modsecurity-devel-3.0.10-bp154.2.3.1 4>$  ApdÜ!M@eeeF"٧p=iQj, !y?nNΌI$}yp>F@?F0d ' l  9BO h( b    m     : d   8 ( 8 9  :M F>xG>H?I?xX?Y?\?]@H^BbBcCRdCeDfDlDuDvDwDxETyEzEEEEF,Cmodsecurity-devel3.0.10bp154.2.3.1Development files for modsecurity, a web application firewall engineModSecurity is a toolkit for real-time web application monitoring, logging, and access control. This subpackage holds the development headers for the library.di03-armsrv1SUSE Linux Enterprise 15openSUSEBSD-2-Clausehttp://bugs.opensuse.orgDevelopment/Languages/C and C++https://www.modsecurity.org/linuxaarch64 Af/F}$x!u M. - v Xb8]2 AA큤A큤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.so.3.0.10rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootmodsecurity-3.0.10-bp154.2.3.1.src.rpmmodsecurity-develmodsecurity-devel(aarch-64)pkgconfig(modsecurity)@    /usr/bin/pkg-configlibmodsecurity3rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.103.0.4-14.6.0-14.0-15.2-14.14.3ddZ5c]bb_*@[I[CN@[:Z@David Anes Danilo Spinella Michael Ströder Georg Pfuetzenreuter Ferdinand Thiessen Dirk Mueller jengelh@inai.demrostecki@suse.commrostecki@suse.commrostecki@suse.com- Update to version 3.0.10: * Security impacting issue (fix bsc#1213702, CVE-2023-38285) - Fix: worst-case time in implementation of four transformations - Additional information on this issue is available at https://www.trustwave.com/resources/blogs/spiderlabs-blog/modsecurity-v3-dos-vulnerability-in-four-transformations-cve-2023-38285/ * Enhancements and bug fixes - Add TX synonym for MSC_PCRE_LIMITS_EXCEEDED - Make MULTIPART_PART_HEADERS accessible to lua - Fix: Lua scripts cannot read whole collection at once - Fix: quoted Include config with wildcard - Support isolated PCRE match limits - Fix: meta actions not applied if multiMatch in first rule of chain - Fix: audit log may omit tags when multiMatch - Exclude CRLF from MULTIPART_PART_HEADER value - Configure: use AS_ECHO_N instead echo -n - Adjust position of memset from 2890- Update to version 3.0.9: * Add some member variable inits in Transaction class (possible segfault) * Fix: possible segfault on reload if duplicate ip+CIDR in ip match list * Resolve memory leak on reload (bison-generated variable) * Support equals sign in XPath expressions * Encode two special chars in error.log output * Add JIT support for PCRE2 * Support comments in ipMatchFromFile file via '#' token * Use name package name libmaxminddb with pkg-config * Fix: FILES_TMP_CONTENT collection key should use part name * Use AS_HELP_STRING instead of obsolete AC_HELP_STRING macro * During configure, do not check for pcre if pcre2 specified * Use pkg-config to find libxml2 first * Fix two rule-reload memory leak issues * Correct whitespace handling for Include directive - Fix CVE-2023-28882, a segfault and a resultant crash of a worker process in some configurations with certain inputs, bsc#1210993- Update to version 3.0.8 * Adjust parser activation rules in modsecurity.conf-recommended [#2796] * Multipart parsing fixes and new MULTIPART_PART_HEADERS collection [#2795] * Prevent LMDB related segfault [#2755, #2761] * Fix msc_transaction_cleanup function comment typo [#2788] * Fix: MULTIPART_INVALID_PART connected to wrong internal variable [#2785] * Restore Unique_id to include random portion after timestamp [#2752, #2758]- Update to version 3.0.7 * Support PCRE2 * Support SecRequestBodyNoFilesLimit * Add ctl:auditEngine action support * Move PCRE2 match block from member variable * Add SecArgumentsLimit, 200007 to modsecurity.conf-recommended * Fix memory leak when concurrent log includes REMOTE_USER * Fix LMDB initialization issues * Fix initcol error message wording * Tolerate other parameters after boundary in multipart C-T * Add DebugLog message for bad pattern in rx operator * Fix misuses of LMDB API * Fix duplication typo in code comment * Fix multiMatch msg, etc, population in audit log * Fix some name handling for ARGS_*NAMES: regex SecRuleUpdateTargetById, etc. * Adjust confusing variable name in setRequestBody method * Multipart names/filenames may include single quote if double-quote enclosed * Add SecRequestBodyJsonDepthLimit to modsecurity.conf-recommended- Update to version 3.0.6 * Security issue: Support configurable limit on depth of JSON parsing, possible DoS issue. CVE-2021-42717 - Update to version 3.0.5 * New: Having ARGS_NAMES, variables proxied * Fix: FILES variable does not use multipart part name for key * GeoIP: switch to GEOIP_MEMORY_CACHE from GEOIP_INDEX_CACHE * Support configurable limit on number of arguments processed * Adds support to lua 5.4 * Add support for new operator rxGlobal * Fix: Replaces put with setenv in SetEnv action * Fix: Regex key selection should not be case-sensitive * Fix: Only delete Multipart tmp files after rules have run * Fixed MatchedVar on chained rules * Fix IP address logging in Section A * Fix: rx: exit after full match (remove /g emulation); ensure capture groups occuring after unused groups still populate TX vars * Fix rule-update-target for non-regex * Fix Security Impacting Issues: * Handle URI received with uri-fragment, CVE-2020-15598- add baselibs, fix packaging (install into %_libdir) - update to 3.0.4: - Fix: audit log data omitted when nolog,auditlog - Fix: ModSecurity 3.x inspectFile operator does not pass - XML: Remove error messages from stderr - Filter comment or blank line for pmFromFile operator - Additional adjustment to Cookie header parsing - Restore chained rule part H logging to be more like 2.9 behaviour - Small fixes in log messages to help debugging the file upload - Fix Cookie header parsing issues - Fix rules with nolog are logging to part H - Fix argument key-value pair parsing cases - Fix: audit log part for response body for JSON format to be E - Make sure m_rulesMessages is filled after successfull match - Fix @pm lookup for possible matches on offset zero. - Regex lookup on the key name instead of COLLECTION:key - Missing throw in Operator::instantiate - Making block action execution dependent of the SecEngine status - Making block action execution dependent of the SecEngine status - Having body limits to respect the rule engine state - Fix SecRuleUpdateTargetById does not match regular expressions - Adds missing check for runtime ctl:ruleRemoveByTag - Adds a new operator verifySVNR that checks for Austrian social security numbers. - Fix variables output in debug logs - Correct typo validade in log output - fix/minor: Error encoding hexa decimal. - Limit more log variables to 200 characters. - parser: fix parsed file names - Allow empty anchored variable - Fixed FILES_NAMES collection after the end of multipart parsing - Fixed validateByteRange parsing method - Removes a memory leak on the JSON parser - Enables LMDB on the regression tests. - Fix: Extra whitespace in some configuration directives causing error - Refactoring on Regex and SMatch classes. - Fixed buffer overflow in Utils::Md5::hexdigest() - Implemented merge() method for ConfigInt, ConfigDouble, ConfigString - Adds initially support to the drop action. - Complete merging of particular rule properties - Replaces AC_CHECK_FILE with 'test -f' - Fix inet addr handling on 64 bit big endian systems - Fix tests on FreeBSD - Changes ENV test case to read the default MODSECURTIY env var - Regression: Sets MODSECURITY env var during the tests execution - Fix setenv action to strdup key=variable - Allow 0 length JSON requests. - Fix "make dist" target to include default configuration - Replaced log locking using mutex with fcntl lock - Correct the usage of modsecurity::Phases::NUMBER_OF_PHASES - Adds support to multiple ranges in ctl:ruleRemoveById - Rule variable interpolation broken - Make the boundary check less strict as per RFC2046 - Fix buffer size for utf8toUnicode transformation - Fix double macros bug - Override the default status code if not suitable to redirect action - parser: Fix the support for CRLF configuration files - Organizes the server logs - m_lineNumber in Rule not mapping with the correct line number in file - Using shared_ptr instead of unique_ptr on rules exceptions - Changes debuglogs schema to avoid unecessary str allocation - Fix the SecUnicodeMapFile and SecUnicodeCodePage - Changes the timing to save the rule message - Fix crash in msc_rules_add_file() when using disruptive action in chain - Fix memory leak in AuditLog::init() - Fix RulesProperties::appendRules() - Fix RULE lookup in chained rules - @ipMatch "Could not add entry" on slash/32 notation in 2.9.0 - Using values after transformation at MATCHED_VARS - Adds support to UpdateActionById. - Add correct C function prototypes for msc_init and msc_create_rule_set - Allow LuaJIT 2.1 to be used - Match m_id JSON log with RuleMessage and v2 format - Adds support to setenv action. - Adds new transaction constructor that accepts the transaction id as parameter. - Adds request IDs and URIs to the debug log - Treating variables exception on load-time instead of run time. - Fix: function m.setvar in Lua scripts and add testcases - Fix SecResponseBodyAccess and ctl:requestBodyAccess directives - Fix OpenBSD build - Fix parser to support GeoLookup with MaxMind - parser: Fix simple quote setvar in the end of the line - Fix pc file - modsec_rules_check: uses the gnu `.la' instead of `.a' file - good practices: Initialize variables before use it - Fix utf-8 character encoding conversion - Adds support for ctl:requestBodyProcessor=URLENCODED - Add LUA compatibility for CentOS and try to use LuaJIT first if available - Allow LuaJIT to be used - Implement support for Lua 5.1 - Variable names must match fully, not partially. Match should be case insensitive. - Improves the performance while loading the rules - Allow empty strings to be evaluated by regex::searchAll - Adds basic pkg-config info - Fixed LMDB collection errors - Fixed false positive MULTIPART_UNMATCHED_BOUNDARY errors - Fix ip tree lookup on netmask content - Changes the behavior of the default sec actions - Refactoring on {global,ip,resources,session,tx,user} collections - Fix race condition in UniqueId::uniqueId() - Fix memory leak in error message for msc_rules_merge C APIs - Return false in SharedFiles::open() when an error happens - Use rvalue reference in ModSecurity::serverLog - Build System: Fix when multiple lines for curl version. - Checks if response body inspection is enabled before process it - Code Cleanup. - Fix setvar parsing of quoted data - Fix LDFLAGS for unit tests. - Adds time stamp back to the audit logs - Disables skip counter if debug log is disabled - Cosmetics: Represents amount of skipped rules without decimal - Add missing escapeSeqDecode, urlEncode and trimLeft/Right tfns to parser - Fix STATUS var parsing and accept STATUS_LINE var for v2 backward comp. - Fix memory leak in modsecurity::utils::expandEnv() - Initialize m_dtd member in ValidateDTD class as NULL - Fix broken @detectxss operator regression test case - Fix utils::string::ssplit() to handle delimiter in the end of string - Fix variable FILES_TMPNAMES - Fix memory leak in Collections - Fix lib version information while generating the .so file - Adds support for ctl:ruleRemoveByTag - Fix SecUploadDir configuration merge - Include all prerequisites for "make check" into dist archive - Fix: Reverse logic of checking output in @inspectFile - Adds support to libMaxMind - Adds capture action to detectXSS - Temporarily accept invalid MULTIPART_SEMICOLON_MISSING operator - Adds capture action to detectSQLi - Adds capture action to rbl - Adds capture action to verifyCC - Adds capture action to verifySSN - Adds capture action to verifyCPF - Prettier error messages for unsupported configurations (UX) - Add missing verify*** transformation statements to parser - Fix a set of compilation warnings - Check for disruptive action on SecDefaultAction. - Fix block-block infinite loop. - Correction remove_by_tag and remove_by_msg logic. - Fix LMDB compile error - Fix msc_who_am_i() to return pointer to a valid C string - Added some cosmetics to autoconf related code - Fix "make dist" target to include necessary headers for Lua - Fix "include /foo/*.conf" for single matched object in directory - Add missing Base64 transformation statements to parser - Fixed resource load on ip match from file - Fixed examples compilation while using disable-shared - Fixed compilation issue while xml is disabled - Having LDADD and LDFLAGS organized on Makefile.am - Checking std::deque size before use it - perf improvement: Added the concept of RunTimeString and removed all run time parser. - perf improvement: Checks debuglog level before format debug msg - perf. improvement/rx: Only compute dynamic regex in case of macro - Fix uri on the benchmark utility - disable Lua on systems with liblua5.1- Remove rhetoric part from descriptions.- Remove libltdl7 from build dependencies- Make use of %license macro - Make use of %{version} variable - Sort dependencies alphabetically- Initial releasei03-armsrv1 1694076092 3.0.10-bp154.2.3.13.0.10-bp154.2.3.13.0.10modsecurityactionsaction.hanchored_set_variable.hanchored_set_variable_translation_proxy.hanchored_variable.haudit_log.hcollectioncollection.hcollections.hdebug_log.hintervention.hmodsecurity.hrule.hrule_marker.hrule_message.hrule_unconditional.hrule_with_actions.hrule_with_operator.hrules.hrules_exceptions.hrules_set.hrules_set_phases.hrules_set_properties.htransaction.hvariable_origin.hvariable_value.hlibmodsecurity.somodsecurity.pc/usr/include//usr/include/modsecurity//usr/include/modsecurity/actions//usr/include/modsecurity/collection//usr/lib64//usr/lib64/pkgconfig/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protectionobs://build.opensuse.org/openSUSE:Maintenance:18063/openSUSE_Backports_SLE-15-SP4_Update/e42d5000c111612c7daea99c07461d89-modsecurity.openSUSE_Backports_SLE-15-SP4_Updatecpioxz5aarch64-suse-linuxdirectoryC++ source, ASCII textC++ source, UTF-8 Unicode textpkgconfig filePRAkA>F)utf-869310b152cb116dd6440399be29ee775e01541695a50fd405546ac1c4b989481? 7zXZ !t/H] crt:bLL (fEtᒁ ;~0%W=tKIV99%q,w6Zp;Kz+[$!s|c3~=FCOPc}O\k%$I?d_6N0Hq /o:S5Z"݂¤~xu#@h\((Vq1^5"fsH|`]#~r1'O#O8RyeP4|. ߲ z.3 xžyŘ 1Qs]I13|'_>GRvx!ߏ?-0'ΙZIdܺ|r.=$X`3.ѳK7e.VI3&sWd-뀥K@ DMlvvàgtRBkZ:7zïsf@UAҧ Fɹo : ToA]%~M)HL#Bfcӊ(xAӛg+M4^E}6-LV*2-  M8zv' %ⶠScSH˳_۠d˦ڳpӳ`g:Z9CT_x3\$w7!a]Z&p/i(\dZy NmàĤFBԭT3Wvk6ׇoۗאɘ*2ڨ/ry~jntiVTgeׇPNND5yъmai) hX~ϡf4Gby%SЛX *Υ7]P01H4!W4u8r[2ա.'m3g1X7Hz 6`}*k Sf)gtu1 zs~;"mE뜋\MWR nl&YV=X"]I>1B4YD_F-%2蛋QClHHy 2G󹀑ڛ z脙YD2G$xkiAҐ}Xi5V [\xWpm4s\jMM~RKkBo;PAFqpN*h"Rx'BT0}gPI" żڨϲZaiˤH Q3?y7ڦNC1Mؼo-yIj\&-L8FIr_ 7hjn=YtZl=3 Tg]|`g/!|l3Oe'ˬAit3(4KDD_tvi;.Qm=yS# ԗMx?Te3$L 6k?IZ EK,; r :P?!‘n(%9x='s>=)7ڃ'zФ>mQ'3V*G㐂B3&*x\0ch%Vdd1 T=cloZB&@J[ǴgI=In /yj*&DS iBCԄ0؜[F=,{QJD |ubZ2̥q 8qhlP"XK1{130:.ñ]$٤"wria٫(Yx{sd,2Q߭1nʲ^:9(}XQr܄">SQaeL9TZ\B{';e߾> ǻs' s"wa5Qb+viYe}0{ |ڦ%&f6_B۔[^3o*X]/ n<>7MVwQ!^y,"n^tqΏ+dqaK#@04O2U=e#K9 q( evZ1ОP&IKiXΗ9cݤfma89C1 :z4¤]~)b@'?bWa>Y!d41zڭ0@j%*dBArPY1f]Z&H\P74_=fa="4WQLJ_AJ$G1 vo _~ -J-B2=j$8wܟȌr?AnuB3c*?dX%A>qwXP> @IAil5]s \&RF3˂Gwa"O--M:6;{c1B _S 4`ZU1!ݜ"iPiw(rF jn;¾Gje1; ])p,b̡ "˯fPQZĖw$B.' i?Ӌ,Qt 7mbS;#bSNbqE8|bګ#QF7a•7 KL@Za J|=|K|&uE_q-ߠnT&!qnNd!cz:% oս w3}ڗBfDEq` xB꬟5^о$3E\⣯U)k۰V}ҙGtxSq?7uOK@`qka{:Kf?ػC8U~cVI؝?:OD O\X1[l2^??nՔ?p% ,.! M lp#V*Qъ 3~BήcG^붔mP?$ƒUbbEȬAr[kXw4VnyѮT8p&8a}^KAV4SجX!ŧ =hpS )%>[3kq>/3^T)M%S^:[2PJ!mZjV6΄,Q"-A/̈́đhڋmH<Qֻ1Bn(N5)G*M*˪R`4NMƜ[j;SK%%cCwxؿ+=cW8GXCBZt)haEʐP䋠=QҬ'ثC"8FWC9kY/x3b;9'櫆c^d;5gb$be'ջaFI/MupOؒ ۯxYh>*+GOOt?žʄVf1-gn~r,z3}od:w;P?1(Ek58_1^Z/˞mGd)8a:|͖g,A69l-> ~Mv (Shd5.'l%Z@P/m ֩+{R aVh8xQ$ph+@>֎2׺ u &Q@H3:K~ڄv?,IY~m8UX~*E+:p5'_=qd jOiojGXXOml*N2eV/)Fu:|0J< :Ifh+DmW'ri r=m0㾹: eӟ|%H0voԠ7S3gfF#=hӟ1.ok"+?y9._uO}q5+eQ )9o+_ymhJIuo!AK=\% r2ZZU9l3iQkp\r|T4CwV}S:?щf#iuΌo_e{e &sx[={Z!h[b>`? P>xv <)Fjy-9~+Ymg@%y4 :+F!-7Z;'j^@_V"iW;3ex@b~Iф>nrrs~NȂ境 QꢅMY/{5$5^D,ι rSYZ% aF d s󢄙NF}JB8b(-YBSܔ!5hCCP!eM_Lf#KwAa$ d;\4.3"B8l4&gȜeXmvZZ2cQ_8kx׷~U5eC[S Pe eBsO&; 3Tg ʏ +-Vk>{e *oY/T//Ъ +`Ng'CuE,)]Bb2\IK>H.eSo"t7hղpj:ɶ׹ k^?L;X!\5fɇ#M}G25ц1AILwwߣ{ UrKt'QMsp biLyWnuZNVAxaDсCSY3bBbXTN8#Ir[Nw,g)@ 3^,vgʱe븯R <*rJCI! ˬ1t=vV@OQb(+?Q[jxR&e[C6t7_aJ,tM4Xt=:5b~ 0ISjtI,g١&?J_t>jB40]%YFU9 ѳ10r"BGKxxk(xޥP/5*j'ic~ysR2"~W!9Q OBx֛=xYMߍͿJ{'bX{.7c~漤`/;{)3w;]v-&NY77?jp "&\ta|Θ&BǶeBte^ʦS 2ԭ9o<>d,ҁnnJk[HVZlGg=Eb`Zɒp0P5{cy87U/ˀ!ڟG$RP @Y=^+߼QZ?r˄&POrbOm&["{RtjJ%N$gn#\`IgnקE3b d53yٷo/;nQC+ ji": Q m#E Ȧk0$f{zl~9=lX,gcL˧y.**^k=6$ x.׺Hn#!Z|k1ENٙVf$x?-o5^p*^~{wıX h8W(ǫeЙ#yCϰOQ4X6ފW|.pj@/ƠQۼ6R61f0&B7J%tVh/i5`酹e+Fm Hfټu̹J cc髴G'b3Dq7;fֲ^B|hcxE"h+2?H_-F0{,sx`7LO!m qm_17YIfl*m4?;-B%^ī+`4A>͂U Tl&q`/篬FX>ܕm->=Sv7 t6Q6Ekco}Fj#rp!V%L7~_BKUŘ\mv\2" 帕j ?[&@#_"mMdRnQO&#qT6XF(* Όx ('LFԼ{'yS'kӿ =c%3]\ǎ*(Y h'[>^U6pXaw] Є9a6|}!8,1i2@| G5o" 3|ػ}EVuOauX`C8["5bHyU?;E.$i"ZCi:! hZu|Gi git zH,(sN]d3*gk)5Fe];RoO+UnJ/ݷk 0\#$L=RYB3Dy~ѫZCg /1&3%+D8LBQU賽M_W"3FM||t3h>PC3?x1T:/)vY_[n(OFŎtWrfjԘ\> H"q =U"p^m5PeNnӅ6Ё;$z.lE=24+9i?UuiՂf7ސm15ς*Y3dv\<]3J=f5a; U,QGU%S>l"lNB|׫%`'2IiL6*\@_rhCD;{{l:tw,2&y8J_\[t<@> hMџ IھJsw VE} =KaB4 ^RY$WLYI_Y~~r"];2$ˠE!=FaSrt\TqnԚxRb]%ď9*S-5L|_48ݴ6tǶl| # hȋΒ(32xhT)oG^C6mD|c%C/^ E>H'aigpO 1H`63W Y48mH;IDp] w\`,hṚ#{|St$ڥ$yPSUIn-Q ظv+PezHO.}2GY hږ 2}B-zxÈ.wS.HkrykYMuK%[3a$WNPbW ߿#^.ʲ==Hvv aJĴtk(M. Ƚy,KS+e(D30ܼ ϿK8˹]r(ϡ.!#}>۰ aǮ?-s!`a1kԓ[m#,/PN>j)5Ԗ':ʷGbE h{^tƆOL>%A5uo)S@`Y뇗]Rzlm;=S %:?{Sa5Zq1@rEE ZD,RfjZ/~#u"Exڒtvh XSm sïW; NrL`bJ0l\Jm#N d! OX׀NYt?4!\182X!C Sg %̽$AY$5PInД2f9UtQb,!zذ(vTN""}!e++< Ltdz*x^zxlA:jx|з`Ȱ$~u>b9Cv-W xV {-,FҤj4 i;'A@ZY&c;\ ^$C.lkMV6'q'V%]95m Oj OiZ}Xb /b%߶`fC=ENc*sY vd'i/iˍ_H@ +屮 oȃ,x} RSX&*}U23sk} Q vctH'!eoeTWPiλ>T!DU)Hb=9'7XM\VD M 1ubBA;{J1MD𜳸rb/9 bU|׈5;Ȅ4eԑ,:QC{IzԌXS#mgaC" rb LOFGkƐV8SDUf .G;BL.G~lq7ZRVȸ ߭Ŗ+5|7Z;"a]#nړV 掃fwktnS}e#cX6j(fA<vQC._G{Yojmȓa [8${?y\ӥsdV{nLR|l V9M>lЎG#2ʩj*2FđP)~,o3+PW5 v3% 4&PzcPtvMBGr1=(Pԏ$;N|g)+,+`w&ʅ^ ek>*@Y;xA7%ږ@%ýBYҧrSL )X*;Wu56_>ZrAn>L30a[u%|LK 2z.MvE! .nF/zY[}t' D,\& #;j6&"KpiBz- T-wAr) )8~( SX13bQkp0'})ލ=~i&e'f.4b 4a0 r E1ҍ „hđv:ʊ 0}߂J3 FZi(;#!Bu^,Ge ʢFrh>wDoѿUY7g4lc 9PCquBWm };k|jY  B HTޯբp/j{xۂ1W`t5Z?3N:<؆)ov솾XF3Mݯ_Cz% |WGD=e/܊tQBoQt,V i ^5q7޽|) xsTO 1e%rr k8scXT ӿKHm{|yQPbFӗ;]$#T~DE]`9*F^C|xY _|>|ދN:8UNKD& _,]˼+Cu*-9 JIbsv'q,cLpFm͒{d][PmN灘a$aN3ZwE7Iֈp:Pzc{(HewO.(h!,6GnhUXp~by tS׶OFQ1hDEUpzMFO IaoTZ@b)ZAdgMfύv{?gˏ-ƌ@#.g!W}yhөgIX)[!6휠뻒*hzШS ";p=b`F_dY2!zt9bd\0n\wsV8LIxI7c ˏIR9*QY'9{l򑢬 }qz4 bXӠ,+Q p[" c 7$qb (yTKZ(+ SͰ[ܱ ;sżP ;<s?3tCu8,BWrvm7CuNAc#j1Q.\hJ7($?0UJy&˿WxiIJT7y+ժ/%xUw(Qj,dN$}Vd fT2Hx0^^ R L0K*s;7]rJ;3r{s$TrE} Q5$R)g'l l>UREc5UX 3֦:JPLx:ak_P-1p usgYFگp=BofM'4A@}ijKYl26*9Q?w.o0!n n"D xym2t8KjƧh9 w*/@!܊CsY:R3Cw=&{NEws,Lmn\w0x8i}7H"o=SRNb0> eWɳUSgjg9W=Y;P>ʠ> +=`i (U "o;#V s$3,=J[S]ovc8#_au_Lc1B 5#&a1DA**&Ŧ dO8:|hҷ.pr6]+:,%xT `g{Xꕳ'DZ6_?_O/YΠ@nɒ" F7 >}+u<RATm|HA%lIsHq|wzށa^UM@zUvRIlR4ol*e=%Mdqvsd2@#e/Bc@ňo'?Nd~V/ӂh\ $(ae tn{=6+1͆E7Qٕ\lǢ:9-%X}^/-6gLџ ,YbM4﯏%!# F=,^%v!//!F 5lVVe,C i-l~s%vTx;34Г,vc v-@O5$zX^qػ,5Bj9" =|57|Nquf`bLxna,?~Y0_2Ďf$a Ս[]9p5FҵZ] %&2҆6euj$DaNB&c bGa3`=YE\hdWqC@c5{cRһyxXKf:#jсS0O+ 9H3^o*`Qfx]C{IoJ ~LJm\m(VZIZzG`S)-cŗ,#fdd{]]{Gr;Y8ʴ9]I$]gkY˷i;`mMb[:J(r]d>KE|15(uyn.nwXQ1k_8LBhS^NT q‡>3t};#pM΄>o&_V q]O8J!؃[(Bj4H"tm3Y&ɑ4+Ю"]NO( Lt5/ĐNOWXF˚u:5eNBr(A6_y,Hɗy^s`m;6C3؄p8]Q/oU #ER䢿ĂKȀbɤ> 8boRD/bӈm',\7 ­z? x[cZï>hjC_mc(cBX뛃e'Ñsoxm2էJ9^ji]6,@ !:|hF@0gd;xFzdOztjL51T"CGxljFd~>3`1\$π`TD7t!:Yݨ7>sbbP \^c9(%< BS#-~ JJtPoԶ`65 ]5˄qaml"8#IWQf=v<-9(R1NLAQt;Puړ&1TU1'=Wi39}YRqnގ]uTbHn""J|}ʐҖv >6&̲XşTBH9v Vsq8b{B 0WŪZ AHLsxGovK$wbYX!#B\;()욄,G5*ԋpe{ -E]|i jm9KF^ITE~HU3$z"d>WW2=:߻֭ZF}Jݖ\jWufStQJEFze~uCuV'mP+ilXY~;8A%hfQx:*w80}j笺ᐥH~RbxDty-Ǻb,/[djgV)Nz6ْE08yV"R`C>?Y7 YOTP#T@^< jGxjvFQ(>وy!պeh.+mnm2G1$ ۚ-PFJP-b?sS <g5{a3YXh ~:s+$$C?Q8f>z?tCH^uUc*zu9 #20cܧ3m-Sg+eMj75ܻh=C# pG>'OBg4@20'kt=T%BqBlC+T!)(V b,k>W-䥂s A}-}FY{04 g&(bIu W%6?f/ ޹1*:J-\ pG`hӓtH )ULBz ߬1ѝy)Mj &/p}^bH|oU텗0`B>$ֹ ~owy'FslxBnyG9=Vnǒd! ;TV,eA>S|c\p+}O6d}#iƉ:E[Mk]fǶBkWX S\"5;FtL@ŮXmj m7e`Km5aP`{:NW ڹ#ho*#%HVvcX1L Mw%L`oN_^ؼ{kH`KpSy7IHH7y3)|66¯mtJv鲫_ 0ܷ/KxQ])!H‚AL_zŒ"dx"98+S `0U3t[?3묍5N܈ӌc"Y&W@h-Se+R]Ho1P֌rN}UIԨpBo90E#6}4GSx'#uIrqU귀.zIM=Ǹb ׽C࣪`誁d~ ZԮ#24~9n y hŀKa6->;u0M'Qkr6)VnkITw@G`pÑL䦻PΩlኅ?DNz.=$RJHwVCMX7PM4?5:R* W˗uJwcҮ'yu_*V=Aoc16D;[uVVt8Vʯ~ JVd}h 䜮eM!2/i^ua>iP2(FvPW+?(\Ɇ MҤ2WX=xDKx^e_e^sM~!DXGW9f&iYtd2쌏2e0H t &C{u*I80q] R .|Im)rnLgW_3h?'W){9A]="8ʁGRN p3-ѝ_l̍0yL`n6_t5&&@s5m݉+33 wwiC(2{R|X#wyZ>svnW$Sx!,e [2 xdK"OnO`X1/Dk=T *Ҟ#o+;ߙ4F7!(B!ys|ŀP1ª&K,ѭ(k JrRpmaCv)1)