modsecurity-3.0.10-bp154.2.3.1 4>$  Apd!M@eeervk6),bqԼiI葺={Fn}TcSk#__܍FI!΃:47&x Vp!Oxڰ ݥ7xxM-@X,7v'YN2Hq{_jQ9VmlZɱ6H:lnbNB*裺K5 3=@ji(¢ R+G.&o_SW18Od0f4095a43516072ea400f3c7710609236d86b9dee225c3bacdff124aa73aee1dd4c3aa01828dfcd95a8fcd693fb6a9fb2368f3dmxd!M@eee+ɪ!e+Ah%Ys?S#]v'|ͨOf@]q 9vN*Aǟqi c`'t\`p>:$?:d ! A %BHP\ b h t  &P\|k(8 9 : F6(G6DH6PI6\X6`Y6h\6]6^6b7c7d8Te8Yf8\l8^u8tv8w9px9|y9 z9999:Cmodsecurity3.0.10bp154.2.3.1Web application firewall engineModSecurity is a toolkit for real-time web application monitoring, logging, and access control.duobs-power9-12\=SUSE Linux Enterprise 15openSUSEBSD-2-Clausehttp://bugs.opensuse.orgProductivity/Networking/Securityhttps://www.modsecurity.org/linuxppc64le/,]A큤dududN5d82855b311f93f6ffaf279e17551f085b083197f7a0117a3a5654b1ab35d2e9c71d239df91726fc519c6eb72d318ec65820627232b2f796219e87dcf35d0ab4rootrootrootrootrootrootmodsecurity-3.0.10-bp154.2.3.1.src.rpmmodsecuritymodsecurity(ppc-64)@@@@@@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libgcc_s.so.1()(64bit)libgcc_s.so.1(GCC_3.0)(64bit)libmodsecurity.so.3()(64bit)libstdc++.so.6()(64bit)libstdc++.so.6(CXXABI_1.3)(64bit)libstdc++.so.6(GLIBCXX_3.4)(64bit)libstdc++.so.6(GLIBCXX_3.4.11)(64bit)libstdc++.so.6(GLIBCXX_3.4.21)(64bit)libstdc++.so.6(GLIBCXX_3.4.9)(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3ddZ5c]bb_*@[I[CN@[:Z@David Anes Danilo Spinella Michael Ströder Georg Pfuetzenreuter Ferdinand Thiessen Dirk Mueller jengelh@inai.demrostecki@suse.commrostecki@suse.commrostecki@suse.com- Update to version 3.0.10: * Security impacting issue (fix bsc#1213702, CVE-2023-38285) - Fix: worst-case time in implementation of four transformations - Additional information on this issue is available at https://www.trustwave.com/resources/blogs/spiderlabs-blog/modsecurity-v3-dos-vulnerability-in-four-transformations-cve-2023-38285/ * Enhancements and bug fixes - Add TX synonym for MSC_PCRE_LIMITS_EXCEEDED - Make MULTIPART_PART_HEADERS accessible to lua - Fix: Lua scripts cannot read whole collection at once - Fix: quoted Include config with wildcard - Support isolated PCRE match limits - Fix: meta actions not applied if multiMatch in first rule of chain - Fix: audit log may omit tags when multiMatch - Exclude CRLF from MULTIPART_PART_HEADER value - Configure: use AS_ECHO_N instead echo -n - Adjust position of memset from 2890- Update to version 3.0.9: * Add some member variable inits in Transaction class (possible segfault) * Fix: possible segfault on reload if duplicate ip+CIDR in ip match list * Resolve memory leak on reload (bison-generated variable) * Support equals sign in XPath expressions * Encode two special chars in error.log output * Add JIT support for PCRE2 * Support comments in ipMatchFromFile file via '#' token * Use name package name libmaxminddb with pkg-config * Fix: FILES_TMP_CONTENT collection key should use part name * Use AS_HELP_STRING instead of obsolete AC_HELP_STRING macro * During configure, do not check for pcre if pcre2 specified * Use pkg-config to find libxml2 first * Fix two rule-reload memory leak issues * Correct whitespace handling for Include directive - Fix CVE-2023-28882, a segfault and a resultant crash of a worker process in some configurations with certain inputs, bsc#1210993- Update to version 3.0.8 * Adjust parser activation rules in modsecurity.conf-recommended [#2796] * Multipart parsing fixes and new MULTIPART_PART_HEADERS collection [#2795] * Prevent LMDB related segfault [#2755, #2761] * Fix msc_transaction_cleanup function comment typo [#2788] * Fix: MULTIPART_INVALID_PART connected to wrong internal variable [#2785] * Restore Unique_id to include random portion after timestamp [#2752, #2758]- Update to version 3.0.7 * Support PCRE2 * Support SecRequestBodyNoFilesLimit * Add ctl:auditEngine action support * Move PCRE2 match block from member variable * Add SecArgumentsLimit, 200007 to modsecurity.conf-recommended * Fix memory leak when concurrent log includes REMOTE_USER * Fix LMDB initialization issues * Fix initcol error message wording * Tolerate other parameters after boundary in multipart C-T * Add DebugLog message for bad pattern in rx operator * Fix misuses of LMDB API * Fix duplication typo in code comment * Fix multiMatch msg, etc, population in audit log * Fix some name handling for ARGS_*NAMES: regex SecRuleUpdateTargetById, etc. * Adjust confusing variable name in setRequestBody method * Multipart names/filenames may include single quote if double-quote enclosed * Add SecRequestBodyJsonDepthLimit to modsecurity.conf-recommended- Update to version 3.0.6 * Security issue: Support configurable limit on depth of JSON parsing, possible DoS issue. CVE-2021-42717 - Update to version 3.0.5 * New: Having ARGS_NAMES, variables proxied * Fix: FILES variable does not use multipart part name for key * GeoIP: switch to GEOIP_MEMORY_CACHE from GEOIP_INDEX_CACHE * Support configurable limit on number of arguments processed * Adds support to lua 5.4 * Add support for new operator rxGlobal * Fix: Replaces put with setenv in SetEnv action * Fix: Regex key selection should not be case-sensitive * Fix: Only delete Multipart tmp files after rules have run * Fixed MatchedVar on chained rules * Fix IP address logging in Section A * Fix: rx: exit after full match (remove /g emulation); ensure capture groups occuring after unused groups still populate TX vars * Fix rule-update-target for non-regex * Fix Security Impacting Issues: * Handle URI received with uri-fragment, CVE-2020-15598- add baselibs, fix packaging (install into %_libdir) - update to 3.0.4: - Fix: audit log data omitted when nolog,auditlog - Fix: ModSecurity 3.x inspectFile operator does not pass - XML: Remove error messages from stderr - Filter comment or blank line for pmFromFile operator - Additional adjustment to Cookie header parsing - Restore chained rule part H logging to be more like 2.9 behaviour - Small fixes in log messages to help debugging the file upload - Fix Cookie header parsing issues - Fix rules with nolog are logging to part H - Fix argument key-value pair parsing cases - Fix: audit log part for response body for JSON format to be E - Make sure m_rulesMessages is filled after successfull match - Fix @pm lookup for possible matches on offset zero. - Regex lookup on the key name instead of COLLECTION:key - Missing throw in Operator::instantiate - Making block action execution dependent of the SecEngine status - Making block action execution dependent of the SecEngine status - Having body limits to respect the rule engine state - Fix SecRuleUpdateTargetById does not match regular expressions - Adds missing check for runtime ctl:ruleRemoveByTag - Adds a new operator verifySVNR that checks for Austrian social security numbers. - Fix variables output in debug logs - Correct typo validade in log output - fix/minor: Error encoding hexa decimal. - Limit more log variables to 200 characters. - parser: fix parsed file names - Allow empty anchored variable - Fixed FILES_NAMES collection after the end of multipart parsing - Fixed validateByteRange parsing method - Removes a memory leak on the JSON parser - Enables LMDB on the regression tests. - Fix: Extra whitespace in some configuration directives causing error - Refactoring on Regex and SMatch classes. - Fixed buffer overflow in Utils::Md5::hexdigest() - Implemented merge() method for ConfigInt, ConfigDouble, ConfigString - Adds initially support to the drop action. - Complete merging of particular rule properties - Replaces AC_CHECK_FILE with 'test -f' - Fix inet addr handling on 64 bit big endian systems - Fix tests on FreeBSD - Changes ENV test case to read the default MODSECURTIY env var - Regression: Sets MODSECURITY env var during the tests execution - Fix setenv action to strdup key=variable - Allow 0 length JSON requests. - Fix "make dist" target to include default configuration - Replaced log locking using mutex with fcntl lock - Correct the usage of modsecurity::Phases::NUMBER_OF_PHASES - Adds support to multiple ranges in ctl:ruleRemoveById - Rule variable interpolation broken - Make the boundary check less strict as per RFC2046 - Fix buffer size for utf8toUnicode transformation - Fix double macros bug - Override the default status code if not suitable to redirect action - parser: Fix the support for CRLF configuration files - Organizes the server logs - m_lineNumber in Rule not mapping with the correct line number in file - Using shared_ptr instead of unique_ptr on rules exceptions - Changes debuglogs schema to avoid unecessary str allocation - Fix the SecUnicodeMapFile and SecUnicodeCodePage - Changes the timing to save the rule message - Fix crash in msc_rules_add_file() when using disruptive action in chain - Fix memory leak in AuditLog::init() - Fix RulesProperties::appendRules() - Fix RULE lookup in chained rules - @ipMatch "Could not add entry" on slash/32 notation in 2.9.0 - Using values after transformation at MATCHED_VARS - Adds support to UpdateActionById. - Add correct C function prototypes for msc_init and msc_create_rule_set - Allow LuaJIT 2.1 to be used - Match m_id JSON log with RuleMessage and v2 format - Adds support to setenv action. - Adds new transaction constructor that accepts the transaction id as parameter. - Adds request IDs and URIs to the debug log - Treating variables exception on load-time instead of run time. - Fix: function m.setvar in Lua scripts and add testcases - Fix SecResponseBodyAccess and ctl:requestBodyAccess directives - Fix OpenBSD build - Fix parser to support GeoLookup with MaxMind - parser: Fix simple quote setvar in the end of the line - Fix pc file - modsec_rules_check: uses the gnu `.la' instead of `.a' file - good practices: Initialize variables before use it - Fix utf-8 character encoding conversion - Adds support for ctl:requestBodyProcessor=URLENCODED - Add LUA compatibility for CentOS and try to use LuaJIT first if available - Allow LuaJIT to be used - Implement support for Lua 5.1 - Variable names must match fully, not partially. Match should be case insensitive. - Improves the performance while loading the rules - Allow empty strings to be evaluated by regex::searchAll - Adds basic pkg-config info - Fixed LMDB collection errors - Fixed false positive MULTIPART_UNMATCHED_BOUNDARY errors - Fix ip tree lookup on netmask content - Changes the behavior of the default sec actions - Refactoring on {global,ip,resources,session,tx,user} collections - Fix race condition in UniqueId::uniqueId() - Fix memory leak in error message for msc_rules_merge C APIs - Return false in SharedFiles::open() when an error happens - Use rvalue reference in ModSecurity::serverLog - Build System: Fix when multiple lines for curl version. - Checks if response body inspection is enabled before process it - Code Cleanup. - Fix setvar parsing of quoted data - Fix LDFLAGS for unit tests. - Adds time stamp back to the audit logs - Disables skip counter if debug log is disabled - Cosmetics: Represents amount of skipped rules without decimal - Add missing escapeSeqDecode, urlEncode and trimLeft/Right tfns to parser - Fix STATUS var parsing and accept STATUS_LINE var for v2 backward comp. - Fix memory leak in modsecurity::utils::expandEnv() - Initialize m_dtd member in ValidateDTD class as NULL - Fix broken @detectxss operator regression test case - Fix utils::string::ssplit() to handle delimiter in the end of string - Fix variable FILES_TMPNAMES - Fix memory leak in Collections - Fix lib version information while generating the .so file - Adds support for ctl:ruleRemoveByTag - Fix SecUploadDir configuration merge - Include all prerequisites for "make check" into dist archive - Fix: Reverse logic of checking output in @inspectFile - Adds support to libMaxMind - Adds capture action to detectXSS - Temporarily accept invalid MULTIPART_SEMICOLON_MISSING operator - Adds capture action to detectSQLi - Adds capture action to rbl - Adds capture action to verifyCC - Adds capture action to verifySSN - Adds capture action to verifyCPF - Prettier error messages for unsupported configurations (UX) - Add missing verify*** transformation statements to parser - Fix a set of compilation warnings - Check for disruptive action on SecDefaultAction. - Fix block-block infinite loop. - Correction remove_by_tag and remove_by_msg logic. - Fix LMDB compile error - Fix msc_who_am_i() to return pointer to a valid C string - Added some cosmetics to autoconf related code - Fix "make dist" target to include necessary headers for Lua - Fix "include /foo/*.conf" for single matched object in directory - Add missing Base64 transformation statements to parser - Fixed resource load on ip match from file - Fixed examples compilation while using disable-shared - Fixed compilation issue while xml is disabled - Having LDADD and LDFLAGS organized on Makefile.am - Checking std::deque size before use it - perf improvement: Added the concept of RunTimeString and removed all run time parser. - perf improvement: Checks debuglog level before format debug msg - perf. improvement/rx: Only compute dynamic regex in case of macro - Fix uri on the benchmark utility - disable Lua on systems with liblua5.1- Remove rhetoric part from descriptions.- Remove libltdl7 from build dependencies- Make use of %license macro - Make use of %{version} variable - Sort dependencies alphabetically- Initial releaseobs-power9-12 16940762773.0.10-bp154.2.3.13.0.10-bp154.2.3.1modsec-rules-checkmodsecurityLICENSE/usr/bin//usr/share/licenses//usr/share/licenses/modsecurity/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protectionobs://build.opensuse.org/openSUSE:Maintenance:18063/openSUSE_Backports_SLE-15-SP4_Update/e42d5000c111612c7daea99c07461d89-modsecurity.openSUSE_Backports_SLE-15-SP4_Updatecpioxz5ppc64le-suse-linuxELF 64-bit LSB shared object, 64-bit PowerPC or cisco 7500, version 1 (SYSV), dynamically linked, interpreter /lib64/ld64.so.2, BuildID[sha1]=1c116caf702363cd25f62be1511ec19d798bbea1, for GNU/Linux 3.10.0, not strippeddirectoryASCII text RRRRR R RRRRRhqjX ˺utf-8107295e94ba6045d791a297bf63954f5cb4616e18e0b83b84defcc3d872dceb8? 7zXZ !t/^o/ ] crv9wyU;{ ƜZ7*XEOK6kҐY#||`z&F㻆.{qKxOLry4|)M0B~f2:A'A[+4]cwudB^ߠ(1Ilb ^zX)DJ)[@n) -( ] gL⤥ w?Y~$W{MNѬl'H(ko=pA#<͒i{NH9ESovx.ȔPv-~ *̺8L4'a歈3\j C``2ZIqֻYa+š.\Xvl Z P7sG KgYA13!8+pR0`pM#PDW]Vt{K͐} uG7!EhGkztKP s~N3ƈ\ wy{KU37`KI%5sWз( n{;SeZ0@23]8]sЫȎ<գ0sG-BCgkcscP+ۖf5ޭ"m?HM[+Ҍr71fPL(\xxxnn#:+D ՜ cݭkt'PiO6z{a w q"lL1'[E90*wbx?6^jCHJgԫM*=5-#?Ua()3䉉mh*rʦXvSO )V D!Dz霬%pׄ)珐 {ؐ0QrGwx8iPX_$Z'J'[L(jF ggϪ3'ĕl,ҟǘ{o_gKE<43IGf.<(fqN/4E+zXa(BAPܮ\5WJE1> Rq^V7i՘m|j_ldFHYgmC>:: 3|+r> !}ڐJdRO{|읹x.;pr{V.C߳6(py|鞖 's|!ٗMRC&bdsKP8FTI-VxH =Z݁M#ӆzޯLN5hO+޷ hz&jm4vVAk+3]eY4҄ûqwp[$\Vrþ,1U"H6 vT5c|[^zPl=) }}udQNYbkTvGcIU޶qI,,Y̍4BXq%m3,Or8[f(1oVmG^U!CrW5QA>![faP䡇u1ҷfTT 3g0_xF"cj(Yfq@/Cv}WΜwg ];B0_qEpB)_mK7ߧ>3K|Y`*.; u P%<+ Kdq΂Uk h ;9bWR#.AqZ6@o:N7VK VD iN'A*ܩ,_yCLbeŧP) %dHtu9^Р4@ȍZQɋ8pac l۩Ѕb@j^OݔQ0ZAv!}0ɄLf% c,0MԜ9]ӧtrtr%Nf)*ao;1/HEgJ~7UYX5 ȷ!Ւ%_ϑ[M?qnzOȊv)Kc9 kg@y2TRU,Dg1SUZ0nj؉Yr$l4"R Y0xofͅ 0KNjȎY6ovr8nIu lSn̠&W8z=3y(&xoG7U$Mz B$pKI뚆mm9` OW-[(RfY@υdrƇ>?""Gq85\oc t_z\oy>?΁1aK=g =Dv=V a䇣Z +o_'K;p&&Q{z>MzنTZ*g\XI=mf|:)\W2dP}-AQw `-tTiąFĶe |ku&z o*}Au V=\|ShP,w0Zca1T-޻;^)`i~f3088̅@޴xPI܌e}v5)i$ٽa&sG b:OccG:K4(DϜ,\v6=gc:hb$_ 50)xZv Uvd;ؔT`I<V쫽p X8*- =٢:J@ 7T(nZE2JԌ5[5st1HO LVBpy93 (dE 8VG/\W4ARm,K1i!t cnUF%M$EpޟW^̯S~H4–B`* {l޸8ĉ$%VX킇V+&1hej9{=(a6םmHܖPCJ˧Fܠ .M#^I(1:>!' $`H (ȽKiAδsi_-24_9aJ2Nf~Rt.`XV"JAw* TיڵnU\l 9F(Pu]Rh%%Id"ʢl9Z[٠%)`竕jihIe/(%+]=2>>MC$W,KdTTBpAsDS>X,ey|#bv`5Y^PMncƇ=foڄcԻ%UZ%[A3iFZnj鲶s^fN>YU,{R]JC̠W :bBܥrN+߷6j$ωѻ4E|-ځ&(fc.7]:lb].Tƹ({wfllB]56cyRp'**5B͐t8t,TcM@D'#9dDo.0$x{4~TL#.G%N,we)8? XCN_F+x_m=v^uB e@E&7J0Í\Ϥ;.ITт}璴߷SŊҸѪs—ul;Ymkϧ´V޻|PbhJ MZ?I??e=*8ZH$l_/ni h(h݄v%S~HP6w2 !|]S_*=&W(kɺ f/\rи qlLG wb!hLф 7t;Tq d8չ98aa>8S^/mrʼn >2Ǹ̿h6"Ϣʰ^L/enxqė$7,f_Z&_@-'ѓc?wchT\Hss>G9XK TfkM_P]\PF Y s JbZ$p&Q# OZ7c/* qk: ]Pgu.PTqy",A+g |` c/(É*w+҇8[Q~5g$WiEugGZyL҃i_\Z<||2;JGҎIhM~9SSqȃP K<ù'uDx}du KG17D:Xc |1-ƯxedԪ!ﺔ< |MLa1"t.o#3XVO\9AO%yN4JJ^Ig(l{:}5юCıĉ ORҸhF09b]"$kkU2z'eYkjusZ44OBr!h i@*.dnXR޲B*G5QSz\@mOs{bh0ޟ& 7W3A(Ԟ^,#pOzX1s nn)}Aʠ:e?-R[\ϳ塱dGgJ,jw\E Ԫ A2xZ@f3HeU2J,bW $zM]%7+"'yY]O.xr^k PJ[I?ˎܙ  XTGOC)P }G' 2miAu7@i%Q^V1]2e0j)6ǀf0ڣA6|ΏpGuk9# [iUw?ٻz  &MLAŔ\3KUsܚY飮ڔ CS/S#~E+$3kLi5!R9wq+vNG- 1Hśnɠak[lܳ^4XE GN#W{gL0[V$jfsM nmT_Wʃ:Sx m`j9E8,: *0l5ҴK]0Ģ& l~uOB0X=Go tɝzr0ڿ; mNގu,,.[p~TL3 kClc)ePH~ 0 ;Xy铲*>E|,LP_K6kR C|V1\͜: |4eJRwʫ킇|2/1HB_qX"d:")a4B&wyɻ۽%a;oxPg2~uD:iJ>C8Mu.5ysUN`,W㯿.1i\ty\Wz7c0IFFZH5:R5Gρok?Fūq7jAރJ "FtJJ% LUh1}@os"EQS6R#Khᆑ_eY{Eݟrjiť&ȹW(ʧC{(1-h'ˡm07o (=ZKbK@+9+-@FM`!T'ewm첷Ɨk%-ײ^]*Ќ]gvPdEcQ sg&6^3WNJcE^*yVEWPӽ _?xoPRҕM *OGÒ7?~;U HYBֹop-Jb>3}s(1f]д.8(JᔔS| .A=ʰn^9+`wimc&Ӗ~/k-xRM .&\Cݩe iyij63`N|DXyHkC'inj`z۷u,bhipS=a}~pLwo}%LQSZ 09^7jf/[)n{kPg9W, ѩ5tqFau\$Lx*=2I9.8J8ھRe0imPi5KK kD;#kN8.邡LJm}c&Uhꀑa"pR_F9GRy'rܻ RHJRF0@RB;HA˅,J`z~%Ky41%q͐5}?Sg @ֵ3]ޕ=g ZPR_ű;'kVNVC@\ 8+D =/WPJ] L ryD9fcpf)3*ն϶ݞv8ħڭ< W)dUܿLiZ.i _z [ ܔK=1KCFS%_e=\C<1Й⽊>u M|#{sg)^ ՋEEJN:S^RfyNdsޓ|.=l<걨5WrY@±׭PkK=[u,٬3"CU 4bmf8lqښc [tw 0.ƈ#h6#آl.?'ZȶG/?VZVFbix9sa̖֛ Eb&_z)IǨ(TAN]Tsv4$%\ѷw_U2.<ڌ;$}VdC箩vgx(P ?[R0G "9dW^ U RchQI}j g,0Sog(lqkp۳\.[u2kNR~-9.!:3TL˩VU6NY ]9WҋP x1ZIpC2z\g%FRLFfq3[dX^b<qѱY8ik@#;\վi;˒9#rw}r膗K:lՇXS\"df꣇2?%v 7LAҸNѠM 3B~cC ,Cʊ]N?[$— o1 PPINV :AKp+3JfuM[C7͡8\/-B/솘>ȁ99eBe]MB@Pd\c6{stl%&K87iq]R7E3)G`³vLvL 18?أUuȄp:rEmc }=݀Mm2"FάH8Ϭ 889iq.gun1&$Rfݸy5{2b/wjOd.?:Y$0V89 {깚`)]IJ'(]Xؘ9;,b0Rq RV\uݓQGL m63j-Hel<A G'b\Y~NߋVCHC?.6Zq(8'{=sbczT(TH k(i/,I+ฉ\M,xLYv<&ak7<`ɫâ€d!du"~&&OcRG*Mbmv}KTRIxF1 *E)ܿ%>c=*="90{ Z'9AUU/om"Rj(=9q^򏋡 &ԄW("'`τ*C jMfpitf?j9ƹıfo!RQBRVM[jlѣrVq N^Ҏ&aa/M{Tv%v{T8ɀ(M܏ڤkq! YK nZzMe:cb?⬠x{(pgj}vt ;R۸L\_8bV6.C!{7@1WtnvQH'T\v xLIz K!%N_4pjfMlr7]G_Me8S}kI уLv!4~ zN>LuEj|[譣FC㺽e=$s] a7YG-:ɡj,v+!~Y~yv>GʹbH_2G+Q0ߖш`8|#ej?ϑ{;yEh:;ۈM e-#\pWAH )_aC[BO+1 u"-PT~,g[g2$]zD C}\]L X-8!s=V,$Ɵ[W{0z:û$v|S^8-A]g?K_XiE}Achn|V,(0G>6_6iT + 0McQI;,[HlvN@.٘JS`IUY'6yT(IN%QK\Bg9# R5RaGR5pXYli `޻,&_*:WXl? xٳ{7R-ý=!Zed aL_ χJ~NP@_IiBzYg@D(%^fA '~`7t08Q%ҵNˣ3uHή"(2莊,z ز[U*ѣS!GɆV6%j8āi [/os=sɶmVpK).(­a;ePK,9vϾ;3 V8Ǝr֝qUbzE) Y=7j]SO9V̕;ZQҧ^̳r/A߷>˺_A@"bRLX@A"z^neY(Dˏ%D$) I厇m\~R0 |ј5KӸ t,ņވVׁ^3(;j=‡? ] C ;&p9BK5ҽjibܬ/G;j)edJ\h&#}8`"#A pI5C66AppNr+DзȾLBD54oHٰUk:n|4S1o8Nq8wRɕעx]P5R"z̤k)ҫ$$XϽ#ѱv7qe%/"˒slD¸ !.b)`PagJXq s Y)3zfRY),~ NtG/6xVE86#=Oyh]7A[Lsm8էع"_衽ƗG_RB=Y:z *Ԕ H" =Wtv0>ϞZa<A _m*׊ /i*^ZVd1*v[X}TYo#m?N}޵t'?$qb7"? m4gۚfM?n-(rH-␗C}|60<(me.ڥ1vW̛_`Qe6I4\7 áðK k ; 9TqiS^y"3PNu /Bf>2߲^[cʦr{jl;ScHXcNtM9zs-Xѡ("w >5b;~ԟkU741 ]vCWD(zf=LF ٔXR֖Bm/e;]'n=7轀x#-rv,$㦕J{%ruGr%x'-17[VȤH MK{T C'E^pG¡BWI'|k$^U^b YZ