDp’QQ<1iXUdω"0<] Z:D8%gB,k6m}4>"q1&|.A ~iF Ӫ3vפV)jd;=P2J% @/4VجB4.m^`ubA Vv%+UMY5[\K窴[[WdwM%Xt v9-вi)lQOŲykB}0%^U%. ip&(߀;L- I˟^?)eBٸ|։XkF= oi-E=930 lMS:^fRDFez-J3x^9 ioF yr_ TENćh`p/(Cϡ,9`jO 6P⁞UGZ ,ARHcoUO~18Rԇ6;Ob=ׂڄ51 i&TcoI|Z"QNf'9q+V\½R >ģBdkTV&CHWV_ozH0%;-sbXBMÀjH 怽~ `|Pi)_h|:eKC=xSjmb|pT`#n_ _G$feRdAgkC"M,:0it + CLR}BuGn<188 ׫w!ɣn _@HCJ*Ku^ǘ^08QtuDd6e `@D,*^^"H8dF9FS66ϳ׀YI?1K&IWzmB6IQY5쵁/+!?'3Ut1wU޵P.+yy{膥[Ttf%*sĜ\]4R*qOúwעw=kCtydh`%%2;?h z1"70M~9?j.I>`D '5RN:^\O%_rG0t"tufx0LFqʕT=aE4]9OVڻkzZB~b)M-W"ڢv)+{ qF=wf_J@NKf#RBBMtof> .@2}BgC5ѰAB=0۳Iy0}9E@,K$cv4]%DajbKc]/ի +C/(\G_9^A9|As'eN5XK` <*i3D|M#+Wm)C0s wmCJoԍ) aQ67\m:A A7R,z&=rvS:($5 4X7V 0-DOk:3 8Y-S}OBrr-sn.nѣsYzjaoAAUȲ H.Nߢyg|$\uoPG)\ú9sx ,"[wwMXaJRnJNBlb<#O'Yjh?8zBys|%Q=k+}uN0?` 4XH>d+1y2f:JjIYbQʤ/c|>!%x`w:f2`l.#,%|u. >4X?fn`W8\1ʀqTWBtc&5IPu'Mw/n!STO ùCoƎnUOz8cH6el^֘~rQ օ̟Ih@RIXZ׵[T&ٚbnFӿ o27U9"A%A&$0B#Zgyr;r5-s2UҭhIDw$8iR2!KV\W ">ޖ lp`VAct1ld1^0{(ic [Zہ1HMnawlƒYw&.p*љ|l4l k̃ [t] Z*\p_¶0dc%ӄIUqT=B2pm!(*s5ĥvBmǂ -%M81!Z{q3dձd1A %rX.wJZw48 72̩yFӜ`p+d~?$/>-4Ph"Ğ$I/EPyy %ʄj&OM"l>rO۩'0d%0 -\sSiVnf"myЙ>txşpT 1Mr]SYj5wQ5\HCN@sVo.szz!"Iˇ D]D f,b/(*D:x-P`l7Qo)NE^ϘeEUrz}?TrL菘yDڐBLo'D,P4JG:X/PvV%0l17ɱTMCVwљe?=TH+w{v2t%?=_ % ^}%]k#FTX!KؚS0.Hiqrԇ] BĚFs'*XsAFY%۠&23\Tw9 @}5]Τ>PkO)/k:Q]ϧvWwLhO_3@Q In[2m.esR>bΑBC "plh$P >op8pJ '#QgngP[2y_ ]2~Y:ηi 7H${T2v Ao .̟Ei܄dbu452%~0#b,zɺVcBatgIKWNCb7Uk?S5< aLv~`1F+Eŕ [l?]rQ^Փm.CnJ5u["B ?u &AJJm**4jeQ,EW5%$эpÍ r;V⣲D kdrcUpιCswx.xH>_TΝ˿ԿL 4FcY#2 >c~ }Mj@3LV6Mdi oN`/Hx^V>:'Mr:;@\R襚 Y˙<*8S! kY ):`F}(]U ˨UE kQ\>_6ӊE?={X <{qۇ0_Ll" #t IYC24!`@0T([G$fjCA5WM#m%V}9mS?|ᕈMv! $r,^e*㋪vM7L @Ƃ%x+8v&Yx_-i dY -aqEy&v4;mYb'}}bpxM(Vow ћ l S3BD-ٽ-`v }H/ؑ B/_]'-A?Vw/{?ܫ#Z֙^d@&q[Urn)9G]r?2]epFr1c{EWXUT""=}Q)>x^Y3[:q a+D\pcIwFqBI"@]xi'4;x3y(^}Aȫ;RiոMKjcn]0FTM4C#CTYK^y)ŸXY<>5G/ruJ*nuVN L#%yFl#I#`Xԋvhi&F"PH$_H/2J:ljDxj6](ιa 8¹!IF7ڃy(3Rbqz0Vv#B$rN? A7eOQJi.R2G2e^$,!Ҕ%5)aT#jz"n+vL#pUzHȢ8f"tq-MOY> :, 5u j[ ?א8R(}\OD^ ) s\5s(f>3yPAhy/*ߐV-cqX҃\d{kfsErytl].;L\*ø ŀ]+O:a9.:3RZ,,=_L7r[dˀlOg"@ ;2æ]M/l&FD߆ECB@GEM!~궰,P5uj3{@&UgY%%tE3jݯ}USb?6;-%\7E8rEe ~I.`*-=?uƋО3Mv|v J<R6B 7$Y}S4MFuwI%TYP5]"_1$^]'E RG^WEd<5j-{t\khO6*?j=nI]pЌEC5?od>%Xq䋗?I֧ձŇ5j35]Vҋb;x|TE:BŶf'8=alRI{> G 1OCtbeú޷Km? ebڽ̾O- dPi%L^UPE{㬞5xfߚ"X /p_? i=` LزqgMd*:k$p CF:3F00 po%yb&:\QihY.!hb|_Y_ꬷt^v;LS7Z$OZ&b|<^/%zpRzIf=ga N gAgNb'>>ZK ck05t=Yˬ&v2D$N\OKk)1ȽJt 6 A6&V%HGlٌ7otƬr ]TL *P狶2 lga= QZ [ɢ7n֞魿Q@>^`FnC%/~BWkj\V5=Y {k8(y;e"ѽO_ֲ}- Yd'`N4?W45/9)*p t)v?Gu8c^Ue͔}`Okh9n7LX=:o\J"C0Z:XM$GqX^ Z*jOkb=WR,@~-SM~4A8VSu0aXɺpГGM91k$> R0n:5b^\ėfZuʃﻑʞil{Uy^^zoO0x&w]UD0&3-}v62R|/܀ӟ5]lDN#Y肞2^WFT_3t\9zq@ky^d&gLD PJ剚@+9U: Mk[([m2LwG \YZWtmXQG_ڵ3o W=|kك< ?~{~D)~pod k~52o{ߨ~cŘ[:sYܻ6(b1)\*\IBu} ׶‡0M!66r|h=5^]3,ً$O)~6I2s.oh&=?!8!F={:'74o\ (=x.qB&\|U ؀b׈^* o;} AJ:EBB̈`SԴ}7#;@nX@`Q:3؄`DXK#SI4 ٢jL&z஄r25X/_)ӷ9C,)EX*#'{Os@:9={Uq.ݟeXSJAlr_ Wc ^MD yz'K43zP .xYlQgy꺆AZp!zΐl+LO&ówK ]}[|u"e!yyvr>U[}Hc{%z5F0ԀvW:%ښA^EDZc<`g&E j& 9!21rpMN5D#U*"IgO.@/-oDݲO,X yjZ//sN!RkOod[<9#7W?Iiުz]fLC̣`e\I_-,uPhu!cH2>X&J97ZY lILJШ^rg?x$1fÏ~o9`!;S ,:.>8YEhqCrx'Mʬc\LxԓӊCwۍ1ZXslc }S 82Вk$.Sr@@+?_f*Æ|2*7My<$B jXҦRDI Ү/~*^{{v(roO/180¿NDz5=/&㤇{#i\[PߝwKzbQ4W|T;d-cMŝG$Cڠb/8~_4f&[x׫ H+嫶Il]`ͭ4ĝr'0`WPЈFI_oox` :b*?a.RBA%u:Ȱz #4lu܊`~Y/UAUHs,@/G2V7׬ؒ$5gsBDžDb8!.PjVsSDŽliiA[[4o 0lznnN|8)y"x%e ?4/5 #zi AmnPnNo1 /SLOL̼/xLJ, uпm#e`҃kq"N/ČWQ:74ioY'Cy!d1)rX.B_ho.&ng臾SWKBHW|Dط4kVO(3̊w.|ޢXe pRd*6QV>.dkW*`]݀s(q]VhLu/ICJ 4bKKg7lÌ=.צba<6+W UƅLK_ttlD,~UTЗ*fJ|{)~8|cav (Ȁ˜lf,8W3y75j}hyw↖@<{{:h-Ω^"OZ.@8x#z9/yܔJ,׉<^FNyRO~K']6eX5,lJ 449wE۶jp a>Nh5*D(5Gy%:0jx6Lٵ%Cf FX6"Ƞ=$+ ԕDaQB6b/Ͼ=w:wkLdrKk/[%׿w%E]=!N+Zן+6I}&>>1]71Ŝ{GbN7oX "[ LI%n vt$XL=*2ĦSwN< &,F[:4\no\¶1rꈻ g.F&(Z:=a\t3H):'Ր0/? zEf@ U}锳*gW2,tR6;|N5+<9(VzYsvz{024?f:xKUXq[;QѥJP /aF[錗QËW3j#Y'l/-/IT&b7u %u ∂gUTWpllMrfYU|D&f0E\3 7L~?)06Z؏:C_4Ve }L%ax R ༉5y(.fЋẢv7,Cց۪̯YiVY;l!q-u[mI| i$D2Lp aS;=q+'-(Cp QԵ3c ys=j۴gVoݰt[1`|ΕV/!x'(GuᝫCn(RVUL*gf XDhZn [,N G=e1Hk]4ݫYЯBDw]CQLHO+_KO>HPKE|ʻ7+gpG4A*xQRDqԔ3'UϵՋH'64"+3Xbdg Oe?+Yʏ3!6_177Vp%ʕ⧼e,S/Iң|dTݚkЙvStp?n50ӮR<#}Ni+ )(XFLJ(E]vZH!m6.{wG2}2ʬ:h_")?OE}b*Y0qYE\!VhG"%#z1 י,.aSmRh`[+h3Yb7 gsnxUR0dB^ԩpiç9enټy.⡎U2UQ]e㽸SC&c?V- Lz<~N 9Ҏ;pߋ 9ᯊΠgr-sɶW%(W9N`OfwQc 8 F)9zf!˾ qWVKcU`*LMө6-Ij..P[9؞vcQg,PȤ~,+_4m=p9X$üQ`;SUl0qZ$uo13"o ciWT)ڎIC9Z}c'rKN#oO+WOP?ٗ)ռf~]XMc>=yA}W M ]kFvAV)HTv“nD-" G-WeV|F-vHo^"Ƶu|Qcef+0#LK"k]Y gd07ҝv'`:IF]6vLTtPi@ErFTX;P ͬ]lSvRF/W[ VICc?ާwlk^bll0K`rSYP?nC7]S}:#G|ΟҺgwSe )78~Sqt#tCu:tP*D!l;7l2ø[> B0"*5pGT]ICDҗ@K!0z)NJ/$g?JTu\>Rws.أ cbi[1b9 J nBߋ'bm14z ٝiQ d o% Xΰ+w z-%/\EGq'kmWRv)s11ZD~eۼ:\S#[͍W1w *;!@u^TUAO#f$nS&ar9IdaZ-i;*9Xk!ǕŀYٙC"ٌ w(^Uy9b#&G~a͆ܢV[hΦhOYW%֝^0T]p EVJa9]7z|Hc_϶odS.߄>!_}/)yTE 8q?tr9rͷj۸aA:`t2'Ōhf:_T +fykR D@r%1vʠkv4_/O Q|fơX@bA\ƹakm<;u`k4&ݸu]Lfn89w7ʕRy} ռ J ?i!PCs,[1ȞGzCmn< 8J!XWfsPjcmsUOijv{!&re_^ޫEWy'Tۭ}QGF0cQH&/nHq[=3ΡPKɒ.8a}_Tڦs=ylI_V ܔ!`9;mtsuoHo6S4 ]CMECĐ_?XQ'$A ]l_^qM_7-R'22jd.+o>9%9g6(͗eЌM5Gpyz{/7(>%iz* ֏'?s(Tg6rE8[\Y&S1/`؇A1%%,bbz06mJ raAʔԭU_6r<MTݪn<@\r%(U+5(pXz t2˧=EXٳ]8S3܁y5n9P!yĽU@h6}C=J lro&d*gSڃ><Y "<( dv{1qKf>5q&n)E74!_A*^8~0Kpv҄A}l2 A<.6Cf|0Ho {s]8Q3|5赜D-@`2TqWEYe1OhԦ4$rU+@\c\B~6Q  $ާ#[eTxwTΨ3j`E!z1ula:\2f>``dvm6cB3]b`KD.p &vu@-9az41 f3޿,m 3.ÚR=TnPWLS} ,^#mSUrdJ-׬F /xyvZNʳzvKzIUPt 􁇗y+<@BsK%N9u Zo Όct).hct* ~l2Hm:F3;͛p s>zo?v*JcM==y`0nxn0&1(rk[ĜH3%؋1+;(ca}@Ixƾ?YaMٱSSТΠ7@;HK]rn~DEWp8߭^݂fL| Ƹ8CO(~WAPbk*̅q:58VB<@Z摤-n~W V<L2UhO37o"v#")6'\Oz7f nwuV5yp`4w̪]uih#t:dDHGj{`U-"`ά/GQJ8g-=G#&g99ITMOsw/Z1uhŖoK Üz]VN('vy~*v䭿pؚjc Żpi26JeHg{pYv~obm1)U&%jBae TK7tQ,D4lrǿ EytOfY׼sM1YHN6 Hđ(p!LT{no6RN] 0 1o sg`6>a|V/;wňaXILur0a'h^^ :Sߞ]ssy78_>QFbHai*r{-r@r7 'M nTND=t EU'g \`Ofk4{4-W_9TNYJ6yiH P5m{PP ݆jwitb%Ww(abhHZƂ;x) %ƧaJ5{iW\d|=r )Yu6~; b^֋~G,"W˼uMk>X TOi#g,ۯM[C~6dZ|F+=dW\B!S!b=mw-CN€U^8S6ڨ#.MhcZOi댨of~9t7j(J[j XOM=?vvQךRbG܏5~gK (\Hjw1! XλHDzc/o '\]>Xv٠?r=#%qkaסTN =^"AX ji0u1QnUPXΆ/+{_YpVR; .8JczSfew#۔6z:2љ%gz†AfP +)Yԏ,F)ϴ)hsp͛3,XLc5 3NI9G4Yp+uLbZVg(~aQ[uEk;I2Li?zwMP )~Ȗ~ۨON;ߏOJZucAЌ!&UˁsBI:y0*d#P0KYզpZܛ`?mR4I,2N+'R[Hg@%J񛭏K4;-vs3:սŰ.kq@fS[X-4۝`u3Etܧ^5*0eMR8:; w:kycrJ@s藙h%2WVu^+o3tn^m%}szwW!PzpNSVr3 $~~@pk]wS[}*XHh$lG,שv> w s?7 ocu.0o:1\<}$pԖp|:.+Ѳfz,xjDM7J¸qI kqo=EM10՛/qlt&dK[RXN* ȎD"^{uu67JmП.jZnXIsXr\;xUH?aӘ (vay*y:h4@Ѫvd EXwZ&#,QK^.-ߎ>RD!)aU3fZSv,]LMh/~ !VbM|= ЏO4v\le{"3:ѡ\gP{@˦;+(m#/>zH,B3 -ᣂ- _*=nP;T_qkXH*:OMZj8HFw6SฺZ /[.Z>7baţ#hoJ@̴Y .t˝8~\Cژa C07#^]F祽2ݦ.M++;P Skr/@xRG2P {VlS(l|F;5$k!_x1n?0Py8\8nй/vLEҸ Su֬ L\c¼% ӆ W[-K68MkEE@cj'ڶ)85s!l %. h|̀E( I]@1kHqP)r\U>1&:W_UTtWwLS4vZogAu,*ʮtVf}yH̶a\]ʦqNJ*O~Q/dU*~%YmBOb`ϴ.+;@qYJpu)噃/+?LO]uT"J>>7Ī)h*/"oI <7JXmP~|z1,UQ֘+&9b,k U.ij7VvT 8COhı/J Ɠ tH?+n7}($aa&YD8Pܫ4{Ïul,hz,:B!ɓLr 3 jrSU um[ՔdAĠ:zhFe W$J5'΅YuJ8oABF+`)Eoտq+]$&'ͣoԛrL|姪肪8_H7'9,AYVMI54ѡK2W ~s&"Mg9չ سz_^}]cRwyVE|Kҏ(jMaeWeG.X[I 2"bklcϼַ_؏젾PME_^Ʋܴ8/ࠄ99cRDw%^9#ގ(tczhǑ87Qcn4n[ቋiw]W$4d%5Y-r`󐽱1rw tiM-M̜.)򫠪GIP QP뤗ܶZ HRtw<"hEŽ7*  Egr+J pG6F'Om!=adm&!S69gu著j~A73l)]cCܹ>J !_;&=/}s0x໊k }[~u;޲&6}eĘ[2pSuNIqGAG΁'a FI5NoW 5\-h|oy|V&*0Л"``'4A4_*43cƶ>zrhLevHqE"nV.x9G .,s|;Vu~@>hʞ% ߱klxZS)ƨ rXa©w9)޶V)Ls!,f}L(v.)6-Q{FvZkP1^3{ja,dhOʂ eK2"X4ѱi-F}r\m.˴!zSS7hghܱ]ܷ0.# \dpsr?FWQc^bIjɪ,k%g`nl{9my})ix7ǗkY˩++=.*6`\Exn] j6p}s{JKVQ5-kP: BˢyqZ. -Wlks)+z̠˨E7xXs;yB;,Ϊ9/7[Yhe/?w2)/>V/͟/;CŤZ Q|{XωLX3ތI]"(K(lAs65 = sis_~3^ZiY:!&W \L̴Ej)wvu to9bk"wx_cXt7 O`Gv׊{8f4(aGcTPdy'-Ɖ5X002 x3^ﴒ+lTH76>QOkiJ]\^g$wES-õ'51 0ӂ^rhw/£åW\hw 2DI3;g' + W2^rL^i fQO&8 fIuI7̻nmxCc KH3ff~/Yڨn0ܰdn3<)ZFGB<ۃ\ӣ\NT͓3LH(2^<}G5P_̸+V/;Y7(F,,?QeK;X"k)bcB_PG<&)!=>BTsF/yB)|5Ś VN2޲RR'{W}aG>p˯@%k,ؤnbi\Nh,7CF@5QpFwϒs" NGK?w)2) BDŽ2Zbiv5Y:jRMT:e=>g#?1.QD8?!gYf=1zc8 s,IPQahn,_zwB n9RA#ZvBRBU K>ߎ[jM2*Y-zԭa*I Uim۽D tLwd|CeJo0@p=1Ir:c -1cL)џ1KyNn':wОfVcbD@D䷘!Fª\#K%2V6 I5OuD5?PPLRfLj* ȍ[ x.&K@\NcsָBԃ ClȬXlq$;1~1FČd3Ć(EIRS87M(9Ⱦ:_nWe2`C"{˼EX$E8} 6HM$1ź mg%kh9'8Ԣ)z8p^֯ xLilh4:B 8"l"PWHprQ4ozl-㜢 r#c Pcvy_N.fjY]$&5T !yUqhp=Z@ Q}Yb2VP<!$7daA]KL o pe6}Xzy/3 *<136#" D ^6'_/{%a{|2)ok7@ j{L}\Y"Cۮ,]hYNH#j LcThTԈYfDS>wsG39,ȣ~ < L)nEd9T* eC󤲀֟_I :FN B9փR=jyT]`M=(ZM,qVCqD$FyLX^pr%EU@h,'EQ|&m m=R)})/HS>G+&i] TὨKVFdk@蒵AivDGC]IXi4w~c^2L9=BB&Ym !r04M|[U`j1Q3yqZIjfZa'ϕٍAS?=^xFf0 *u \3nS&ݥJ#_,!(ΏP]IR4(ƺFFi5PI8X;+Gᜲ-Mmâa*"V`ٓс<%ʟɘo`If6Pﮎb}fNГA^nxrߒ7pnXx_"ye!icBI]\.au>l5b];x$viv#՞\7fov@ͥMoXu=}U[)DГVI[ѥw>Do;~gYN (6r-{I~ia0֕!dVYP;E{e DZeRq4^ 9JFv!ᢅkb)ůҷTf} gJ{fkhYszgFԮïP֜+[t%c&V)Aa.ra8T$H#~(|KxΫ/lL7̖Zs1iƽ -Cw^۶s:3?e%0 y8YW#G Ca,a<|tt)} @)lUa]OO eL6+ƴI4{1NO^~TyGy''ӄzk%11ák6=S -5䟢DV{i ϕ&X*e5(! tJdoQ5B~"з7ҿ 4H2Y%\!VV x-fKp"?EC=vM@:0q{?L\+RDhBG3zyP'wR{|M@o=5/xNӒBp柽b:û@M/D"GBm_E;#xdQ{a) Bs/XWCўҎ$L (12[ [u?/9vg̉b(hXApb1+~<G}儻R?t:Hу\?,;wl_Y)\ڬi?X{v[{P( \G+s:<ʹWp4\o‘{5αGPBsyT5&ܬM*9ДpW-)R00_LKݾzSzuh9DBgNVs_\'0f&1JwL6H.qbĪjcUM3B2-XӚeK@3·t2%p̣z"&| IcGM:l0}*fߠZ fx,Va4cLB1„06n!rnem{ )(;Ko*fZ7u`Vw+ Ĭ[57L5h@`b>S+Om<:>1W5VYoO &Fh܋o1(_~$h3 I[z]#P{XMrt gO٭\-zIύ;NjK# t<&aԧEd3Vk [G6{H}j볈"$k ŪkI&گ@Yv'XСF̆ȵ?N?[jZD%_9E-7ì}byF/rq`0R އݳ8ژVR}WZ Fz0'Wnn&4T7P$I X|ٔl=nMe_ ?Q2η߹o@vy=\LNQw|@rT60QDfڿ~04!/f]HG[헠eZ}'=Ic#&?xb|ǺIfCQ)q{\]ĴA$18AV'Lcz}>oqT7,d qrc]<nQ ~ySyE[8D 4hE kA-3 {m72LMx:$7dao[1+2 UR%3N0PNB֍CW[4R'L$8D^|Vi`3LutA4pXn͈"+ΔmWDk7支o%I|QD ]OHks@cߝ5:۝#5ttCn\#A;{BŘ,VWVTSd%2uZKn<Y.i_.c ed3lqP(GoccdK-n 3D~3Nt=i<*=0Ҍ$:R*U[ IhS紭n;WR[EMihQD#Ses[/NT? =+9gw[ǪÂq}!mW̢2=~I6N?$3$j|0.-wq[ ^œn\MU8<F]˱IcJXAxĚ[&H/AL"{TseQFE)9S= [gǗqZz4 ܗqϺ֛I hh'M"S*)ݭgКEߏcTFCS:+;>M|a'i" [ SREHF1fƭ-rxk球[3HZ#"=Z?jDjI?)8dNћx,'bߛC@NQy(* ʄB$Ae⠛ h{G8,aР,k sV+1\]J`p̌ŒCާh[NQnŕf=5wâ:XTީay~05IU+[Z`4k?`պL su1ZK '7ʌȉkNZ.B#YD}Y;G+!L:8 4Ul(~uz'> 艉BəЯlk o @D®NK:扢ֹ' .) 9S9.=pj-?4+->Lο:Iœ!X /})ދ3e{姮mIIl_!_Ֆ83' W4g͠꽚+njgءʖEgP>FuQptrGWkGhHRS?ڴ TƠx5k4 Sq7.gJ-DɗVQEs怂V/Scztw@%> 4(jn9 O KT>UC9܁h WP2>S ]>>eB"F>aT]&\:fpw/Au-#˯`H8I۠spet[A "Jn‟$ ĀޫSB7 NHs`7#݆6F -$d hm<="y?@{ 0z@8X$+6pueOuMT>B  eQSwڎqt^ch%W f8h\?Rh;eLTLccM&˦+%~} i3J>cYQELVa\)U?#\@+hUE-t(ѽ-7=h?".{*C͜a o܉J[׻ ~YNOH)Ai E(ߙ=ǜ.PZSk]0 !w/"OvQ%l/0," %$ʲ)|H/dIZ>e {O0]m Ś)T4mV+#4I^1?ڮ஭CҚ)F.3>#N5b6ƬSudɩ0۞ :LhgGV;`L߹dfu# AD&Oꗱ>Ȏv$H>RhoLk<~*ԂX4|cU:K{t^l²! I)_g`>K1Bמ (|iafs-R F4\\9yx$ %L`ѱ U5>Ӽi]piwLjAOG,d@ܾacL'"fg2in=&c~EuS#NS5!s/ LsN" ޤ>vBQ{X< ,ħlzp20 PSmRQMJA:9ԮϴNͥlq gNڕk:}7_cu }gOE6 4Hmt\[[568H/I$m?7n`dp-i0CZQx UX1ʆsdv Aۡ;(R 9z[sy%VxHR33_oz[1+_w;2&)j¨zR MK_+̺3b7aV"~L`][tqmȶ ͩi3[OE^n_7 ~oPnCpy`ru:(;Xj0jdfT:SR IOZ&+ٿYg@ T.b$ʪQKӽ1XK6`fat(Z]oq*^F<瑄:iegom۔{]G@!Dχžgx?ab k%B?AG@|8?KáVm=`_xȲ3;stAw&PjϪ*ppȑ(=jHsnCO*Rw ;ZDXQ&]4^*_+#v: ZC,02Sf\%H8PxJ4$Dqb ՘eF9G+ȕ܌Etsm&8`zZ"jQ' II ;5M Ī `r_6p]/YmzR髪[y, !j 4dbПk1@G={V9n$AႨhlߗB&ŵBFZn7_"TfGq3ߧ됧t-;|x~g6 E74NظbM7B)@s5@-@J[׋rTuѨ;t`їϢߘ<пZϖc2R_A#  ~ %DM ! rN 3$ejT5;+t((\8GWQ?egΙ<14*n7FfXH =g<d-S9YJdkkijОqt w[3(qL;dz+<c;'z=|3- X=5Dqa*i6q1$.Z -,ٗzQ#My \k!.4 >+.]~}yC-5,w5^@'XC#vh$q']{|R0 `qDzbM5c+J" #W@p=ЯWl&Q &ڳ&\EcZF!s; qU9}֣@&%i<9-6؛o&d @x  תf;AI{y> E۱B)GΣ^lTLQu8m 5u.) ,lLzcx_Wr[U^mQ0T[yB{( Dc Af&&p1umZqVzl Z 8 ]6_ Mak9Y 0w}Aor4qhrt,w*+lsQѣ¶!±$D}u;4@o8O)LI!BK+\CpNơX-t3 %R o1,~FC_,AEmx[?SV-M\Fճ$U>qR>H% 19jPJ4%.U!JC<>{@nh^&t/xuAYx\xxn'5W̏zz]iڶX~B = Cz@:9'2`a,z/>$H_؅9͆H^f̛ƀ<̪dI+&v jv)$o]ewobLב&<| }6XYcp6bKGub![ѸǮE|`~Hw (-Q)u 1 %=K! () EQ !HV!bc-9GN\BSf ZA hRf^6cYieWOZm+tDNSb]öZ|фDxklݬj6 j>rہI@I4"M̋i>^M!9V'yT5ɧ[F&ul~{%`_o$A}Rd*,2ym4#7/{5'gn&F &j=1Y!’Oa^ִb@ahxm,$`gM{oƔW% NINb\WĬmdeD" y{{+C[8逳U1;?WDǭPPuHl鉔U(:_gK,<խ65M nfw"w iƇԀ#V&q%4h( u\czoļ\ Y|ŸjȩG[WᢹS *t^;f%Z"%Xr{Kϰ?-/8GGCfB0",2""H5/ey(Q;ud}UbZX 2y_鶕]4/ä YvOC2"8Z3fp%Y\zKxVrbU5X\#8)KLs㴑CIJKI`!Kj:hkTkki;jd[`w!#k.C{ԑ/&.q0yK;j}Њ=.5KK[v/i0\1N7y@G*Q!RYv&,쏕Fi(~Os YzWHCr m/(,I[:DW'.5JG+M?P)ToXks)r 'W&bl!$-:!Կ('Յ`@U6R(6R;Vgp g*4^|b`lmdзz0$̭oQ_?zG8gЌ'd7Ϧ1-ԙ$waSvJ1LN=͘o=pil5?ˆj6jѯ4nTo'h,cpcT#Aw@UGjǘn,W :n,xw;"(0,\D,؊. DV@{sZߺCAuT'9U.kPo^d( |unJgIQ㖥TT@B@@U A=($g#?0\!SAb-[#Q.ʼ4 ZWa@S]VH [ O9'8mO(8tQwǗp"x-^Ae7[1lkMmki'ﯶu`Vgn|QaUo?ǵ^ ]rg`H,ǂl=ƞ>C>@˼ECf6宗jM(H|nv9l&n. %1Vd)H٫n n'?M^K;¼x8[q& $H#Pc#nP1rY_0ʦ,z9EE&€+~Aq 3P JZz!) "'Ri NJ`5 H{_pMkKm(X*h؞P}'#NJ4#`ZZnN+~;$$n$a*,Z;H!,Ttܝ[sb9cpnhko΂Fy1~<6,Jچg.4D0J;f%) 1jA _@rrb@:A8w\[;˟O@0nu

5uim?SsunV+WËVR.7 M`y_gBü"z'؏d>{3ij3cG 'k/sRу@JC4e >\`|4+β00[qd+񎳥,0jJ!y>MܒJp*31)^2衑8` ̐ő(( 6)on1X{SDTP=EΝw*)97!<3^1<݋s8 b "!KgdU}(=}td& PTf!W_h}5&h^[L|X Sd7g{xiD+в_,;IP0s4U8ƓOf{yY>pPsc\u;ѡF!"GTZ׿QkEy냀q>p=z S4VOXK{xN7ȒM\SdO?qf)p23!\h \M1fE[Xa2typAt?$߉ȖDy;JEoY ףI6RW+_:n#pL*o<ݗ'CI@FH_Ƕ Pb _u:Yd Ջ9lP zP/gpY8\NO?o9m-!UiB%<7T|yL'Q\ d:ӑ^gaC1}om3C:zZ6cD̉S2HrJRXVt"d`ם 2} ,qwLzw/:3|WT&Y'6 2y5k.IM-ÝxmQbkAx*5v_Ƅ R'h@ԇN:bZ.OL1/OsjVZƧ4L# 2BLܐs?eD~r oxE|?'l^t/NА F2{LںDE1#,unOx7|y>{vAMA/ŒOl=#m]hG*BLlLJ <~/AN!P6Ma4xp5\;;_ QAmBg ǻ*)rg@-.{`7x!#؍=kJfx3&(ΣO=J?t"ohzKZR=Qw:ø'ƙ%+e,ryrd>jd%!w-}"$՝=vDZAu!%ȺVlbt6q gbQ YqfRʶ6TfhY: /͍$qW!v R*$XgOE]0_O֤?L h ÛA`bk%=.$WG|swQ:-kr~{hӶ]芻uhlcD.g>+~OȩK|Xs> tsֽxwAL~jc]܈WNC^vOBS6gš^,d; VՕeɡ^$΅RO1TaBxi밤.a*lַK$F{Sq_TCR ,8F~y ,[Jj(b(G*7p5|`lkBXfg պ~Y_,>b.`ώqBS:u6B?zRqK*Z6j)p'0 eh旷^R{S=?fg_DTYNY@lƀDSdZdz%ȾYP y0`BAđ^'^I02QdݪA(IJ2:tFH$YeUߍZ.OM$= e-sJ74Xp5rdO-U)ɹՏTҦ `8u,{tFyw_ײ;)mfIhD3NqX"40Ad/0@B$8ߓ8ÕҘ}ȣ|rcB`:$6#1U7g3| &x_P@eF|:/J'ЫS'/8_ȬWO`O ̈́ hWGψ^J'H&>]F{ {rQEI0 7*ta,⫟@!OOX_#k4kGw`לAzX<|sĺZ/5~pWʫP|4fuxPDp+;DoqcʜL><)vӄTXvr2s|ZT$< ?)Z&$ᑂD3 vf̀fMJ|qěu%/{ T%R, ;"Qp+Hms^Ho`BUAY–jLB"YpW`MY~) ?GuȪpolXiRFiOYȄ޸νMr )F~2%w8tz^Fr@Q)[4,곌޿A56 y]AuHK|eЂ0_]&1/|zQ=~VB!=kOILgms Gf4{ۿFxJޤAF~fΒ1^";s,w<fKSPr^nP'{1X[8ȴ`A%Ewbyﴭ0գ$&v_VܱlVz`^6~QI;/'P3N|i8Ol&/,zG. 'д2L#^xX#A)m8Ze6jޣ6|atL"BtѭVmSdppF* V/~%<"T^c0HŨ_vTZԚT xh1 ۗg:ƓC$2]`DN*H[ ⿺ss~"x`2|bQ^n7{o1 H|lǑ]a뵌&8Iu' lZ LxLܔ@3k!"iE HoĿkί]l}NȠ {=8 IF{.1Pvb k3wu04%>R8toZ!͋5hFb*_2_QT0 1YV7l*'~,Wܷ+gv?+>r6N5a[[j`ҶX> LP5 ՞~cҞ#~>TuSxF3ES|@(7JVbg 2l3_{u(>/ $. 8:P×{-q&5/v6B{[URcd p{0T%ǘ;縥  dys^H4ʶ YZ