modsecurity-devel-3.0.10-bp154.2.3.1 4>$  Apd!M@eeeϔTZЗGc4f߽rR}#3a7\JַQsA߈bk'JRWH| /@ O3_c)<_wDu=Um<0+qIl31҅$ y*ok<¦YM}~|?V0g}\grkf 92io4J;?/*<>{dc:khue{pP3z Lq)qJ[)]>B~MW9fb7098a4c9add772f67cc9cb5e139de72bc810601254265f064da092221b5e7a541d880b8ff63a27614b79b396c565bb316ff594d!M@eee!Bk{ F]*Yҧ4'X` UͭCN)Tt5ݙs$оHpX.>o':0DkPCitݠ"t=JFQ7uPrJ"(VDϗ;{*ЩL,y L^Tz~2]շox@Yl ⴾwMFʑ+UxP:@guEo6yY=}xUlp>F8?F(d ' l  9BO h( b    m     : d   4 ( 8 9  :I F>tG>H>I?pX?Y?\?]@@^BbBcCJdCeCfClCuDvDwDxELyEzEEEEF$Cmodsecurity-devel3.0.10bp154.2.3.1Development files for modsecurity, a web application firewall engineModSecurity is a toolkit for real-time web application monitoring, logging, and access control. This subpackage holds the development headers for the library.di04-ch2dSUSE Linux Enterprise 15openSUSEBSD-2-Clausehttp://bugs.opensuse.orgDevelopment/Languages/C and C++https://www.modsecurity.org/linuxx86_64 Af/F}$x!u M. - v Xb8]2 AA큤A큤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.so.3.0.10rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootmodsecurity-3.0.10-bp154.2.3.1.src.rpmmodsecurity-develmodsecurity-devel(x86-64)pkgconfig(modsecurity)@    /usr/bin/pkg-configlibmodsecurity3rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.103.0.4-14.6.0-14.0-15.2-14.14.3ddZ5c]bb_*@[I[CN@[:Z@David Anes Danilo Spinella Michael Ströder Georg Pfuetzenreuter Ferdinand Thiessen Dirk Mueller jengelh@inai.demrostecki@suse.commrostecki@suse.commrostecki@suse.com- Update to version 3.0.10: * Security impacting issue (fix bsc#1213702, CVE-2023-38285) - Fix: worst-case time in implementation of four transformations - Additional information on this issue is available at https://www.trustwave.com/resources/blogs/spiderlabs-blog/modsecurity-v3-dos-vulnerability-in-four-transformations-cve-2023-38285/ * Enhancements and bug fixes - Add TX synonym for MSC_PCRE_LIMITS_EXCEEDED - Make MULTIPART_PART_HEADERS accessible to lua - Fix: Lua scripts cannot read whole collection at once - Fix: quoted Include config with wildcard - Support isolated PCRE match limits - Fix: meta actions not applied if multiMatch in first rule of chain - Fix: audit log may omit tags when multiMatch - Exclude CRLF from MULTIPART_PART_HEADER value - Configure: use AS_ECHO_N instead echo -n - Adjust position of memset from 2890- Update to version 3.0.9: * Add some member variable inits in Transaction class (possible segfault) * Fix: possible segfault on reload if duplicate ip+CIDR in ip match list * Resolve memory leak on reload (bison-generated variable) * Support equals sign in XPath expressions * Encode two special chars in error.log output * Add JIT support for PCRE2 * Support comments in ipMatchFromFile file via '#' token * Use name package name libmaxminddb with pkg-config * Fix: FILES_TMP_CONTENT collection key should use part name * Use AS_HELP_STRING instead of obsolete AC_HELP_STRING macro * During configure, do not check for pcre if pcre2 specified * Use pkg-config to find libxml2 first * Fix two rule-reload memory leak issues * Correct whitespace handling for Include directive - Fix CVE-2023-28882, a segfault and a resultant crash of a worker process in some configurations with certain inputs, bsc#1210993- Update to version 3.0.8 * Adjust parser activation rules in modsecurity.conf-recommended [#2796] * Multipart parsing fixes and new MULTIPART_PART_HEADERS collection [#2795] * Prevent LMDB related segfault [#2755, #2761] * Fix msc_transaction_cleanup function comment typo [#2788] * Fix: MULTIPART_INVALID_PART connected to wrong internal variable [#2785] * Restore Unique_id to include random portion after timestamp [#2752, #2758]- Update to version 3.0.7 * Support PCRE2 * Support SecRequestBodyNoFilesLimit * Add ctl:auditEngine action support * Move PCRE2 match block from member variable * Add SecArgumentsLimit, 200007 to modsecurity.conf-recommended * Fix memory leak when concurrent log includes REMOTE_USER * Fix LMDB initialization issues * Fix initcol error message wording * Tolerate other parameters after boundary in multipart C-T * Add DebugLog message for bad pattern in rx operator * Fix misuses of LMDB API * Fix duplication typo in code comment * Fix multiMatch msg, etc, population in audit log * Fix some name handling for ARGS_*NAMES: regex SecRuleUpdateTargetById, etc. * Adjust confusing variable name in setRequestBody method * Multipart names/filenames may include single quote if double-quote enclosed * Add SecRequestBodyJsonDepthLimit to modsecurity.conf-recommended- Update to version 3.0.6 * Security issue: Support configurable limit on depth of JSON parsing, possible DoS issue. CVE-2021-42717 - Update to version 3.0.5 * New: Having ARGS_NAMES, variables proxied * Fix: FILES variable does not use multipart part name for key * GeoIP: switch to GEOIP_MEMORY_CACHE from GEOIP_INDEX_CACHE * Support configurable limit on number of arguments processed * Adds support to lua 5.4 * Add support for new operator rxGlobal * Fix: Replaces put with setenv in SetEnv action * Fix: Regex key selection should not be case-sensitive * Fix: Only delete Multipart tmp files after rules have run * Fixed MatchedVar on chained rules * Fix IP address logging in Section A * Fix: rx: exit after full match (remove /g emulation); ensure capture groups occuring after unused groups still populate TX vars * Fix rule-update-target for non-regex * Fix Security Impacting Issues: * Handle URI received with uri-fragment, CVE-2020-15598- add baselibs, fix packaging (install into %_libdir) - update to 3.0.4: - Fix: audit log data omitted when nolog,auditlog - Fix: ModSecurity 3.x inspectFile operator does not pass - XML: Remove error messages from stderr - Filter comment or blank line for pmFromFile operator - Additional adjustment to Cookie header parsing - Restore chained rule part H logging to be more like 2.9 behaviour - Small fixes in log messages to help debugging the file upload - Fix Cookie header parsing issues - Fix rules with nolog are logging to part H - Fix argument key-value pair parsing cases - Fix: audit log part for response body for JSON format to be E - Make sure m_rulesMessages is filled after successfull match - Fix @pm lookup for possible matches on offset zero. - Regex lookup on the key name instead of COLLECTION:key - Missing throw in Operator::instantiate - Making block action execution dependent of the SecEngine status - Making block action execution dependent of the SecEngine status - Having body limits to respect the rule engine state - Fix SecRuleUpdateTargetById does not match regular expressions - Adds missing check for runtime ctl:ruleRemoveByTag - Adds a new operator verifySVNR that checks for Austrian social security numbers. - Fix variables output in debug logs - Correct typo validade in log output - fix/minor: Error encoding hexa decimal. - Limit more log variables to 200 characters. - parser: fix parsed file names - Allow empty anchored variable - Fixed FILES_NAMES collection after the end of multipart parsing - Fixed validateByteRange parsing method - Removes a memory leak on the JSON parser - Enables LMDB on the regression tests. - Fix: Extra whitespace in some configuration directives causing error - Refactoring on Regex and SMatch classes. - Fixed buffer overflow in Utils::Md5::hexdigest() - Implemented merge() method for ConfigInt, ConfigDouble, ConfigString - Adds initially support to the drop action. - Complete merging of particular rule properties - Replaces AC_CHECK_FILE with 'test -f' - Fix inet addr handling on 64 bit big endian systems - Fix tests on FreeBSD - Changes ENV test case to read the default MODSECURTIY env var - Regression: Sets MODSECURITY env var during the tests execution - Fix setenv action to strdup key=variable - Allow 0 length JSON requests. - Fix "make dist" target to include default configuration - Replaced log locking using mutex with fcntl lock - Correct the usage of modsecurity::Phases::NUMBER_OF_PHASES - Adds support to multiple ranges in ctl:ruleRemoveById - Rule variable interpolation broken - Make the boundary check less strict as per RFC2046 - Fix buffer size for utf8toUnicode transformation - Fix double macros bug - Override the default status code if not suitable to redirect action - parser: Fix the support for CRLF configuration files - Organizes the server logs - m_lineNumber in Rule not mapping with the correct line number in file - Using shared_ptr instead of unique_ptr on rules exceptions - Changes debuglogs schema to avoid unecessary str allocation - Fix the SecUnicodeMapFile and SecUnicodeCodePage - Changes the timing to save the rule message - Fix crash in msc_rules_add_file() when using disruptive action in chain - Fix memory leak in AuditLog::init() - Fix RulesProperties::appendRules() - Fix RULE lookup in chained rules - @ipMatch "Could not add entry" on slash/32 notation in 2.9.0 - Using values after transformation at MATCHED_VARS - Adds support to UpdateActionById. - Add correct C function prototypes for msc_init and msc_create_rule_set - Allow LuaJIT 2.1 to be used - Match m_id JSON log with RuleMessage and v2 format - Adds support to setenv action. - Adds new transaction constructor that accepts the transaction id as parameter. - Adds request IDs and URIs to the debug log - Treating variables exception on load-time instead of run time. - Fix: function m.setvar in Lua scripts and add testcases - Fix SecResponseBodyAccess and ctl:requestBodyAccess directives - Fix OpenBSD build - Fix parser to support GeoLookup with MaxMind - parser: Fix simple quote setvar in the end of the line - Fix pc file - modsec_rules_check: uses the gnu `.la' instead of `.a' file - good practices: Initialize variables before use it - Fix utf-8 character encoding conversion - Adds support for ctl:requestBodyProcessor=URLENCODED - Add LUA compatibility for CentOS and try to use LuaJIT first if available - Allow LuaJIT to be used - Implement support for Lua 5.1 - Variable names must match fully, not partially. Match should be case insensitive. - Improves the performance while loading the rules - Allow empty strings to be evaluated by regex::searchAll - Adds basic pkg-config info - Fixed LMDB collection errors - Fixed false positive MULTIPART_UNMATCHED_BOUNDARY errors - Fix ip tree lookup on netmask content - Changes the behavior of the default sec actions - Refactoring on {global,ip,resources,session,tx,user} collections - Fix race condition in UniqueId::uniqueId() - Fix memory leak in error message for msc_rules_merge C APIs - Return false in SharedFiles::open() when an error happens - Use rvalue reference in ModSecurity::serverLog - Build System: Fix when multiple lines for curl version. - Checks if response body inspection is enabled before process it - Code Cleanup. - Fix setvar parsing of quoted data - Fix LDFLAGS for unit tests. - Adds time stamp back to the audit logs - Disables skip counter if debug log is disabled - Cosmetics: Represents amount of skipped rules without decimal - Add missing escapeSeqDecode, urlEncode and trimLeft/Right tfns to parser - Fix STATUS var parsing and accept STATUS_LINE var for v2 backward comp. - Fix memory leak in modsecurity::utils::expandEnv() - Initialize m_dtd member in ValidateDTD class as NULL - Fix broken @detectxss operator regression test case - Fix utils::string::ssplit() to handle delimiter in the end of string - Fix variable FILES_TMPNAMES - Fix memory leak in Collections - Fix lib version information while generating the .so file - Adds support for ctl:ruleRemoveByTag - Fix SecUploadDir configuration merge - Include all prerequisites for "make check" into dist archive - Fix: Reverse logic of checking output in @inspectFile - Adds support to libMaxMind - Adds capture action to detectXSS - Temporarily accept invalid MULTIPART_SEMICOLON_MISSING operator - Adds capture action to detectSQLi - Adds capture action to rbl - Adds capture action to verifyCC - Adds capture action to verifySSN - Adds capture action to verifyCPF - Prettier error messages for unsupported configurations (UX) - Add missing verify*** transformation statements to parser - Fix a set of compilation warnings - Check for disruptive action on SecDefaultAction. - Fix block-block infinite loop. - Correction remove_by_tag and remove_by_msg logic. - Fix LMDB compile error - Fix msc_who_am_i() to return pointer to a valid C string - Added some cosmetics to autoconf related code - Fix "make dist" target to include necessary headers for Lua - Fix "include /foo/*.conf" for single matched object in directory - Add missing Base64 transformation statements to parser - Fixed resource load on ip match from file - Fixed examples compilation while using disable-shared - Fixed compilation issue while xml is disabled - Having LDADD and LDFLAGS organized on Makefile.am - Checking std::deque size before use it - perf improvement: Added the concept of RunTimeString and removed all run time parser. - perf improvement: Checks debuglog level before format debug msg - perf. improvement/rx: Only compute dynamic regex in case of macro - Fix uri on the benchmark utility - disable Lua on systems with liblua5.1- Remove rhetoric part from descriptions.- Remove libltdl7 from build dependencies- Make use of %license macro - Make use of %{version} variable - Sort dependencies alphabetically- Initial releasei04-ch2d 1694076064 3.0.10-bp154.2.3.13.0.10-bp154.2.3.13.0.10modsecurityactionsaction.hanchored_set_variable.hanchored_set_variable_translation_proxy.hanchored_variable.haudit_log.hcollectioncollection.hcollections.hdebug_log.hintervention.hmodsecurity.hrule.hrule_marker.hrule_message.hrule_unconditional.hrule_with_actions.hrule_with_operator.hrules.hrules_exceptions.hrules_set.hrules_set_phases.hrules_set_properties.htransaction.hvariable_origin.hvariable_value.hlibmodsecurity.somodsecurity.pc/usr/include//usr/include/modsecurity//usr/include/modsecurity/actions//usr/include/modsecurity/collection//usr/lib64//usr/lib64/pkgconfig/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protectionobs://build.opensuse.org/openSUSE:Maintenance:18063/openSUSE_Backports_SLE-15-SP4_Update/e42d5000c111612c7daea99c07461d89-modsecurity.openSUSE_Backports_SLE-15-SP4_Updatecpioxz5x86_64-suse-linuxdirectoryC++ source, ASCII textC++ source, UTF-8 Unicode textpkgconfig filePR[Qlutf-8755af60b0071e46dc0fc6f216189f5e17ab3f76701ee2ebb5f099a74f5fe489d? 7zXZ !t/H] crt:bLL (f?Elvǹ?{̑1:ϟ(^7F@X@4 BS\StNodVW ԉxz9`kC1raVz-CFu߶7igbǫnD mu4$349!<7)brfhIy̗VK)V(<S`6MWC]8&@Hru,T ҝo}CfޝCp0)1"M&x 7Ә`uT >12BUԴў0Dl=@ _T_U(`." ei9B$Et2@Q<+N.%pOMɏwhQOpBASPfeS~U+Įv6Ue;/]{)k-G~2qWOK-&D`{{"6y Ya]C0 cޘDـ2=" !W!6:P] ܅ ]xoylUh BV`fXg6ɀ)ߵ)bh#Wm) ,~~J r8kOb f~//Q-`O.<̒/uOf^wa61PpeL̪|kߌJK@YEV' .^TONІoP@d8UCP{d&\DDi[8 _*'";3#ji*]kҠ6VƆay[޶|JMHLYVNŀ|0qd-MԪDF%[ZǙ,PV~;m D< (@J7Q$szӁP(r"\wI]唑|r`-NoeՎ{s:3+]&k.2LV< x ٬wvohKJ ?lg wzy׆GYxMĵQ8UCcNr"K uey*ǣm }|ĶQqOQXL׏%uÞR+o'9ذp y@R>,ߡבM\-[3O)b7CqoJ3##Z^2=W2IxxEp\sK5VXf[-4$}V]_AV_` B 'wOXADæ1Xvx?z/{+Wrb YS`İ4gKQ#XOR)d؏ ,⸥UU96r )q-,u T,gCzKMB'Lx?w^psSB^@Z@gSH-ls;,u(Ɍ*۩oA ğFWHBuaLƁq΃&S߂C[P= zi"_Y DVߡT¿J<5}-GӶ@>[^aKZ0fwsf5w%L(8OjA@}fUd!EGZGmNߑ F"y!vR :wQ20[KS$Qg6F*頿lq@vUsdS*WD,ݡ2gK^t)2Q n= /)*ي j{Rb{" OcvBm>mpg9hP+H-O%zj?wS`/~3w'QV'rݯdžKFwETbWTم Fu=+W$.br!ɼk!}=+bak%d>(].PlɎ(DFfl|Z{ .DcwB y[aE7ǎNop- Ӽ+a-2קvyu/b [YK˥ vw*utJLE}q!$I=ch鉐#De/_7 s= H䳕ƒ>knV(Io:vaM7_ ^lɖ9+YϭTˮUm$h>˗Ea[jK53ntH h&O/X#y׍ ;Ͷ|UN/:mST:"faWe/l'A<3J\ڋ6ґ|,3KD fZGF3F%ﳺ:u/0c_myLxpB3F [E48%r-w)@F1-- /?dTO-NE?b*nz`-Kĸ^j7 b::kJp8{Y׮c&HG :`A< /0BhF`_ `҈XYDTCm>g eTU(9Hݸg&+ U%ͅx6eى4 &.0(DT ĉ~Ow}'I27w>gQH6]zER}2U @ Hw$zZg(Gm:8B~sl)H-a%7}֮v+0v@D)PWhwA{3@hlJ0PI󮭶0s}؉R=>6Ec?T,"pGb1/XOxrrcYѤtkewFZIz0;s@Kn3A=i9c?V$ǗF:\m |aDz "4րvc/\F\?#FX ()cѱ}/bd,5Ʒ/x_E?X;Ļtuw乖x=̜"ai-r zaoJODa `,,m[JF#0)N] #](!Ur4‟a R, QT$*[ v j ta-pF P #?Pt+h湊ZIhjPw )I*7PM>pnYk!]ĭIϚN 3οqpRR<+ WO" {D 7d4t( ]OtgdzyQUs-]A?/2A,Uvw1ǝ19d9r?ނqYOz+IH ^ݥ?y'8&Q42 {US{.@Aq_2b. zU2:z]@^㵲â+O=j-w6]ǝ*Χ.\p-cTFLP7څԅRs論TH"f[x.20u*(}kA `48HU<5?,zq{rUǁ'αPRZǪBb_ǡ`}=$ES'Wzu2mjCVff7-A"i!;XGc\9bgeR+ML$*NJ؛Zb1}M!` %o`%Kn/7]X`JV u rJ^9Db?(z6Tw478)*( n3&^ή&&ڪn׳֭"b_BZ.kTxMH}Й2Om%_Bc3|jt$_M] y W !-e^/StfsiFԊqzs wA I*ޣLp9iG:b =wQgÜ⩋0N~پ+rq@ѧpJJ,"\ Jԍ5MvYq$Kac)i 1Q,*CW_ pWc:'Tu)M3HjE8571gmUn@MA'5-R(fϨk ٰs*ΩՆNPNØ559$O09iD\4AM($A5lR;G qD#UjzwIe-$>*>˰d%Z(4YlT̄("dX @U JZ+iی "TXSxŪ*R`ע+4M+f0~F7s_uGOS!] dD?x^4O8ܡW T⭚nnoy"|SCv| 04û]"Z]&7 v,ŮZVNJ0.:ź BN\ } bDKNRsxl~CXԂ#qGi溚ʂ.`!Ѓ30!CBA zu3 Nc[+gPJwJoFc_8˴cf繝6 =t4F̆ґNPc]fasyĔ5P/'ŐG"+(-#.FM™WQ+Q\=A]Rd`A5aµ«πQ7`sp珐D~hc5%w/K半pay7sRdÌ*6j#$ZN($ʖ$Bt :'eho9qӅAߚ|Mk |/ofFvF" 3m迩!eaמ-7P8;_iN vI46c HxdlZޒcIwB y^eG*H+7 ah*O׸?z fy7nq ԗ$Z B [J& G3s"#d7.ԣ%|Xk"x:(BlG&$>s2a//v7jEޖ{B?*AgC@BpŀK6^;bgl ; f!kɳbn4 j$T]H "') x'${מ"L?P|n\Q)GzO Kj%PTDNIt5 =zq]\2Wdψ G\~ˣkܞ~;9|6[!ڣJS RZ6G<; c_j,Ř63bIM7);!Dm@K ŒXKV 97Sryu5p8SL'+D ]>R~4N8 KSi(I]m`s™u_n\$.]QhD MMr1tb#lx,b6rƵ+Q@ e<59㰇+i(U<T,#҅Q6^vǗ"KMMՊ} &5v"tc.QP@ܸIH$3\8_qaQMm}=ȩB;U>zBǐ均_aL_:Rf :rt=<Ozx7huN\rެЅ$Lq$:o-ۍT8yd2&G#*Pzf/MU* ,kyc5g~M ãuSH_Yn=5TM$#ѦoAɎq2^ TeA9 0*+A/$ 3!j4U?ƍ"jS';,w3i4 هiٔcBٽ]DeKJj tA>TѺtP +#߿p7UW,>`r-j1Ne=z D]!KAyw':|^Xy/ U<%wݵFƈLUz=u;Lke?vu~kq\*rXSY2I">ɂ͊xR ,Z1|!/FeӮ]lkn|yfG1f]1nhYZ N搪gtȊ a(&QLGKf'51Bb1y6< sX AΐWD#mzWSPܥwcm&gXillΔZ_y͎,q]~]_ sڸ~^_ꀎ Ir[O׏Ϝ5#2h8n]yb@~hQO}(1;'\7⾛G8o4ê!1*:"{Epѷgӟ>LCZڥn0%;טзMd:%%9%ْxΜXTCk1_>WeyVo^> >@ɨ/9J/4ƽU$eʢԔJτίd-7lXk5A?tfhMA7Ȳ:P~{֤pZ&C;S45WnenÎ>> X Jmc}SHA|OF8)q]'\:נ"NM ?2* y"~A ~|蚐߀@7I0fDM!Ojבp0VRb?xI@u>S|]/|ʏvX4('U`hZ7kzk[-g21?WǴvDwՑ闸@тE\Wɇht+5co89cW*"^X zl"Q3dtw@o2u70a)L }j< <2B?j:+'|z([bM) )lFWMW]PЄÙժYoF- D`71:΃wI@)8 o. 3?k~A b L_cam"BZmBi;>>M-pÉL~~NqWYs01"wlkm,ic J8-oxMi1TwՆ˯&V 3#JrUfa~u&N9BRnשRBv<) n0!i6/A< `@L GVfTF`ӦBfVp)f !I"9Ik<[bbV9Rj1-c0չ #C%Y``Z V#"a(? #|A $5nس>J8>b}JEEqc-|-`+5J 5ȍRZnˋ_ql߱鍧flGN31##(ϴ3]QC[{9bWJ|ajj̷?K r^hջ\r~r)Һd#9r`C!zCZt)%u2U3RwpnF#C;!K,( 5D9R _ۄjKaE }05 \ A/j2Hч`K"Im{m}I- [*nm~vMVܓ՜rWȩk-)DڿV溘 V |ǁfڇ''ۣ]ۨ*")Pt%xzyh \i 7Zujs% MD<mbN$,dfɐmWX'Jnnh'IGFVܹu@' o(Pg\Ò=z#6+~EOoԒei(QI([LgP\ɊDdcp,4'!P1BtHgז?RHG+XAP!2oX.*vGiqh%1bK8N1,ڣx<$C|3E][6!Eś@4,1ޤƌ:返驧U@3YM] ﳈ.W7Cߣ웹\.jocU_#H+* +˷\nxNv/Ϡ粔b Cu hBXIo˪„m 4z&)h@t;Iuc/C 9Q-"9nōB5c0h3RР6ђd"srK5K/8Q#*ņ(F/_x[3ʄBti7JC=TL'6]~Rs[XY]=S$hWЁn%#@8\fhL-UW4l26Xb⫉kX]dz HqN{mp^Cmq,H1ގ3uGj^<RFjŔ/WRV<;4\wPREV~3Hf=Tzxq)vj2W$lo~ H ]=<_] $BѸ@flV̥3OO/9NJHhܙD\UNbaCЅ49B,Uaq\?i?D1N">,aQJɴý?P$\ue/ǂw{STLE$!om] h \ J(]dNzn0MVά5r;Ou5׺V;{gqy.,GBִV? 8vx,aq9liiSer]"^\@`}7"pL0;\ Ey_aޢ|f6@#h6}!=ɊNNRv|ĥ%rL@^N,gk2BnDV|3^9 =XʘDя_76Jl MWQaF+/Dk@z&B4BEF6{O] YmshJؕ=RC;Z>USf09K1QY¸LvCmr)^=Ydc+LLdG磔;Oܓd,2>A:R̊ޥ8`O9 FI44 d>oFx- Nb#3X3|&qsHkܯ$,)%2Q"4caJMD^|R<` &(Ciۗ7Ǹ/evRznv۳nc%2Hn"&:21ܤN&)qZpQsq]N➵{ep Y0, Q@K59 $NN~IdrxcPxH[^*tS˜ۉ^ƢghFY&3{q-B5®J[ў?]٭>Б};LƎN i^"D~@9I*lx aE0>&[Jdžul \N?ڢ, Zܩe(x˪ 2MU ͮzlUP&,`_k'<&0ig]t9 $!,qiH]?ԒI꧿T rArfe P#ܟh]$j?,Ɵv4jsK4aAwbE"HHt )>eNk3"EaӪ$Ek3z- tZ M%_jrIdF5(jyMEwa &;{c?j&mZ2rf\.p`Yi.qLg<U H Jɽ&Imr2mU`] A5uhMoG 19001XDjXI !)''iݻM ˂vJH?C >S4FJ1ui,2I>#ALZ4gD6M\)m@FV<}xRZ> Z&Ԏ=m~9\q TT#OT_`YYW T: ^õ`V 'LT _^+a$ty0e?.3Iq!MgH)k{x${+Ba9zY|S>Uiq#R\ nQBTS* 5 ?0tpY(aFX[@9nU0N.XޱJA?n,]\g;gF*!iTz!j1ayƃNc{ָ`u8'%g(ZB,\C7iiY센wL_b?|$& C(*sY`JgyoI;дB*xX%`LXe&%!aI ixgwֲM鼻)I0VY^lgrN _GɳDz\2>igh$!VU+q߹_Cw).r`NZ/)byH1FSK-tO!6{;>JX:2tG,9Ł6 KS~#B  ^{9̍0Fl,Ʃ|_F^_l1Gzt=Q UjhFybav_ 0a,1xM/{<̕ERBA q iQ2Xln40~bW^df8 4ڥoj5dzOhǣZ$?6{2-t?7g̩/xkmn@G <}2/DS`Ȟ#i4U. zc3p4d͆, qqqk3t!hEK׵X cU%}˩ :"2n'B$R(Rɦg<Ԥ$tGdaF.~W18٘cmU~xF-Tόg+hX ԸLkO~Z' pEsZBRkb@>8{{<+Rm OmZ±l C-5c#?β5o)03$ոnu1 :Vu3Dlz~ ޚ>RB rQMv 1Uaf>Ƒ$4s:Q4>ee* =+Y[m \x!41i^I р.\ {!wL׼x @߿e=HR$67ٚI #NDP a H[q@;t,rK $:9~)(/<ݢIM"E㽹")1m; oY-u8ZC(=@<%49n{ï~ml)Yv$iȇ;W3_ԫNbr^"|p7<(o?]nY;ߔ$ttO{| P8ՠ2H/0}HVli%O'|I+U(Q=Ya|TDwDZ̟`Gj^Y9:;DR+@Cc H-c?0N0o24۝{$Xݘx^^3Zp? ≤ZQ`h8&%qZPV<`o1)'.)rE-UNPIjyum˳M!B<AksfұAG F(Ԝ"D.j= (<9j$ZA~] @UgVnQp-/}=r! 4鹘y%`yX=!Z4#$جYok4 >u0팦 0pCBb{foUTR~ k\'e;=BJq"YYU=;b "(ya*)WDᬇaU.UpZf!}X=*Ia/A"a~pw1*Z]|~澈UE_A-XzA O”f&&oQY I{w./Wn"Ծ`2!'Ƌ 3^Bz{C2/b9ȝ Kw$3V6YefK7ԾAHߩ]_C8DAKeҹw-;q$L># #18D2qˆj*8@Ɨʅc>׿ FK\7Y X &V4*MHADov3Ɋv6^aGNڐw0wi%Uku4$v Orcl_74qaEwg! 7Bxq,6('WDY(o۲~UxmZ\"Tc R ̀JY\}]f{U]P‡,EQyȤЉcě\3^LREPg{wa*Iv %//= \%l VU ]),EC7BU=V*#c>