freerdp-proxy-2.4.0-150400.3.15.1 >  A cRp9|M$ e}l]{x vKqy$-u#+&%"Rp%9PKXD78 pS4ZCHڗ~^ D(l{:Eˈo qHÜ׊ݼoy'Pkē *[_ie[.ήIL z$[<\ٗ6B:3u+A5*9na>4#,M9, 6GJ \303dcf0f7aa2150610f387eedec2016d701848725f75e1bfb2d621789803df16983b0fe2907676405bd9dc1e5dc0e10c26cb563aTcRp9|L8ׁwMVQ$BØ3~DbkaQ! Z9\}::vҞ!bmB οYe: ɣs1jNp7W-Vȡ5ۓ4tRuk*v}™) wo4$h}.Ъ6?IDz@{%8"'xÌ*)%Jĉ:GҔ^t?Ca{oP߃NjU]YMajsgUssae~_  >p>d?dd $ W 5Va w       @Dl   (8090:0F`GaHa IaXaYa\aD]aH^aVba`cb dbebfblbubvbwc|xcyczccccdCfreerdp-proxy2.4.0150400.3.15.1Remote Desktop Security and Monitorig Proxy ServerThis package contains a proxy that allows to select specific features and channels allowed for all connections passing through. It allows monitoring of the running sessions.cQibs-arm-2SUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Productivity/Networking/Otherhttps://www.freerdp.com/linuxaarch64cQ2de52a2d7622bb1ac5eb50b88e50ffcc954bbfe21c1974edb6160a4aeb3422e7rootrootfreerdp-2.4.0-150400.3.15.1.src.rpmfreerdp-proxyfreerdp-proxy(aarch-64)@@@@@@@@    ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libfreerdp-client2.so.2()(64bit)libfreerdp-server2.so.2()(64bit)libfreerdp2.so.2()(64bit)libwinpr2.so.2()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3cEc\cN@bL@b@a^@a]aEaD@aD@aA@a@a`OL@`<@`7@_@_^@^@^^^I^@^@^T@^^t@]@\@[@[j@Zz@Z@Z`@ZkZWQZY@@YKYKY=0Y;@X~@XW local * #gh:FreeRDP/FreeRDP#6985: Support newer FFMPEG builds * #gh:FreeRDP/FreeRDP#6989: Use OpenSSL default certificate store settings * #gh:FreeRDP/FreeRDP#7073: Planar alignment fixes- Updated to release 2.3.2 Noteworthy changes: * Fixed autoreconnect printer backend loading * Fixed compilation on older mac os versions < 10.14 * Fixed mouse pointer move with smart-sizing * Added command line option to disable websocket gateway support * Fixed drive hotplugging issues with windows * Fixed smartcard issues on mac Fixed issues: * #gh:FreeRDP/FreeRDP#6900: Transparency issues with aFreeRDP * #gh:FreeRDP/FreeRDP#6848: Invalid format string in smartcard trace * #gh:FreeRDP/FreeRDP#6846: Fixed static builds * #gh:FreeRDP/FreeRDP#6888: Crash due to missing bounds checks * #gh:FreeRDP/FreeRDP#6882: Use default sound device on mac- Updated to release 2.3.1 Noteworthy changes: * This is a compatibility bugfix release readding some (deprecated) symbols/defines * Also add some more EXPERIMENTAL warnings to CMake flags as some were not clear enough. * Fixed a memory leak in xfreerdp (mouse pointer updates) * No longer activating some compile time debug options with - DWITH_DEBUG_ALL=ON which might leak sensitive information. * Added -DDEFINE_NO_DEPRECATED for developers to detect use of deprecated symbols- Updated to release 2.3.0 Noteworthy changes: * Websocket support for proxy connections * Progressive codec improvements. Reduces graphical glitches against windows and ogon servers * Fixed +glyph-cache, now working properly without disconnects * Huge file support in clipboard * XWayland support for xfreerdp (keyboard grabbing) * Improved wlfreerdp (wayland client) * Option to allow keyboard scancodes to be remapped manually * Improved mouse wheel behaviour when scrolling * Improved dynamic channel behaviour, more stable event detection * New connection state PubSub notification: Clients can now monitor current connection state Fixes: * gh#FreeRDP/FreeRDP/6626: Fixed parsing of FastGlyph order. gh#FreeRDP/FreeRDP/6624: Added support for xwayland keyboard grab gh#FreeRDP/FreeRDP/6492: Added clipboard CB_HUGE_FILE_SUPPORT_ENABLED flag gh#FreeRDP/FreeRDP/6428: Improve NLA error code logging. gh#FreeRDP/FreeRDP/6416: Http gateway message support gh#FreeRDP/FreeRDP/6753: List of pull requests to backport for stable-next - Added freerdp-rpmlintrc to supress a false positive as gethostbyname() is a windows-function call not a unix one.- Updated to release 2.2.0 (boo#1174321, gh#FreeRDP/FreeRDP#6381) * SECURITY: CVE-2020-15103 - Integer overflow due to missing input sanitation in rdpegfx channel * Sound & mic - filter GSM codec for microphone redirection (gh#FreeRDP/FreeRDP#6263) * windows client title length (gh#FreeRDP/FreeRDP#6335) * "Alternate Secondary Drawing Order UNKNOWN" (gh#FreeRDP/FreeRDP#6370) * remoteapp with dialog is disconnecting when it loses focus (gh#FreeRDP/FreeRDP#6298) * v2.1.2: Can't connect to Windows7 (gh#FreeRDP/FreeRDP#6299) * fix: memory leak in nsc * urbdrc: some fixes and improvements * build: use cmake to detect getlogin_r, improve asan checks/detection * server/proxy: - new: support for heartbeats - new: support for rail handshake ex flags - fix: possible race condition with redirects * Drop upstream fixed patch: freerdp-CVE-2020-15103.patch - Removed freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch- Drop BuildRequires of libavcodec for Leap/SLE (bsc#1174200)- Added freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch which fixed frequent crashes described in boo#1173605 and gh#FreeRDP/FreeRDP#6298- Updated to release 2.1.2 (boo#1173247) * CVE-2020-4033 Out of bound read in RLEDECOMPRESS * CVE-2020-4031 Use-After-Free in gdi_SelectObject * CVE-2020-4032 Integer casting vulnerability in `update_recv_secondary_order` * CVE-2020-4030 OOB read in `TrioParse` * CVE-2020-11099 OOB Read in license_read_new_or_upgrade_license_packet * CVE-2020-11098 Out-of-bound read in glyph_cache_put * CVE-2020-11097 OOB read in ntlm_av_pair_get * CVE-2020-11095 Global OOB read in update_recv_primary_order * CVE-2020-11096 Global OOB read in update_read_cache_bitmap_v3_order * Gateway RPC fixes for windows * Fixed resource fee race resulting in double free in USB redirection * Fixed wayland client crashes * Fixed X11 client mouse mapping issues (X11 mapping on/off) * Some proxy related improvements (capture module) * Code cleanup (use getlogin_r, ...) - Removed obsolete upstream patch freerdp-bug-6205.patch- Updated to release 2.1.1 (boo#1171441) * CVE-2020-13396: GHSL-2020-100 OOB Read in ntlm_read_ChallengeMessage * CVE-2020-13397: GHSL-2020-101 OOB Read in security_fips_decrypt due to uninitialized value * CVE-2020-13398: GHSL-2020-102 OOB Write in crypto_rsa_common * Enforce synchronous legacy RDP encryption count (#6156) * Fixed some leaks and crashes missed in 2.1.0 * Removed dynamic channel listener limits * Lots of resource cleanup fixes (clang sanitizers) * A couple of performance improvements * Various small annoyances eliminated (typos, prefilled username for windows client, ...) - Removed freerdp-bug-6175.patch and freerdp-bug-6207.patch because included in upstream- Added freerdp-bug-6205.patch to fix reading newline on certificate accept gh#FreeRDP/FreeRDP#6205 - Added freerdp-bug-6175.patch to fix Certificate Checking Recently Broke gh#FreeRDP/FreeRDP#6148 - Added freerdp-bug-6207.patch to fix Abort on first possible certificate validation error gh#FreeRDP/FreeRDP#6207- Updated to release 2.1.0 (boo#1171441) * Fixed CVEs: - CVE-2020-11039 - CVE-2020-11038 - CVE-2020-11043 - CVE-2020-11040 - CVE-2020-11041 - CVE-2020-11019 - CVE-2020-11017 - CVE-2020-11018 * Fixed leak and crashing issues: - gh#FreeRDP/FreeRDP#6129 - gh#FreeRDP/FreeRDP#6128 - gh#FreeRDP/FreeRDP#6127 - gh#FreeRDP/FreeRDP#6110 - gh#FreeRDP/FreeRDP#6081 - gh#FreeRDP/FreeRDP#6077 * Noteworthy features and improvements: - Fixed sound issues (gh#FreeRDP/FreeRDP#6043) - New expert command line options /tune and /tune-list to modify all client settings in a generic way. - Fixes for smartcard cache, this improves compatibility of smartcard devices with newer smartcard channel. - Shadow server can now be instructed to listen to multiple interfaces. - Improved server certificate support (gh#FreeRDP/FreeRDP#6052) - Various fixes for wayland client (fullscreen, mouse wheel, ...) - Fixed large mouse pointer support, now mouse pointers > 96x96 pixel are visible. - USB redirection command line improvements (filter options) - Various translation improvements for android and ios clients - Removed upstream patches fix-freerdp-2.0.0-usbdk-build.patch and fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch- Updated and reviewed make command and added fix-freerdp-2.0.0-usbdk-build.patch to fix boo#1169679 and make USB working again - Fixed build for SLE_12 - Cleaned up spec file- Add fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch in order to fix boo#1169748.- Added cairo support for scaling - Cleaned up spec- Removed patch freerdp-Fix-realloc-return-handling.patch - Added pkgconfig(libusb-1.0) for building - Added new package for freerdp-proxy - Cleaned up spec file - Updated to release 2.0.0 * Fixed CVEs: - CVE-2020-11521 - CVE-2020-11522 - CVE-2020-11523 - CVE-2020-11524 - CVE-2020-11525 - CVE-2020-11526 * Fixed security related issues: - gh#FreeRDP/FreeRDP#6005 - gh#FreeRDP/FreeRDP#6006 - gh#FreeRDP/FreeRDP#6007 - gh#FreeRDP/FreeRDP#6008 - gh#FreeRDP/FreeRDP#6009 - gh#FreeRDP/FreeRDP#6010 - gh#FreeRDP/FreeRDP#6011 - gh#FreeRDP/FreeRDP#6012 - gh#FreeRDP/FreeRDP#6013 * sha256 is now used instead of sha1 to fingerprint certificates. This will invalidate all hosts in FreeRDP known_hosts2 file and causes a prompt if a new connection is established after the update * First version of the RDP proxy was added (gh#FreeRDP/FreeRDP#5372) thanks to @kubistika * Smartcard received some refactoring. Missing functions were added and input validation was improved (gh#FreeRDP/FreeRDP#5884) * A new option /cert that unifies all certificate related options (gh#FreeRDP/FreeRDP#5880) The old options (cert-ignore, cert-deny, cert-name, cert-tofu) are still available but marked as deprecated * Support for Remote Assistance Protocol Version 2 [MS-RA] * The DirectFB client was removed because it was unmaintained * Unified initialization of OrderSupport * Fix for licensing against Windows Server 2003 * Font smoothing is now enabled per default * Smart scaling for Wayland using libcairo was added (gh#FreeRDP/FreeRDP#5215) * Unified update->BeginPaint and update->EndPaint * An image scaling API for software drawing was added * Rail was updated to the latest spec version 28.0 * Support for H.264 in the shadow server is now detected at runtime * Add mask= option for /gfx and /gfx-h264 (gh#FreeRDP/FreeRDP#5771) * A new option /timeout was added to adjust the TCP ACK timeout (gh#FreeRDP/FreeRDP#5987)- Disable LTO on aarch64 and %arm to fix build- Add freerdp-Fix-realloc-return-handling.patch: Fix realloc return handling that results in memory leaks (boo#1153163, boo#1153164, gh#FreeRDP/FreeRDP#5645, CVE-2019-17177, CVE-2019-17178)- Add Requires: lib%{name}%{major_version} = %{version}-%{release}: freerdp should depend on the same release of libfreerdp2 (boo#1129193)- upgrade to version 2.0.0-rc4 (FATE#326739) * Fix the following issues: - CVE-2018-8784, boo#1116708 - CVE-2018-8785, boo#1117967 - CVE-2018-8786, boo#1117966 - CVE-2018-8787, boo#1117964 - CVE-2018-8788, boo#1117963 - CVE-2018-8789, boo#1117965 - CVE-2018-1000852, boo#1120507 * Security and stability improvements, including boo#1103557 and boo#1112028 * Refactored ntlm_av_pairs API * gateway: multiple fixes and improvements * client/X11: support for rail (remote app) icons was added * the licensing code was re-worked: Per-device licenses are now saved on the client and used on re-connect: WARNING: this is a change in FreeRDP behavior regarding licensing WARNING: this is a change in FreeRDP behavior regarding licensing. If the old behavior is required, or no licenses should be saved use the new command line option +old-license (gh#/FreeRDP/FreeRDP#4979) * improve order handling - only orders that were enabled during capability exchange are accepted. WARNING and NOTE: some servers do improperly send orders that weren't negotiated, for such cases the new command line option /relax-order-checks was added to disable the strict order checking. If connecting to xrdp the options /relax-order-checks *and* +glyph-cache are required. (gh#/FreeRDP/FreeRDP#4926) * /smartcard has now support for substring filters (gh#/FreeRDP/FreeRDP#4840) for details see https://github.com/FreeRDP/FreeRDP/wiki/smartcard-logon * add new command line option /smartcard-logon to allow smartcard login (currently only with RDP security) * add support to set tls security level (for openssl >= 1.1.0) - default level is set to 1 - the new command line option /tls-seclevel:[LEVEL] allows to set a different level if required * new command line option: /window-position to allow positioning the window on startup * client/X11: set window title before mapping * rdpsnd/audin (mostly server side) add support for audio re-sampling using soxr or ffmpeg- upgrade to version 2.0.0-rc3 See: https://github.com/FreeRDP/FreeRDP/milestone/9?closed=1 * Improved and cleaned up the command line interface * Fixed automount issues * Fixed several audio and microphone related issues * Implemented AAC and MP3 codecs * Added Wave2 support * Addedd dynamic resolution with full screen toggle support * Improved redirection handling and certificate issues * Improved automatic reconnects * Improced connection error handling * Fixed invalid pointer, double-free, integer underflow, buffer overflows issues as well as other memory leaks * fixed X11 Right-Ctrl ungrab feature * winpr: Updates time zone data to April 2018 * added libressl compatibility- removed SLE11 condition - removed no_connection_to_windows_10_17101.patch - removed -DBUILTIN_CHANNELS=OFF switch - explicitly set -DCHANNEL_GEOMETRY=ON - Disable the new X264 and OPENH264 codecs because openSUSE does not provide them - upgrade to version 2.0.0-rc2 See: https://github.com/FreeRDP/FreeRDP/milestone/8 Noteworthy features and improvements: * IMPORTANT: add support CredSSP v6 - this fixes KB4088776 see #4449, #4488 * basic support for the "Video Optimized Remoting Virtual Channel Extension" (MS-RDPEVOR) was added * many smart card related fixes and cleanups #4312 * fix ccache support * add support for memory and thread sanitizer * support for dynamic resloution changes was added in xfreerdp #4313 * support for gateway access token (command line option /gat) was added * initial support for travis-ci.org was added * SSE optimization version of RGB to AVC444 frame split was added * build: -msse2/-msse3 are not enabled globally anymore Fixed github issues (excerpt): * #4227 Convert settings->Password to binary blob * #4231 freerdp-2.0.0_rc0: 5 tests failed out of 184 on ppc * #4276 Big endian fixes * #4291 xfreerdp “Segmentation fault” when connecting to freerdp-shadow-cli * #4293 [X11] shadow server memory corruption with /monitors:2 #4293 * #4296 drive redirection - raise an error if the directory can't be found * #4306 Cannot connect to shadow server with NLA auth: SEC_E_OUT_OF_SEQUENCE (boo#1085416, boo#1087240, boo#1104918, CVE-2018-0886) * #4457 Fix /size: /w: /h: with /monitors: (Fix custom sizes) * #4527 pre-connection blob (pcb) support in .rdp files * #4552 Fix Windows 10 cursors drawing as black * smartcard related: #3521, #3431, #3474, #3488, #775, #1424- Fix boo#1090677 activate pulse optional component- Added no_connection_to_windows_10_17101.patch to fix Windows-connection-problem after Windows march 2018 updates. This fix is related to boo#1085416- Do not use xorg-x11-devel, instead buildrequire individual x components. - Only attempt to ge rid of __DATE__ and __TIME__ if SOURCE_DATE_EPOCH is not set.- Users can connect only once wo windows sessions due to [#]gh/FreeRDP/FreeRDP/4348 Therefore WITH_GSSAPI has been disabled until that issue has been solved- Updated to 2.0.0-rc1 Noteworthy features and improvements: * support for FIPS mode was added (option +fipsmode) * initial client side kerberos support (run cmake with WITH_GSSAPI) * support for ssh-agent redirection (as rdp channel) * the man page(s) and /help were updated an improved * add support for ICU for unicode conversion (-DWITH_ICU=ON) * client add option to force password prompt before connection (/from-stdin[:force]) * extend /size to allow width or height percentages (#gh/FreeRDP/FreeRDP/4146) * add support for "password is pin" * clipboard is now enabled per default (use -clipboard to disable) Fixed github issues (excerpt): * #gh/FreeRDP/FreeRDP/4281: Added option to prefer IPv6 over IPv4 * #gh/FreeRDP/FreeRDP/3890: Point to OpenSSL doc for private CA * #gh/FreeRDP/FreeRDP/3378: support 31 static channels as described in the spec * #gh/FreeRDP/FreeRDP/4253: Rfx decode tile width. * #gh/FreeRDP/FreeRDP/3267: fix parsing of drivestoredirect * #gh/FreeRDP/FreeRDP/4257: Proper error checks for /kbd argument * #gh/FreeRDP/FreeRDP/4249: Corruption due to recursive parser * #gh/FreeRDP/FreeRDP/4111: 15bpp color handling for brush. * #gh/FreeRDP/FreeRDP/3509: Added Ctrl+Alt+Enter description * #gh/FreeRDP/FreeRDP/3211: Return freerdp error from main. * #gh/FreeRDP/FreeRDP/3513: add better description for drive redirection * #gh/FreeRDP/FreeRDP/4199: ConvertFindDataAToW string length * #gh/FreeRDP/FreeRDP/4135: client/x11: fix colors on big endian * #gh/FreeRDP/FreeRDP/4089: fix h264 context leak when DeleteSurface * #gh/FreeRDP/FreeRDP/4117: possible segfault * #gh/FreeRDP/FreeRDP/4091: fix a regression with remote program- Remove extraneous Obsoletes for packages that never existed in openSUSE:Factory or X11:RemoteDesktop. - Rename libuwac0-devel to uwac0-devel and libwinpr-devel to winpr-devel, as that seems to be their upstream name which packages are encouraged to stick to. - Remove duplicated pkgconfig requires (these are autodetected).- Fixed download location- Switched to official RC0 - Create wayland client package and libuwac0 package - Create separate libwinpr2 to be used in other packages - enabled gstreamer (currently disabled for tumbleweed) - enabled kerberos authentication - Update to official RC0 Fix the following issues identified by the CISCO TALOS project: * TALOS-2017-0336 CVE-2017-2834 boo#1050714 * TALOS-2017-0337 CVE-2017-2835 boo#1050712 * TALOS-2017-0338 CVE-2017-2836 boo#1050699 * TALOS-2017-0339 CVE-2017-2837 boo#1050704 * TALOS-2017-0340 CVE-2017-2838 boo#1050708 * TALOS-2017-0341 CVE-2017-2839 boo#1050711- Redo history by using changelog url - Update to version 2.0.0~git.1497095982.1dbd2d28d: See https://github.com/freerdp/freeRDP/compare/043243f...1dbd2d28d for full details. - Packaging : + Move to xz tarball in _service + Remove 3472.patch merged upstream - Update to version 2.0.0~git.1496304402.c42ccb508: See https://github.com/freerdp/freeRDP/compare/043243f...c42ccb508 for changes.- Forcefully enable PIE in CFLAGS as the automatism did not work.- Add 3472.patch until upstream #3472 isssue is fixed and PR merged this fix boo#1004108- Update to version 2.0.0~git.1477034991.043243f: * fixed kerberos authentication * shadow/rdpsnd: Fix race condition in rdpsnd channel server. The output buffer and format parameters are not protected. * wfreerdp: fix invalid VerifyCertificate callback * rdpsnd/server: decrease audio latency and make it configurable. * Add an environment variables section to the man * protocol violation: rdp_read_extended_info_packet * Added support for OpenH264 1.6 * freerdp: fix sending of TLS alert on NLA failure, add better handling of server-side NLA in shadow server * freerdp: add configurable NTLM SAM file option for server-side NLA * freerdp: make modifications to NLA server-side fixes according to PR comments * Fixed a windows 8.1 issue.- Kill off __DATE__ from built sources.- Update to GNOME 3.20.2 FATE#318572 - Add obs git integration. - Update to version 2.0.0git.1463131968.4e66df7: + Fixed memory leaks. + wfreerdp: fix name build without client interface + libfreerdp-codec: fix xcrush decompression, revert remote control fix + KB3153731: May 2016 DST update for Azerbaijan, Chile, Haiti and Morocco + libfreerdp-codec: make proper xcrush context reset fix- Update to version 2.0.0, git master branch id a7ca42e (FATE#319661), no upstream changelog available. * Warning: This is a git snapshot regarded as technical preview by upstream. * Warning: For xfreerdp, new /long-option commandline interfaces have replaced the old --long-option interfaces. Existing user scripts need to migrate to the new interfaces to avoid breakages. For more details, see: https://github.com/FreeRDP/FreeRDP/wiki/CommandLineInterface * Add Network Level Ahthentication support. * Add Windows Portable Runtime. For more details, see: http://www.freerdp.com/2012/05/24/winpr-windows-portable-runtime * Obsolete libfreerdp-1_0-plugins. - Drop FindALSA.cmake: deprecated - Drop freerdp_branch-1.0.x_fix-kpdivide-issue831.patch: fixed upstream, implemention now in include/freerdp/scancode.h. - Drop freerdp-CVE-2014-0250.patch (bnc#880317): fixed upstream 532c420. - Drop freerdp-CVE-2014-0791.patch (bnc#857491): fixed upstream f1d6afc. - Drop freerdp-fix-FindPCSC-macro.patch: fixed upstream 9148af3. - Drop freerdp-handle-null-device-name.patch (bnc#785437): deprecated, related implementation dropped. was: freerdp-fix-pulse-no-device-name.patchibs-arm-2 16723030062.4.0-150400.3.15.12.4.0-150400.3.15.1freerdp-proxy/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:27292/SUSE_SLE-15-SP4_Update/f9fe9a8578077227f2860dd6e5df1659-freerdp.SUSE_SLE-15-SP4_Updatecpioxz5aarch64-suse-linuxELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=c1d90b51b337f2ead1957e053014606fb89a710e, for GNU/Linux 3.7.0, strippedRRRRRRRR߳J+e c+utf-8157dc3a88f3a0a731d89c16d33903e1252c9dd25446da912e59bc9f7250cf447? 7zXZ !t/ o] crv9w5Ud8kMfݗDB\AkIN9dI#_yXϗ(h+Q~'y͡h3Ib^mRYC%T{O"ues~MA'])E 5OsqnUy=H "#7s 5Seo#Z&;Gpɖ2% ,j`WFT@R`[N)呿:Ҟd0. ^\ f )BI T 6|~δ 4WM. _qf2_/0)zAP^,OJ՛G}`LүrO;M::.!evXa˩\ʪ6 ׯ-ᕶrp\,s츋I7)^qQr.OLΦ{qd.헇oHStm|v;)}UIVxEq0XUϬ9f=!-E,8=1@\-zCܛ9n+S`mu F:OC=mxMR0 'EAYNwC 2\Kc:\3 {DJ)Rh:UtZaW ' n8SKɮ!_u YydwI axP!?W^YH#HsP E\QT*i<,MA;Wx?@uH<{[J!?AX8[gRmsg H$DžS.$9 3 \$a 5Tg ,l_(_ZC.0~n>e_Ҳ T{1+eؗ]i?xC3l[?ϒ mp~35`FF;`϶҈v9ԣH|^ ADv~;LCĕQʙfUt,G'-MOXUmPBc+ Dhjj!ΡlI__TY<9 2._fNwPqس:b E%40M6g1:mu HI,YZvKSR@37OgLGY P9/A֤f YUR/xF/(='LN¼打Kj+BY'齷fނ:ܺu"b;!/ IgG7,n5sĤlxeEXõW!"ԝ&kѳYyUBr(҂3n{Vqǔ, \lW8\D@r}0`r8~RL'{D]QA<1ޠfE֍G{ʥߊF.B-Bt3j`%.<@VB@J} }h4 Nhbm?>}3E^J }@ó0+ŝOI!@Gtb$ +/EBx(n2e$vbi){6Xv'кo#M ;-m0ӠZ)¡)e,)h2N;jR<:k)lv,Au\1!0He$S$G' `-'i9@mDy*TdkE$斆ZTu5H IRF؋ !iskC.'+H@tx!d97nD`h -[peg+w64cPNޒvR͵0H/6O-ULOS2Q12!}yz/O鄜XGeX ll=;3ʇki.Spv[UEdkDJK=h0 2YE.E}].8 f2#SPيv9 墮Kj]_ "e-wX`5;ZGpN mF1i K[S#…f> *j x6$֐j|Vob2bѝƒrzSWqxO<Jo]o:|?ʾTOہnJ` vc6v@~EgxirZ{%ZKR{BzPޤvhѾ*| W=A6T<(Y sAfa}*d߼뿨 t$Nʧ#tyd? ljXKv]d2^d( DR=r| TUT`+L)0_ڮ=̤&K\@3|/ dO%9qqC/urd=ʋdޖs.zs_c5*L; Vv87n YҀW̠-\΃Bz$4='XRl>@INlⵝ;bbMp*kxN(l?%z=m8S!+@ss<5/ PRLJnwpk,4L3.ϼ'X6xS}"X u9G۸; tG3zLgA0Yl܍)c-q􍏤؃PTqQOLO֑A ּ?f9@>BQM"hC]fC0[L, `[?p+k@N!_Lԇ2 >"p@B::Iݑ~Ċ]sٓ#10V-'x 6VѶVp3P^U-FRd"V%hf^kV9S;da"BQ٥ hׂd?b{_%3K˘fyȆ0XW\ yuyzHϰ5wr2G9v]c`l$BaK~33~,DtI /gI=fv%^k#B1 |VxC>re #+Fq8` &IjnB%_T'@8:AɧF'վ@vhg" GIU[1lkJ49nYY db\F7l^&p. ]f5VIMn-Y2>y cȡ?-'3]Z{o5OK^W ʏ- DJb 5hQejhcϘȊ.hDp#b,;c+2 z Of)3 ۗ&4"1uxfWZ|n4[|=9 l ~a?"6W/{F;eKaMЀJN-:zLG.C9Ǜ3:)4Ym۱cz9ܤ잱JEX!@0ƖVrE{Z~b~N>rM"pU9 f@+Ϝ^JCfJ*O+(Y#w9#磭4пp`=IX66fٵN0OX?3~lȔ{ܱg'![(.%$fKd]g2x,@ΪݛN̟~BT9bésJƊq,3*i~&2Mr r> oN+ج5> 5 1:7e"TFA2#'lU&6աGrd?r{ϛ[V>B| #kU5Ş7sFsd{D}NoiMtSDVԲZlP".VA-歎VsCN˷N3.Iqr'7%m,E4B4ei*JSs1Cur'pkdkɍԆ aͿ$k_Zﯣȡ8wxw1%A^gʪW%d.ISY>POk5oTD;xo=)/كHsoYA@k1+Ўy<Y#@U #Su"OkIcPo1^HyBőՀ7iYoWhmҧ4:`>H Tw$`{Ƃ:]Ѳ#U,+*fȶ9EIhc~+?ic\}v~{6)Ȣk%쁹`+ &9Slr+3ZJ:1~aX ̞uOZ9dћ N @ HeO=m4A 2Z'>pn~O>Pڪlp M$S&O 7_}ZSm/0fœ"ǮGKTgR#xfPƮyv'򚷋se|1%"o9Qvwi%S7A#'qw ʐH+dY"zU_ j @"z|b^i9?k|K&Jo1ISgM>BHϸg>x+ءqhe^ /XP-%b V]œ98;6;H e#lwwQAA{ zupg ׎pCoc1{g41a {cBۤ:5!d?\D>SݵQ^jU="BgCjMjS&{Z,qX@;Hr^eC oY^#֐:ؑizG{w̛yv\~{qlvJT&~6R'_=Q6DqJB.ɾM%7 YG ެ0|q")Ĭzd B FU@h)MLjӠE\qn|Po=w᪆jJuMf T7(@$v/mv\ [z54i5l"?p}(י/gTE?<_3Ͽr'>M(I3{8Δ-N+8 q}|!1Ei\LMgw43m)cS**"Rʄz =*H9ZBJW$kp߳5K=@/fp-3Sn0ٳHg㬐0~x.*u"ԋ(>ۤ|bLF>nXLA/Ҥ7a}PnƆ@D{ޢ%AF2+rxomu'&lZe>z:A4+^,]5cEg ت]>bg|3:j& V9^ >G2>}dP!v۟۹N!DJX ,զK4T'lBVk\À3p h7G"~0?Zi?CrmS;8B4zY4|Wέ77|=x:Aza?ʴ_ ͘J"[tz( YC۩-ɎKe"l \|2/ə{)q_ mggT'M"՜d{ uB>JF9 p$Tp[Aq̀~W +ݰaEQ.!|RqgiR, z t7E'A+c(5m~>g]v۵x1lJOV,hqQ3+p9%x"wՋ:DWv8bI^oOノ9tIB5SJ­N}D9-B<-=Kt {C?f&51 Tr=z dA)yq&*$lҍJNTW7\b98r֟_"!=3}*,.1mlBSBgKexJjvX."ltލq}@c/˪taB*b!H6-Fpy6 n8Eȁ?fa EJƔsx8!;Оx1:\ 4u =(:pH06QGP }{b4ZOep"QfQT@˗q(@/"vr=4R]=-f5[./彺h_ a]=!'+c" 4}+Gg8y9t{^6_N]RtyǑM^t^Nb颎y~YSmF3CԜGaX퉕?Tу-]dHP9 E9:y##9 O^gí' H;m jDiN$.3%ajB)i-ƫ?KdA[@8e?r|eMFRTƒNlQL׬?גGro1i? Zծ"nkK%@O%6!\kƛVuT >-6%;*n+tn6iIcg^cuWӖNUPWYGsA4T:}ج#%HjKɹY$fxFܦ'Rw o"d@$:`7:y Sn$hSr Hn|:ըLb5oRB>lY3U1+CσbݻB64mIATWpԱ X EŷI:vmg ɔwT,FXs]ލY B,a-a(McpG+fyqfP=)/KfִIy{ỤAx| ,aV])W4Ih%v{yG>8L^{brufQ/nT1WYe5|}M=(?*^E ,ggΧ/YG; ]|V$p NGW5Dתk/?ʔ%C ,%tڌS]JYgWF6SKp DM !An }NgG?  + żSцWNAG1_by Vi!7'c*֝"$Vy"7w1x&jb&"8'B9L{S]~Uw|nK} q%0 ?=9r,NVvjZjO:r'vF1In0T)U XvYWdXfM/!KW1d&_:nӣŒBǟNMgQğ&OO7bA= [bϾNxFP3d5 ۠Ժvڽxu<4X3_ DS^~ݯzzPGqG?I/ީdr$>ljvU5Tp̀ge0q~pwΆ_8[1k}|/.œcF_`7}#xTVexxEM>hu,1(fiL < R)4'5[o65uoS_5R5 xjt+B\0(߉R1(oF`Br*tHwOc UTx}_]x|j,k:lYW~a1̞95bŪ&UclX*);LJz٩QHn D/Ƽ#2+MeC?6uLR69BŐ[N 音;`;AI¬?V+XB*q@.XBGeBŽ)f#(<ᇾϜ}O0XХKSoYX@4__IC8OO^Ūb|82Q<]%NQ1q_̃p{B; ;H:Z\)_A0 8̓eXAp2`ct#* ̨s?Zale]/u,xEM 0=U@$ ] C2 ^8RQ6 ʕS쀿q L/^Z>C:SwcR%key"B^g\Hio ة'0`rl`iRE=xl=h5%|eV~P"oJ#u2J:4Rkb@KRΤӪaZ1|UR!%[^0vvZFlј߇$^9lqa*Uu2*{*^1H&n }gܱZZ јU ; \$B m/HĐV@iР*@hǶ&YOܷ0ж&%AMoe+G!n(k#\w\Vg+V.'QW 9vթ;AWtDzI3,R3Ǡճ;no+򼘛Td!ȴYI'/"DkEiwQKSr񖕟BhFT"7g̬p`|Vp?m(L=qS'PPWVx ֲe šFX/.9$̓L{- *^5[ߊ|Cu-bFw@~ieGޛ!-.wg}Hk\\`\sK^d 6v7ssn= ǩn5~bNf'ՙ OEI~Z 1MEEKLۄf-) IpYZ;cECV O vqϚ)~zs&nVC>֥yz uF;YKAB./lBDj=!kstuY& neqq./-Vo-|a JNX #P,\ft㍷4o(I(8v.uҼG6l7qƔ  J"ѽOq\\V9^-E$zC*tp|Z:?V) `>]q|U6]rl:#|a}?.2/xyH.mKޗF,x(x;XNӏ\pRc>Vj[[1xl f+J%PU'x pU9.1m|԰C5.pl_Й(Hew8>$z}D!tb6܄iɡ/.B9h-y=ϝQz4S5৤FAc5^2aKwPB3"XY2ŀLCQ|ק26Yn3:OȤ+s h: +I=Ha3E3VPU}h۔o#_Mc~}>U-fVa |z# ;?6$?zY.y,@ B, h:DMמ!?Mڏjlhԡ;7m2lr/ &ȡmwa`yzK5o[yk f~&@țqT\ݛۢA4xJXK-V~pRd/j䥏%,^ ?CR՜ d;?[O9AHSDŽrP;pk +)>*^-<( e_$"TqW:/31N}~.ZJsn}.AmSYE CETIIoyBZ+DKsQ4P@OVΘBV t9σ) ߄Eu4Q ܸnMWo>e{ARgDe0,xXtaE+֥Fv^a؍' Z MkXZzx5Op{ xдϔ !yAo>c 4UL4Yi36m0}zOX+%APPfP7RiM_aQNwرa\$x,(jj1,D$={:RB0?/GԪXS],l2m[YTތw{ t)O XByup 454,G$S0O+0y<׃QKsYa-riǑ-$꾃ïmrX2ϖ*ƫкAY&&$+5 ]3&Ϩ #76cZ (dOfQk7 /3yRr8q}]9Օ0XwM1S&ד@[(nJhKYa2F]HggLN(\H#bVF9LZUPctGᩲjm Dʹu4TN ,*YnnA*;wS*(Z ѧa|d|׀L>+g-fhi-d[;3Rf8<\j!Vޡ}#T4|'6o -2b8u_FdjU;Tzm/o"olxRYw}Hډeq rV|_y؄>D2ߡ: ט iq M"c"@fД঍>Ӝ$;_üVd;rzQBfmTK;ֆ.B4`?p1b~_G= f/ KdmF11Yf7'y} Gcj]J !KZlR]Bk/bÄ!7x ?.[u e@z}i݅HQ a^eFbjE DQ/Kʆ El&ŒQ,c!VVzy72I`pq}`yz-z!D`.R+kQ~}yvƴr#DˑusWlY./muC|ޓJ\1 Ԯ?}um *[槽 0Um(koppU,ZЖ}M {5t^r>!oj’ +dD5KatI4P!0̤07#hEnAT+;Wˏ{ K7a8&^0wK@%@M[{ mt4"uudVVzrlxM@Na" 656gɋd\̈jQUObjuy"dy0h*щXw/9c SZ%s$ ?3+#cLSg_&9A1#/yx$FN_r:_@t\]`;p:Y="^f BЦF=ˠy M1~26o2:tMS *[{~=ͧ"fA^{SH=16H5ӈu<.ò}ߚW'uz»_WC2ZZtmA35`n\"kWBe -N0UwV`_XӼm}md 8xbէp;9 5p6{/=>>]oHZ'ZU(ΈusS7h_']"gN M2SՆx(m5{g 4w]V sAG+bY8ՉdG$-ow$jgNdw^46y$8Zix.&lB|p )~rS͋-Pk=o=oy:J8<aGE4`n xO`,_cs6 kK܇σP?3֕jF][G[;?2@~ia4/ i~-U")`G 玬ld)~,LN9j;SUN_f0X-3c1N7hHS Z9 J{(SݧCă2،pjWJweZArhԏk'}Vnd]<'| I ORc7Hc7w5Ypa؊?ڐ ]B?kJy1 4SZgW& Gd"&#%`yj#*~T{f9 V4y-bGRSdi!oB5ݽhڪUK"& pnJ%S[(`]zi>˙@rfvʱ kqk:NOdY!h)q+A5֣}h=݋R#ORxyw)H4U+}kB@~}usǬoM a;o@ XZ:|BWXy'x]Kqv^{Aa韺%]\y&6 WV7_3F]@5Kq9`'$l2DW4Q؞@19էO$FK.ڻkV:xaGFKn*LP>%,p{ٜyf~\朣kkGtFT^\oY20^AXX8AQypIYv"u$wU /-=wRTA- !֪*[GD0b8pئ*^<6 J>ǶeB2ׁt*2C͏nX钾:K;Y,OhC晩̽|`q vT&.#LHAlh6nfTԵDFޭm xϦNB'W?Y_Bff?I!m񌮓pQ]Y@1lIno2MnmIx 톫>TQCGi]SS cE5 #x.13XQ&qKŏBzF"r>W~I_k4o1A]L|X3kʉ+v+/u^rYu0XJA]!ʨC_+rBa*&CS Dϼ}J"H?EKž\-jd8t7&kPيBKtcvλvd㐼É*Z3 4!7gTEc RJҠ>4-RF,:Ky92E"ltB'sMa)KǷ*a\|5C줴f j.˛s4rlLV&ڌqZ")? 7 W?/ߙ$"sdU|Jʺm`oH7 tQOp8CQΧ/^$hҒIjv<:}?fz6s9)"Fߢ"&?"]8]܎$Kqm1Y`n9RʸBPަXpӀ E64JCU*fTKD>83EڃDfXtafۭKc'8^]kZ&dPZݡռ;> 8C!]0[!}sN`6v~ kI}v|e6P'Zxuv|}Ё"S74 /W  `$BakP-6_tmOaZb<:B^ Pv7w] j򈡹(i7T/,܂4DsHT-bH+iKO>k)q; ̚ -Ee9իs{< ٗPgFG= .xۄt 0@ƏEJgQI. cBSX?iBmDh%,[;ʍ|)s/Ѿi$#Hpb;IC!$~z(TW|i"A/=#>mT78CLlۡum4=׼n/ KY|pf'2˴_bJ*dD EƽXtklK,&=aD5]}+xcu[I`4);6mXR>lR$GG pTv0iEERtDtBc JEǵR?wn K=I\w  hh/WRXoy?P"MH~Ahہ[}G+o~jO!s2h :X7|LW$!lZ$R7aM_ : R}yɏ6[l oKE5S>vV5UZD?Ui6n[ObQ-4lv CgC5r=/4{ŀ>$"o]Zp,q'vU`?IbT"^>^\79jh~ x\ 49+VY\\DиZB>aCgaj_z< teS`}ǵ:4k#S0g LޮMgruUjCt<,}ʒC|_Ki~ӻrW.FV:F;>Vǩ}.ÞBUz]Zһvm?`w5}~Po Mg-Mmɻu݁0o#!y¯EQ6~jr"#ީl8.(ڦ/f /(kxW>՘K, K6h /z ShRLr@KrB7`&~ I ips^4bh^{ucPY]5T5H7+'gع}]xP _YQyHsz9T]kuu1*&Gt+Vzǵ7Ks=C\cl`c)z-&j/hK4=`1pV.; ,gN}wZ ,Ǟ8H#X ,CJُ*@!>[4+I b py$-ȄtZv`{bAG zsD0-Q.u‘8t%f) e۫xN}V_3$̉Sg?'5'l 5Iѻ8N쒓#ksrlOqx[1T[Uz[NIu{l`P=Z W, jooОIf) a-x&xI%Dn:7yU:]͟ 'y1)ï'c`&qxΟԠd&@pl7D"ƲKL#xM[1Oبp,^z&tf (4}mlUEy .9p՜v}Tzp,%G+MxLR'<<; XMw>nDGofwCi1O7&`F+8{5i. : n={bIX 6]>2Ҍ]O<${a|/>Wx+I{OM0WLŒ_9D0h1.Cي}ۭPZ @y73oGpԷ+cNL %G &^TD;GCQOl M{qЧsX*\^_'5F.p][SG 8OnK_^倚NIK5ޑ J ;b- {o~wѳMHlMpzˈۃM]Gj\ܩY=m<3hC٣M\EBtb壷7Ain }'_ԆFS+̒6,Du@-_(,K/UvjD^)1p9f7 v HFmt <=нx!d`͚(8 i@/0hNZ ?(u{׽.*8k[^cɶ <2P170<"&ޭEF(xF'|< s+洖DEآ԰c$ #Le@?~_ ǝ++;O8ȐrgTLH. !7 N|JjSNk!9!>f @Ȯ8;f|c7 +c!Ԝ K!? _Dҋ|Q1QLVjK^yI$T^F̜Rֹ0 '5ǛXt.[|gg0%XTmvkA9aGrCSE ⃞mҭA}S>=FuRT ̱BD Diu2Iw?oMnMrpQ5&CW~2x7C#txeW- \L-x+oA>ۡ2]<<^E\^\sUc<^n83C`0 /犴s+p029ܤxg䏴&2n~Vd<~,594~*OX}Ǧ3wMa\/k \+g3 īP hfs9' S0nw]'ƢDzȉq X0dXlczϭ=@|GK&dnk=ACc g9t'O$kaN 5]Y:Х/džs'܉F1|Bʹ"ycMJ{(]qhCVںJlYdִ?6:Q5gKߡ͘T +ߑTok[Ҹ <>0 QUX{[1|q.==r!F{zqs=,̢NL\=VLH$8we Y'<] B(z.f y*Xԃ{0̻+$p[wWC_1hpD&lR#>Q} ~av-,ԎV[s'Ͻ;uoi8%_H4E&J\kXl5F׎zr+IC:kAf&;8{[Q1sιߠgJ.Rj(Jz6Nb\Ɩ# 9-44ߠǥMeJYbz1hr9U!#E!׿j',Gt5ʲO'as/#bsx#)!VW\[p@9(Y&p\lHyWL%SGO=G]\v7^[@^6k.O5M{)orgBx|uJ+$}5 fNhmʅ_?t\}<ńm9_ŵ<8bZLaW ˇedq>227vc@M OOG!>SK C5Ԥֻ!9D3OQ~:Y ~S":8P+b&0jAeǡD7uwH昞mϤ q# k)_Z̑ hL̳w]*[S׈]8M)-]lk6*1{" WG[Yb;gn(PweK~4} +k3ݲ va;F†<\T+?9Y: BNO,_Sx U` dd^qF@QHP>H1!*Kzgsb*2)c 䪍Y3syw:QbYj̑` WLA&DH†¯-{+全U@a͜ns̫ lVt'#&U ꞷΉ@p=[I=eyY#ʁ֤=8[fH>Q|+E4BFLi~lB*NrAZvؽǚKpsNѶ YZ