glibc-utils-2.31-7.1 >  A `dp9|W=~qEf~qwD& 1PeX)ִs5я7i擱5G~`gZ%} M%WpMފJt)ww>K6:2'BNZ#9Oas8cF#ƮC/+᳝'пv[ctW$ii" %}BKuhvi^#PJl,]u zg_7dBWޡǯj qg6ɴ3Xea8a38f0e417279290959067aabe15ffadc6dabf75918c70b522f4674504272ec5294676ad03d573f45409575506e37b973a357e0`dp9|'@A<ّ]48mR`7ON"jf?3?U tdG1SEIZ Tg7v)lL57&1< 7<>S{#!kv.-;6o'd2K'[mTWQVDnfIy_Tp>?d  D(,Efx    *  @  l     0 g  @(8$9 :FG H, IX XdYt\ ] ^'bWcd]ebfelgu| v wð x yzpĀĄĊCglibc-utils2.317.1Development utilities from the GNU C LibraryThe glibc-utils package contains mtrace, a memory leak tracer and xtrace, a function call tracer which can be helpful during program debugging. If you are unsure if you need this, do not install this package.`dxinomavroSSUSE Linux Enterprise 15SUSE LLC LGPL-2.1-or-laterhttps://www.suse.com/Development/Languages/C and C++http://www.gnu.org/software/libc/libc.htmllinuxppc64leEx0xA`d`d`d`d`d`d`d`d`d`d`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-utils-src-2.31-7.1.src.rpmglibc-utilsglibc-utils(ppc-64)libmemusage.so()(64bit)libpcprofile.so()(64bit)@@@@@@@@@@@@    /usr/bin/bash/usr/bin/perlglibcld64.so.2()(64bit)ld64.so.2(GLIBC_2.22)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libdl.so.2()(64bit)libdl.so.2(GLIBC_2.17)(64bit)libgd.so.3()(64bit)libm.so.6()(64bit)libpng16.so.16()(64bit)libz.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)2.313.0.4-14.6.0-14.0-15.2-14.14.1`a@`H`H`?z@`@_T__/@_O@^)@^@^{G^g@^`^U @^&^]@]7@]|@]@]:\@\\]@\@\|\~d[[ͻ[$@[t[r@[qr[^[!@[@Z@ZJ@Z2@ZH@ZZ Z}@ZxG@Zp^@Zp^@Ze@ZKt@Z1@Z/Z@Y@Y@YYܶ@YdY@Y@YY@Y@Y@YW@Y@YJYYw2Yp@YJ_YA%@Y.@Y, @Y, @Y$$@Y"XۡX@XWw@W@W@Ws@Wk@Wj}WYZ@WL+@W3W0{WW V@V@V޾Vm@VIV@VŲ@V`VVV@VLh@V.V$@VVZV VUYU|@UAUȒ@UU@UU4@UUv@U%@U/@U:T@TPTgTܕTء@TO@schwab@suse.derguenther@suse.comrguenther@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dematz@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.dejslaby@suse.comschwab@suse.deschwab@suse.deschwab@suse.deidonmez@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.denormand@linux.vnet.ibm.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.demeissner@suse.comschwab@suse.deschwab@suse.demgorman@suse.comschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.deschwab@suse.de- s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector support in memmove ifunc-selector (bsc#1184035, BZ #27511)- Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition fix.- Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the AVX2 accelerated string routines which cause HTM transaction aborts. Instead use EVEX or SSE. (bsc#1181403)- nscd-netgroupcache.patch: nscd: Fix double free in netgroupcache (CVE-2021-27645, bsc#1182733, BZ #27462)- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument pass (bsc#1180557, BZ #26637)- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within libc.so (bsc#1167939) - iconv-redundant-shift.patch: iconv: Accept redundant shift sequences in IBM1364 (CVE-2020-27618, bsc#1178386, BZ #26224) - iconv-ucs4-loop-bounds.patch: iconv: Fix incorrect UCS4 inner loop bounds (CVE-2020-29562, bsc#1179694, BZ #26923) - printf-long-double-non-normal.patch: x86: Harden printf against non-normal long double values (CVE-2020-29573, bsc#1179721, BZ #26649) - get-nprocs-cpu-online-parsing.patch: Fix parsing of /sys/devices/system/cpu/online (bsc#1180038, BZ #25859)- power10-support.patch: Add support for POWER10 (jsc#SLE-13520) - iconv-option-parsing.patch: Rewrite iconv option parsing (CVE-2016-10228, bsc#1027496, BZ #19519)- Update to glibc 2.31 - glibc-2.14-crypt.diff, crypt_blowfish-const.patch, crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch, crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch, powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch, crt-nocompress-debug-sections.patch, resolv-context-leak.patch, dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch, math-c++-compat.patch, remove-nss-nis-compat.patch, eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch, assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch, dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch, nscd-libnsl.patch, malloc-tcache-leak.patch, falkor-memcpy-memmove.patch, aarch64-cpu-features.patch, nss-files-large-buffers.patch, sysconf-uio-maxiov.patch, glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch, spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch, tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch, malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch, fillin-rpath-empty-tokens.patch, getcwd-absolute.patch, memalign-overflow.patch, stack-guard-size-accounting.patch, libgcc-rtld-now.patch, res-send-enomem.patch, glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch, realpath-ssize-max-overflow.patch, localtime-2039.patch, math-remove-slow-path.patch, aarch64-hwcap-atomics.patch, glibc-fix-aarch64-build.diff, absolute-symbols.patch, x86-haswell-string-flags.patch, pthread-cond-broadcast-waiters-after-spinning.patch, mman-map-sync.patch, mman-linux-map-shared-validate.patch, nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch, getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch, force-elision-race.patch, regex-read-overrun.patch, regex-parse-reg-exp.patch, 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch, 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch, 0003-S390-Unify-31-64bit-memcpy.patch, 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch, 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch, 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch, 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch, 0008-S390-Add-z13-memmove-ifunc-variant.patch, 0009-S390-Add-z13-strstr-ifunc-variant.patch, 0010-S390-Add-z13-memmem-ifunc-variant.patch, 0011-S390-Cleanup-ifunc-resolve.h.patch, 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch, 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch, 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch, 0015-S390-Add-arch13-memmove-ifunc-variant.patch, 0016-S390-Add-arch13-strstr-ifunc-variant.patch, 0017-S390-Add-arch13-memmem-ifunc-variant.patch, prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch, ppc-tle-htm-nosc.patch, posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch, backtrace-powerpc.patch, pthread-rwlock-pwn.patch, manual-memory-protection.patch, ldbl-96-rem-pio2l.patch, dl-sort-maps.patch, dlopen-filter-object.patch, glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch, ldd-system-interp.patch, abort-no-flush.patch, fnmatch-collating-elements.patch, nss-files-long-lines-2.patch, iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch: Removed. - long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch, riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.- nscd-senfile.patch: Fix concurrent changes on nscd aware files (bsc#1171878, BZ #23178) - nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878, BZ #26130) - syslog-locking.patch: Correct locking and cancellation cleanup in syslog functions (bsc#1172085, BZ #26100)- nptl-setxid-race.patch: nptl: wait for pending setxid request also in detached thread (bsc#1162930, BZ #25942)- glob-use-after-free.patch: Fix use-after-free in glob when expanding ~user (CVE-2020-1752, bsc#1167631, BZ #25414)- dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter object to work (bsc#1166106, BZ #16272)- ldbl-96-rem-pio2l.patch: Avoid ldbl-96 stack corruption from range reduction of pseudo-zero (CVE-2020-10029, bsc#1165784, BZ #25487)- pthread-rwlock-pwn.patch: Fix rwlock stall with PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861) - manual-memory-protection.patch: manual: Document mprotect and introduce section on memory protection (bsc#1163184)- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC (CVE-2020-1751, bsc#1158996, BZ #25423)- posix-Add-internal-symbols-for-posix_spawn-interface.patch, glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on popen (bsc#1149332, BZ #22834)- ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process initialization (SLE-8348, BZ #22685)- s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)- prefer-map-32bit-exec.patch: rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CVE-2019-19126, bsc#1157292, BZ [#25204])- GNU1815 - Hardware support in toolchain (bsc#1151582) 0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch 0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch 0003-S390-Unify-31-64bit-memcpy.patch 0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch 0005-S390-Remove-s390-specific-implementation-of-bcopy.patch 0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch 0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch 0008-S390-Add-z13-memmove-ifunc-variant.patch 0009-S390-Add-z13-strstr-ifunc-variant.patch 0010-S390-Add-z13-memmem-ifunc-variant.patch 0011-S390-Cleanup-ifunc-resolve.h.patch 0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch 0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch 0014-S390-Add-configure-check-to-detect-support-for-arch1.patch 0015-S390-Add-arch13-memmove-ifunc-variant.patch 0016-S390-Add-arch13-strstr-ifunc-variant.patch 0017-S390-Add-arch13-memmem-ifunc-variant.patch- regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined behavior (CVE-2009-5155, bsc#1127223, BZ #18986) - regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169, bsc#1127308, BZ #24114)- crt-nocompress-debug-sections.patch: Don't compress debug sections in crt*.o files (bsc#1123710)- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig (bsc#1117993, BZ #23973)- force-elision-race.patch: Fix race in pthread_mutex_lock while promoting to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)- japanese-era-name-may-2019.patch: ja_JP locale: Add entry for the new Japanese era (bsc#1100396, BZ #22964)- pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use the correct order of instructions while maintaining the robust mutex list due to missing compiler barriers (bsc#1130045, BZ #24180) - getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4 address strings (CVE-2016-10739, bsc#1122729, BZ #20018)- mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590) - mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux 4.15 (bsc#1126590) - nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast in coredumps (bsc#1063675, BZ #22153)- x86-haswell-string-flags.patch: Fix Haswell CPU string flags (bsc#1114984, BZ #23709) - pthread-cond-broadcast-waiters-after-spinning.patch: Fix waiters-after-spinning case (bsc#1114993, BZ #23538)- absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ [#19818])- glibc-fix-aarch64-build.diff: Fix build on aarch64 with binutils newer than 2.30.- Add glibc-locale-base subpackage containing only C, C.UTF-8 and en_US.UTF-8 locales (fate#326551)- aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to HWCAP_IMPORTANT (fate#325962)- math-remove-slow-path.patch: Remove slow paths from math routines (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)- localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t (bsc#1102526, BZ #22639)- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing 2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644) - realpath-ssize-max-overflow.patch: Fix overflow in path length computation (CVE-2018-11236, bsc#1094161, BZ #22786) - glibc-fix-avx512-mempcpy.patch: replace with upstream version- Use %license also for COPYING and COPYING.LIB (bsc#1082318)- Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)- Readd nis to netgroup and automount nss config (bsc#1088860)- res-send-enomem.patch: Fix crash in resolver on memory allocation failure (bsc#1086690, BZ #23005)- Use %license (bsc#1082318)- stack-guard-size-accounting.patch: Fix stack guard size accounting (bsc#1074208, BZ #22637) - libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during pthread_cancel (bsc#1074208, BZ #22636)- Mark source0 as nosource in non-main source rpms- Add systemtap-headers to BuildRequires. - Add --enable-systemtap to configure arguments. (fate#324969, bsc#1073636)- memalign-overflow.patch: Fix integer overflows in internal memalign and malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343, BZ #22774)- fix-locking-in-_IO_cleanup.patch: Skip locked files during exit (bsc#1070491, BZ #15142)- Avoid duplicate source rpm- getcwd-absolute.patch: make getcwd(3) fail if it cannot obtain an absolute path (CVE-2018-1000001, bsc#1074293, BZ #22679)- dl-init-paths-overflow.patch: Count components of the expanded path in _dl_init_path (CVE-2017-1000408, CVE-2017-1000409, bsc#1071319, BZ [#22607], BZ #22627) - fillin-rpath-empty-tokens.patch: Check for empty tokens before dynamic string token expansion (CVE-2017-16997, bsc#1073231, BZ #22625)- tst-tlsopt-powerpc.patch: fix tst-tlsopt-powerpc (bcn#1070419) - powerpc-hwcap-bits.patch: Update HWCAP for powerpc (bnc#1070420) - malloc-tcache-check-overflow.patch: Fix integer overflow in malloc when tcache is enabled (CVE-2017-17426, bnc#1071479, BZ #22375)- Add _multibuild- glob64-s390.patch: no compat glob64 on s390 - noversion.tar.bz2: remove unused source- x86-64-dl-platform.patch: Don't set GLRO(dl_platform) to NULL (BZ #22299)- spawni-assert.patch: Fix improper assert in Linux posix_spawn (BZ [#22273])- math-c++-compat.patch: Add more C++ compatibility (BZ #22296) - malloc-tcache-leak.patch: Fix tcache leak after thread destruction (BZ [#22111]) - falkor-memcpy-memmove.patch: Optimized implementation of memcpy/memmove for Qualcomm Falkor - aarch64-cpu-features.patch: Fix glibc.tune.cpu tunable handling - nss-files-large-buffers.patch: Avoid large buffers with many host addresses (BZ #22078) - sysconf-uio-maxiov.patch: Fix missing definition of UIO_MAXIOV (BZ [#22321]) - glob-tilde-overflow.patch: Fix buffer overflows with GLOB_TILDE (CVE-2017-15670, CVE-2017-15671, CVE-2017-15804, bsc#1064569. bsc#1064580, bsc#1064583, BZ #22320, BZ #22325, BZ #22332) - dl-runtime-resolve-xsave.patch: Use fxsave/xsave/xsavec in _dl_runtime_resolve (BZ #21265)- nscd-libnsl.patch: Remove reference to libnsl from nscd (bsc#1062244)- Drop glibc-obsolete - glibc-2.3.90-noversion.diff: remove - reinitialize-dl_load_write_lock.patch: remove- nss-compat.patch: Move nss_compat from nis to nss subdir and install it unconditionally - nsswitch.conf: switch back to compat for passwd, group, shadow- assert-pedantic.patch: Suppress pedantic warning caused by statement expression (BZ #21242, BZ #21972) - math-c++-compat.patch: Add more C++ compatibility (BZ #22235) - getaddrinfo-errno.patch: Fix errno and h_errno handling in getaddrinfo (BZ #21915, BZ #21922) - resolv-conf-oom.patch: Fix memory handling in OOM situation during resolv.conf parsing (BZ #22095, BZ #22096) - dynarray-allocation.patch: Fix initial size of dynarray allocation and set errno on overflow error - nearbyint-inexact.patch: Avoid spurious inexact in nearbyint (BZ #22225)- math-c++-compat.patch: add more C++ compatibility (BZ #22146)- Remove rpcsvc/yppasswd.* from glibc-devel - ld-so-hwcap-x86-64.patch: add x86_64 to hwcap (bsc#1056606, BZ #22093)- eh-frame-zero-terminator.patch: Properly terminate .eh_frame (BZ #22051)- Disable obsolete libnsl and NIS support - remove-nss-nis-compat.patch: remove nis and compat from default NSS configs - nsswitch.conf: Likewise- math-c++-compat.patch: Do not use __builtin_types_compatible_p in C++ mode (BZ #21930)- Add iconvconfig to baselibs.conf (bsc#1051042)- resolv-context-leak.patch: Fix leaks of resolver contexts - dl-runtime-resolve-opt-avx512f.patch: Use _dl_runtime_resolve_opt only with AVX512F (BZ #21871) - libpthread-compat-wrappers.patch: Don't use IFUNC resolver for longjmp or system in libpthread (BZ #21041)- Update to glibc 2.26 * A per-thread cache has been added to malloc * Unicode 10.0.0 Support * Improvements to the DNS stub resolver * New function reallocarray, which resizes an allocated block (like realloc) to the product of two sizes, with a guaranteed clean failure upon integer overflow in the multiplication * New wrappers for the Linux-specific system calls preadv2 and pwritev2 * posix_spawnattr_setflags now supports the flag POSIX_SPAWN_SETSID, to create a new session ID for the spawned process * errno.h is now safe to use from C-preprocessed assembly language on all supported operating systems * On ia64, powerpc64le, x86-32, and x86-64, the math library now implements 128-bit floating point as defined by ISO/IEC/IEEE 60559:2011 (IEEE 754-2008) and ISO/IEC TS 18661-3:2015 * The synchronization that pthread_spin_unlock performs has been changed to now be equivalent to a C11 atomic store with release memory order to the spin lock's memory location * The DNS stub resolver no longer performs EDNS fallback * res_mkquery and res_nmkquery no longer support the IQUERY opcode * The _res_opcodes variable has been removed from libresolv * no longer includes inline versions of any string functions, as this kind of optimization is better done by the compiler * The nonstandard header has been removed * The obsolete header has been removed * The obsolete signal constant SIGUNUSED is no longer defined by * The obsolete function cfree has been removed * The stack_t type no longer has the name struct sigaltstack * The ucontext_t type no longer has the name struct ucontext * On S/390 GNU/Linux, the constants defined by have been synced with the kernel * Linux kernel 3.2 or later is required at runtime, on all architectures supported by that kernel * The DNS stub resolver limits the advertised UDP buffer size to 1200 bytes, to avoid fragmentation-based spoofing attacks (CVE-2017-12132) * LD_LIBRARY_PATH is now ignored in binaries running in privileged AT_SECURE mode to guard against local privilege escalation attacks (CVE-2017-1000366) * Avoid printing a backtrace from the __stack_chk_fail function since it is called on a corrupt stack and a backtrace is unreliable on a corrupt stack (CVE-2010-3192) * A use-after-free vulnerability in clntudp_call in the Sun RPC system has been fixed (CVE-2017-12133) * fate#322258, fate#321513, fate#322453 - fts-symbol-redirect.patch, glibc-resolv-reload.diff, glibc-2.2-sunrpc.diff, i686-memchr-sse.patch, ld-hwcap-mask-suid.patch, ld-library-path-suid.patch, sunrpc-use-after-free.patch, test-math-vector-sincos-aliasing.patch, tunables-bigendian.patch: Removed- Fix RPM group- s390-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (fate#322271)- ld-hwcap-mask-suid.patch: Ignore and remove LD_HWCAP_MASK for AT_SECURE programs (BZ #21209) - ld-library-path-suid.patch: Completely ignore LD_LIBRARY_PATH for AT_SECURE=1 programs (CVE-2017-1000366, bsc#1039357, BZ #21624)- Remove glibc-cpusetsize.diff, no longer useful- fts-symbol-redirect.patch: Fix symbol redirect for fts_set (bsc#1041123, BZ #21289)- test-math-vector-sincos-aliasing.patch: Fix test-math-vector-sincos.h aliasing- add-locales.patch: renamed from glibc-2.3.locales.diff.bz2, drop en_BE locales (bsc#1039502)- Remove glibc-testsuite.patch, no longer relevant- Use multibuild feature - Remove obsolete check-build.sh - glibc.rpmlintrc: remove obsolete entries - Use %tmpfiles_create in nscd postin- i686-memchr-sse.patch: Fix i686 memchr overflow calculation (bsc#1031021, BZ #21182) - sunrpc-use-after-free.patch: Avoid use-after-free read access in clntudp_call (BZ #21115) - Build testsuite with gdb and python-pexpect to enable more tests- tunables-bigendian.patch: Fix getting tunable values on big-endian (BZ [#21109])- Update to glibc 2.25 * The feature test macro __STDC_WANT_LIB_EXT2__, from ISO/IEC TR 24731-2:2010, is supported to enable declarations of functions from that TR. * The feature test macro __STDC_WANT_IEC_60559_BFP_EXT__, from ISO/IEC TS 18661-1:2014, is supported to enable declarations of functions and macros from that TS. * The feature test macro __STDC_WANT_IEC_60559_FUNCS_EXT__, from ISO/IEC TS 18661-4:2015, is supported to enable declarations of functions and macros from that TS. * The nonstandard feature selection macros _REENTRANT and _THREAD_SAFE are now treated as compatibility synonyms for _POSIX_C_SOURCE=199506L. * The inclusion of by is deprecated. * New features from TS 18661-1:2014 are added to libm: the fesetexcept, fetestexceptflag, fegetmode and fesetmode functions, the femode_t type and the FE_DFL_MODE and FE_SNANS_ALWAYS_SIGNAL macros. * Integer width macros from TS 18661-1:2014 are added to : CHAR_WIDTH, SCHAR_WIDTH, UCHAR_WIDTH, SHRT_WIDTH, USHRT_WIDTH, INT_WIDTH, UINT_WIDTH, LONG_WIDTH, ULONG_WIDTH, LLONG_WIDTH, ULLONG_WIDTH; and to : INT8_WIDTH, UINT8_WIDTH, INT16_WIDTH, UINT16_WIDTH, INT32_WIDTH, UINT32_WIDTH, INT64_WIDTH, UINT64_WIDTH, INT_LEAST8_WIDTH, UINT_LEAST8_WIDTH, INT_LEAST16_WIDTH, UINT_LEAST16_WIDTH, INT_LEAST32_WIDTH, UINT_LEAST32_WIDTH, INT_LEAST64_WIDTH, UINT_LEAST64_WIDTH, INT_FAST8_WIDTH, UINT_FAST8_WIDTH, INT_FAST16_WIDTH, UINT_FAST16_WIDTH, INT_FAST32_WIDTH, UINT_FAST32_WIDTH, INT_FAST64_WIDTH, UINT_FAST64_WIDTH, INTPTR_WIDTH, UINTPTR_WIDTH, INTMAX_WIDTH, UINTMAX_WIDTH, PTRDIFF_WIDTH, SIG_ATOMIC_WIDTH, SIZE_WIDTH, WCHAR_WIDTH, WINT_WIDTH. * New features are added from TS 18661-1:2014: - Signaling NaN macros: SNANF, SNAN, SNANL. - Nearest integer functions: roundeven, roundevenf, roundevenl, fromfp, fromfpf, fromfpl, ufromfp, ufromfpf, ufromfpl, fromfpx, fromfpxf, fromfpxl, ufromfpx, ufromfpxf, ufromfpxl. - llogb functions: the llogb, llogbf and llogbl functions, and the FP_LLOGB0 and FP_LLOGBNAN macros. - Max-min magnitude functions: fmaxmag, fmaxmagf, fmaxmagl, fminmag, fminmagf, fminmagl. - Comparison macros: iseqsig. - Classification macros: iscanonical, issubnormal, iszero. - Total order functions: totalorder, totalorderf, totalorderl, totalordermag, totalordermagf, totalordermagl. - Canonicalize functions: canonicalize, canonicalizef, canonicalizel. - NaN functions: getpayload, getpayloadf, getpayloadl, setpayload, setpayloadf, setpayloadl, setpayloadsig, setpayloadsigf, setpayloadsigl. * The functions strfromd, strfromf, and strfroml, from ISO/IEC TS 18661-1:2014, are added to libc. * Most of glibc can now be built with the stack smashing protector enabled. * The function explicit_bzero, from OpenBSD, has been added to libc. * On ColdFire, MicroBlaze, Nios II and SH3, the float_t type is now defined to float instead of double. * On x86_64, when compiling with -mfpmath=387 or -mfpmath=sse+387, the float_t and double_t types are now defined to long double instead of float and double. * The getentropy and getrandom functions, and the header file have been added. * The buffer size for byte-oriented stdio streams is now limited to 8192 bytes by default. * The header now includes the header. * The malloc_get_state and malloc_set_state functions have been removed. * The “ip6-dotint” and “no-ip6-dotint” resolver options, and the corresponding RES_NOIP6DOTINT flag from have been removed. * The "ip6-bytestring" resolver option and the corresponding RES_USEBSTRING flag from have been removed. * The flags RES_AAONLY, RES_PRIMARY, RES_NOCHECKNAME, RES_KEEPTSIG, RES_BLAST defined in the header file have been deprecated. * The "inet6" option in /etc/resolv.conf and the RES_USE_INET6 flag for _res.flags are deprecated. * DNSSEC-related declarations and definitions have been removed from the header file, and libresolv will no longer attempt to decode the data part of DNSSEC record types. * The resource record type classification macros ns_t_qt_p, ns_t_mrr_p, ns_t_rr_p, ns_t_udp_p, ns_t_xfr_p have been removed from the header file because the distinction between RR types and meta-RR types is not officially standardized, subject to revision, and thus not suitable for encoding in a macro. * The types res_sendhookact, res_send_qhook, re_send_rhook, and the qhook and rhook members of the res_state type in have been removed. * For multi-arch support it is recommended to use a GCC which has been built with support for GNU indirect functions. * GDB pretty printers have been added for mutex and condition variable structures in POSIX Threads. * Tunables feature added to allow tweaking of the runtime for an application program. * A new version of condition variables functions have been implemented in the NPTL implementation of POSIX Threads to provide stronger ordering guarantees. * A new version of pthread_rwlock functions have been implemented to use a more scalable algorithm primarily through not using a critical section anymore to make state changes. * On ARM EABI (32-bit), generating a backtrace for execution contexts which have been created with makecontext could fail to terminate due to a missing .cantunwind annotation. (CVE-2016-6323) * The DNS stub resolver functions would crash due to a NULL pointer dereference when processing a query with a valid DNS question type which was used internally in the implementation. (CVE-2015-5180) - Enable stack protector if part of %optflags - startcontext-cantunwind.patch: Removed - cpuid-assertion.patch: Removed- cpuid-assertion.patch: Don't assert on older Intel CPUs (BZ #20647)- glibc-2.3.3-nscd-db-path.diff: Move persistent nscd databases to /var/lib/nscd - glibc-2.3.90-langpackdir.diff: simplify- Update to glibc 2.24 * The minimum Linux kernel version that this version of the GNU C Library can be used with is 3.2 * The pap_AN locale has been deleted * The readdir_r and readdir64_r functions have been deprecated * The type `union wait' has been removed * A new NSS action is added to facilitate large distributed system administration * The deprecated __malloc_initialize_hook variable has been removed from the API * The long unused localedef --old-style option has been removed * nextupl, nextup, nextupf, nextdownl, nextdown and nextdownf are added to libm * An unnecessary stack copy in _nss_dns_getnetbyname_r was removed (CVE-2016-3075) * Previously, getaddrinfo copied large amounts of address data to the stack, even after the fix for CVE-2013-4458 has been applied, potentially resulting in a stack overflow. getaddrinfo now uses a heap allocation instead (CVE-2016-3706) * The glob function suffered from a stack-based buffer overflow when it was called with the GLOB_ALTDIRFUNC flag and encountered a long file name (CVE-2016-1234) * The Sun RPC UDP client could exhaust all available stack space when flooded with crafted ICMP and UDP messages (CVE-2016-4429) * The IPv6 name server management code in libresolv could result in a memory leak for each thread which is created, performs a failing naming lookup, and exits (CVE-2016-5417) - startcontext-cantunwind.patch: mark __startcontext as .cantunwind (bsc#974800, BZ #20435) - Removed patches: * 0001-Updated-translations-for-2.23.patch * 0002-Regenerate-libc.pot-for-2.23.patch * 0003-Regenerated-configure-scripts.patch * 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch * 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch * 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch * 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch * 0008-Update-NEWS.patch * 0009-sln-use-stat64.patch * 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch * 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch * 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch * 0013-Mention-BZ-19762-in-NEWS.patch * 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch * 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch * 0016-Fix-resource-leak-in-resolver-bug-19257.patch * 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch * 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch * 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch * 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch * 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch * 0022-configure-fix-test-usage.patch * 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch * 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch * 0025-getnameinfo-Do-not-preserve-errno.patch * 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch * 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch * 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch * 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch * 0030-hesiod-Remove-RCS-keywords.patch * 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch * 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch * 0033-malloc-Remove-NO_THREADS.patch * 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch * 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch * 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch * 0037-malloc-Add-missing-internal_function-attributes-on-f.patch * 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch * 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch * 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch * 0041-nss_dns-Check-address-length-before-creating-addrinf.patch * 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch * 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch * 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch * 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch * 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch * 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch * 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch * 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch * 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch * 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch * 0052-Fix-tst-dlsym-error-build.patch * 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch * 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch * 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch * 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch * clntudp-call-alloca.patch * glibc-memset-nontemporal.diff * nis-initgroups-status.patch * nscd-gc-crash.patch * robust-mutex-deadlock.patch * strncat-avoid-array-bounds-warning.patch- strncat-avoid-array-bounds-warning.patch: Avoid array-bounds warning for stncat on i586 (BZ #20260) - Update glibc.keyring - Unset MALLOC_CHECK_ during testsuite run- nsswitch.conf: Add fallback to files for passwd and group to prepare for libnsl removal.- nis-initgroups-status.patch: Return proper status from _nss_nis_initgroups_dyn (bsc#984269, BZ #20262) - robust-mutex-deadlock.patch: Fix generic __lll_robust_timedlock_wait to check for timeout (bsc#985170, BZ #20263)- nscd-gc-crash.patch: Fix nscd assertion failure in gc (bsc#965699, BZ [#19755])- clntudp-call-alloca.patch: do not use alloca in clntudp_call (CVE-2016-4429, bsc#980854, BZ #20112)- Import patches from 2.23 branch 0001-Updated-translations-for-2.23.patch 0002-Regenerate-libc.pot-for-2.23.patch 0003-Regenerated-configure-scripts.patch 0004-x86_64-Set-DL_RUNTIME_UNALIGNED_VEC_SIZE-to-8.patch 0005-Add-fts64_-to-sysdeps-arm-nacl-libc.abilist.patch 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch 0007-NEWS-2.23-Fix-typo-in-bug-19048-text.patch 0008-Update-NEWS.patch 0009-sln-use-stat64.patch 0010-Add-sys-auxv.h-wrapper-to-include-sys.patch 0011-mips-terminate-the-FDE-before-the-return-trampoline-.patch 0012-Use-HAS_ARCH_FEATURE-with-Fast_Rep_String.patch 0013-Mention-BZ-19762-in-NEWS.patch 0014-Define-_HAVE_STRING_ARCH_mempcpy-to-1-for-x86.patch 0015-Or-bit_Prefer_MAP_32BIT_EXEC-in-EXTRA_LD_ENVVARS.patch 0016-Fix-resource-leak-in-resolver-bug-19257.patch 0017-math-don-t-clobber-old-libm.so-on-install-BZ-19822.patch 0018-resolv-Always-set-resplen2-out-parameter-in-send_dg-.patch 0019-S390-Save-and-restore-fprs-vrs-while-resolving-symbo.patch 0020-S390-Extend-structs-La_s390_regs-La_s390_retval-with.patch 0021-CVE-2016-3075-Stack-overflow-in-_nss_dns_getnetbynam.patch 0022-configure-fix-test-usage.patch 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch 0024-nss_db-Propagate-ERANGE-error-if-parse_line-fails-BZ.patch 0025-getnameinfo-Do-not-preserve-errno.patch 0026-getnameinfo-Refactor-and-fix-memory-leak-BZ-19642.patch 0027-getnameinfo-Reduce-line-length-and-add-missing-comme.patch 0028-getnameinfo-Avoid-calling-strnlen-on-uninitialized-b.patch 0029-getnameinfo-Return-EAI_OVERFLOW-in-more-cases-BZ-197.patch 0030-hesiod-Remove-RCS-keywords.patch 0031-hesiod-Always-use-thread-local-resolver-state-BZ-195.patch 0032-hesiod-Avoid-heap-overflow-in-get_txt_records-BZ-200.patch 0033-malloc-Remove-NO_THREADS.patch 0034-Fix-malloc-threaded-tests-link-on-non-Linux.patch 0035-malloc-Run-fork-handler-as-late-as-possible-BZ-19431.patch 0036-malloc-Remove-malloc-hooks-from-fork-handler.patch 0037-malloc-Add-missing-internal_function-attributes-on-f.patch 0038-nss_dns-Fix-assertion-failure-in-_nss_dns_getcanonna.patch 0039-nss_dns-Validate-RDATA-length-against-packet-length-.patch 0040-resolv-nss_dns-Remove-remaining-syslog-logging-BZ-19.patch 0041-nss_dns-Check-address-length-before-creating-addrinf.patch 0042-nss_dns-Skip-over-non-PTR-records-in-the-netent-code.patch 0043-resolv-Always-set-resplen2-out-parameter-in-send_vc-.patch 0044-tst-audit4-tst-audit10-Compile-AVX-AVX-512-code-sepa.patch 0045-Fix-tst-audit10-build-when-mavx512f-is-not-supported.patch 0046-tst-audit10-Fix-compilation-on-compilers-without-bit.patch 0047-strfmon_l-Use-specified-locale-for-number-formatting.patch 0048-glob-Simplify-the-interface-for-the-GLOB_ALTDIRFUNC-.patch 0049-CVE-2016-1234-glob-Do-not-copy-d_name-field-of-struc.patch 0050-ldconfig-Do-not-remove-stale-symbolic-links-with-X-B.patch 0051-Report-dlsym-dlvsym-lookup-errors-using-dlerror-BZ-1.patch 0052-Fix-tst-dlsym-error-build.patch 0053-Remove-trailing-newline-from-date_fmt-in-Serbian-loc.patch 0054-Revert-Report-dlsym-dlvsym-lookup-errors-using-dlerr.patch 0055-CVE-2016-3706-getaddrinfo-stack-overflow-in-hostent-.patch 0056-Fix-strfmon_l-Use-specified-locale-for-number-format.patch - CVE-2016-3075 CVE-2016-1234 CVE-2016-3706 bsc#973164 bsc#969727 - resolv-mem-leak.patch: renamed to 0016-Fix-resource-leak-in-resolver-bug-19257.patch - no-long-double.patch: renamed to 0006-Don-t-use-long-double-math-functions-if-NO_LONG_DOUB.patch - glibc-gcc6.patch: renamed to 0023-Suppress-GCC-6-warning-about-ambiguous-else-with-Wpa.patch- glibc-c-utf8-locale.patch: fix bad standard in LC_IDENTIFICATION categories - glibc-2.3.locales.diff.bz2: likewise- glibc-gcc6.patch: Suppress GCC 6 warning about ambiguous 'else' with - Wparentheses- Add compatibility symlinks for LSB 3.0 (fate#318933)- powerpc-elision-enable-envvar.patch: enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#967594, fate#318236)- ldd-system-interp.patch: Restore warning about execution permission, it is still needed for noexec mounts (bsc#915985)- Add C.UTF-8 locale (see https://sourceware.org/glibc/wiki/Proposals/C.UTF-8) and rh#902094 . Added with glibc-c-utf8-locale.patch. - Add glibc-disable-gettext-for-c-utf8.patch to disable gettext for C.UTF-8 same as C locale.- Move %install_info_delete to %preun - crypt_blowfish-1.3.tar.gz.sign: Remove, the sign key is no longer acceptable- no-long-double.patch: Don't use long double functions if NO_LONG_DOUBLE- Update to glibc 2.23 release. * Unicode 8.0.0 Support * sched_setaffinity, pthread_setaffinity_np no longer attempt to guess the kernel-internal CPU set size * The fts.h header can now be used with -D_FILE_OFFSET_BITS=64 * getaddrinfo now detects certain invalid responses on an internal netlink socket * A defect in the malloc implementation, present since glibc 2.15 (2012) or glibc 2.10 via --enable-experimental-malloc (2009), could result in the unnecessary serialization of memory allocation requests across threads * The obsolete header has been removed * The obsolete functions bdflush, create_module, get_kernel_syms, query_module and uselib are no longer available to newly linked binaries * Optimized string, wcsmbs and memory functions for IBM z13. * Newly linked programs that define a variable called signgam will no longer have it set by the lgamma, lgammaf and lgammal functions - Removed patches: * dont-remove-nodelete-flag.patch * openat64-readd-o-largefile.patch * mntent-blank-line.patch * opendir-o-directory-check.patch * strcoll-remove-strdiff-opt.patch * ld-pointer-guard.patch * tls-dtor-list-mangling.patch * powerpc-lock-elision-race.patch * prelink-elf-rtype-class.patch * vector-finite-math-aliases.patch * powerpc-elision-adapt-param.patch * catopen-unbound-alloca.patch * strftime-range-check.patch * hcreate-overflow-check.patch * errorcheck-mutex-no-elision.patch * refactor-nan-parsing.patch * send-dg-buffer-overflow.patch * isinf-cxx11-conflict.patch * ibm93x-redundant-shift-si.patch * iconv-reset-input-buffer.patch * tzset-tzname.patch * static-dlopen.patch- isinf-cxx11-conflict.patch: Fix isinf/isnan declaration conflict with C++11 (bsc#963700, BZ #19439)- tls-dtor-list-mangling.patch: Harden tls_dtor_list with pointer mangling (BZ #19018) - prelink-elf-rtype-class.patch: Keep only ELF_RTYPE_CLASS_{PLT|COPY} bits for prelink (BZ #19178) - vector-finite-math-aliases.patch: Better workaround for aliases of * _finite symbols in vector math library (BZ# 19058) - powerpc-elision-adapt-param.patch: powerpc: Fix usage of elision transient failure adapt param (BZ #19174) - catopen-unbound-alloca.patch: Fix unbound alloca in catopen (CVE-2015-8779, bsc#962739, BZ #17905) - strftime-range-check.patch: Add range check on time fields (CVE-2015-8776, bsc#962736, BZ #18985) - hcreate-overflow-check.patch: Handle overflow in hcreate (CVE-2015-8778, bsc#962737, BZ #18240) - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex (bsc#956716, BZ #17514) - refactor-nan-parsing.patch: Refactor strtod parsing of NaN payloads (CVE-2014-9761, bsc#962738, BZ #16962) - send-dg-buffer-overflow.patch: Fix getaddrinfo stack-based buffer overflow (CVE-2015-7547, bsc#961721, BZ #18665) - powerpc-lock-elision-race.patch: renamed from 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- Add audit-devel and libcap-devel to BuildRequires, for use by nscd- reinitialize-dl_load_write_lock.patch: Reinitialize dl_load_write_lock on fork (bsc#958315, BZ #19282)- resolv-mem-leak.patch: Fix resource leak in resolver (bsc#955647, BZ #19257) - tzset-tzname.patch: Force rereading TZDEFRULES after it was used to set DST rules only (BZ #19253)- glibc-2.3.90-noversion.diff: use stat64- ld-pointer-guard.patch: Always enable pointer guard (CVE-2015-8777, bsc#950944, BZ #18928)- strcoll-remove-strdiff-opt.patch: Remove incorrect STRDIFF-based optimization (BZ #18589)- iconv-reset-input-buffer.patch: Fix iconv buffer handling with IGNORE error handler (BZ #18830)- new patch [BZ #18743] PowerPC: Fix a race condition when eliding a lock 0001-powerpc-Fix-a-race-condition-when-eliding-a-lock-20150730.patch- nss-files-long-lines-2.patch: Properly reread entry after failure in nss_files getent function (bsc#945779, BZ #18991)- fnmatch-collating-elements.patch: Fix fnmatch handling of collating elements (BZ #17396, BZ #16976)- opendir-o-directory-check.patch: Fix opendir inverted o_directory_works test - static-dlopen.patch: Static dlopen default library search path fix (bsc#937853)- mntent-blank-line.patch: Fix memory corruption w/blank lines- dont-remove-nodelete-flag.patch: Don't remove DF_1_NODELETE flag from all loaded objects on failed dlopen - openat64-readd-o-largefile.patch: Readd O_LARGEFILE flag for openat64- Update to glibc 2.22 release. * Cache information can be queried via sysconf() function on s390 * A buffer overflow in gethostbyname_r and related functions performing DNS requests has been fixed. (CVE-2015-1781) * The time zone file parser has been made more robust against crafted time zone files * A powerpc and powerpc64 optimization for TLS, similar to TLS descriptors for LD and GD on x86 and x86-64, has been implemented. * Character encoding and ctype tables were updated to Unicode 7.0.0 * Added vector math library named libmvec * A new fmemopen implementation has been added with the goal of POSIX compliance. * The header is deprecated, and will be removed in a future release. * bsc#905313 bsc#920338 bsc#927080 bsc#928723 bsc#931480 bsc#939211 bsc#940195 bsc#940332 bsc#944494 bsc#968787 - Patches from upstream removed * htm-tabort.patch * o-tmpfile.patch * memcpy-chk-non-SSE2.patch * pthread-mutexattr-gettype-kind.patch * powerpc-software-sqrt.patch * static-tls-dtv-limit.patch * threaded-trim-threshold.patch * resolv-nameserver-handling.patch * nss-separate-state-getXXent.patch * aarch64-sigstksz.patch * heap-top-corruption.patch * pthread-join-deadlock.patch- pthread-join-deadlock.patch: Use IE model for static variables in libc.so, libpthread.so and rtld (bsc#930015, BZ #18457)- glibc-nodate.patch: fix verification of timestamp- also filter out -fstack-protector-strong- getaddrinfo-ipv6-sanity.diff: Remove. It breaks services that start before IPv6 is up (bsc#931399) - glibc-2.3.locales.diff.bz2: Remove sh_YU locales, fix currency for en_BE.- Add /usr/include/gnu/lib-names-.*.h to baselibs - pthread-join-deadlock.patch: Don't require rtld lock to store static TLS offset in the DTV (bsc#930015, BZ #18457) - heap-top-corruption.patch: Do not corrupt the top of a threaded heap if top chunk is MINSIZE (BZ #18502)- threaded-trim-threshold.patch: Fix regression in threaded application malloc performance (bsc#915955, BZ #17195)- aarch64-sigstksz.patch: Increase MINSIGSTKSZ and SIGSTKSZ (BZ #16850)- powerpc-software-sqrt.patch: Fix powerpc software sqrt (BZ #17964, BZ [#17967]) - nss-separate-state-getXXent.patch: Separate internal state between getXXent and getXXbyYY NSS calls (CVE-2014-8121, bsc#918187, BZ #18007) - static-tls-dtv-limit.patch: Fix DTV race, assert, DTV_SURPLUS Static TLS limit, and nptl_db garbage (bsc#919678, BZ #17090, BZ #17620, BZ #17621, BZ #17628)- resolv-nameserver-handling.patch: Replace with simpler version with more compatibility- memcpy-chk-non-SSE2.patch: Fix __memcpy_chk on non-SSE2 CPUs (bsc#920084)- resolv-nameserver-handling.patch: Rewrite handling of nameserver configuration in resolver- htm-tabort.patch: Fix TABORT encoding for little endian- Update to glibc 2.21 release. * A new semaphore algorithm has been implemented in generic C code for all machines * Added support for TSX lock elision of pthread mutexes on powerpc32, powerpc64 and powerpc64le * Optimized strcpy, stpcpy, strchrnul and strrchr implementations for AArch64 * i386 memcpy functions optimized with SSE2 unaligned load/store * New locales: tu_IN, bh_IN, raj_IN, ce_RU * The obsolete sigvec function has been removed * CVE-2015-1472 CVE-2015-1473 CVE-2012-3406 CVE-2014-9402 CVE-2014-7817 bsc#864081 bsc#906371 bsc#909053 bsc#910599 bsc#916222 - Patches from upstream removed * ifunc-x86-slow-sse4.patch * pthread-mutex-trylock-elision.patch - o-tmpfile.patch: Fix value of O_TMPFILE for architectures with non-default O_DIRECTORY (BZ #17912)- Update to crypt_blowfish 1.3. * Add support for the $2b$ prefix. - ifunc-x86-slow-sse4.patch: Fix misdetected Slow_SSE4_2 cpu feature bit (BZ #17501)xinomavro 1617230517 2.31-7.12.31-7.1libmemusage.solibpcprofile.somemusagememusagestatmtracepcprofiledumpplddsotrussxtraceauditsotruss-lib.so/lib64//usr/bin//usr/lib64//usr/lib64/audit/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:SLE-15-SP3:GA/standard/e678176f9574a47ff2e591d9d3c9fa6a-glibc:utilscpioxz5ppc64le-suse-linuxELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, BuildID[sha1]=18240fb1dded5e067033cb639156bd1841375b09, for GNU/Linux 3.10.0, strippedELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, BuildID[sha1]=a01821dcb6f7d9dced078ffaaf0dbb1fc0ca9991, for GNU/Linux 3.10.0, strippedBourne-Again shell script, ASCII text executableELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=b0afc7da9b1dc66f91498001c755047705155884, for GNU/Linux 3.10.0, strippedPerl script text executableELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=4bc719c0cdcfb398a1a915bd014b2edd891e6a6c, for GNU/Linux 3.10.0, strippedELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=68100dd6b3d154dc598d20a29330571375008151, for GNU/Linux 3.10.0, strippeddirectoryELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, BuildID[sha1]=87a7add9e4ae5548a12406945e5d77f2139dc870, for GNU/Linux 3.10.0, stripped PRRRRRRPRRRRR R R R RRRRRRRRRRߋP0xFidutf-85b49174f015c8575fabe61b5115bd79b7bdf382a20f8b35257455c7df7ce3fa4? 7zXZ !t/撇g_] crv9w x{Iyjx H$C.Řemdgck~HM-DW}^fs͉NR\w޴{ɲQT$JKlݲ0D7S"v5RU}Pu;neG$Z+88/mW 9scTqE( 0!ߓg0phl*8C) ٞ$@Yz,,>cӜ S !B1<6^L-YC-qGiY9` ;Qf@' C ɝbguOFMdCY ylmi WHI<Wla> |B?W)#Xɬ~/@TpY SW g@xƶԩ^Z'~ ✚/mv7۫Yf\B gBE;q5Br^AVuӼB@>UEbлx[hb?.yC'?O #tfӴfp|J HDȵXcMyDTb׌W*"3y/wcTKD'$DoY!3)={oxJjzKI&Ŗ]G!s,CY(a :<.e] 3I%hb<"اRP`\k'N좦ZFkZh& ϴXSFuT${v^@[etYgO&Gbx@+=mh] pd< wUS*8>].}0Y*#mO0kroDw$"rh:oUBw}Rgtbgϧ3o>tbv='E)vN^@-sYWg)ԃ>(pQ~Mf zpO ~܋Dx+L_HߵKZq5jxavRG;Qz2R눔۩vUP .TX#o+~W .ߘ>:+aQW ,(eF3ֹge"1(_]`xy.K2VAHʥ3[(\A6Qa_F'Fb\]z-i>+ .f\S.ƭ}-Ie,S/07\]"36Fx:t:yz@$.H+#2 -PgѷyfJ u}`#)ۀ FM'@$4-ǜ^E^T>[v_RXD&\js0JWSC&j I^&>a_*`zZ8]ߥ{`K+4Ӻkh6֥#^o r C< "|(KT  &ehW7'w>H _@Z} IrS5kߦ;0OLU5S(P\A( ܌lTc bGad~+}x$&_PH|zʰyosF.)۶+r7Z&* N+2ңv_.F6-QCkVL J:{hʼEr<38ÙQ K/!Ű(}wL ݌L!pQ/-AFH ?vd=Zx!W؋KG-|Rذn"1/}* 3; "N[(ă~JK.ZDmK {5]{Ҝ7?y᳅lB45A< gh;s;v\cRI/MtNV!BGaW HL\(f$wuQ mRUdpc~ŰEST}i3s YOo6 222*Q?D'}4A=QCbE&(Oavd wߺhTGZSbyyxx~GP^7 ӭ;$tY*Ad\¹*3"_- BP(s%!#$.-WwT3=3ę9Mdzr5Yf~4/( DmV/MȆn\@p L@ԣ!M+c-_Jg w J8n𕐷 dwёUi"S12PmKM+ U l.ztՙ2{+%G`T^c1DžgP|Gl%i&:Pn^{` 9S[A"!t裠$˳%1i\{ m^J\4'mvֺ "^7Tv9Rq&S鶴 3_-p Skr?Isٟ(8X^]t C0hm*2~q :]FHyxu#皚h#6鏔xKU4sxQ>u]bu8Ɠ`(Ta}La]=Wt/Qμh{ mtۗ*Nq/#|$!n 反ܘNP[gykA [b,iBoVgkZ6ʃFXh *W8$i_R;^tFb^\4oy8M$#- !བྷGt_ o,K4L!_c / ӵCzD瞜/ɇ%*2!{υOŷ?|XKhony|h"o[-L|ƠOj,V ,Ay>2S2W/j 9 P)i(?QܷWG:ep"`zHH%#g7 nOSeo_9}l QD h BEzgbesFGC)5ķw8 7=d7UP ĆiFͺ_([ܤs>³-DC~f *p"%]#jPR Zݻz 7C$4 l{[2㷧ireF#<]Oy3eڱX%`tE^Ywͬ|j)RNط%qlʡnB^[M¶pum%Ƨlo-aohY)$>bV;p%fݰhWEL9/tzIdG*)Uz5[?9!iD mN_x3~"g4|*+6Aolfť+. >f 3Պo ֥'CDz0FwnI7ќtb*iF Ik0 gBEmi5Au>~C"}7E#8@<~ga%1rnq3T~ê gڃ:=7 'E|(Rňx@cߴWA"QP;<}*XZnf@2}oP[FumB::}wlVS2>.1:|fw|Wfe><!~/Yan }LA5O-?o%L.whRϗcˀ/&LWeVm&˘[NU2V3KЗ^M#i2FϷ%wyn R8[l3}u=$YA 5*K(8d#j*= V9eNm&NkiEn7((5k5gOrGucidlù%@z87x4,{򵤢ENo zٖ$o֝7x6)(R39S=ۭ$[qGe-M4fѾQ!&RaLEIB_ֶX>B#RiDMcoq9A/+ qy1er"0]/ %}r r@YMG#VQ*XYe*bdpp2+. E/CdJkO.t!4{BL> o_0h$3E0e(CGR@U9ljé,.߰ E}-{`dG[ikm|NHpQdeXK`$74wtYn+& p5=8NK# ry F_TiHK)7Xf:TL4!/j;߮UXZrmq?%@b'w\H2k7}_Ht4V\ÖhnĊ.Or m(V$hxs@P%a QíJʀ;n,=  [ӳm&Jƨoli.ep\uB-JݫUXT>Zq yĦf;~F$`^})A50\;&T}§g,u1krF,Ol C3rn_w["1 d#ujE8|I'Jg="X [:$Cb9ft'VJ^^ O3hD+ѩ0 Ӹ@Bڀ_0O >eӣ P Tb#~~t(V`!-@UTb+z: ȻqlյfAixډ#dFC1re_ .B oKi-R!zNNFqI'{t.V5jzHn)0н2k=GW9?4礨LN ;vL>!h,gA$K`Pm$ <CgG: vQڐdyGGMLRm,5BK<hMdZ=Eq8Dp|{[-8G9{ @nu5]4oSiHzCs?) ggmZ^C{nR(/s.tof `A G]bY!nTnn#G)O_ \k~S#ɍi(Idmk,?fɗiR [(VWSc~i3h6=O $sCYwd ߙ ۅ;m{/c aX#ГE{`>Xh-zgOI+vg鍉ۡgw"3nf s)x=\;ѲG?ӖDUdV2VJY_dJcRKw/ZZM=iU1"!WENDͳZՓ@=σطgQ&w$ros$4J̔MmF?L NXjgz$C7v= Tqo҅ng%dD#"U:JCL8p'͝ ~ZRMxvirq$@(ҽwj| ͙0Eg*ȥXO2$A@w %ft[nϟDz0}0}i4D]w0 \\K[IRb~ ,DgjECFh#_}2cnoiy8%g&S6$DA7gs.û5~%}U#C+֭"c \]lLpibDWfyV#84II.Wˏ)>P0V"` &\F;Key'vH]#~$dhě.ibC!ܐℴ[vqGB!8}IBHHp.'\Â"3hfH7n ᯘnSt$+74Wd|\>i=$~z1:xltndGi]=R" D <STw_3:xbH~rX`9 ? uU\hO&8oS-7/83q a\a!An d{""4>tX׬ w? qAx4a'7uɏ{'@ͧS)3a*bkE%o *=ik`\wX0nK[p%VzūPHYg2TWȷf*j)?_zT=%3OZn`uIs2*y F3ɗZQd<"t\pAe~dUK n-XϹsvvIeVV೎uF!? .T^Jwm&H݁aK2yevt{]u7|mEU'*"8/|Wk0 ltkF?6]$:XH?{?ILS.w^Իro!0 iDL)5w'mSkn8ũP| 4;廆 d`-|"9}A>ZF]C%(\B7$ /I ,}e Qlu&^86 xU+;izkJ>&^0^d*9^s. 02 ɪ:>+}X'OҔ#o @-2Z`tG8L$Zۻ!wwr (a.?*rH/ RФ˩5A/f V*7}☧|9/[""w;1WQ`f_L[JF7~U?+qpN£gXp|QliZm%H%S`깔290k By>mosp_ [cCaS_+TaY1N\ +5YdDҥ Cg<2w S/tl*C4h+PnUTi, ?Z-smƸI^x}B&pfb/Z9P8trzvxIʼn(2wP8n3ac!Ui2wltŮOtB,wC&xhBjDe"/Ϛ! HwT hΜ֧}NqlIنex\+rI[3iD͗=e!a fӨlZO(8bs M9B/~* p6̦yN/%^FC3"rd{ a0kwwb@Q/l*o@ 2jrK~,2;<_5LkJljaTp W fS87IPXhTmmUp.n oVSB 4vnȖ=0DDHs|%¢vEnn.GҰ}"kpYpsipr DtV6NT嬬1пs2z{7#{0 cO l 2Mߡ0Bٴ iB6ۉ:H`⿇s)RĮ= "a,qL2Yx/Y%.ZiFZ x\'e'rmJ$܉]U~-sŰeкg?CIdZjgWQ-ilH}"nTU I;ɌmCnHf6)z""6 A0QBK`ђywg NMi::H7[/OAg5=ˏ-tso'vRk~/@eWdMB`Ӵ`ƣ BY(q(e2pNJ`$G/kS밶ӝ7uc8G5_qPwM7^N-Etzm&[en55Fu'A'Ә빊[A29,hLT@⬇: #8~&y 'Ր및$M%xef {tc\oŃǺ~Ȱϫ1:mS]L7ToXݡ/Ip! ]M:;e Ul'aIKMiwU “ ?6G?pTj.hbOWұ^A/92Oώ #fP1,]U֌?yllQS6,kyAq-^Pb-"M#}j:J5 >`'|)>bCfg.4r"|T:hwO~df)ޤsI;)ĬcQBܡo9PT3(Id5Gcr*S,hUuhEh9){j=}H%V0c[Fd.j^NXB^\v io}ԈeE;\1P\ ab-F4r6͇OycioeF |"ʉ#Bɴv8+,bu@YrE3Y4%/P'HkiW>A[#^2n9RqH6Q6d:P;n/$`O\H/42<2ٴ& 1.c^H<.D.Qm0+\5Q_ Dޖ!X_.&O6)Cz" @W#kH@$U)<%c<S\0sk#zB'm9b؛b] k8NLY$&ƞ1Zfz= Pĕf /,S>p1XAሓ=ȨŲ~h][ ^*KNrao.]`o\~}:^@!\^NM1o=I4Y!9`ډ\7jɞݻQq9&ԣ, Y,aYRr]"t[N~OVgة,(z *RS@01Y`cNC9y8MR0iTft Bqܣi:Sv)ZP@+X#>RԂfhsd(e|I VGyl53;6`kU,mtR4@+Cg-'O؟hzD"AK 홿ccLA{4H75eۛދ2\pW ՠR >t嫁Wnec'vR 743su!XQFjUb|K@-тflEU ӵD.9le:㬥`S'&J;NFX{ь2 ǿT%`;z4b 5"o$&bO%sX.{ Ɓc%UƲˡ N_Q~˙0[8@dm U\RzdU39ǧ]3InF3C}IuM]\KuYQ;n[$zZ~S+gG ?ȊQ550v)3OW̻H\zZ2[/*TP֧h/6>'SDR`~PW=ٶKPN3ޝ xY0q('7a W#>$p`SyTePáegÂK6^( <)QEuޭ`@*F+ F&p{jHٲAϳ$rj\/#')z~h$ S[$$xuo ? UMCңF-wqc,Fh8AqO-aͻīN~i~YNO""ߛduC?isz17 ) 'jք58,S1u<.bX36=Ux!>֥ZÏi S "\ek%mQK=vee\z=VA._jw!h ZO̹ EBj%]-W?pCyl1U` (n[n2T}=(Dw?Q6H6̨xi.3 XFSxgFٹ5y+-f{EQ-FY3J *G;B3Q G ͡:tJ1393k]u d܊hkq*YF9U'Ƀ2S[Mk:Noc:E gVS cԔ/R8u|A9}j xw.`%Va&3K\dxԭ"|`:ֿ H wdIweXawj9 K+aNj2|4=ipk1־%@0Ê٢_DnQ g"yD,#i_\AFFfy!TPړ &t?VfUJV6i'UE+zmQPm;T2ՃC1ϣ5R,+"r(]+i8;vGyF(z3~a5vO@VW̐/ڟȺUJ}P=pД>ױJÃ[v a ) j8n4M=FjtQQ>+rpC&inQҍ(#|B>DNJ"D+;.PWЋ5W8U^ XTz9k?ejoE_!Q(gH0 .ߓP1)|JJP# >1CfI:@9$"ʚqaY2r$q}ew{xZ!4n:bWMAd5l<^>M@5i`]%BP pFlfKL<:#{xV^<)\% TaP QBL^rgGDž*4yx+jc?MULFbih,iX܄WY-Ex7(O H&v)-6aɢ?GS;:o}F) 2թk{u4V$6n^"{R9seB<m1O(V vIq6UDhOͅgN0h/ov 5s5}zºbOeOCY,"|}L.)*۸c-Yt7Iu{Qn0Dn ;?ou-k)0f_SڛLz#UPtiBl(V -Ԛ3@zfdžɌ|-tp+VzduW0]H wTޔs3HqqOa= tvӱ˾&yyfL$ՀDWTz52_\v )_" ^?1.!lq:gk9*$BΔe yگ%~?O^Q.mLrC9O`eԦ(v ӗĈY N]ȸMp kVy'#>Xy|L3la4Q]A,]r@e2eȏuqdL gy@yҷ,}Pz!̘ЋV|ˢ8uL:H؜B&?$g>ůq66D|:P捓U#TDf{yiG#y񢮲 xb佡"{^ K-ʝXtq3f$•ݝ;d6n\bRGt½p}ȻG %Č$yPCd\-u](Wek,ACV]*10xɼ,K~z$G>>hs6 /ﻢbysn-)[L/+K6jݠY9Z vHӤG"ѦGjr:2xWK ֆo)`7L[?d*kk> :οNr EO~Iq[u <`3N7wfH.STP\CHiL%o@gVVcNm7mBL?y=lﺌ}&-&/,a3j Vux0svxh;C"UzdPJ 5찪5PƎr6 dZI Z EGXbZ ,Ŧ&aS7q]BɮZR{1ʌJ>Dsz(y>ATM]9 ܱ xjlBvpq8I~/=[JƵL$'7d \pa1P_BeK8>U,-Ob/c9;}H/LSc|ɼ>hXOgY+9c:@w =qݹv~WGrcokO[t(z_'+ǓOG0 ?}qn]P;p}GS,O> 08ݥru'%N-zKXmC%93o#}O'IXCzI뗂g?d1q9&ܒl*|;3"us|I^U\I^ :c|D+:wRmO e[膬Ep;[g E_VOO㨐jCMx./U.EFnE.&ƻwN+I,}\EJ~fvʍӝPqV^?Cs#tjC̚IgXw$"t1ʥ`B to& \=p~P51k>+L(27^|C,nL\({fwc>o^/{6-M D8n-o+P=LEl<gYx=;`(;bOs{hmǣw˄4x;/HRyo]AZT=/ X a,S/!=tTwtg!3ucQբ戻w;kf^-9*F$4`~w`zݓ KDf5dnR9Wa8&Ax蛀",7^UE(b(CȥI4К_!=ZK'Zb8ޖE4C(-{k͗h㝡lqt51Lpdzˮ' /kmHIuc ZWJq;p*a(vw| ql%:oC!J]҉թ(TK  ,(~#&H]4=初+ lZjd;uU2>94mZ ACc瑵A@zbCЧN;uUI3F;Yl:pAvQ8 ;i e( hҁU6uއaJLt-(maǜv#7XQӎ!nM]7.|?;c,배BZ‹Q\OߩĮU{?l."bat@,II3i'AwttVpm o>ܘK$j;KNgp qvE9m -.9 N6՟R׊.rRC 8&w1=پidǵvXS qPUnM6s> [xϡcHE\veYĦf']oHiY*'pl¡u{3%1ݿN]z|8b ' 3Q$ژ`Wx7YtAc!;pTly~:%Crټ9)iG/&99 ]|DZ2.lkC%ۚNW-?5 ^/eB7`0f,KB#u7U԰5'w\5"   2: RyLQY@}ш} BX*ֆ0).l* pnsdMXL**Gm^!lvd+}"O'VOIT%OE< X5QX}!E╍q$6ZåYs*,h纏F0w,`s((uF, xfC-?˕IMVMЫRUz2qib%&W27eu|M\pOCv>I^Y pIy]<:n;R1$wK͎*a~ցL牮G"E |E+S}|E"5 Ng bA!/5մ7m"˳97,m -`e oD1i**h~O?҈x[QBlt)Ň̠0piaݞqbE>qigޥ!5$αS/Q!}Ņ|wvt *1F [KFԦEp=ue yc1} gq^Ta#>oUcE[~೒&;uW7P^}?%cҖl(gK8Y@'f颼0zsrHC䌦w IWRF$Q>PAZDdɲ:U4bc+#gE=jL&VG-+;O_Ңx~wD^E G:'U޵3ieJ@4}Xw~x元} q58-j"R@]{_0nʋwFg`*kx6OeUep[a*S2mo^3AL*!b URLqY5C #C& S˩9MG@ 94 i]Xơ|F׋}MȖh 5 hl9^2QqNb#;ooˀAk8ѨRJQdQLꨁ-DczфvkԢ-;CS0\|;;!i2|Urkq{9^MK*='~w$Cޘ^;0~/L<NzIބP.HY&] Im=/ 6 IGɷBTt~c42aTTZA]tNڭeT,T=}H%edi>]>V, =U pV)=K] OوTaӯ9T҈ ej)\q]qs@0N."q 7_yZIYHyp٪NWJ E7 l@{Sb8#;{tɾ-]BCN{ބӴs) <8LkȘ =\/ŇvEM%?ņ:NUlZ6ME: G {0)ϣL0X$+D)WQA5}iq} tF⊄zWkj5ڲ;i vO#m:$OEm: J͕p- Z Zm`\}kVE#uf r'$dx\!2Gc b<~6~"Y|SᢀI@=+p!-H)qHgǕ ($"" <pCȉI^f풢yvD#±FÐ)[a/u%`*70MǶcƻw>gfgEWKAƴ ? p4\(jpkT#V <%蓄^9 u/o3ID62z_s` %c6uU8ܻVVBpT.? ]dCm(ćuTCO9r)awz|yzK ES8.~Uǻ}kƪ$?r2| .GG%\GHOdT}[^#ѫdyD1ۊ!S,;:;|! l "KT9ܐ8 ڈ8Ι%eb |)W寏sB{ &iN()Y:S GD!%h'c %SH ^t!e[gbucjx9Q"ƝVXb$<ΡJ T2AzT@A@d%[*;3 a-o!Ph(9d_` ZT]T˥D.DgF8TGDXaU ?º21;|[vR]٬"@Q[X+OYӷTNh@TQmTѧ>dLk˫?6AȊ*5Rn<o Z}^r(^tr&%|[Ke(8Hw^s0(rKϓ2˫_m$i>Ue[2aeUr@Žl[3WjL0d/[2:!Ǥ7Qtv"L"%Xa[E0թqDCrxOn:hH??1pK3&T:JU.r:Rw'!`GJX6E*h] G/K+˛PCZ|ܰ3%,ۈzpJm>RIY]m #=Kז#Ev\R['uU=Ln~#ϖW7-@nr0du\4 #BByoV}PVPl4x!&XH۽52W8~YCI~;ZHBdβ^W,s2 @W-,nj%|_MS*58Z2}uKXzmTSyy~\w}T&qCFMZuCQ}?CGL$N #/8 ́Q[Ce.tJoףc$]J]'5nq%KUW G'G)3|'SQԕ6l댮c1{14܉w 0F; E5OeSUV}DGxH@ ~`o0t5Lt CNh, 趋NEHyay>NV\-ߨ\!HIYvG0}xxu󚭹ŕuJ'cym6pǣb/XBSlyO'զJ2l ̘f]»4ei ꘃ8ALx`ɋYyzIk"N}1MbKPe `{9Y:_J55t^M3k9y.D- $Lf)j|5VѪ>F!z8U> u"ȸis/:w{0ro5{@7um4Bl,W}a"3prgYkb;ی,ӹS њM1W~z hx2g%?2rX_dI%E(S09ϲ $"j2v] "[i\CCZKIW_0 nOj6ǼE1a&.Kĵ"_, H*EJ4UsTki!6MVA˺O ۳yk /pUG}s|!B"J<ߔ)M!uUfcկ, , RT5rpctq֙u=U!6Ϡ;^eڔd0_Uil=ElS`DnW-O,M+t"w=YwϮ%:BCdoHR CnԘSfN< iH{nVɚ|BULzMoI'%!g,?3nRRE"Y+J1g؊3K ljj8#~ԏ'ѣBa2=هu}~A#81|V;h|(C}^:Cƨͺa#AUP/y9>#bX%nӭ7ZwK(lO'S2sY(C,MrF1<ݟ@BGvziJAX}XD!-KFC̃kqya#Vvצ?JCR}x ]CM`F*kl><·O6DWx͵m!{gċ<$ )^i no]dJbUsY~¦@׺EԖ!AU|M)K2voj.vʞkAHNpbt_h'$.#bN9hr?',8F}GkVue"cF2mKSjJ YZ