freerdp-proxy-2.4.0-150400.3.20.1 >  A eGp9|H%OŴ.Z2c[̛,2JyxQeQqY'/3B_ 6kvk;(twI?R?s~٨>JsLy]=Hڿ[,ōdO;Hb0q;.\hp ;CĶK'i1j('s%2NwPWE.ghD(ybDS NƆp>e?ed $ W 5Va w       @Dl   (8191:1FbGbHbIbXbYb\c]c^cbc ccddKedPfdSldUudhvdlwe<xe@yeDzedetexe~eCfreerdp-proxy2.4.0150400.3.20.1Remote Desktop Security and Monitorig Proxy ServerThis package contains a proxy that allows to select specific features and channels allowed for all connections passing through. It allows monitoring of the running sessions.eFh02-armsrv2SUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Productivity/Networking/Otherhttps://www.freerdp.com/linuxaarch64eFe76c849930ba3f18f581259da530b123f8f96324b81ef2afd68eda6c40969de9rootrootfreerdp-2.4.0-150400.3.20.1.src.rpmfreerdp-proxyfreerdp-proxy(aarch-64)@@@@@@@@    ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libfreerdp-client2.so.2()(64bit)libfreerdp-server2.so.2()(64bit)libfreerdp2.so.2()(64bit)libwinpr2.so.2()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3c=@cEc\cN@bL@b@a^@a]aEaD@aD@aA@a@a`OL@`<@`7@_@_^@^@^^^I^@^@^T@^^t@]@\@[@[j@Zz@Z@Z`@ZkZWQZY@@YKYKY=0Y;@X~@XW local * #gh:FreeRDP/FreeRDP#6985: Support newer FFMPEG builds * #gh:FreeRDP/FreeRDP#6989: Use OpenSSL default certificate store settings * #gh:FreeRDP/FreeRDP#7073: Planar alignment fixes- Updated to release 2.3.2 Noteworthy changes: * Fixed autoreconnect printer backend loading * Fixed compilation on older mac os versions < 10.14 * Fixed mouse pointer move with smart-sizing * Added command line option to disable websocket gateway support * Fixed drive hotplugging issues with windows * Fixed smartcard issues on mac Fixed issues: * #gh:FreeRDP/FreeRDP#6900: Transparency issues with aFreeRDP * #gh:FreeRDP/FreeRDP#6848: Invalid format string in smartcard trace * #gh:FreeRDP/FreeRDP#6846: Fixed static builds * #gh:FreeRDP/FreeRDP#6888: Crash due to missing bounds checks * #gh:FreeRDP/FreeRDP#6882: Use default sound device on mac- Updated to release 2.3.1 Noteworthy changes: * This is a compatibility bugfix release readding some (deprecated) symbols/defines * Also add some more EXPERIMENTAL warnings to CMake flags as some were not clear enough. * Fixed a memory leak in xfreerdp (mouse pointer updates) * No longer activating some compile time debug options with - DWITH_DEBUG_ALL=ON which might leak sensitive information. * Added -DDEFINE_NO_DEPRECATED for developers to detect use of deprecated symbols- Updated to release 2.3.0 Noteworthy changes: * Websocket support for proxy connections * Progressive codec improvements. Reduces graphical glitches against windows and ogon servers * Fixed +glyph-cache, now working properly without disconnects * Huge file support in clipboard * XWayland support for xfreerdp (keyboard grabbing) * Improved wlfreerdp (wayland client) * Option to allow keyboard scancodes to be remapped manually * Improved mouse wheel behaviour when scrolling * Improved dynamic channel behaviour, more stable event detection * New connection state PubSub notification: Clients can now monitor current connection state Fixes: * gh#FreeRDP/FreeRDP/6626: Fixed parsing of FastGlyph order. gh#FreeRDP/FreeRDP/6624: Added support for xwayland keyboard grab gh#FreeRDP/FreeRDP/6492: Added clipboard CB_HUGE_FILE_SUPPORT_ENABLED flag gh#FreeRDP/FreeRDP/6428: Improve NLA error code logging. gh#FreeRDP/FreeRDP/6416: Http gateway message support gh#FreeRDP/FreeRDP/6753: List of pull requests to backport for stable-next - Added freerdp-rpmlintrc to supress a false positive as gethostbyname() is a windows-function call not a unix one.- Updated to release 2.2.0 (boo#1174321, gh#FreeRDP/FreeRDP#6381) * SECURITY: CVE-2020-15103 - Integer overflow due to missing input sanitation in rdpegfx channel * Sound & mic - filter GSM codec for microphone redirection (gh#FreeRDP/FreeRDP#6263) * windows client title length (gh#FreeRDP/FreeRDP#6335) * "Alternate Secondary Drawing Order UNKNOWN" (gh#FreeRDP/FreeRDP#6370) * remoteapp with dialog is disconnecting when it loses focus (gh#FreeRDP/FreeRDP#6298) * v2.1.2: Can't connect to Windows7 (gh#FreeRDP/FreeRDP#6299) * fix: memory leak in nsc * urbdrc: some fixes and improvements * build: use cmake to detect getlogin_r, improve asan checks/detection * server/proxy: - new: support for heartbeats - new: support for rail handshake ex flags - fix: possible race condition with redirects * Drop upstream fixed patch: freerdp-CVE-2020-15103.patch - Removed freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch- Drop BuildRequires of libavcodec for Leap/SLE (bsc#1174200)- Added freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch which fixed frequent crashes described in boo#1173605 and gh#FreeRDP/FreeRDP#6298- Updated to release 2.1.2 (boo#1173247) * CVE-2020-4033 Out of bound read in RLEDECOMPRESS * CVE-2020-4031 Use-After-Free in gdi_SelectObject * CVE-2020-4032 Integer casting vulnerability in `update_recv_secondary_order` * CVE-2020-4030 OOB read in `TrioParse` * CVE-2020-11099 OOB Read in license_read_new_or_upgrade_license_packet * CVE-2020-11098 Out-of-bound read in glyph_cache_put * CVE-2020-11097 OOB read in ntlm_av_pair_get * CVE-2020-11095 Global OOB read in update_recv_primary_order * CVE-2020-11096 Global OOB read in update_read_cache_bitmap_v3_order * Gateway RPC fixes for windows * Fixed resource fee race resulting in double free in USB redirection * Fixed wayland client crashes * Fixed X11 client mouse mapping issues (X11 mapping on/off) * Some proxy related improvements (capture module) * Code cleanup (use getlogin_r, ...) - Removed obsolete upstream patch freerdp-bug-6205.patch- Updated to release 2.1.1 (boo#1171441) * CVE-2020-13396: GHSL-2020-100 OOB Read in ntlm_read_ChallengeMessage * CVE-2020-13397: GHSL-2020-101 OOB Read in security_fips_decrypt due to uninitialized value * CVE-2020-13398: GHSL-2020-102 OOB Write in crypto_rsa_common * Enforce synchronous legacy RDP encryption count (#6156) * Fixed some leaks and crashes missed in 2.1.0 * Removed dynamic channel listener limits * Lots of resource cleanup fixes (clang sanitizers) * A couple of performance improvements * Various small annoyances eliminated (typos, prefilled username for windows client, ...) - Removed freerdp-bug-6175.patch and freerdp-bug-6207.patch because included in upstream- Added freerdp-bug-6205.patch to fix reading newline on certificate accept gh#FreeRDP/FreeRDP#6205 - Added freerdp-bug-6175.patch to fix Certificate Checking Recently Broke gh#FreeRDP/FreeRDP#6148 - Added freerdp-bug-6207.patch to fix Abort on first possible certificate validation error gh#FreeRDP/FreeRDP#6207- Updated to release 2.1.0 (boo#1171441) * Fixed CVEs: - CVE-2020-11039 - CVE-2020-11038 - CVE-2020-11043 - CVE-2020-11040 - CVE-2020-11041 - CVE-2020-11019 - CVE-2020-11017 - CVE-2020-11018 * Fixed leak and crashing issues: - gh#FreeRDP/FreeRDP#6129 - gh#FreeRDP/FreeRDP#6128 - gh#FreeRDP/FreeRDP#6127 - gh#FreeRDP/FreeRDP#6110 - gh#FreeRDP/FreeRDP#6081 - gh#FreeRDP/FreeRDP#6077 * Noteworthy features and improvements: - Fixed sound issues (gh#FreeRDP/FreeRDP#6043) - New expert command line options /tune and /tune-list to modify all client settings in a generic way. - Fixes for smartcard cache, this improves compatibility of smartcard devices with newer smartcard channel. - Shadow server can now be instructed to listen to multiple interfaces. - Improved server certificate support (gh#FreeRDP/FreeRDP#6052) - Various fixes for wayland client (fullscreen, mouse wheel, ...) - Fixed large mouse pointer support, now mouse pointers > 96x96 pixel are visible. - USB redirection command line improvements (filter options) - Various translation improvements for android and ios clients - Removed upstream patches fix-freerdp-2.0.0-usbdk-build.patch and fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch- Updated and reviewed make command and added fix-freerdp-2.0.0-usbdk-build.patch to fix boo#1169679 and make USB working again - Fixed build for SLE_12 - Cleaned up spec file- Add fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch in order to fix boo#1169748.- Added cairo support for scaling - Cleaned up spec- Removed patch freerdp-Fix-realloc-return-handling.patch - Added pkgconfig(libusb-1.0) for building - Added new package for freerdp-proxy - Cleaned up spec file - Updated to release 2.0.0 * Fixed CVEs: - CVE-2020-11521 - CVE-2020-11522 - CVE-2020-11523 - CVE-2020-11524 - CVE-2020-11525 - CVE-2020-11526 * Fixed security related issues: - gh#FreeRDP/FreeRDP#6005 - gh#FreeRDP/FreeRDP#6006 - gh#FreeRDP/FreeRDP#6007 - gh#FreeRDP/FreeRDP#6008 - gh#FreeRDP/FreeRDP#6009 - gh#FreeRDP/FreeRDP#6010 - gh#FreeRDP/FreeRDP#6011 - gh#FreeRDP/FreeRDP#6012 - gh#FreeRDP/FreeRDP#6013 * sha256 is now used instead of sha1 to fingerprint certificates. This will invalidate all hosts in FreeRDP known_hosts2 file and causes a prompt if a new connection is established after the update * First version of the RDP proxy was added (gh#FreeRDP/FreeRDP#5372) thanks to @kubistika * Smartcard received some refactoring. Missing functions were added and input validation was improved (gh#FreeRDP/FreeRDP#5884) * A new option /cert that unifies all certificate related options (gh#FreeRDP/FreeRDP#5880) The old options (cert-ignore, cert-deny, cert-name, cert-tofu) are still available but marked as deprecated * Support for Remote Assistance Protocol Version 2 [MS-RA] * The DirectFB client was removed because it was unmaintained * Unified initialization of OrderSupport * Fix for licensing against Windows Server 2003 * Font smoothing is now enabled per default * Smart scaling for Wayland using libcairo was added (gh#FreeRDP/FreeRDP#5215) * Unified update->BeginPaint and update->EndPaint * An image scaling API for software drawing was added * Rail was updated to the latest spec version 28.0 * Support for H.264 in the shadow server is now detected at runtime * Add mask= option for /gfx and /gfx-h264 (gh#FreeRDP/FreeRDP#5771) * A new option /timeout was added to adjust the TCP ACK timeout (gh#FreeRDP/FreeRDP#5987)- Disable LTO on aarch64 and %arm to fix build- Add freerdp-Fix-realloc-return-handling.patch: Fix realloc return handling that results in memory leaks (boo#1153163, boo#1153164, gh#FreeRDP/FreeRDP#5645, CVE-2019-17177, CVE-2019-17178)- Add Requires: lib%{name}%{major_version} = %{version}-%{release}: freerdp should depend on the same release of libfreerdp2 (boo#1129193)- upgrade to version 2.0.0-rc4 (FATE#326739) * Fix the following issues: - CVE-2018-8784, boo#1116708 - CVE-2018-8785, boo#1117967 - CVE-2018-8786, boo#1117966 - CVE-2018-8787, boo#1117964 - CVE-2018-8788, boo#1117963 - CVE-2018-8789, boo#1117965 - CVE-2018-1000852, boo#1120507 * Security and stability improvements, including boo#1103557 and boo#1112028 * Refactored ntlm_av_pairs API * gateway: multiple fixes and improvements * client/X11: support for rail (remote app) icons was added * the licensing code was re-worked: Per-device licenses are now saved on the client and used on re-connect: WARNING: this is a change in FreeRDP behavior regarding licensing WARNING: this is a change in FreeRDP behavior regarding licensing. If the old behavior is required, or no licenses should be saved use the new command line option +old-license (gh#/FreeRDP/FreeRDP#4979) * improve order handling - only orders that were enabled during capability exchange are accepted. WARNING and NOTE: some servers do improperly send orders that weren't negotiated, for such cases the new command line option /relax-order-checks was added to disable the strict order checking. If connecting to xrdp the options /relax-order-checks *and* +glyph-cache are required. (gh#/FreeRDP/FreeRDP#4926) * /smartcard has now support for substring filters (gh#/FreeRDP/FreeRDP#4840) for details see https://github.com/FreeRDP/FreeRDP/wiki/smartcard-logon * add new command line option /smartcard-logon to allow smartcard login (currently only with RDP security) * add support to set tls security level (for openssl >= 1.1.0) - default level is set to 1 - the new command line option /tls-seclevel:[LEVEL] allows to set a different level if required * new command line option: /window-position to allow positioning the window on startup * client/X11: set window title before mapping * rdpsnd/audin (mostly server side) add support for audio re-sampling using soxr or ffmpeg- upgrade to version 2.0.0-rc3 See: https://github.com/FreeRDP/FreeRDP/milestone/9?closed=1 * Improved and cleaned up the command line interface * Fixed automount issues * Fixed several audio and microphone related issues * Implemented AAC and MP3 codecs * Added Wave2 support * Addedd dynamic resolution with full screen toggle support * Improved redirection handling and certificate issues * Improved automatic reconnects * Improced connection error handling * Fixed invalid pointer, double-free, integer underflow, buffer overflows issues as well as other memory leaks * fixed X11 Right-Ctrl ungrab feature * winpr: Updates time zone data to April 2018 * added libressl compatibility- removed SLE11 condition - removed no_connection_to_windows_10_17101.patch - removed -DBUILTIN_CHANNELS=OFF switch - explicitly set -DCHANNEL_GEOMETRY=ON - Disable the new X264 and OPENH264 codecs because openSUSE does not provide them - upgrade to version 2.0.0-rc2 See: https://github.com/FreeRDP/FreeRDP/milestone/8 Noteworthy features and improvements: * IMPORTANT: add support CredSSP v6 - this fixes KB4088776 see #4449, #4488 * basic support for the "Video Optimized Remoting Virtual Channel Extension" (MS-RDPEVOR) was added * many smart card related fixes and cleanups #4312 * fix ccache support * add support for memory and thread sanitizer * support for dynamic resloution changes was added in xfreerdp #4313 * support for gateway access token (command line option /gat) was added * initial support for travis-ci.org was added * SSE optimization version of RGB to AVC444 frame split was added * build: -msse2/-msse3 are not enabled globally anymore Fixed github issues (excerpt): * #4227 Convert settings->Password to binary blob * #4231 freerdp-2.0.0_rc0: 5 tests failed out of 184 on ppc * #4276 Big endian fixes * #4291 xfreerdp “Segmentation fault” when connecting to freerdp-shadow-cli * #4293 [X11] shadow server memory corruption with /monitors:2 #4293 * #4296 drive redirection - raise an error if the directory can't be found * #4306 Cannot connect to shadow server with NLA auth: SEC_E_OUT_OF_SEQUENCE (boo#1085416, boo#1087240, boo#1104918, CVE-2018-0886) * #4457 Fix /size: /w: /h: with /monitors: (Fix custom sizes) * #4527 pre-connection blob (pcb) support in .rdp files * #4552 Fix Windows 10 cursors drawing as black * smartcard related: #3521, #3431, #3474, #3488, #775, #1424- Fix boo#1090677 activate pulse optional component- Added no_connection_to_windows_10_17101.patch to fix Windows-connection-problem after Windows march 2018 updates. This fix is related to boo#1085416- Do not use xorg-x11-devel, instead buildrequire individual x components. - Only attempt to ge rid of __DATE__ and __TIME__ if SOURCE_DATE_EPOCH is not set.- Users can connect only once wo windows sessions due to [#]gh/FreeRDP/FreeRDP/4348 Therefore WITH_GSSAPI has been disabled until that issue has been solved- Updated to 2.0.0-rc1 Noteworthy features and improvements: * support for FIPS mode was added (option +fipsmode) * initial client side kerberos support (run cmake with WITH_GSSAPI) * support for ssh-agent redirection (as rdp channel) * the man page(s) and /help were updated an improved * add support for ICU for unicode conversion (-DWITH_ICU=ON) * client add option to force password prompt before connection (/from-stdin[:force]) * extend /size to allow width or height percentages (#gh/FreeRDP/FreeRDP/4146) * add support for "password is pin" * clipboard is now enabled per default (use -clipboard to disable) Fixed github issues (excerpt): * #gh/FreeRDP/FreeRDP/4281: Added option to prefer IPv6 over IPv4 * #gh/FreeRDP/FreeRDP/3890: Point to OpenSSL doc for private CA * #gh/FreeRDP/FreeRDP/3378: support 31 static channels as described in the spec * #gh/FreeRDP/FreeRDP/4253: Rfx decode tile width. * #gh/FreeRDP/FreeRDP/3267: fix parsing of drivestoredirect * #gh/FreeRDP/FreeRDP/4257: Proper error checks for /kbd argument * #gh/FreeRDP/FreeRDP/4249: Corruption due to recursive parser * #gh/FreeRDP/FreeRDP/4111: 15bpp color handling for brush. * #gh/FreeRDP/FreeRDP/3509: Added Ctrl+Alt+Enter description * #gh/FreeRDP/FreeRDP/3211: Return freerdp error from main. * #gh/FreeRDP/FreeRDP/3513: add better description for drive redirection * #gh/FreeRDP/FreeRDP/4199: ConvertFindDataAToW string length * #gh/FreeRDP/FreeRDP/4135: client/x11: fix colors on big endian * #gh/FreeRDP/FreeRDP/4089: fix h264 context leak when DeleteSurface * #gh/FreeRDP/FreeRDP/4117: possible segfault * #gh/FreeRDP/FreeRDP/4091: fix a regression with remote program- Remove extraneous Obsoletes for packages that never existed in openSUSE:Factory or X11:RemoteDesktop. - Rename libuwac0-devel to uwac0-devel and libwinpr-devel to winpr-devel, as that seems to be their upstream name which packages are encouraged to stick to. - Remove duplicated pkgconfig requires (these are autodetected).- Fixed download location- Switched to official RC0 - Create wayland client package and libuwac0 package - Create separate libwinpr2 to be used in other packages - enabled gstreamer (currently disabled for tumbleweed) - enabled kerberos authentication - Update to official RC0 Fix the following issues identified by the CISCO TALOS project: * TALOS-2017-0336 CVE-2017-2834 boo#1050714 * TALOS-2017-0337 CVE-2017-2835 boo#1050712 * TALOS-2017-0338 CVE-2017-2836 boo#1050699 * TALOS-2017-0339 CVE-2017-2837 boo#1050704 * TALOS-2017-0340 CVE-2017-2838 boo#1050708 * TALOS-2017-0341 CVE-2017-2839 boo#1050711- Redo history by using changelog url - Update to version 2.0.0~git.1497095982.1dbd2d28d: See https://github.com/freerdp/freeRDP/compare/043243f...1dbd2d28d for full details. - Packaging : + Move to xz tarball in _service + Remove 3472.patch merged upstream - Update to version 2.0.0~git.1496304402.c42ccb508: See https://github.com/freerdp/freeRDP/compare/043243f...c42ccb508 for changes.- Forcefully enable PIE in CFLAGS as the automatism did not work.- Add 3472.patch until upstream #3472 isssue is fixed and PR merged this fix boo#1004108- Update to version 2.0.0~git.1477034991.043243f: * fixed kerberos authentication * shadow/rdpsnd: Fix race condition in rdpsnd channel server. The output buffer and format parameters are not protected. * wfreerdp: fix invalid VerifyCertificate callback * rdpsnd/server: decrease audio latency and make it configurable. * Add an environment variables section to the man * protocol violation: rdp_read_extended_info_packet * Added support for OpenH264 1.6 * freerdp: fix sending of TLS alert on NLA failure, add better handling of server-side NLA in shadow server * freerdp: add configurable NTLM SAM file option for server-side NLA * freerdp: make modifications to NLA server-side fixes according to PR comments * Fixed a windows 8.1 issue.- Kill off __DATE__ from built sources.- Update to GNOME 3.20.2 FATE#318572 - Add obs git integration. - Update to version 2.0.0git.1463131968.4e66df7: + Fixed memory leaks. + wfreerdp: fix name build without client interface + libfreerdp-codec: fix xcrush decompression, revert remote control fix + KB3153731: May 2016 DST update for Azerbaijan, Chile, Haiti and Morocco + libfreerdp-codec: make proper xcrush context reset fix- Update to version 2.0.0, git master branch id a7ca42e (FATE#319661), no upstream changelog available. * Warning: This is a git snapshot regarded as technical preview by upstream. * Warning: For xfreerdp, new /long-option commandline interfaces have replaced the old --long-option interfaces. Existing user scripts need to migrate to the new interfaces to avoid breakages. For more details, see: https://github.com/FreeRDP/FreeRDP/wiki/CommandLineInterface * Add Network Level Ahthentication support. * Add Windows Portable Runtime. For more details, see: http://www.freerdp.com/2012/05/24/winpr-windows-portable-runtime * Obsolete libfreerdp-1_0-plugins. - Drop FindALSA.cmake: deprecated - Drop freerdp_branch-1.0.x_fix-kpdivide-issue831.patch: fixed upstream, implemention now in include/freerdp/scancode.h. - Drop freerdp-CVE-2014-0250.patch (bnc#880317): fixed upstream 532c420. - Drop freerdp-CVE-2014-0791.patch (bnc#857491): fixed upstream f1d6afc. - Drop freerdp-fix-FindPCSC-macro.patch: fixed upstream 9148af3. - Drop freerdp-handle-null-device-name.patch (bnc#785437): deprecated, related implementation dropped. was: freerdp-fix-pulse-no-device-name.patchh02-armsrv2 16958932302.4.0-150400.3.20.12.4.0-150400.3.20.1freerdp-proxy/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:30864/SUSE_SLE-15-SP4_Update/68b85ce8df772b65b5a8d1fee1cfea0a-freerdp.SUSE_SLE-15-SP4_Updatecpioxz5aarch64-suse-linuxELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=75d7e9429e112a88333503f615be8bb1ee66522a, for GNU/Linux 3.7.0, strippedRRRRRRRRyiĮLutf-802dbb7805e660c3b7820322fada11289197dddf77802f576927147b1f9e33812? 7zXZ !t/ o] crv9w窑W?:% }ruA&s٧G7&bKgkhٚF6AJrl1uK$,+ ]"-C"SU o$^o}Mґ z+Ħ[&*$B :nߣM|LAlxmKںnXޔ6ц F׌" rid%( )ݔPP̞R lgFmT_ @{mMغ8M7w|{g6^!t]v5z D+d2DǻNOX3E<̧{98x-pP\,s iN0SçN!=O9ch&v&@![ 9]_D]X[(>֐2F-N+Yz)3^gG@ Ҫ@wm sp_tk;$&:U^r4E*+U/'z-n9(i.GIot2Gw0c5!+ 鴀HşLO ;&"v~ #Huh0XSm/a;dK:=PsSw-~`4PVdRMWz9͎Bwc=獠>fQo((zC]cg rwxH ɶr͵reA82 } WL=U߽|7GbSTyϸAȦdhF7:  Q-I, 4Shgdṷ Ρe$2aatqb|+t:MG20[6 sH2 N`Н^LW)ykc Nxirw=\7ymmbp)!zeQ[0 .v/U=(BKc2e1|&+akIfwRRDa!rbK2J}8[嶯wjUq/ؤӪƯ\wwerQ=Ͷd ]οEC!zW0 ;5$fy4@ <ƾ"77 `Ze\#VQ.;@ͨ(B8.GH/օ5 < #^OZbOuS}B@ύ4 e Rb`ވ!ڏݻh9|+ua "$2I:FX &)av:اtbY2GH 8#<>p 8°8hvY یh_ L*@ p6N::8V &(<f)?wAu 1DK~g۝)"g$ˆרu*t uf; <\&,mݿ0w@_*?8WuQDj 0.RCnpmg]N3+ftc4Ʉ~ гv{[W_@0J켷ؕHPJO VͽSϯ_ſՒ;޹ ;)sGy'9 md:QheٮxSᗲܛE{[gɃ޽oHwBl U4beRW0iEM%9 I@sA4yڎs;©t3Bfc_+ЈK/,&[$9Gpk9r_ι cnЬ- )e0Ow!E#i*oiA452v;"J!QqVÆsVRZ Uh+k 1k4ՊiN G?4 "pظggWU۔@B0ҷԞ,Ghu aWiÏC]pHmJiMlV<LG8rQ#>YM; -Md7DWio}<%Ǫ酐 y /`< ڈNsJ'ϼ5zi!lMbE|`yQ_L.~`p7lx~tkh#)̕TbW[Z&dIXO- >@}2n.f\OB?^^YZ] UN/'=*pkW/ق[>#bj=m8&["c?W2mj9cO|LVufn/$Y@HI9P]=)Df uzA ?{vZ' 6x̹Aɱ滒YjYvm EF`Uwn ܻĊ%,\C/lq4&:v=z _,: IǶzȓ~q) %LcQ9MOQq\^s@yLyXl'J_T@'Va|{'+2lSp'gɗaS"DɕO@!qXwT=&=Nhzvz ?)⽊pcT"hI"D)) 8sx[Ps{5 Z_KyvSx6Zz=C\7X;v@U%H_iv{*&K3[7bz$BE[(uV U.pIeb #bdW6W; L>4rYtOg۪7.iR80![!XtA46O`ɆSy P u`40!NHb/ BeOxFæ[] / J.j1!R>iV`ҮYSN%%y ̇%u/bw16TڟfQ~![0 3HKT]MX;9j F hSnl'41ަʟtpy!$+p) ;$n1?j./tшW YK[N, VUdT";o龦7qAg-^#pzU&wMY*?A&]TC֋vxu$6#Znጪa3^c®9.2"Qe7cUH:.`CbvxE֖ CڪX("[Btl$hmN%Kq>/@c0deiY.E;fMeYC eSǾ iBWeK]se93j/#vɡF12EރljJU-@:)sp"&Ҹ `Lpȼ'z#).Tbg\BPUUyaHߔ9񖜺0Vi:!J%QjFˎ?~@o! iR@˅3cUr^݇IԄ2M1*?uTq>dZ?!ͪ6W{W<ϚDx>)ScZH u-7̎o;SE XwU  M0o:KNeQϪ2A}M.Œt79WdGuS9#{l Y IEqT]_&-b0WmދU&jJ)S2ttϛ? " p<ËYy(g)FqD܍͗&/E񩛰)t&5,!5#E S䦓-CtR PV3fT`Om竺XaPE:Z>ixwĀ"6SOn!-NE' F|!87qF ::hE8ʀljחgb ogA~JX_e,vfPkYqI֒n{hFPlazWJWOxպuXafZMp~T<fEώO?F7'^P WA/ÇFsA :i;CͼC1нsuMar%PM 9xOǰl16fi+E,Es㽛ބfd ߹Fg!z(G%Dd/y, \ckhULOP -04LX 1; *kSY8legwoMǒisM]wɱI@UTj3^}:@`<.O@'M1gd$Wj$<=rDR߮mڢ; -BpЊ ~2O]A|iШG[~}Hˋ|E2}g lxe]ъ@Kvl'AqOԣ$S".;-p\ʬaFi(V<-yM!pʰrku`U*:`R'~? ʮnS` &s < wgpnjkoC,׋œU0j䍌 ^C'!˖j縳:yD+PE.؛+VYrYfWOӱ48%/o[stiLzxR(!$42vs:W/ShhV Pqu@sϺwprsM#;a{,[e3- )=d;kp^7,dP䵹(2h^GS-$/.#j^\!dEh+[k|E/Y i4fX?0i#l$?n}RKz4M#ȏ8L]n!gB9,N4Ϭ)~xOD/j-_9j4LG.-jb"㺟*'%Ӧ0 T8z1_:˞\:kQ@Eӻt* fk2epѐԺڳL3Pz9Bd tCɯ=༴Srl%6& WT$>ڼGd˦ sTw}(|L`׭bpRk5h=R?`zM^͡bAL᭩:Gh%}9#MaI~#dã갋5{4zu傕/pjPDzNtƗl? x%XS|B&I=h?q@$o{f=ݏ1:To7否R- z-MyAS~K($8x'*q5Î #!19_jspż_83d$ZiӮ4l_O3R3RhdՌEvImE)0P`M3 ۛ 8T9;ĀԂ)Y7RXO ٓi5Ŷ{5N_# ptXެpҶ(=K>E{]S/D2/{䏎4!JTFMjW}m|_HrȬ)FL-XByv$KJp%%q[=5UB"X]nʐLOP="T2^pUXia.eݫEٔj.SƕFv$'m> ߧydĖB Su ]pwGO*rI1ݜ.k0.&X9=l &kk2*H,b7o8oOnBzpĂ,rۻ?qdZwY^k|$ǰfܤѬ8I!M+pO@`T)HUUh\kw/e1\y] v'!I/aQڶPRhT&iH K Ń>xMSȊ`2fh8ƁBRhM2-%GgCGA<ԉsjdH8e9NYK7y`-FD3?Լ}"cB5ix)UjˮterudpoxK^ݬmg/DLrCO?r wGm XF+QئwRR%=b„G'5g';g1 |댈 1Pa -IED5̤WsOaQ|ed|- >a{wo.xjɵVui ?k/jߵ6]5Itɳ 쎐j{6wȋy!w0~]]&"]A|hBږ8ixvvtdX|3 G t7,vy]H*|)ơ)Zy 2D9y8K[SQLyc#V3zEVG7RzKg∛#1:I g/&ulZ:@(^G:=~l\]5}N+05/I<ֻ,@fB:h߮ 훪׹:"Op$K=1E>o>^qj= 4lm߯Jh߅FC^:JYNʣ^h2rQ_W\+[ԓ)jSXZ8P͏&:~~с%ҥV~o3M<]=5ibF e2>VfIK6}&DB1mF j1s 4AjI-|QPK˯ʏg5ēHo_ ,ap6(8̍Tmd-ŷPsB{O[(k~&K/} O(nNR8]SM#BGauJ?Keʅb?cg))+MNܖO0ZV6gf ҙlht}E527Q.5QD.7/MPG+ҰHecxg}1r֓]O# *A;Mv"}:_w)<`HH{?gr82#!C7hK?#}J58 (ĊS80g8Ը%{*rև#u#Fsfu۫!1gH"2{h( $PήZrګy_oyY[6gˑor}:m&^pOX[mվ DesS)'R@jgg?K}Z0(mww?n'Y$YFƑ2O|a~o?nt0{^p끖s檜^e۱+u`|<ĥw|圅 ņ˸?>OlX*LIy9$ ;k$7 8Kֲ1WƔh)%k Z `vHM(2db0D\)qlIVs5Uw ߺ6.T^no=–A\y\[Dtتjh򱻅gg=u<+^aM,ʝoeN-UXNΚ]܉]`d3y,?ջ\6Rҋ`6TZ2rMlBLq^wÐ&|0*hK\S\r pKh0$@Yg'ACj }A: V9ijFkdAxw}V /|$"kwa4Hc H״}f.1(lz<KZ뽍XUӻMF_<0'$æ7,L L]t(jDۀF}ѫHbc^Vxޒ]$A~nl E8rrGOA_SRb(᳣ۜXtM/HS(g O{ TqJ912eQP_W^ʁ>Ǒj;LKp@ ?˗:EVاԊ]uY6rO]?ץ ؀r>r}@}oK>U4LO7ίBsL+vVڅyz]a'fe9fbtJ&LJϕ'To9MKV594⾃\5(mqz'43&e+"/o(4";dBl]>PNvko/A+ؿp;+mf޹F 5W u8H`bP`f 'J9ye@?V bN?u`=v$@Ӫ&&7T3 ֈDDʨ̨;$E*W tY(MhD0+* U9;˶X(ndbr|RK_#b##{EAIn"u[y=5K&48j` /m2Ju6%+S':n*/<*Ka뷙"Yu#h6)P$vpSCQZ3p{OzBʊ>y`7t21жi[& 2)^|{hGAfb4;pHdqJ!">&D#~2_GW6B2 9A-p~ vqa6P-LAmGu|➎sH"B R^ ]G{΀/[Y"[XU(|T?RYsQ&(p% ic̐z3#n(StR[ 5Y4&%36r!KBL{R?^Pdj,j_4nPc4KE{ug7.(yUx ԩQLZq)*9AH'D,!P-C8G+ oCX^<~%gsTfu5Y庍 $eZGܰ3fX?$տԎ*1f@|Z(GoD(p,Q - WE9L? Uix-^\~$: ܱKa\nt}hig |PQdŰueZ% 8Q "oK2N<45%BpőKBEqMF( )l!NR{t '؆R~7mm*"H9_oJ^vר8*Cc[ȿbSg<ʹ4qdC}9g4 P˱q5O#BOՃa(YpiyT(MAm.0 x`F .xlz^dIM,w/N+iXUճ[zͳ^X.!,~$|Q$OZ 65kSU۲IdęW9]Xym[/]гD?Z1T3d1mDL}մu9/&=YkMHOe]F<ԎÎ!pXCE NQ޿-ߩH'=`V r\v*6`3>(bEҩ80k}x{_`,[hG}5#'=ds?27pCCdⱠ{ A[ y@"s943l67ws;W M+Q}-Po8$P#ꡅjjad8%3v w'fy`P!x.ՙMxӣ6Mv$&uFu&=U)Fk)\SP3՞wW/ q[b|G_yr' +V% (_(B"s#y 9ThI?qT7. bN\ (F!@%Qmκ -q= $|e99N"B!,{n@ ^+H:ikC["Wt!P  @%;OShRtq7 g65;&Yhl,qPE"$~wgQ=tPtJ&CMLfԛ.*́+i B X~w_Mz ⻋@a'F6DFR#XE7FG)lcCUI%Kΰ,zȒ)hTkM#Qn+ VCnA1.PiV3ni-|$i4ov/oG"f٪5@',iq&UәOLNX$av.a|1 bՋX'g&ژx)Z&oۖ<3H&#V Ӓ*O92W'rE"U9`ewμ}G0_Wva'$փo-Zrg_H{`9+A(2rZH α4!;6(02a9.E.n[jw. _$,dLj:Z X{<&qk zB9k >lۤ2rMn*]~F(JWsfrGUu XWōɃY0Sn3][gJ=R/5dq{q{HHɔyygF+MsmhC-@:%[ŠMe|RUxY=,np}U>Ð:0XN9WI/纃jm(箽z힬BpYE8bUEVtԜ,#hwQGi VD;A 22a&I>ivDiJR͎dݳ|^F~MgJJU*Ic UMĖ!MCV7#)]䔊4Ktu'lkzJ3dW/4=EԹgۓ9.V14v:~hj䴗Svd.$~nt;临BuǶ&U$n9.j0(ZeOG,~Q+s]$ՉGXvUҖ|#oS֛yijOu=%Vc^C# hp)U:L'DzT* zvaSxp++(!5fVrƚ5tbkoɾZkq U:6_Wet"oK. s7Ђs \*#`4"ޗA"L,"{p@-`_$2po&@Brf I*ry猓 ,j(ɂ0P"{fVtuB*ODJpd_UV;Q+M֏5"W~Ġ4~Fo#ÅSyQނ9F1@oC/#ndhhpY9{7ٮXo ]<֍XP'M*=E,dc5q 9eytܓOMLfoEXyDiV&KYaz9}ؘlaYA"kE 0v 7)Nven8BoGm3M0:]ϷyBY$r{3[<y%tDZKjP˶14{5o n;wDŽC!dp?]cb/TiS1 W^j_cZߞjn'CTC C|h^JUC\`K4K[ᒡa 9yĹJ6CyXicԜY'_X8OrN@usI Sa_d젋`flaJ'r rK4DͼCg`9_'WpW$X%b鯩ܳfEbfiV~q:ҨJ-gF i0/QX_}w"?{鐔 ɨ`z~j0hb$2Rܳ%;6C$>َ*.ƙL@;dtBNcGwiH I;uљF`Ih$% \%,JEug2hNחŜ 2@OHClu[P ?; F)%aZ_R0.2pg[lhʤ_ ً5_hCȥ(pڷRe`3/oU8DsWQ(?f10FNmú, aaÁbՀHB)$d>s]S6P0̫& cGs̎"J*\Q zѴ˧r+T_K=FQi}P7-wni?[SL6䛬<"2?` Ԕ4cl0; [0dRO{ p 7%Q% $ny\bal0:?.KH и~v'W5)V~(i&S>W< ~e*~p?[g]F$aj=+AIRWom{C!澾*kms%BH0D0-` 6fyL s.:4HTD6X V\5Y'83ś:B:VYcRXQm7O,fOmv#OBfKq:+ID(\SΧ }&w CNm!'RZn/)YK;P|K! -ncbja`],^`UsJ $5\+':^nڴV 4ލ0!͸fS*BC+LvbAͦ`tt1NSI;4ll#Τ ~ 8RTaљ qtͯ4{0%5 1ॹI3O3ۑmQVS#T9E\#S2<Ӯhf/ǀj0D߰3M7ƥlmF2*xw@\PUJ@D#嗕 b/}*uo3qR+S d#0qծ @oT AbE Mg=NF(X_OVٽ޾*hPҔrqؚ{L2-xB ]׈ 4U V *GAz^--U[AA&?D]psVR!WC.3bK| "d>}k7X 7:=XW^,wGS?BBp#كՔogV ?;Ld[mrq7L;l;}ĵ2 4צ96+cOH].zޘCrVH}=(B MC%r!b0; F4zTN~,J"{w @odOV\-{=J%mrqQܭӾ@f HSc tݾZM|.h!RJYPAcU*5jHE f': EuLnņ`cLJ6T bMPSA|/3%v2fPX2)bcg"8HʫHa˅;^N/z| [$p~˃ %o45Cp4Ҹ r]uRnhjۿ#O>[LaMVPv+Q h8|tSf+0D5O u5]&[5"3`ahȕoveRD8O񠞳eѸٓ< &Q&YBp:yykMv]s1bc%:<KfP[ZU.bA&D *}zDyF໒k*S&xid }"~u5^OQ;*A0a0Wk|;c/3H}4H0*8zA)!ZH\V .S_O8!♻y%Oi%] =m^ wŤf"|ڡ) }[˖4@4{qu&^>BeqVZsb|]dSH v59ł_EtN })4UW`ӍQs[ss"W8 ;8b_= 1?uuKK mMCP5t +}89}NRmD`G)>|꼑nXft:f#LMtSZj@Q--s;a/aǐT@T`.vY9tmR8ҳ4<}"ʿ"=euB\!}f sj7aUA+5 4J曹5@(aMoV1l7>P?I,MjJd|+Q2 : #Xkv%[ u:m46sbpJk틑, )AQh18#>0_ X!9YIPTh!\E/[ oVwJ~Td'$F 6׭*Xz$.hEvH:Ld \N=5]tLk ;~}\0B׻?zp{a B2Ю MQN\=71 pĤ+% >}D$e_N\3zvy[y)fK3e. |eE!u({JIӯZ&p4hdUL= +c# :9V4JO %wFzSg iO JGV;aZE'@o#p)i4\#=wbP0я}G GɇϢ={Z\{O7ً+I,'5jJwŭ\EN|~MvTi"ۼFL{*!\%;P/.1cnaiB+j^" &-V1kduf-A8i\Y (\!Jh5PcF#ی<\D!sW[K5dyL.+ƃ;_TyǬ>fտNV`<3&c ?;f)]m_]_!9lG,yHJl;d`4z9^\uZ7>P0%$P?tF9 o׆f!; 9o;fuN A)q6/Cĕ'whF|AJ.oC?wNϻpJ1IVVՂ>R(Gfx(u~W71pˋz[:%A(JZΖ^p]CI'4lV28<_Wٛ}*q@!ǯͦ!O|.v[W1!ǘL|dHgiŸTGҺ!^=_=qu[gd@n GHM'"Iv$ __Z a$Ǝn6j 5*<؛ LEqqq`{h8JzXw9Y)|a~WXrgf6>ҺQq?w,_zt>дsGVi=L:,qE0XW$ppk\OO5u(.#IRu|U(@DR=a;3S2T`Q"r!s(DYU*7X;؊T™)r3/ ! Ӓ|:,QvUA,[%^I*APlÂ푴c"]tt_dZA5_l]ʿ9p@K?A̵p{2)~*Ch|VPmI+ pEB߯&/Ɔ{ ()0lH)!,$66RqU#luE*} U/ suG/i~{Xo*FsCDE/SB@/8sk+ߵI}8lx&Ɵ Qnnt ^2f˹ -kݽ/q mƍvQ8Un|wj#!Ҧ"|p8n]Mڱ*(.Cꋩj ZV_V\}P;jJoz:!>AQ!=X3 h3R3$&sVJ0vqM*rOi%47ErPTaޯ 7E[ Y-_ KR`)eq Kq&ė5=:-b+:cU]Z:T0^1L%VGYt۽,amjR*>>ݚgDOBtrb)ћЩNq`m0xF>Mxm?ɛn1՘CQ(ԻOLA]ȗ0N ׽; m+lб&7Q 6Z8}v$;8dOYjC~9 a=; 5 56O^J҆yq5ԡ D-.ƂEkFMZEBDg:OT+?}KlGp 6mV^|@'9*2`4)sd$ kqSH2v>M/]E9,|II'NǮj+ҿ 0cѝ阻Y$7bE[VӔ쵄-!#9@9W.qMxd}6ӷ8EF7= S30vH>DeGeXaq^!9ѽdIæ ]-GBB.۟[Ho8w:>/ X47_ڝhWb]TQeU,XD?aL+*{coa",?oE |~a\C??!qti^I)]L^C2ÂKf~I@};, 'bv60nOO8N(=ny̲c9zGfylJ@/bqه`owaN$ ]Jڤ64c$C)|/r35PEof=Ϣj O'[Z!Sh7nNEV6M[񭒖vv]U[\~n !C9Aҿ¨}[͜2쌞t*wߦکdy 6ecק-,W"zE߽&V& N"ѡw5x}aAO1+Vi@p-QB ]~`,Lzi:`ΙImYH)`CC05j+)ϐ79~\aK̤ϭݗ.; t{T'Γ[<6 @"PUH.uC~a3S_ϧ2;!9:ajkZbup}I %M?GVGF,*<מhKFXq0!,]N40gTt mN*k0h[ U+Pc!A(C1~CKa6 DI;l)Sʑ=!(4'1 #ѮH|,HAO*5| ϻa]͘eײ7:sT nW[J?O[m 9iQf kUb 2x0n \Kj)F'$[2B!bxX+Dzf A#cP`rjWVֶPdq12 󌑂}}ҖHbAW<6:wˆ>v #a{)2,[ *pRv$>NsI)'qt-F;3S0=S<]?'q }%T%`*-ȭMGWIՏqtUyU_$LnL9JZK*&`~2Q[#3 _f03@.@~k]Zy'E mmٗl"ZqPUKrJPz9ë'ay(+#`,RZ`I]axWF̍_^+*+$—z~5`8:HU>i9]k]D؆=|s-03œmo6iIPlfJ@wm6[˘_j /Yʀ(o8򻍧UB,xx Гe,Ũu'V)C lSJ7u`W腽 drJČ&FKRܭS|b׌}_>d?Azi[]O22o5."<槜";|dCyh${v(|I+X_ }B~Gֽ*. yfe<՟OMW=P|HC–@\ꍮ]?o~9y&Ꙓ6s.D>;?q UX|zv0c:I}W_"zLI#[<9Y ?X?"j`DU=У2` {ԗ6[vtܝTup7pᚮRUDc̥, B9by0P%ڰ)EY;Ւv΂FO]ݡ#@ݤSk>uKÊp2zja;GVG˄>,VB~43NQ.,܉q|G=sȳaM6| ހfi8\;vO@4xq;Y· @X>`y xd̳Kg-o^Nb U UKG7,)_ѽc P taazgZR c`* {mv遡{Vl\Owq,[UM9ed*)2.4jc^0f$}|Nj4uzv0GLڵ|EKYC*% (u|S"V.u !BV:Ӯg&ug:rP`Nq2mR]^C1)':5> opk=E`N)zu2ώU赽Hi&ZԾ'~|D5ҽ;Ƈ[%JνȢI#be1{,3~ҦNsX-:A݅D]^>՞-*FxJ6#M1>BeB/RZ;`ZQE/c"5S_?]ϒ8tּF\Mk,&S_Ipc7n&Aѱ[4eU ϗ S1fA$?;Dh{ u@>x]z׌{Ҕ%C"p1FS^?@ZI3 7$-Et z u3(F; |7@/^Iɱȡ& Oge:^U0Q>QX9FqBd>0{rp82zHg`wPbqSxW8aUĤprI#Jc*I'MP x)쳦POC㼞!ϱyؘk[dnXrg:\3+c+&% 竾xzA%~ySaڻW.>)1s˧;{xQY&|Z Bw DE/xq>F cf(3>csF|/wV*?H{[( kLpiqd& P:=]}e"opM &(skG%ގ~Wͽy@T_gٛi Z׵wwQ&6PH |< fEnM( /XgaM<,+] RKY`KP#Ҽ*ĨxϜVD Wó .,hyP=y|if,b( E<1M]7f&1/.)aM(+>pJd&>iqXXLbfӋy5pždF"|$O4\P տN!1{v[, 42 "iVeb:f\)bXiN ׾R-;V ALjo۪ltqu5OX@OeYRX YZ