modsecurity-devel-3.0.10-bp154.2.3.1 4>$  Apd!M@eee3%_,X 6.'^:Π6Ixz֡[OdrIj&%`M[C-$rGUC ܚOX60GL{瞴z+晍Zs! Wȅ>3J{uyȡutˀ!&3牠m"U I"{O>yeg81ӕjayߞ 0`t?ӤF*OBr6d47f23f4ae20b788c3f456be6e4c8b148ab29a739b5174ba344bc97a3b718da3cfed3b11f44747cbea4bff9b94df6732131d3bfe@d!M@eeeYe/xGhU}%2JPH"W/i<[BpR d῔$Xiz1Y;3A*Xi=NX./Vۋ8!Ѕl;%R{8PѺP|Ow 6*9TgC{Z|.tJu8nXhlÛL G rRd <C #;ĵ.>p>F@?F0d ' l  9BO h$ ^     i     6 `   0 ( 8 9 :E F>pG>H>I?lX?Y?\?]@<^BbBcCWdDeDfD lD uDvDwDxETyEzEEEEF,Cmodsecurity-devel3.0.10bp154.2.3.1Development files for modsecurity, a web application firewall engineModSecurity is a toolkit for real-time web application monitoring, logging, and access control. This subpackage holds the development headers for the library.di04-ch2bSUSE Linux Enterprise 15openSUSEBSD-2-Clausehttp://bugs.opensuse.orgDevelopment/Languages/C and C++https://www.modsecurity.org/linuxi586 Af/F}$x!u M. - v Xb8]2 AA큤A큤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.so.3.0.10rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootmodsecurity-3.0.10-bp154.2.3.1.src.rpmmodsecurity-develmodsecurity-devel(x86-32)pkgconfig(modsecurity)@    /usr/bin/pkg-configlibmodsecurity3rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.103.0.4-14.6.0-14.0-15.2-14.14.3ddZ5c]bb_*@[I[CN@[:Z@David Anes Danilo Spinella Michael Ströder Georg Pfuetzenreuter Ferdinand Thiessen Dirk Mueller jengelh@inai.demrostecki@suse.commrostecki@suse.commrostecki@suse.com- Update to version 3.0.10: * Security impacting issue (fix bsc#1213702, CVE-2023-38285) - Fix: worst-case time in implementation of four transformations - Additional information on this issue is available at https://www.trustwave.com/resources/blogs/spiderlabs-blog/modsecurity-v3-dos-vulnerability-in-four-transformations-cve-2023-38285/ * Enhancements and bug fixes - Add TX synonym for MSC_PCRE_LIMITS_EXCEEDED - Make MULTIPART_PART_HEADERS accessible to lua - Fix: Lua scripts cannot read whole collection at once - Fix: quoted Include config with wildcard - Support isolated PCRE match limits - Fix: meta actions not applied if multiMatch in first rule of chain - Fix: audit log may omit tags when multiMatch - Exclude CRLF from MULTIPART_PART_HEADER value - Configure: use AS_ECHO_N instead echo -n - Adjust position of memset from 2890- Update to version 3.0.9: * Add some member variable inits in Transaction class (possible segfault) * Fix: possible segfault on reload if duplicate ip+CIDR in ip match list * Resolve memory leak on reload (bison-generated variable) * Support equals sign in XPath expressions * Encode two special chars in error.log output * Add JIT support for PCRE2 * Support comments in ipMatchFromFile file via '#' token * Use name package name libmaxminddb with pkg-config * Fix: FILES_TMP_CONTENT collection key should use part name * Use AS_HELP_STRING instead of obsolete AC_HELP_STRING macro * During configure, do not check for pcre if pcre2 specified * Use pkg-config to find libxml2 first * Fix two rule-reload memory leak issues * Correct whitespace handling for Include directive - Fix CVE-2023-28882, a segfault and a resultant crash of a worker process in some configurations with certain inputs, bsc#1210993- Update to version 3.0.8 * Adjust parser activation rules in modsecurity.conf-recommended [#2796] * Multipart parsing fixes and new MULTIPART_PART_HEADERS collection [#2795] * Prevent LMDB related segfault [#2755, #2761] * Fix msc_transaction_cleanup function comment typo [#2788] * Fix: MULTIPART_INVALID_PART connected to wrong internal variable [#2785] * Restore Unique_id to include random portion after timestamp [#2752, #2758]- Update to version 3.0.7 * Support PCRE2 * Support SecRequestBodyNoFilesLimit * Add ctl:auditEngine action support * Move PCRE2 match block from member variable * Add SecArgumentsLimit, 200007 to modsecurity.conf-recommended * Fix memory leak when concurrent log includes REMOTE_USER * Fix LMDB initialization issues * Fix initcol error message wording * Tolerate other parameters after boundary in multipart C-T * Add DebugLog message for bad pattern in rx operator * Fix misuses of LMDB API * Fix duplication typo in code comment * Fix multiMatch msg, etc, population in audit log * Fix some name handling for ARGS_*NAMES: regex SecRuleUpdateTargetById, etc. * Adjust confusing variable name in setRequestBody method * Multipart names/filenames may include single quote if double-quote enclosed * Add SecRequestBodyJsonDepthLimit to modsecurity.conf-recommended- Update to version 3.0.6 * Security issue: Support configurable limit on depth of JSON parsing, possible DoS issue. CVE-2021-42717 - Update to version 3.0.5 * New: Having ARGS_NAMES, variables proxied * Fix: FILES variable does not use multipart part name for key * GeoIP: switch to GEOIP_MEMORY_CACHE from GEOIP_INDEX_CACHE * Support configurable limit on number of arguments processed * Adds support to lua 5.4 * Add support for new operator rxGlobal * Fix: Replaces put with setenv in SetEnv action * Fix: Regex key selection should not be case-sensitive * Fix: Only delete Multipart tmp files after rules have run * Fixed MatchedVar on chained rules * Fix IP address logging in Section A * Fix: rx: exit after full match (remove /g emulation); ensure capture groups occuring after unused groups still populate TX vars * Fix rule-update-target for non-regex * Fix Security Impacting Issues: * Handle URI received with uri-fragment, CVE-2020-15598- add baselibs, fix packaging (install into %_libdir) - update to 3.0.4: - Fix: audit log data omitted when nolog,auditlog - Fix: ModSecurity 3.x inspectFile operator does not pass - XML: Remove error messages from stderr - Filter comment or blank line for pmFromFile operator - Additional adjustment to Cookie header parsing - Restore chained rule part H logging to be more like 2.9 behaviour - Small fixes in log messages to help debugging the file upload - Fix Cookie header parsing issues - Fix rules with nolog are logging to part H - Fix argument key-value pair parsing cases - Fix: audit log part for response body for JSON format to be E - Make sure m_rulesMessages is filled after successfull match - Fix @pm lookup for possible matches on offset zero. - Regex lookup on the key name instead of COLLECTION:key - Missing throw in Operator::instantiate - Making block action execution dependent of the SecEngine status - Making block action execution dependent of the SecEngine status - Having body limits to respect the rule engine state - Fix SecRuleUpdateTargetById does not match regular expressions - Adds missing check for runtime ctl:ruleRemoveByTag - Adds a new operator verifySVNR that checks for Austrian social security numbers. - Fix variables output in debug logs - Correct typo validade in log output - fix/minor: Error encoding hexa decimal. - Limit more log variables to 200 characters. - parser: fix parsed file names - Allow empty anchored variable - Fixed FILES_NAMES collection after the end of multipart parsing - Fixed validateByteRange parsing method - Removes a memory leak on the JSON parser - Enables LMDB on the regression tests. - Fix: Extra whitespace in some configuration directives causing error - Refactoring on Regex and SMatch classes. - Fixed buffer overflow in Utils::Md5::hexdigest() - Implemented merge() method for ConfigInt, ConfigDouble, ConfigString - Adds initially support to the drop action. - Complete merging of particular rule properties - Replaces AC_CHECK_FILE with 'test -f' - Fix inet addr handling on 64 bit big endian systems - Fix tests on FreeBSD - Changes ENV test case to read the default MODSECURTIY env var - Regression: Sets MODSECURITY env var during the tests execution - Fix setenv action to strdup key=variable - Allow 0 length JSON requests. - Fix "make dist" target to include default configuration - Replaced log locking using mutex with fcntl lock - Correct the usage of modsecurity::Phases::NUMBER_OF_PHASES - Adds support to multiple ranges in ctl:ruleRemoveById - Rule variable interpolation broken - Make the boundary check less strict as per RFC2046 - Fix buffer size for utf8toUnicode transformation - Fix double macros bug - Override the default status code if not suitable to redirect action - parser: Fix the support for CRLF configuration files - Organizes the server logs - m_lineNumber in Rule not mapping with the correct line number in file - Using shared_ptr instead of unique_ptr on rules exceptions - Changes debuglogs schema to avoid unecessary str allocation - Fix the SecUnicodeMapFile and SecUnicodeCodePage - Changes the timing to save the rule message - Fix crash in msc_rules_add_file() when using disruptive action in chain - Fix memory leak in AuditLog::init() - Fix RulesProperties::appendRules() - Fix RULE lookup in chained rules - @ipMatch "Could not add entry" on slash/32 notation in 2.9.0 - Using values after transformation at MATCHED_VARS - Adds support to UpdateActionById. - Add correct C function prototypes for msc_init and msc_create_rule_set - Allow LuaJIT 2.1 to be used - Match m_id JSON log with RuleMessage and v2 format - Adds support to setenv action. - Adds new transaction constructor that accepts the transaction id as parameter. - Adds request IDs and URIs to the debug log - Treating variables exception on load-time instead of run time. - Fix: function m.setvar in Lua scripts and add testcases - Fix SecResponseBodyAccess and ctl:requestBodyAccess directives - Fix OpenBSD build - Fix parser to support GeoLookup with MaxMind - parser: Fix simple quote setvar in the end of the line - Fix pc file - modsec_rules_check: uses the gnu `.la' instead of `.a' file - good practices: Initialize variables before use it - Fix utf-8 character encoding conversion - Adds support for ctl:requestBodyProcessor=URLENCODED - Add LUA compatibility for CentOS and try to use LuaJIT first if available - Allow LuaJIT to be used - Implement support for Lua 5.1 - Variable names must match fully, not partially. Match should be case insensitive. - Improves the performance while loading the rules - Allow empty strings to be evaluated by regex::searchAll - Adds basic pkg-config info - Fixed LMDB collection errors - Fixed false positive MULTIPART_UNMATCHED_BOUNDARY errors - Fix ip tree lookup on netmask content - Changes the behavior of the default sec actions - Refactoring on {global,ip,resources,session,tx,user} collections - Fix race condition in UniqueId::uniqueId() - Fix memory leak in error message for msc_rules_merge C APIs - Return false in SharedFiles::open() when an error happens - Use rvalue reference in ModSecurity::serverLog - Build System: Fix when multiple lines for curl version. - Checks if response body inspection is enabled before process it - Code Cleanup. - Fix setvar parsing of quoted data - Fix LDFLAGS for unit tests. - Adds time stamp back to the audit logs - Disables skip counter if debug log is disabled - Cosmetics: Represents amount of skipped rules without decimal - Add missing escapeSeqDecode, urlEncode and trimLeft/Right tfns to parser - Fix STATUS var parsing and accept STATUS_LINE var for v2 backward comp. - Fix memory leak in modsecurity::utils::expandEnv() - Initialize m_dtd member in ValidateDTD class as NULL - Fix broken @detectxss operator regression test case - Fix utils::string::ssplit() to handle delimiter in the end of string - Fix variable FILES_TMPNAMES - Fix memory leak in Collections - Fix lib version information while generating the .so file - Adds support for ctl:ruleRemoveByTag - Fix SecUploadDir configuration merge - Include all prerequisites for "make check" into dist archive - Fix: Reverse logic of checking output in @inspectFile - Adds support to libMaxMind - Adds capture action to detectXSS - Temporarily accept invalid MULTIPART_SEMICOLON_MISSING operator - Adds capture action to detectSQLi - Adds capture action to rbl - Adds capture action to verifyCC - Adds capture action to verifySSN - Adds capture action to verifyCPF - Prettier error messages for unsupported configurations (UX) - Add missing verify*** transformation statements to parser - Fix a set of compilation warnings - Check for disruptive action on SecDefaultAction. - Fix block-block infinite loop. - Correction remove_by_tag and remove_by_msg logic. - Fix LMDB compile error - Fix msc_who_am_i() to return pointer to a valid C string - Added some cosmetics to autoconf related code - Fix "make dist" target to include necessary headers for Lua - Fix "include /foo/*.conf" for single matched object in directory - Add missing Base64 transformation statements to parser - Fixed resource load on ip match from file - Fixed examples compilation while using disable-shared - Fixed compilation issue while xml is disabled - Having LDADD and LDFLAGS organized on Makefile.am - Checking std::deque size before use it - perf improvement: Added the concept of RunTimeString and removed all run time parser. - perf improvement: Checks debuglog level before format debug msg - perf. improvement/rx: Only compute dynamic regex in case of macro - Fix uri on the benchmark utility - disable Lua on systems with liblua5.1- Remove rhetoric part from descriptions.- Remove libltdl7 from build dependencies- Make use of %license macro - Make use of %{version} variable - Sort dependencies alphabetically- Initial releasei04-ch2b 1694076089 3.0.10-bp154.2.3.13.0.10-bp154.2.3.13.0.10modsecurityactionsaction.hanchored_set_variable.hanchored_set_variable_translation_proxy.hanchored_variable.haudit_log.hcollectioncollection.hcollections.hdebug_log.hintervention.hmodsecurity.hrule.hrule_marker.hrule_message.hrule_unconditional.hrule_with_actions.hrule_with_operator.hrules.hrules_exceptions.hrules_set.hrules_set_phases.hrules_set_properties.htransaction.hvariable_origin.hvariable_value.hlibmodsecurity.somodsecurity.pc/usr/include//usr/include/modsecurity//usr/include/modsecurity/actions//usr/include/modsecurity/collection//usr/lib//usr/lib/pkgconfig/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protectionobs://build.opensuse.org/openSUSE:Maintenance:18063/openSUSE_Backports_SLE-15-SP4_Update/e42d5000c111612c7daea99c07461d89-modsecurity.openSUSE_Backports_SLE-15-SP4_Updatecpioxz5i586-suse-linuxdirectoryC++ source, ASCII textC++ source, UTF-8 Unicode textpkgconfig filePR@I%;wMutf-8e8bfc9d5b7afcfec333d513ed121132758c38a9806a7e2d2001966eff1358348? 7zXZ !t/H] crt:bLL (fE{Kʣ3n6-Fء,UoY& }9zHQj煉+ ӣs/O{OB JT@mv4*\dku %0%Рn3Yk eu9!u~\ۡ(NiX \ ַv Yk=)V*EN_'oT9ڗO>+ Nn2 ƥ 1"u$r*TBf}:GJ$L¢\t;CrIT契t_le ؅/}}UjGEsT8μԝ֝~3B@\CyrTp'|X3@o/Ka(J$9sbKXWLPZW4n|Q3?Lmֆ)86DOo&@?'8KGket#`朘qdI3[⛱q3dM>⅊xW?LnpjT5%$4t]y3w> WӞ;Xrrq3 ?Y2-UU҇G;u$aFg)qnn.L@y@_5wUm "Pm3lޓ셹bG3{к"+3 7Qt!Myx|1NjyiJ^PVM UJQ3;=G($A^16;2jq*z[p9>s#NQ bdQP/,rfjhCR9Ez.f-Vt?HG٘Gn$Ɩ7 3%h& - yp?o5vvrO‚N~U|fRA!O_uf$YFҋBaYOp]c(^m m4ns΁"~T-7p/@o_~?C0w\IEb5Y-@oCPtwbJ4rU_kߺ]K \DX*fRڮ6dsXvoRiWէO~uGLi־IޱdQinVP0%p1K~GHyk!z@6 RYmX*DyD9܀kJٺf_\Zh. r@cRfzt󟿳Z-# Ix l ')|!-&gMTqN]l_KI 2k5詗ĝ)(\[1jLP),&WX _Uk(P*6M~)Nån'vf4<0_PDEQ׳ $/!1Rg>s &/K#oP\2΅ 3MzP:noZgy͏(~ % 4΄:qGԍ0#Ҙ*軀sv^K.Uwtjל0N ڼ _hd.&Ro1G,eÌJ=E"O4njz3r`熜덇zmܴ02W2:/[);FU}G 6)źmfy٬뮖-h'T=W{qqAXD[zKXVG--6o'`"yKs%y^Q_N (h?tEPnHo_5"I >7ƙu`@Ut K5w6kw dاw0ݹ(0˵ e_ CKٽ\oBQBP|CVP#`r>N=r%~ Z24`e,yݍBYx 8X/Fh9|J兞%"qwvx]# -գ!Hh@Q&$bሖ8ࡶl:Yy&j,2xқ˗]=/_^k=A&wi²%D|.oHtC&{h=BzVxQDG-x>"S©נR{HݶDnDZl^* Zg1a֭@K/7N5Tř^ToaFyn\ &ʴ$b"pγ$ sMCߌIhPc>>!* u{O&7c "OvDODT$>c>1N\⁒lUk9kwO([(,|/ռ񝍬d!t(/^F]@ܗ&P.;zafp Q% ,,R>jbnjQ5xT9ݧ,> YQ%W-?GSIkcbUiǷ& rn&Mi[ZbYg0c((GduOnu!2WM_/sR+x|'?&$'JW"(Â:߿&?h.J"Ǫ6Gzcz5 C H|q/{æ-c(5n zPpr\tU(Ha 9;3eGb g箄ꊾ،M6:HUgtL4Ugsm0B8J{;x.'F,@M̌lQKëarJIb߽_D.V$@'xWJNh?sX;ݦwA_%} ?Z:\nV'y\܂*[uR{QΌR&_ my_? i5%2*ݩAҙhF)Tk͏אB!QA:VוG\# gm (HBj# ,[H'b4u9b枛ŋMLS G%5+,CCY X!6ʠli0J]n.{b9h*~?[BUD#?` WWغ1q*Υ1xv'>va#탄J;Xoo Mwg9Ĥ#`Q|ֿ%0;#KСY6[UGgNJ?*CzbKb@<Jv$ɸn ,nܴZHy .7|nz@$:>e5P [Jl>#|}¨Viw?$=\-rd8y^ˢR 9$qSOZ  ,%P75e<\%)QGn926Š4RtƺPy:(b)> o"Td&bJ!"a)%$6 N:LU#2F0DN;*ΤIyNfZ svyq1ѾXq2ISZJ2 2 哞cWߥfpۿ Ԟ2=ͬ y2|Ȍ!pwNtGF]'j]<+y/lwd4l_V&[G^ tT9~@fAIwѕy+S偿`vĨ%sfD,̚';r}l'{ڢj^(6yEgy=Yf!it0Ν9HZ _c湧mf¢NcRv[\{̛Ja.'1FLt4*m[ff胣t >py*=4SP&J, @К7Ɏ c\ơkè ^cFYc_BX$;qWՀ]m/ x%ө<;&()EsC1F=xzm3|jt? ^r/TzaWދlR6ފc"(M6; Uwn Ä fr,QZm ω&g@ǩk>o9S &gx%Pb+ z/uFSՔ9A/ !מy聭XBb AeBF~(`{w[v&]$ rmhHrL/{ n4+Z!$i^192KE]fq7ZПÏ@UPVx̦"s qDx}tX4R7?DحwBRG輢K64q!2kp\]qţ֫D7/A4)uAq>8ZFAüg:TAܼ vIC88)snTsj -k1|Mxe|=dC[]5Р~H-k-ë)BryLj|1N@nBLp>& {s۽]<1cնeNҼiO`lF Hzle"F1bSR'6,&,[iMPpyn\MH^7 })](Hu Jt ]ʺ0Gu#M57HjY9ZƊ=-qy( _*]:\  LQD!>c@Y%rckCܦ6 "U0URq2̸z7|Yp0jQ,l.Fq괺Vv5 -|ʾqɖ';qyYN})W.2$|eSv׎#G-)(}̞%TUq?%}ӄAyJSN@n-UT؋5jpyKʎW)rZ5g1jomf:؈StQ@jijY*j,GjzrfgX_7%$*vRR):5Qlwd| w c=BXt>(sH#DjXߺ^C0Z*UUJ'T5b{H;UM&joO AaAN.Ď&;v#N9q:5Һg \۴a2k ۘ{Ș7}3! ]"W\_oḾË 6@[.{]fb,bbNٽG}Ǣ9yV< Wm(~)jCu\^fjG"|`~L4 j׏>x7.}o/L]PɃȞ pV ?#]K@ iCnRTbzxg۰bYx4J/nO?I H@ddka=^̠IJKoSFGgQl ;Gz0RL%$xIVi3_Na&} b7KE X1f3oA." z,_1qNNo$"vR|AE$6~5ļ۲8?R ϻEkIK⯶m|'Op !m"#X ~Յr Jۦ Knp߬sbKW 6, > ߜTve#b㍟HV>PԘv0~FMGh@ .7!Wcm QgI$IE7FWt|aqh܄wsY;$r VA^L60cjS~D6sT<)ŷja:&Kͩ c|O5"pGEy +a,ˇ2يQ딄ՎU}u%ʜjgN[e -| FF'ӱ.\E'!u@\?v7O"*"A:V%evTNJ"lr~^2+Yx<&ZuJ(X\{;> 3Ḫu=A086qbc*)opRi>6Ս?X:\$ 6 :3LCh-K\>t6J.y^$z> Q|C [d\ b-Zg: \{)3BtosOo;!QDbDZ{ spჽcB;U8+zCk|ni۠ɻ4z;>_+Lc):U7HA7v4a2QY-7K3jLt8)kek1ӯ _L}y" Ue鴴Pުp. Ϭֹs_rl *lA/EL;܍/g;A:?L!2ȕ0&1=; {lA$Jǽ@!K m!@3LOa?ns՜Gs%I0( ? ^t,1'S2,95Xig~@WPَZQg(oWq_ίC8bUpStEsSy}:NG "'v`}ąsZ%NN.-[XB,kf3ٵ[װC:d`_|m6 :A|ކSA3Ʈ4hp=?Q?Xk1*4Xn 5;]hۆlɠ~$"Gh b?`ԣUU n8XX5HCغ%ovuxz/w'R7Hti-aʀ5CˍEZKai_c^z)Ю"Gد+쿒AgxFrLG9" l x?vQcz9ӺӒ|k@J|_nT~VtB$3:-kҜ9 ؐ`Djf6BxIzs\)|38j1f$Bl)U8:bybʖ5o4*[>,z#]j󨭒ZUK"G6t |<#NLkRj)rC|B61?2c W%HOse٩Jȕ2b~Og=P-UhYlp~t-ƪw(댼⪖/t1*pO1QTkܓ]\'%yAQ6]L:淤riHB+t(t; P1!/.55E?bQp8272:o^蹝븻'o+E 'O=Q;s> =dڰ}X:w L$Aw?WMWM8w;Js⚜|ZE/h>FɦpgF%^rZg= ^ԃ=}Tb]D 7+w:\ \3uk v$/q2dG|Q~z 8Uؐ[G2$E?J7P2[Me4Kb~;YOm U&\qbJa|y4 ŗ-#!5sr=2 SJ?3Ώz Z)тSCjql ǟH>uǺ$t|FPuC6zc4E;X~cEj@Kn7 b,~Ī@+cKdx28 d\8xSfp6'U"d]{r-XࠈX ɵ EJ(:]i cl×̿G X-AD'bhMO ^0;[Av_b.|m[YD Z YV߱,Z @AYKD(PIDQT^HVp.~4Lhe BFĬbYI\}-6afyJ;kھ WLYqO4 nGU7Q\33SxB@q U&>P;M|,l+ ! U;ElsVȤEvڮl2M3W6%Z"A/Q5,c_#MݐwώC,M?,ټKR:-h*?, e.0{Ak!tw 3Q@VH4!ېs]w ՊkBPi<3KU^lhs@ I^>x` U(smG#e Qe!zтx6BH[ZϵK@u2 uI _^j 'Nj"&gmU< 4%7 =0i4\1 ,5%UZ%"=B6S$s. Emת>KEtSeĠM50iyB&9jciG TIGԧSu3.(S|I7sGVb>43Cډ5n6G4 J9ڎ2G:„z\ojoH`Y GU;g5-"Fq>}7{SgXMQdOXU7mr)^&W^n$b]ol0)3At)%͢ 9IP6^#JeVD1™桏%!OTWlXzpu\d@սabŒMe^ z*NdGNoecހ +P>t TU JӻgcMLq/Q^X'9yf#^+cћd\U/} &<%e8^ J&1kQ?ՉK2Df^ں L 팭   ܎n4j n…Nb݋32@?2miR%Z$Dlm''P";@b|t{ˇ.d@XuNt;w`g/:2A }5†*MYj=FAau {!M q~%!ʻ}#F]Xûpd5wX7A oĵ>5ȄJ:^1kJ'ʻS>1 sIhBl}1 P'AttYIm.)t+i䥔bY1q* Mڥe6ov3o8_0vTs@eL:kt?yk^<4f/V)+I lRV^B JQ! {vNjƸU:Eߐ7TՋ$\I۫10øknTNXss\}.F*[+U_.Bu\Wsvgb l\:4J)X&Ɗl.x \11ZtP\oň`Ӯ?wUEgF 0}r[\iJ$ԚԜlϟ~2(y;*^RtP1HL>Fadwfp]Qb41q~ṻ 8JMH 'Z[Ԟ+}k? wAQe%ZmEJQ"׋:kr9. rxTum8}>,K}ջo} .%ؾs"Ŭ$^q]#i]E!>iDY̶'@5{t(#w]HxQ*P1h;I_8W qnX)&\^U D/7:|MF @!`>@U4eo1Br~S1[LyEkHY1hñx)/%Z( T0)cu 2HŚ ƾRi.(c}$}~7z:d 3qmcP^w An*8[;s+sV@0X#MmV+j] uBي$(BE a se-p wvZa8PRW[ȡH a2_)[7uIqb ^=ѣzUN#i0Go`Pfe;]G?XlA\L!uV?odox5 /bPRsc($=bvKCSbm]͓{|ghޣE8KmM0 s`@ҭ] phVyKTX V?m ui1?}/ 7%>)Zu*-=_$S!.daz[XJjwfH8 rBB 4g7U7Ϛ2fbdaHHTPm39ѥ!iKMCƳז3cU$omqkkjO|%KJEGlEa_ܐcEe30mƻ`IyejL*,j}lWW=fmW^>R9֖;gWPD~]#HsfJ:"}=S.-ɚCWQf)mk,[Ėh0[upYa5|* qqo_KZAա˛p_$yj;X*gR.ܡ20,З9  YZ