modsecurity-devel-3.0.10-bp154.2.3.1 4>$  Apdx!M@eeebݦ:s޳\X,6g5ވuVs{un*`qۿM ő[_% R 貭fk"mG&AYyD?x !?gtPI%*{WKW16Rdns\=E_$PGNnnxvsףu{mˠ#G/]n80k uDSQ+g(RS'LpAx1cc8a1cec6f35b1cb32920bf4d16694577ff7b8247a3d7279bfaf9bad4d13e404f8bc1d42b0a5eb484acf751675a7512ad87f6be,dx!M@eeecU5XH_yU呙 ޖn!x)ߗȱ.g$3@+'UzPY kC.x ܧx=ğeXO|z>VA!W&)83ufU=m/^7?~o1N$`rj+S";9"=ÎuU 9eR!' "&(iUΦ-Y5FU.pD6(p>F4?F$d ' l  9BO h( b    m     : d   4 ( 8 9  :I F>tG>H>I?pX?Y?\?]@@^BbBcCJdCeCfClCuDvDwDxEHyEzEEEEF Cmodsecurity-devel3.0.10bp154.2.3.1Development files for modsecurity, a web application firewall engineModSecurity is a toolkit for real-time web application monitoring, logging, and access control. This subpackage holds the development headers for the library.ds390zl24SUSE Linux Enterprise 15openSUSEBSD-2-Clausehttp://bugs.opensuse.orgDevelopment/Languages/C and C++https://www.modsecurity.org/linuxs390x Af/F}$x!u M. - v Xb8]2 AA큤A큤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.so.3.0.10rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootmodsecurity-3.0.10-bp154.2.3.1.src.rpmmodsecurity-develmodsecurity-devel(s390-64)pkgconfig(modsecurity)@    /usr/bin/pkg-configlibmodsecurity3rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.103.0.4-14.6.0-14.0-15.2-14.14.3ddZ5c]bb_*@[I[CN@[:Z@David Anes Danilo Spinella Michael Ströder Georg Pfuetzenreuter Ferdinand Thiessen Dirk Mueller jengelh@inai.demrostecki@suse.commrostecki@suse.commrostecki@suse.com- Update to version 3.0.10: * Security impacting issue (fix bsc#1213702, CVE-2023-38285) - Fix: worst-case time in implementation of four transformations - Additional information on this issue is available at https://www.trustwave.com/resources/blogs/spiderlabs-blog/modsecurity-v3-dos-vulnerability-in-four-transformations-cve-2023-38285/ * Enhancements and bug fixes - Add TX synonym for MSC_PCRE_LIMITS_EXCEEDED - Make MULTIPART_PART_HEADERS accessible to lua - Fix: Lua scripts cannot read whole collection at once - Fix: quoted Include config with wildcard - Support isolated PCRE match limits - Fix: meta actions not applied if multiMatch in first rule of chain - Fix: audit log may omit tags when multiMatch - Exclude CRLF from MULTIPART_PART_HEADER value - Configure: use AS_ECHO_N instead echo -n - Adjust position of memset from 2890- Update to version 3.0.9: * Add some member variable inits in Transaction class (possible segfault) * Fix: possible segfault on reload if duplicate ip+CIDR in ip match list * Resolve memory leak on reload (bison-generated variable) * Support equals sign in XPath expressions * Encode two special chars in error.log output * Add JIT support for PCRE2 * Support comments in ipMatchFromFile file via '#' token * Use name package name libmaxminddb with pkg-config * Fix: FILES_TMP_CONTENT collection key should use part name * Use AS_HELP_STRING instead of obsolete AC_HELP_STRING macro * During configure, do not check for pcre if pcre2 specified * Use pkg-config to find libxml2 first * Fix two rule-reload memory leak issues * Correct whitespace handling for Include directive - Fix CVE-2023-28882, a segfault and a resultant crash of a worker process in some configurations with certain inputs, bsc#1210993- Update to version 3.0.8 * Adjust parser activation rules in modsecurity.conf-recommended [#2796] * Multipart parsing fixes and new MULTIPART_PART_HEADERS collection [#2795] * Prevent LMDB related segfault [#2755, #2761] * Fix msc_transaction_cleanup function comment typo [#2788] * Fix: MULTIPART_INVALID_PART connected to wrong internal variable [#2785] * Restore Unique_id to include random portion after timestamp [#2752, #2758]- Update to version 3.0.7 * Support PCRE2 * Support SecRequestBodyNoFilesLimit * Add ctl:auditEngine action support * Move PCRE2 match block from member variable * Add SecArgumentsLimit, 200007 to modsecurity.conf-recommended * Fix memory leak when concurrent log includes REMOTE_USER * Fix LMDB initialization issues * Fix initcol error message wording * Tolerate other parameters after boundary in multipart C-T * Add DebugLog message for bad pattern in rx operator * Fix misuses of LMDB API * Fix duplication typo in code comment * Fix multiMatch msg, etc, population in audit log * Fix some name handling for ARGS_*NAMES: regex SecRuleUpdateTargetById, etc. * Adjust confusing variable name in setRequestBody method * Multipart names/filenames may include single quote if double-quote enclosed * Add SecRequestBodyJsonDepthLimit to modsecurity.conf-recommended- Update to version 3.0.6 * Security issue: Support configurable limit on depth of JSON parsing, possible DoS issue. CVE-2021-42717 - Update to version 3.0.5 * New: Having ARGS_NAMES, variables proxied * Fix: FILES variable does not use multipart part name for key * GeoIP: switch to GEOIP_MEMORY_CACHE from GEOIP_INDEX_CACHE * Support configurable limit on number of arguments processed * Adds support to lua 5.4 * Add support for new operator rxGlobal * Fix: Replaces put with setenv in SetEnv action * Fix: Regex key selection should not be case-sensitive * Fix: Only delete Multipart tmp files after rules have run * Fixed MatchedVar on chained rules * Fix IP address logging in Section A * Fix: rx: exit after full match (remove /g emulation); ensure capture groups occuring after unused groups still populate TX vars * Fix rule-update-target for non-regex * Fix Security Impacting Issues: * Handle URI received with uri-fragment, CVE-2020-15598- add baselibs, fix packaging (install into %_libdir) - update to 3.0.4: - Fix: audit log data omitted when nolog,auditlog - Fix: ModSecurity 3.x inspectFile operator does not pass - XML: Remove error messages from stderr - Filter comment or blank line for pmFromFile operator - Additional adjustment to Cookie header parsing - Restore chained rule part H logging to be more like 2.9 behaviour - Small fixes in log messages to help debugging the file upload - Fix Cookie header parsing issues - Fix rules with nolog are logging to part H - Fix argument key-value pair parsing cases - Fix: audit log part for response body for JSON format to be E - Make sure m_rulesMessages is filled after successfull match - Fix @pm lookup for possible matches on offset zero. - Regex lookup on the key name instead of COLLECTION:key - Missing throw in Operator::instantiate - Making block action execution dependent of the SecEngine status - Making block action execution dependent of the SecEngine status - Having body limits to respect the rule engine state - Fix SecRuleUpdateTargetById does not match regular expressions - Adds missing check for runtime ctl:ruleRemoveByTag - Adds a new operator verifySVNR that checks for Austrian social security numbers. - Fix variables output in debug logs - Correct typo validade in log output - fix/minor: Error encoding hexa decimal. - Limit more log variables to 200 characters. - parser: fix parsed file names - Allow empty anchored variable - Fixed FILES_NAMES collection after the end of multipart parsing - Fixed validateByteRange parsing method - Removes a memory leak on the JSON parser - Enables LMDB on the regression tests. - Fix: Extra whitespace in some configuration directives causing error - Refactoring on Regex and SMatch classes. - Fixed buffer overflow in Utils::Md5::hexdigest() - Implemented merge() method for ConfigInt, ConfigDouble, ConfigString - Adds initially support to the drop action. - Complete merging of particular rule properties - Replaces AC_CHECK_FILE with 'test -f' - Fix inet addr handling on 64 bit big endian systems - Fix tests on FreeBSD - Changes ENV test case to read the default MODSECURTIY env var - Regression: Sets MODSECURITY env var during the tests execution - Fix setenv action to strdup key=variable - Allow 0 length JSON requests. - Fix "make dist" target to include default configuration - Replaced log locking using mutex with fcntl lock - Correct the usage of modsecurity::Phases::NUMBER_OF_PHASES - Adds support to multiple ranges in ctl:ruleRemoveById - Rule variable interpolation broken - Make the boundary check less strict as per RFC2046 - Fix buffer size for utf8toUnicode transformation - Fix double macros bug - Override the default status code if not suitable to redirect action - parser: Fix the support for CRLF configuration files - Organizes the server logs - m_lineNumber in Rule not mapping with the correct line number in file - Using shared_ptr instead of unique_ptr on rules exceptions - Changes debuglogs schema to avoid unecessary str allocation - Fix the SecUnicodeMapFile and SecUnicodeCodePage - Changes the timing to save the rule message - Fix crash in msc_rules_add_file() when using disruptive action in chain - Fix memory leak in AuditLog::init() - Fix RulesProperties::appendRules() - Fix RULE lookup in chained rules - @ipMatch "Could not add entry" on slash/32 notation in 2.9.0 - Using values after transformation at MATCHED_VARS - Adds support to UpdateActionById. - Add correct C function prototypes for msc_init and msc_create_rule_set - Allow LuaJIT 2.1 to be used - Match m_id JSON log with RuleMessage and v2 format - Adds support to setenv action. - Adds new transaction constructor that accepts the transaction id as parameter. - Adds request IDs and URIs to the debug log - Treating variables exception on load-time instead of run time. - Fix: function m.setvar in Lua scripts and add testcases - Fix SecResponseBodyAccess and ctl:requestBodyAccess directives - Fix OpenBSD build - Fix parser to support GeoLookup with MaxMind - parser: Fix simple quote setvar in the end of the line - Fix pc file - modsec_rules_check: uses the gnu `.la' instead of `.a' file - good practices: Initialize variables before use it - Fix utf-8 character encoding conversion - Adds support for ctl:requestBodyProcessor=URLENCODED - Add LUA compatibility for CentOS and try to use LuaJIT first if available - Allow LuaJIT to be used - Implement support for Lua 5.1 - Variable names must match fully, not partially. Match should be case insensitive. - Improves the performance while loading the rules - Allow empty strings to be evaluated by regex::searchAll - Adds basic pkg-config info - Fixed LMDB collection errors - Fixed false positive MULTIPART_UNMATCHED_BOUNDARY errors - Fix ip tree lookup on netmask content - Changes the behavior of the default sec actions - Refactoring on {global,ip,resources,session,tx,user} collections - Fix race condition in UniqueId::uniqueId() - Fix memory leak in error message for msc_rules_merge C APIs - Return false in SharedFiles::open() when an error happens - Use rvalue reference in ModSecurity::serverLog - Build System: Fix when multiple lines for curl version. - Checks if response body inspection is enabled before process it - Code Cleanup. - Fix setvar parsing of quoted data - Fix LDFLAGS for unit tests. - Adds time stamp back to the audit logs - Disables skip counter if debug log is disabled - Cosmetics: Represents amount of skipped rules without decimal - Add missing escapeSeqDecode, urlEncode and trimLeft/Right tfns to parser - Fix STATUS var parsing and accept STATUS_LINE var for v2 backward comp. - Fix memory leak in modsecurity::utils::expandEnv() - Initialize m_dtd member in ValidateDTD class as NULL - Fix broken @detectxss operator regression test case - Fix utils::string::ssplit() to handle delimiter in the end of string - Fix variable FILES_TMPNAMES - Fix memory leak in Collections - Fix lib version information while generating the .so file - Adds support for ctl:ruleRemoveByTag - Fix SecUploadDir configuration merge - Include all prerequisites for "make check" into dist archive - Fix: Reverse logic of checking output in @inspectFile - Adds support to libMaxMind - Adds capture action to detectXSS - Temporarily accept invalid MULTIPART_SEMICOLON_MISSING operator - Adds capture action to detectSQLi - Adds capture action to rbl - Adds capture action to verifyCC - Adds capture action to verifySSN - Adds capture action to verifyCPF - Prettier error messages for unsupported configurations (UX) - Add missing verify*** transformation statements to parser - Fix a set of compilation warnings - Check for disruptive action on SecDefaultAction. - Fix block-block infinite loop. - Correction remove_by_tag and remove_by_msg logic. - Fix LMDB compile error - Fix msc_who_am_i() to return pointer to a valid C string - Added some cosmetics to autoconf related code - Fix "make dist" target to include necessary headers for Lua - Fix "include /foo/*.conf" for single matched object in directory - Add missing Base64 transformation statements to parser - Fixed resource load on ip match from file - Fixed examples compilation while using disable-shared - Fixed compilation issue while xml is disabled - Having LDADD and LDFLAGS organized on Makefile.am - Checking std::deque size before use it - perf improvement: Added the concept of RunTimeString and removed all run time parser. - perf improvement: Checks debuglog level before format debug msg - perf. improvement/rx: Only compute dynamic regex in case of macro - Fix uri on the benchmark utility - disable Lua on systems with liblua5.1- Remove rhetoric part from descriptions.- Remove libltdl7 from build dependencies- Make use of %license macro - Make use of %{version} variable - Sort dependencies alphabetically- Initial releases390zl24 1694076032 3.0.10-bp154.2.3.13.0.10-bp154.2.3.13.0.10modsecurityactionsaction.hanchored_set_variable.hanchored_set_variable_translation_proxy.hanchored_variable.haudit_log.hcollectioncollection.hcollections.hdebug_log.hintervention.hmodsecurity.hrule.hrule_marker.hrule_message.hrule_unconditional.hrule_with_actions.hrule_with_operator.hrules.hrules_exceptions.hrules_set.hrules_set_phases.hrules_set_properties.htransaction.hvariable_origin.hvariable_value.hlibmodsecurity.somodsecurity.pc/usr/include//usr/include/modsecurity//usr/include/modsecurity/actions//usr/include/modsecurity/collection//usr/lib64//usr/lib64/pkgconfig/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protectionobs://build.opensuse.org/openSUSE:Maintenance:18063/openSUSE_Backports_SLE-15-SP4_Update/e42d5000c111612c7daea99c07461d89-modsecurity.openSUSE_Backports_SLE-15-SP4_Updatecpioxz5s390x-suse-linuxdirectoryC++ source, ASCII textC++ source, UTF-8 Unicode textpkgconfig filePR#m^F)4=utf-8d0918be94e17cd9f5b4cdd46a3d9c1738e523a72b0482206ed936b684ba7dcb7? 7zXZ !t/H] crt:bLL (f?5zVMt~r(ԟ5U;2KWoKxX{̼t!NF2}ڐIk>z[;ndF7Qyg/2-5fe \ M^0H?Z]ْ뇮OkK:Ht9I8X%!7Iq0d6<M⡒p"U Ÿ>N| nqǏ7u/k^OnB)a0@jm!dUPIk;Eȴm`-\c{BS}:D͉Mde viF?u/Q2ku:UAv ]HojW84GЏ{vԸ[׵rm*ck{Uoz3zr ^uJh@ [D:l?§92stzDuv2t?u@tJ&~[@(`AN6U!y.Dehֻ; z{K L (Yռԧ06{FCHM菒PŚҡQcLedPͿZ?)!L8I癎B'I`:W"gOC5}TC5UhXpYy7="剅wiQIHn7!<&" ϰg106xc6;njvU0SӸkg6Xor[[$C{"#R=2'+Li33zv4h|_N#/IJd-A{{H;i?ᤂ!/:`^h%8\R eYq$+6 <.~4OC H&Ls>#2?quݙA=CIljd>[EMiR/~ @c! Sp̵dak Z!=xs%/k*i G,^EXP~z~?zx>53U " $h_{x]zLch$*-ʸn't[vzŋH~ k^#IeB0YLM(5}n_x T=1T*s? W3"dmXt駪UPǮ1w'pW|*+|et Gm .q۴y}^_٠l^z %WfR|B,w'%Ɓ nTJ qFԜRQlƑH3Rgc jJ:BDba@o^%N5vM7ǣ`{ )H1[i@~s}Bm"+FywƑOfu" /: ,7cՒaBB (7< ./K:W?$)JD{54Z"94fٷ-5݂߶Zezi_1x.äF/B)<WL@ U\d栊1d:pbЭ2mqT׬8Lk[ o%xWNOpFK9OJ!3#@Ph\V"D"ڠN*h_M..֚~; sw uq"VR'OܭoV*:g"BeTF]` :;At0{f1y8`zIvlIAvô6m"ɿ ;[vs!"ǜNZgy+YA=(i FxZ?,Wɏ_Z: lXvhD[A̐O*U}B<-[h;[ةB>nmzKrKb?7<uK)ί=HL#v9RO;#ljfQ g[Gy6ՂM~>؀ܠ2G.U:x&ֿv$5UR,3LvdI'J8QtI\DseuU3YUcB^1ȢQ[~6gLW"V{8Dhy5IS%4,F# P8d,,\Uq'ǗN I51K5Cʶ̈qˉPOp+Z{#1 v/[ iiCQN B*V R  %5p믆۷V?^АɡjZ20l4 ؏:o1=S 0ׅyͨd#m+WUB͘5~C12Zr ^ՇcGˊFGb3MmkkrjPcO4X ,PTk#-q%G1Y2-5A0;QjۑjbH4_71n@w,\qk|qgoq҈y V/"X38w(Lbi}B [snQTk$=Bj꽧)G F M-Տ O' i_NU+GbfnYoȩ`q[-/Y .A ~(iѳ7!{HR-2y6?r! {^!{ܿ^A Y2:kfsNi2y`vƤ͈]g89~I * NW|eR{#ؕ|6~*5ɸ7JDi"[a14M-M"T_ 4z;~o>'@ٸ5 Ԧsp QsLeBd1:LгGi}mhyt$vd,OLn,~0XC~w}Ćh]BE.\=R>bRoIZu9N{X$`L/q|{,JKR'Te\T9S҇gi[;j'7nXPY^=A&ocB9Hqλ0lMpi$I APG'F&#i0/U>@膣Bh9[A K],Œ̏yB@r5?t ,>R6H! ep ٮȢ 4ο{%S rl#%A"L R)y+ne\b5r3nqdaYn|S˰ @_hL{pњۜ[ˊY!T:CO8܋ZV3ҫ}u,B| np=b"h_xP<O͘K/ ]wzN`G(kU jGE(;d*No17(_roq^xT"s8ؐPDyi ̋ߠ~vGށMAv'!dF`Q|H&X63p}= jzZ.tS )Pg3.y2JI /ଅ5&/SFRTXܰAb10^ s=Fƫd6s p% 0 TYٷԋ֣z ~9P&Pޔ5EiFgUg"c1keWv&7T%O-B9{WrCa0DAX f;P9{!{bMu3O, )K#ȻYs$-WE[=gx8+!nk/S?g!9gH,*]+/I/L'SH_J-vw,|[UwQ%j "jr3HO{Wv3q  .$4*ZwGK.^uPzqZ׉6ϖG9!wO筍w6,]8ԑ4 nxR۽$͎*M-[Ï8)n69G_!74.@[&$iन!N/>6$$6 0 ~W=_ 9בxjj&qIF]8>{G/YvґS+ *8 wՁ CcS, ժK2'Ð!Is(sQ}e3Y_+*.^A$It&{<ゥ}Au_c~6TvWA2?z֖;eڼ73>S7@\ɾYё0⊔?kܟaZ7qO0YL'Ѿ-&$\]:Jܑh%:8}܆jh?)YSK,R~-C(9Jm V]T-泟 -k uɢo8so1Xp&,@6lM`:ԛr Wu/w-R=Ǭg6(ڼY6Qra/PupODSϞP'ؽu T=1JzGu/)Ύ Z5F8so36IڗFdTc?$Ju:4Q_+IEW~h( sj98 1~~˿B Y<@I g9xiOj]{gHD&ޟ 싫D QhY?561,t%$m>@0 u4"-91йro$eǸ!8䎬Uo|kq= 3cje@0,ub3WYgy@uȣuW'tzH0| b,@8MXXkkU!ʠZѪx z?Kd#ɠ15 [>آ6b>"Cs7F=f,6.4V'C渒[]ķL`X7X-PMv# 5%u:- u倐})qL.\EQ$Yިat_;Lb5||!_>-eUi$;vЋgt%ǿ =6o{X.jE5x[¢l?o# CRT$&죫, z]%*ث0̖I[szG<6B =[UfFlcŹř@*ʌhAщ7>5 v8<7pe0`B'-á);~b1wl1rd_&)B~p߄:޵ѿ. Amkn!g{51<$ D@mJ;=334u(C4IJ b06s EF}WPթ5l  tY0WVH*% jN+X^طcy`2WaΪ<r;Rl 6> TY7,@n蛗Y{qEy^NߡbbDDQU|ޅGXFO- ˣm}gi %ՋFmv*k01LDK)1[ 1$@ӠP 7 rrV×E,E~`jbQEDAc3R( p).(p%bKÆ $@VbrJ ʓ;_І##ME#'51?`_tWzSW{3qv.kk% {mJh7m[_L8YA(?T "QE)Ñ]̟ > Df/(Xv[M@&鋮(!U\-7T7[qiifAO5gS4%]LXϙ'mqY%ƒ] 0Av88fE"d #J+VnŸZ>b97n|%qi@aީgK9ƺIV@U_d GJX`T)w]BRxzi"´SލK.{ȤJ:~C B=`Rc]T=))x\JyY&Y‘/?R ^NΠ-h'6 6 Iy\^_/}Jj `6[8#s?ʻp'ȅ`P;!4D9e;aN9K*H Zg]=sr8rNwcAEl"5v/>Sۼt̏A@H|;zu2{tFl42F* -=߼b2S4,{de V$PT\ԭn:j5FbNVt%@--(_zۿ3ZSXD:!ib}:Ȍ b-k& :`~3pJtNrJ<6.UZZ!_'ė0yP"`\Q|^; i[=,~TgVni0Jn/9I&6=։׬jUJ۶)38hM]!lYPIipj߿mVzaA)hSb \!{vpQ^ )/]0۹j >39" ؃0*@7ǂ+6 B#z "JG=6'|tR3,ahqF3`H\azZηhf"ko {PY0UGAKR>ï:2cE%3i$jEB,-ՇgE4I7$= 崅v4,$f #Y-$n/uKą9sWmS[5 deO3Ho *}h/Buc?ɍ~1 %2ime[P+ċ_3']J^*PhTXND%xHg[խo`=8Ua~~/l%+(˰_ KAU4._=~GCnFePK3m_=$Tj~/FCsn") ]~BWj:}ޥNISoE>->s-2M?.MLIqǹT]j`]^F+r&d9ybBb8f&IOP:=U`@bTchp7rE!_-|.MD0akl/ 1 #SаS@/oNJԿ6 i)lȜJVpn)O?\.e%Ly~,6bM#+J ,6SV!"rM*=g$K]9tqӴ:w6뻡TW_UF.MjgY 9a{%vaD? l^l]vLP#N㸋`Y(0*[Cv7~c;3[)vi{  '-Ba8Vy*b!vUb?xYW;߆ T]P1AU`2\{c4{ \{i gA{@ QE["F_knzI8pHtsln#++i~9z|c:jP4^E03-8tzw, )lytQ\ C(Uwk˓鈰'F3=u{ "t` :T;/8gdtfuBVzȰڸQ2Чh (fiblrfkɗ2TyޅldێOd{|X`9q'u1tc`Mc:]t E?,"b0gaPO_da$}VI6xl%ӵ!)@j+q&+hX!3hn ~CF3jW7ۿ_;&GX-si(1P@D)ƛw7;-w- e6aƶ8_hAhf*P{ğ&W /$zlExMA:{gH}ia2_b Qe!pnzpܮ 5aV1:scH=˳؛ \D"P15mC8:kpWЦ6{ xzBP1+SW:D J$oiLjCHwUZoCc{5GNAv6ZB3@4nMa5!_NҖ_8G4ѭĮk,bAMZUeGSL;jϗDܑ"l捛BӀ_5pɛ5ƃTXjX(UNa~.{w8y\I;VÈSsm nRk VpAb'JťEd }4 P29BJZ⊵:`t# >sSJnOx|‘C&ՙA8# nU:q6 :Z@_26Wjƣ DuV*)ۿzA1OމmGv$Sw}+}ᨹ8Fjц u7]4j(rlg--\RӎЉ_r=ϫ`KB/C,\G?=BəMthHlU{u (& @|3E?R#7^;~큢c"9*l蟨{1~H VLɒ hM%{p{HO=MkMp5L4=莓D2rypSJjs|.'.kT-+%$}6qN%W?K'H&VC1j>Ma2T_)dBQqPp_Z jces&BFjWmܠ\-M^*6muF#3 䂢RrĦ8`zkCPVR'w.Z1cvrՑ:kolh|tARkʌ"8c'mRl"a3d -_H )I<h[h*ؓHDVm'_!^] JI$-`Ӌ(ɹ2"|8Ԡ E"9`I`5!|e3͜7nZlB ƦvhCC$WG̥t|9ԦU͡>/1ޑ0@nym2ߺ*K3 Kһ2~PKjgqTPF?HJD m9XT1NKc$KGR,95*&TRe"KIt3q=VjS/.$bHgK,qcndOB;s8+tu1h( 83@Xd _3'Tl`1-פ#FԢҺVM IMaiؗ6N,8PjveRorRz{:O[8 lvƤu~&Ra+nJ;|y3"pU/BN8%o\,LtUĀqEHmX$˟꒸M<@;&q?qf 1]ؖ>hﵛׂ13ߊvZ 0V|ާl{EGE&j:ENA ] ՑŜѾp ^sqcy[}?p ir(bnVoGӂ[#ݗeּ)ˣ6P<=!$Aad{w9\S")8;dq/A bm`az G}!Jv}Vc 8K)NPZBlJO ˢ>F?yEW(njq ٞ$| F݋2K24Mv",TsWQNE[wX~V(SCrݝ,~xs@ M9UH[bT_ƨ4F6k r&wd&10ϰFe[m sK&<3\y:f#Msc G,npyFʠB߿}>$0'Nާc5nqg-\᱒RmQP̵"@!mo2(P[6SMlgìn#V=*Ը?h;ͫDy.S؅71M^kn0k&ԫ]W[v"+~ߊ.֗]a}=7*(5pk`I?A*0v%j<Ϡ鿿3 FΙPy+rm EfP*01X!dE6Ho#@ݳ#J$L (7!6:rUglSʍaTFY1NQՑs\ | &i9=cdy^g4bQ*Z 0W/gLEw49ՋOЧdP؍(Bo`ʩ-jfm+z搝qBX˫Hwd,ِ6 DNJ 0KF@FkuZ؍G}C?ڬ_X AXxJz6rG~jIS~Y!@4 W/z:e'wPopP>Ox.;w|m¹a ?.~ i-hf e`>.%R[.;iG0XV9V ?f*^:Fy$[i5Yd).*}%I$ 6@[ڿbBeaV .&_%uOq9пs`H ˌfYRv`\f% tv1`}f(7>Iq;?H|ՊMĤW2=~lj+¶ܣuۖ8 ~s\{pWPֆy1:0j~W `]0` 飨g7zABYMsNj.p!<'32>?1 "ǼY<ܖ{jQ'FlL~vK1 $)[gGZ Cb=q~@v*^(p)y\Т82[[^HUO sʛ9Q`Vj%hH ac(%nG.:WXI1Y,ha#'/ y֫`U^m[u]O~Xngg W{uv%Tc4!7;ZU_9I.FZ"tp*`;Dħ *U{a#<^rY+FpW$u<@ |h6nf]U$׫[ d̳pl0qn{[ ƠP bޘɭ][>r6D^p墀Q |.H2谒6cm~oްy. "fLuwoR E2~uÈ *A>< aqL6&oә<&LJ~#/A޼%OkNP08w3- #t{]|[pTm$-uָL(6.h;hJ.?C4~(i@mH}b IߓrY,0cvŏ5n@x;n|V8=ۿjD]bmY氏? $C$W5*-OK+BgFq㴚4$H0M/>%5Dfln :(}#ƒ\ttC:1jا{ (I-+* 0eF}5_A k<(z}6JAr?3z_@Trs'HUJ7Rs3*>p2w1*&4>ܰ!l~R@Vr`ŸTnSq(x>SF گY s!7rr%-3pJ'^O9>+4tc-5t0|+9>Gc\ ͘(66(FHmQer#mmb,*aO7r'>);u9fiGf7EsQ#v"!Hx86/Z\kV3ڸ3)fF8+T o67cb-44ۼ.fldVamcn3mUgD{ZYywg֪dPrKiѤ2%KJU!KK3it{Qs\Sr%K>wa&f?шn Oz7%+Y =g2 ( ϓ"y[3l6CeF>T15(0W:19Svc[\*121ɷ>喀}.a"LNc٘poԠU+[$ `SgD{1LMPP4,ŅxKua=5@&+޸R6Kqޱ*| ڄڪTUf*hlT sB hU5#%"5 v%*6Eu;ZX슶;bTc#Zkt2 ?f_xBx?DJu :"8wv >Sw V1zQ]D/p{n‚c ŽRq޳M Ζf%iB ^ iaE&})q(wFql"=&g\,̖;s*L߄*mǒk7P^<3D/ѕ.B铫naW,)\oʑVEQDͳp_"x~{[]KOǟUT~TOs5o#߲kleX6T&%H;$WQݏ5?$ִJdPωV-m,]Y¥lB ,'J23]]M͘j v0jNf(prGi Ah4;9YrRW=ji[?