freerdp-proxy-2.4.0-150400.3.23.1 >  A eW&p9|Nc.Җҿ).ԏp8 6>)l'@OcU^x淒#DycI.<$m^?&a:U~pQ`wSFP -pjoc'DAl|92ag >(F:\P!/wyG>nZ0Y M,LXV3GS+#f ;N( p +,6cu0d} g-2"ƀ ͌0XH77b4ca6b9f7318fe2811cdd91161457941f598a8d0f1e5a86f81bb37a170ee29f8f80a689d2ec229be9dc174c528e129cfbcd51deW&p9|RQqc{y3]HciL]{NkfZ4mxFe me5NE^~*U㸈&EQ}WDCirP(u>`AQP_p G]% ُ+,{D4!>\G8e~G!Z[.I\EKpako5%Lyxٚ` dֈ,[;XԔ[ M:m.h䬈Q#E:u#雡j~@Q~b0N >p>h?hd $ W 5Va w       @Dl   (8292: 2FdGeHe IeXeYe\eD]eH^eVbe`cf dfeffflfufvfwg|xgygzgggghCfreerdp-proxy2.4.0150400.3.23.1Remote Desktop Security and Monitorig Proxy ServerThis package contains a proxy that allows to select specific features and channels allowed for all connections passing through. It allows monitoring of the running sessions.eWh02-armsrv2SUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Productivity/Networking/Otherhttps://www.freerdp.com/linuxaarch64eW97955367ba1d029fde877a457215c83284fe3b2406f95a2f580c77d0aac7931brootrootfreerdp-2.4.0-150400.3.23.1.src.rpmfreerdp-proxyfreerdp-proxy(aarch-64)@@@@@@@@    ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libfreerdp-client2.so.2()(64bit)libfreerdp-server2.so.2()(64bit)libfreerdp2.so.2()(64bit)libwinpr2.so.2()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3eV@c=@cEc\cN@bL@b@a^@a]aEaD@aD@aA@a@a`OL@`<@`7@_@_^@^@^^^I^@^@^T@^^t@]@\@[@[j@Zz@Z@Z`@ZkZWQZY@@YKYKY=0Y;@X~@XW local * #gh:FreeRDP/FreeRDP#6985: Support newer FFMPEG builds * #gh:FreeRDP/FreeRDP#6989: Use OpenSSL default certificate store settings * #gh:FreeRDP/FreeRDP#7073: Planar alignment fixes- Updated to release 2.3.2 Noteworthy changes: * Fixed autoreconnect printer backend loading * Fixed compilation on older mac os versions < 10.14 * Fixed mouse pointer move with smart-sizing * Added command line option to disable websocket gateway support * Fixed drive hotplugging issues with windows * Fixed smartcard issues on mac Fixed issues: * #gh:FreeRDP/FreeRDP#6900: Transparency issues with aFreeRDP * #gh:FreeRDP/FreeRDP#6848: Invalid format string in smartcard trace * #gh:FreeRDP/FreeRDP#6846: Fixed static builds * #gh:FreeRDP/FreeRDP#6888: Crash due to missing bounds checks * #gh:FreeRDP/FreeRDP#6882: Use default sound device on mac- Updated to release 2.3.1 Noteworthy changes: * This is a compatibility bugfix release readding some (deprecated) symbols/defines * Also add some more EXPERIMENTAL warnings to CMake flags as some were not clear enough. * Fixed a memory leak in xfreerdp (mouse pointer updates) * No longer activating some compile time debug options with - DWITH_DEBUG_ALL=ON which might leak sensitive information. * Added -DDEFINE_NO_DEPRECATED for developers to detect use of deprecated symbols- Updated to release 2.3.0 Noteworthy changes: * Websocket support for proxy connections * Progressive codec improvements. Reduces graphical glitches against windows and ogon servers * Fixed +glyph-cache, now working properly without disconnects * Huge file support in clipboard * XWayland support for xfreerdp (keyboard grabbing) * Improved wlfreerdp (wayland client) * Option to allow keyboard scancodes to be remapped manually * Improved mouse wheel behaviour when scrolling * Improved dynamic channel behaviour, more stable event detection * New connection state PubSub notification: Clients can now monitor current connection state Fixes: * gh#FreeRDP/FreeRDP/6626: Fixed parsing of FastGlyph order. gh#FreeRDP/FreeRDP/6624: Added support for xwayland keyboard grab gh#FreeRDP/FreeRDP/6492: Added clipboard CB_HUGE_FILE_SUPPORT_ENABLED flag gh#FreeRDP/FreeRDP/6428: Improve NLA error code logging. gh#FreeRDP/FreeRDP/6416: Http gateway message support gh#FreeRDP/FreeRDP/6753: List of pull requests to backport for stable-next - Added freerdp-rpmlintrc to supress a false positive as gethostbyname() is a windows-function call not a unix one.- Updated to release 2.2.0 (boo#1174321, gh#FreeRDP/FreeRDP#6381) * SECURITY: CVE-2020-15103 - Integer overflow due to missing input sanitation in rdpegfx channel * Sound & mic - filter GSM codec for microphone redirection (gh#FreeRDP/FreeRDP#6263) * windows client title length (gh#FreeRDP/FreeRDP#6335) * "Alternate Secondary Drawing Order UNKNOWN" (gh#FreeRDP/FreeRDP#6370) * remoteapp with dialog is disconnecting when it loses focus (gh#FreeRDP/FreeRDP#6298) * v2.1.2: Can't connect to Windows7 (gh#FreeRDP/FreeRDP#6299) * fix: memory leak in nsc * urbdrc: some fixes and improvements * build: use cmake to detect getlogin_r, improve asan checks/detection * server/proxy: - new: support for heartbeats - new: support for rail handshake ex flags - fix: possible race condition with redirects * Drop upstream fixed patch: freerdp-CVE-2020-15103.patch - Removed freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch- Drop BuildRequires of libavcodec for Leap/SLE (bsc#1174200)- Added freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch which fixed frequent crashes described in boo#1173605 and gh#FreeRDP/FreeRDP#6298- Updated to release 2.1.2 (boo#1173247) * CVE-2020-4033 Out of bound read in RLEDECOMPRESS * CVE-2020-4031 Use-After-Free in gdi_SelectObject * CVE-2020-4032 Integer casting vulnerability in `update_recv_secondary_order` * CVE-2020-4030 OOB read in `TrioParse` * CVE-2020-11099 OOB Read in license_read_new_or_upgrade_license_packet * CVE-2020-11098 Out-of-bound read in glyph_cache_put * CVE-2020-11097 OOB read in ntlm_av_pair_get * CVE-2020-11095 Global OOB read in update_recv_primary_order * CVE-2020-11096 Global OOB read in update_read_cache_bitmap_v3_order * Gateway RPC fixes for windows * Fixed resource fee race resulting in double free in USB redirection * Fixed wayland client crashes * Fixed X11 client mouse mapping issues (X11 mapping on/off) * Some proxy related improvements (capture module) * Code cleanup (use getlogin_r, ...) - Removed obsolete upstream patch freerdp-bug-6205.patch- Updated to release 2.1.1 (boo#1171441) * CVE-2020-13396: GHSL-2020-100 OOB Read in ntlm_read_ChallengeMessage * CVE-2020-13397: GHSL-2020-101 OOB Read in security_fips_decrypt due to uninitialized value * CVE-2020-13398: GHSL-2020-102 OOB Write in crypto_rsa_common * Enforce synchronous legacy RDP encryption count (#6156) * Fixed some leaks and crashes missed in 2.1.0 * Removed dynamic channel listener limits * Lots of resource cleanup fixes (clang sanitizers) * A couple of performance improvements * Various small annoyances eliminated (typos, prefilled username for windows client, ...) - Removed freerdp-bug-6175.patch and freerdp-bug-6207.patch because included in upstream- Added freerdp-bug-6205.patch to fix reading newline on certificate accept gh#FreeRDP/FreeRDP#6205 - Added freerdp-bug-6175.patch to fix Certificate Checking Recently Broke gh#FreeRDP/FreeRDP#6148 - Added freerdp-bug-6207.patch to fix Abort on first possible certificate validation error gh#FreeRDP/FreeRDP#6207- Updated to release 2.1.0 (boo#1171441) * Fixed CVEs: - CVE-2020-11039 - CVE-2020-11038 - CVE-2020-11043 - CVE-2020-11040 - CVE-2020-11041 - CVE-2020-11019 - CVE-2020-11017 - CVE-2020-11018 * Fixed leak and crashing issues: - gh#FreeRDP/FreeRDP#6129 - gh#FreeRDP/FreeRDP#6128 - gh#FreeRDP/FreeRDP#6127 - gh#FreeRDP/FreeRDP#6110 - gh#FreeRDP/FreeRDP#6081 - gh#FreeRDP/FreeRDP#6077 * Noteworthy features and improvements: - Fixed sound issues (gh#FreeRDP/FreeRDP#6043) - New expert command line options /tune and /tune-list to modify all client settings in a generic way. - Fixes for smartcard cache, this improves compatibility of smartcard devices with newer smartcard channel. - Shadow server can now be instructed to listen to multiple interfaces. - Improved server certificate support (gh#FreeRDP/FreeRDP#6052) - Various fixes for wayland client (fullscreen, mouse wheel, ...) - Fixed large mouse pointer support, now mouse pointers > 96x96 pixel are visible. - USB redirection command line improvements (filter options) - Various translation improvements for android and ios clients - Removed upstream patches fix-freerdp-2.0.0-usbdk-build.patch and fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch- Updated and reviewed make command and added fix-freerdp-2.0.0-usbdk-build.patch to fix boo#1169679 and make USB working again - Fixed build for SLE_12 - Cleaned up spec file- Add fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch in order to fix boo#1169748.- Added cairo support for scaling - Cleaned up spec- Removed patch freerdp-Fix-realloc-return-handling.patch - Added pkgconfig(libusb-1.0) for building - Added new package for freerdp-proxy - Cleaned up spec file - Updated to release 2.0.0 * Fixed CVEs: - CVE-2020-11521 - CVE-2020-11522 - CVE-2020-11523 - CVE-2020-11524 - CVE-2020-11525 - CVE-2020-11526 * Fixed security related issues: - gh#FreeRDP/FreeRDP#6005 - gh#FreeRDP/FreeRDP#6006 - gh#FreeRDP/FreeRDP#6007 - gh#FreeRDP/FreeRDP#6008 - gh#FreeRDP/FreeRDP#6009 - gh#FreeRDP/FreeRDP#6010 - gh#FreeRDP/FreeRDP#6011 - gh#FreeRDP/FreeRDP#6012 - gh#FreeRDP/FreeRDP#6013 * sha256 is now used instead of sha1 to fingerprint certificates. This will invalidate all hosts in FreeRDP known_hosts2 file and causes a prompt if a new connection is established after the update * First version of the RDP proxy was added (gh#FreeRDP/FreeRDP#5372) thanks to @kubistika * Smartcard received some refactoring. Missing functions were added and input validation was improved (gh#FreeRDP/FreeRDP#5884) * A new option /cert that unifies all certificate related options (gh#FreeRDP/FreeRDP#5880) The old options (cert-ignore, cert-deny, cert-name, cert-tofu) are still available but marked as deprecated * Support for Remote Assistance Protocol Version 2 [MS-RA] * The DirectFB client was removed because it was unmaintained * Unified initialization of OrderSupport * Fix for licensing against Windows Server 2003 * Font smoothing is now enabled per default * Smart scaling for Wayland using libcairo was added (gh#FreeRDP/FreeRDP#5215) * Unified update->BeginPaint and update->EndPaint * An image scaling API for software drawing was added * Rail was updated to the latest spec version 28.0 * Support for H.264 in the shadow server is now detected at runtime * Add mask= option for /gfx and /gfx-h264 (gh#FreeRDP/FreeRDP#5771) * A new option /timeout was added to adjust the TCP ACK timeout (gh#FreeRDP/FreeRDP#5987)- Disable LTO on aarch64 and %arm to fix build- Add freerdp-Fix-realloc-return-handling.patch: Fix realloc return handling that results in memory leaks (boo#1153163, boo#1153164, gh#FreeRDP/FreeRDP#5645, CVE-2019-17177, CVE-2019-17178)- Add Requires: lib%{name}%{major_version} = %{version}-%{release}: freerdp should depend on the same release of libfreerdp2 (boo#1129193)- upgrade to version 2.0.0-rc4 (FATE#326739) * Fix the following issues: - CVE-2018-8784, boo#1116708 - CVE-2018-8785, boo#1117967 - CVE-2018-8786, boo#1117966 - CVE-2018-8787, boo#1117964 - CVE-2018-8788, boo#1117963 - CVE-2018-8789, boo#1117965 - CVE-2018-1000852, boo#1120507 * Security and stability improvements, including boo#1103557 and boo#1112028 * Refactored ntlm_av_pairs API * gateway: multiple fixes and improvements * client/X11: support for rail (remote app) icons was added * the licensing code was re-worked: Per-device licenses are now saved on the client and used on re-connect: WARNING: this is a change in FreeRDP behavior regarding licensing WARNING: this is a change in FreeRDP behavior regarding licensing. If the old behavior is required, or no licenses should be saved use the new command line option +old-license (gh#/FreeRDP/FreeRDP#4979) * improve order handling - only orders that were enabled during capability exchange are accepted. WARNING and NOTE: some servers do improperly send orders that weren't negotiated, for such cases the new command line option /relax-order-checks was added to disable the strict order checking. If connecting to xrdp the options /relax-order-checks *and* +glyph-cache are required. (gh#/FreeRDP/FreeRDP#4926) * /smartcard has now support for substring filters (gh#/FreeRDP/FreeRDP#4840) for details see https://github.com/FreeRDP/FreeRDP/wiki/smartcard-logon * add new command line option /smartcard-logon to allow smartcard login (currently only with RDP security) * add support to set tls security level (for openssl >= 1.1.0) - default level is set to 1 - the new command line option /tls-seclevel:[LEVEL] allows to set a different level if required * new command line option: /window-position to allow positioning the window on startup * client/X11: set window title before mapping * rdpsnd/audin (mostly server side) add support for audio re-sampling using soxr or ffmpeg- upgrade to version 2.0.0-rc3 See: https://github.com/FreeRDP/FreeRDP/milestone/9?closed=1 * Improved and cleaned up the command line interface * Fixed automount issues * Fixed several audio and microphone related issues * Implemented AAC and MP3 codecs * Added Wave2 support * Addedd dynamic resolution with full screen toggle support * Improved redirection handling and certificate issues * Improved automatic reconnects * Improced connection error handling * Fixed invalid pointer, double-free, integer underflow, buffer overflows issues as well as other memory leaks * fixed X11 Right-Ctrl ungrab feature * winpr: Updates time zone data to April 2018 * added libressl compatibility- removed SLE11 condition - removed no_connection_to_windows_10_17101.patch - removed -DBUILTIN_CHANNELS=OFF switch - explicitly set -DCHANNEL_GEOMETRY=ON - Disable the new X264 and OPENH264 codecs because openSUSE does not provide them - upgrade to version 2.0.0-rc2 See: https://github.com/FreeRDP/FreeRDP/milestone/8 Noteworthy features and improvements: * IMPORTANT: add support CredSSP v6 - this fixes KB4088776 see #4449, #4488 * basic support for the "Video Optimized Remoting Virtual Channel Extension" (MS-RDPEVOR) was added * many smart card related fixes and cleanups #4312 * fix ccache support * add support for memory and thread sanitizer * support for dynamic resloution changes was added in xfreerdp #4313 * support for gateway access token (command line option /gat) was added * initial support for travis-ci.org was added * SSE optimization version of RGB to AVC444 frame split was added * build: -msse2/-msse3 are not enabled globally anymore Fixed github issues (excerpt): * #4227 Convert settings->Password to binary blob * #4231 freerdp-2.0.0_rc0: 5 tests failed out of 184 on ppc * #4276 Big endian fixes * #4291 xfreerdp “Segmentation fault” when connecting to freerdp-shadow-cli * #4293 [X11] shadow server memory corruption with /monitors:2 #4293 * #4296 drive redirection - raise an error if the directory can't be found * #4306 Cannot connect to shadow server with NLA auth: SEC_E_OUT_OF_SEQUENCE (boo#1085416, boo#1087240, boo#1104918, CVE-2018-0886) * #4457 Fix /size: /w: /h: with /monitors: (Fix custom sizes) * #4527 pre-connection blob (pcb) support in .rdp files * #4552 Fix Windows 10 cursors drawing as black * smartcard related: #3521, #3431, #3474, #3488, #775, #1424- Fix boo#1090677 activate pulse optional component- Added no_connection_to_windows_10_17101.patch to fix Windows-connection-problem after Windows march 2018 updates. This fix is related to boo#1085416- Do not use xorg-x11-devel, instead buildrequire individual x components. - Only attempt to ge rid of __DATE__ and __TIME__ if SOURCE_DATE_EPOCH is not set.- Users can connect only once wo windows sessions due to [#]gh/FreeRDP/FreeRDP/4348 Therefore WITH_GSSAPI has been disabled until that issue has been solved- Updated to 2.0.0-rc1 Noteworthy features and improvements: * support for FIPS mode was added (option +fipsmode) * initial client side kerberos support (run cmake with WITH_GSSAPI) * support for ssh-agent redirection (as rdp channel) * the man page(s) and /help were updated an improved * add support for ICU for unicode conversion (-DWITH_ICU=ON) * client add option to force password prompt before connection (/from-stdin[:force]) * extend /size to allow width or height percentages (#gh/FreeRDP/FreeRDP/4146) * add support for "password is pin" * clipboard is now enabled per default (use -clipboard to disable) Fixed github issues (excerpt): * #gh/FreeRDP/FreeRDP/4281: Added option to prefer IPv6 over IPv4 * #gh/FreeRDP/FreeRDP/3890: Point to OpenSSL doc for private CA * #gh/FreeRDP/FreeRDP/3378: support 31 static channels as described in the spec * #gh/FreeRDP/FreeRDP/4253: Rfx decode tile width. * #gh/FreeRDP/FreeRDP/3267: fix parsing of drivestoredirect * #gh/FreeRDP/FreeRDP/4257: Proper error checks for /kbd argument * #gh/FreeRDP/FreeRDP/4249: Corruption due to recursive parser * #gh/FreeRDP/FreeRDP/4111: 15bpp color handling for brush. * #gh/FreeRDP/FreeRDP/3509: Added Ctrl+Alt+Enter description * #gh/FreeRDP/FreeRDP/3211: Return freerdp error from main. * #gh/FreeRDP/FreeRDP/3513: add better description for drive redirection * #gh/FreeRDP/FreeRDP/4199: ConvertFindDataAToW string length * #gh/FreeRDP/FreeRDP/4135: client/x11: fix colors on big endian * #gh/FreeRDP/FreeRDP/4089: fix h264 context leak when DeleteSurface * #gh/FreeRDP/FreeRDP/4117: possible segfault * #gh/FreeRDP/FreeRDP/4091: fix a regression with remote program- Remove extraneous Obsoletes for packages that never existed in openSUSE:Factory or X11:RemoteDesktop. - Rename libuwac0-devel to uwac0-devel and libwinpr-devel to winpr-devel, as that seems to be their upstream name which packages are encouraged to stick to. - Remove duplicated pkgconfig requires (these are autodetected).- Fixed download location- Switched to official RC0 - Create wayland client package and libuwac0 package - Create separate libwinpr2 to be used in other packages - enabled gstreamer (currently disabled for tumbleweed) - enabled kerberos authentication - Update to official RC0 Fix the following issues identified by the CISCO TALOS project: * TALOS-2017-0336 CVE-2017-2834 boo#1050714 * TALOS-2017-0337 CVE-2017-2835 boo#1050712 * TALOS-2017-0338 CVE-2017-2836 boo#1050699 * TALOS-2017-0339 CVE-2017-2837 boo#1050704 * TALOS-2017-0340 CVE-2017-2838 boo#1050708 * TALOS-2017-0341 CVE-2017-2839 boo#1050711- Redo history by using changelog url - Update to version 2.0.0~git.1497095982.1dbd2d28d: See https://github.com/freerdp/freeRDP/compare/043243f...1dbd2d28d for full details. - Packaging : + Move to xz tarball in _service + Remove 3472.patch merged upstream - Update to version 2.0.0~git.1496304402.c42ccb508: See https://github.com/freerdp/freeRDP/compare/043243f...c42ccb508 for changes.- Forcefully enable PIE in CFLAGS as the automatism did not work.- Add 3472.patch until upstream #3472 isssue is fixed and PR merged this fix boo#1004108- Update to version 2.0.0~git.1477034991.043243f: * fixed kerberos authentication * shadow/rdpsnd: Fix race condition in rdpsnd channel server. The output buffer and format parameters are not protected. * wfreerdp: fix invalid VerifyCertificate callback * rdpsnd/server: decrease audio latency and make it configurable. * Add an environment variables section to the man * protocol violation: rdp_read_extended_info_packet * Added support for OpenH264 1.6 * freerdp: fix sending of TLS alert on NLA failure, add better handling of server-side NLA in shadow server * freerdp: add configurable NTLM SAM file option for server-side NLA * freerdp: make modifications to NLA server-side fixes according to PR comments * Fixed a windows 8.1 issue.- Kill off __DATE__ from built sources.- Update to GNOME 3.20.2 FATE#318572 - Add obs git integration. - Update to version 2.0.0git.1463131968.4e66df7: + Fixed memory leaks. + wfreerdp: fix name build without client interface + libfreerdp-codec: fix xcrush decompression, revert remote control fix + KB3153731: May 2016 DST update for Azerbaijan, Chile, Haiti and Morocco + libfreerdp-codec: make proper xcrush context reset fix- Update to version 2.0.0, git master branch id a7ca42e (FATE#319661), no upstream changelog available. * Warning: This is a git snapshot regarded as technical preview by upstream. * Warning: For xfreerdp, new /long-option commandline interfaces have replaced the old --long-option interfaces. Existing user scripts need to migrate to the new interfaces to avoid breakages. For more details, see: https://github.com/FreeRDP/FreeRDP/wiki/CommandLineInterface * Add Network Level Ahthentication support. * Add Windows Portable Runtime. For more details, see: http://www.freerdp.com/2012/05/24/winpr-windows-portable-runtime * Obsolete libfreerdp-1_0-plugins. - Drop FindALSA.cmake: deprecated - Drop freerdp_branch-1.0.x_fix-kpdivide-issue831.patch: fixed upstream, implemention now in include/freerdp/scancode.h. - Drop freerdp-CVE-2014-0250.patch (bnc#880317): fixed upstream 532c420. - Drop freerdp-CVE-2014-0791.patch (bnc#857491): fixed upstream f1d6afc. - Drop freerdp-fix-FindPCSC-macro.patch: fixed upstream 9148af3. - Drop freerdp-handle-null-device-name.patch (bnc#785437): deprecated, related implementation dropped. was: freerdp-fix-pulse-no-device-name.patchh02-armsrv2 17002076222.4.0-150400.3.23.12.4.0-150400.3.23.1freerdp-proxy/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:31491/SUSE_SLE-15-SP4_Update/82d127c445f1a5c775463c4f5fc02142-freerdp.SUSE_SLE-15-SP4_Updatecpioxz5aarch64-suse-linuxELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=8e2a33479aff2072786e176353eb8f4bfaee01c5, for GNU/Linux 3.7.0, strippedRRRRRRRR C Yvaijputf-88639b2618d9d008ed089abca99f65f7cc7e18d82a899421a861ff2ab7956cccb? 7zXZ !t/ o] crv9wij޻O)Lk۪r"@T r2NA] .M^@ y0Xܼ+ECfdJv9@'G O ':V Wߩ,}w>i+R xneC8C/6BؑR8nou SLE}%J*%E7vCE%%tBg>3V[+P7 b}MM ׁyU+B XEPrl?=PҰ;g@s/V(+ݔ~6x̙GlSMރ. l`qyy+O =K3@ p)%(TqPvzÐ۲lo@f)ÅajBU@BnMzOz&:_u;$G#:Pk-d`_ e=k/iDh`Q4mceB95-e0\Q=c`A˾u7Q`̋~?됸Qn VtunȊRdz%/jNkK)t[h&sf2P1{|φsdj2w[lF%rɤEag7ZW5\x2a>%b*"q%gaZP9z36dmLKmG**][)}=){uj]g ՊV¡yD2/ bYY }x|1/l,X((N 4rzi͉zwf:,86f&x.;/^p7M__+ΤAvqȋ/#v)` 5y+30l#Д= ^H\m4g}C8/,1e.G.ÂDIhf-V 554'޿B5r>0b{tc❷Ľ ' 4TZ0whU5v~ƽy]sZmX9[E,of zwUOPG`dՈBc\ҬPݣztf4 J|u?3/KΠKɘ-QbLeIYbZ`_R71(@&ao0SId+ >ʋj1Aqua^Keݝ#t {՜`[s[ K;m&#t}կ'Io/Cl_g p~D "% @˖fIglƷꉏ:ˡ !@ݰ*Tt`F8>WȐl_|MHK)C05Dg 'p( Z#QD͸Qq/VɤJI_8K̟mOnubvb%/}@krY)E1uŭr0Ҧy U` ܂> UZye%Dy  nޱ4$a`-SK{XJH $o$hFh(qL9z4@7&0*~;uU4d\}oL0Kb Z] X`w 閾q->WuX :LFڥ3㎜j;Ð(cЖ@eC 0TM! [vлG&2;KV}su^V4K9В4/jx@TK΍?ҞyGGIꉹc~Dy. 1`ڹV(X{ n ΉMol:!"VIc9rkvW{olr2Hm9c^wT!V;z~C징lxr֌QE4G>Yyx5zws@3ѕMM%X>?*"!vr5--WM2Kk*B0?IRmBZL(FJGxMm Peg [չ$XgIF ;֫3|ku]$E7;=6.iJ= Un7R>Tb+t| ZB8Zi`lVD Kc̒~"3 . լTj]hhD`JW%P&S{VU6b^jP^u5 #B.۩e`$8z꾏$\{ Cnj;bmM{3oz;j*5祼N O.yqbu]йP(&&w) ۆ8w =§j,h{UPtx In^G&UD߀9&+;JnV嶼^nQM9/5@Ӂ֤AHywTyPņȟ-uH t chOFx-$"Z~U饂5C#vfMÔJYmq1J~"j>XtJr? 7~ {=.eoP(/Fr`1KE|LsP,6"4VsD V^C[ÇJ!x"&uRsypKg!#(WʌboMEV4}?aF,^P9hYhkw*Nihu&r1\/:"O<9kGZYLUl# s $@!umeŹ$M <`25doL?̞{Q.x ÿyY2yd0 ^/Y[{wd-o<h5$:z:ĎR P#ZEĮFMHkΡG.zn5/BxGDU<5t={8ecı,&:EyyJ>T4._)w,:#e!]tɫjCl Vu| w2uj-YB= *w"+uorb?$qɳ`AyWH{s[D.D =Ft ?gygZּTdEq99ZVZ]1S$G{xg+_Td\G830)yȈ a*1}*JJmi:TB\d*yE\*kmZevBo3:,zX-$R;8B^t/ƹUl1iy?hoUc>"XuAVە-]TT@@_ѸDH,-'p)sENQK\ 6xi<_d;GuɁTADù 4u /7 gU%d ̖Z8׮ ?&¡vc09t \ 'W C6$x`-rj>6 R]!$SA f7!J%tw>sD>˂4(mljr f)cl[u?Q3a>KSRWs 8S7z{*֫E`WW=U<#dv{s|~7e՞7:veK6[=%E8,ԍdkڜh (W kfa҃y4jfU2( OkƘo9i.d}hύEir[﹫$F)GF "nk5Dwh?lŁhmsA$x5ou'`q3jtdlp(0h2K3Dg~n+ьl/"!.}4fg1A4-|ӊ-qẴ> Wc b= {7`f 58oLB̒bg?pFU?:{"֩R>)|m-_} H˚qX s3 And å܄X,eJD։ Z^1 56p\j}0]ҙăj_5%*xj|x#r^g2ۍM$Z6,mav` @`0S YHSqYa 0?! GE}lJVgjjh!ů(~>-7Ny垍ǤUŃ+WZPc:V( yػsHpSr 0ݩiN<]AaJqNRzv{z-|).=+tdHdŜ{UVf[?*Q-D t:A_n3hR3.r{=V*y1`;m#y$Wq#y]pg[޻xaBzVU(J2C5E>`owk_7NRvnjl*Sڰm}s'P ݄ [AN`e&TV>/QnB;ރ,y1;EuRK&/QJL.n_4nРP/?X)6=@_i{S)6:9.7M\7'QttF-f?^++r{)"AkfX`V =%rZÙ\E5sm!l z[I&IgFD hmpQɟqѕ$ WMnn)aܣݓC,&mQJoRKo:|I2Fq5,n- U ؽa6 ] Mu}mkPCNzc$& ~3t$d#=23\(<ф,Š#jy k}ő{ >Ub&\~#;|ԗ*N"g@N<ΤsEaHYT]ڽp cRVp=&G=e&D omr] _XI:9큮8s4ƣvU8dR<3,z1 ,S ޑiz%”0wS$h~*Dn.v_gpBK%1|Xt+FO{IiwQ1zɵ|h&v=,p&۟FB8no:tDl:AHsr%kh;u/~}](#-h*( +n>^?ZcGwW#$ 5y_RH63&JfVq*E'B L? ìJ>v9梫ЇR&A=+3IeA:Pz2M dEz 7 E"{ ' ~%&TuWU+Q2b/ cQD~ Q12O:ek?iDO0'9mǍP5xdnwHj +m%'P~ncf%aaUi oĺzm5Rcʀ}{p#["~EVPnDzHsCGv& kUo$W{OF[2|M([|7N TX[RlײC*j魍H=~_z^( {&2_:wXe|r/ bS Z< j\i[c` <]y9|Ȅ0l \g9b %zέSɯ_b'̛dkKHR*N࣬0VƒZ!fk+qm+`!*)s^ {}5vq#I:%i>ruWt>nh bFcH#u-iX҆96WN*㥍ʛťֵqA]ct`o~| ]PŲdQ?'?gzm龹8=p8* P7ݲ5.V@>0 '6PpY엥;=ĸܯ5)K*1q WF 6sI5!E!O&Y|6~J m66ń-掎Ceh;hζ_۟%g0-ghK霱5Q0ð9U&j=[זG < >g'N!{\~8 0L%DV'bX/l\jQݱC.~aQ*##Śxq'a+īSΆbF c6Tʱ.%P+4KmChTo{S`spz'Q0F9U׃UTm?Fvx}O?{nzhNb6P_gA_͑KK[o6&4(.-hQHudA'a|JJ"nKbD y6X.[*e @jw-NJk|ztͯp0XPpȿ&D@hV Ǣ0x&zt˽6xvoZR})#NE8/ݮnҘ:󨨃kTi^5(;]'Jh-XVUIajx ɗ_ܶ#3bS&nVUHZ0}2='Gi=X=7Ć/M/ahGRghw| 1cM$hݷ]}JkUUgsafX! "GPs`mR|ils<^ Ǝ Eo?@e8cKj$ `h}Nӄ4'(fn8x_/Nx6S! 8" Ѭ׻}wwVs,"_./l#嫳"V 1Ծ%e<{Fd07̦Ot6D?;-.Ll1@dBoth}>J!&QfOPy? if!$%#32Qj`'6jU M!.-$/GYJwZu>_)Ϥ}\#V7MPx5W&F'"!hS#gR9>cNҩ_"s ̕*.S'_x`@uۭMt9#Ge .MȵP?@`$("WhweV+BRb'N TB>޾>>6BTM9,A `JuP*`(۴,VXFgia|.ݿ Y`:~6tݚ ^xA ioM,yX+"D6:r&1Jv]-זTv3Wkĉ{FZi*58P^k}ƓҨE%3BAȭ7i+dq5As9FX=h)MJ$…Ev['5!Zw C 21nc[9$4~WkeZ.BLK EzbϱHx#N^sv "<@2g<*r J-,i%2WF0ZwBX0";@DxcI9a Ɏ g*6f|EAL 4x !xSQi4E[FWܘYFH==AFlL y0Wg/W΅P~Gtm/G?Zyjϵ)JnXV4vvsm6)gsf3~ʖ-V/t7:ρ&&yC3^FGe ˳0>RGZqx3?2Ųbv;IFs'{`(P`@SS;J ʽ:Aw5O* )qWa+4/3BmEd&O+خ=V@sLY g1Nͨ J Knt8k 6#[ [Bb#1f+f+ ǂuUڐ*CC#6&[եsrV'kNt9i$dQ$x\gj8Q@/K.Qzu3l7Ia;'!6Ӡ%Wҗģ6)sCNځ#Vnм4E~\eGJSexzlUG46R߹Ʌ }hvU#@F|uJ9A*Bu-"RjJܓ*d2ȱ?Eю!9ڪJϑ5OZxQ L]gʸ NqO/dE."]Ucd7}j%t&s=W,}p;k1Q_~TqJ4 HT7eM=I\0.hŎ7VyHWL MPO?t16L>REgwCa{N7/5@Si/E>No%%v &N񘕖>jdvF(eQ!M!F1#+њ]o? ۴x˧""mȜ 5T"jfGzOZ0HTt |n1HND{ڨ X= b% TT1hؽ@\Y 5;56P%$j< Z(`tbL3*<5!-ʖ:on:Fsr :rBAVfڈ(`97'WX(A XS9F>_׺w05gpfz2JI\<'/U5ni:0Vk28+R( iﰬ+ėc0忛UW5}7FQ>6}GZ2.%2.OES۪b uԩ/[Ev,ͩMQwa1{LW2Z;s|_ߡaՉX6P?3몧 -;SZF3dc5CI7?Y 1 iԻtJ֨hv@k̟GTWcam"xOڃXF]3D=>Fb-$L x8I"?*ЫN"g=n Udd; cb N. i^%yzp̐PTZ\]&{F<4gs~7Sl/Lg&-z9FQ^l٧PƔ´Kf6B _C}~F0D| %;WpЬrmK bs琦2Leɱf;첟ȿfsuzC uXt3$L2ץqܮ~ tb"ꊯ0[⌈ȋ3tk(jSG+0 /Q#5E!FPF [Գto#[K2?p 0!uD@zCXvi皇S}TYiv>FQ&g\~R-1֧u/bN>ΒClVL<~?3PubMl¬o _-4YWuEP@,!/5')t8l"A#7./@_RĤC./A\GUWGz|4>MG; )Lh<0,nո2]G\򦻹H,̄F`fR4I}k%!@pC'8eU VOpȤ+azs9D}J Շ:a޽oZ+ ^v ?ĹsInPdRid*GIy '>Q)XS`$ٸBJƥ h}L1j(?ZbB#&'lU&:RaтL^ =MikSRG|Q92YF|1:]FZ? JW,~ӆ)SHw1ŞbYs";o0oGd\?/3Sgr1 ?7IEDg.ݭP!/w"a<'ڵsVy;p ypmfcIg 2[l+8(h)LcRU=︸'*EO 'oPOZ. $D h.Tp 2sD9w}X_N[DVGTVQYK |Ιy}$NDsؔט[]XPs0}LNof^`X;QG[^ۛ(QHZyX7 SP]_ olZ'~\4JJȽ^rVKu&Q̡Q`-$hoQ+6>ThGpc=0!L%>!Dt]gR loΔ7t\NtF.;"hqMǪRm:\tdkQN -0Eg$]tgb%]e1-'wx[^_u"dJ5cerlP678!C}jp#Yח Lk?_K@݀8c_LCͭKX1 ݝ|x[}=!7{YNZ2<0ff<<9ܗg@ ,x`p&dT:7\[v,C[E$-ۑ JA!MQ޶ʻK GxD6=bBat:cX:~;;=H@,co#)rb~%u8 .Df[aY!LΟ'зgKqg\3Opՙ<ûaW͇:ӺP6E.U{$vŠVt+1U+I1O! p VOJ5I?{Un<S/?2W#3!Z:b \ mW =+"A4 ֡lbnVܟM%al`>ֶj|bQu׷ )؄7MKi@8 Nio{@[ ֥m)+#78EUBSl_L;\Va]s/D JhH7N#J9H؀ʀɓ0hD+,_qΨ<7Ό`=Uo\l+#κ` QoU{ gQ^٤%wcgb#fVyct%t5y'$/11){zGI_aQr%vn[O~~̯t: PPEpy4)KK1ẒcPQ$s`vrs=ǻ㏼2d\8\2k\20?w@A䂞Đe/ü`{0 k"DVT606.9)z%JtK- {VY絋HrxV)f+FOҊt6܍:quC4d>@)JmSA[fw|*n x#X ]0H9X˺+ׁgOhwG_8tW"謅\^::i-@Y4a [E;wiD0N)Kۡ]POW63x"}G ;4K2 ,mk(DӀ*|v=2`hj~*z5>錹ZiO3?N.0R*k讄eCu¬AӑD8 +%.^/;?[I1+0u.PJ( u _?MeE'|Au#gA ھyCDK5 ߠ\AljZ0yX9g.>JyCɳS6,FŦ;MlgT0MVڔ~! U8F4~>CyO^Xa']3l;4)D(e*{I?B1{h=#nQ(jH2R^V@_T9}ZP#2iYt"锏j36&1qaxx3!荸?l`YsDI<9m> g'ۿKf:.vݡ)F~}l[hѥg°JK$hwßSaJ=r WJVȁ/HS1sT/(oB& F6R"( B} SF`iN5 4. }t>g=N4Ľ7bvqw=y;(j$2h,#yJ>/|}wfc{DPGTX@kw#뗁3^Č'ޞʙC u庂cV?_/H7b@JoD#*c/,'dKO:(9G k3$v(xҜo~Mr-6(ѯy(y ?oa.IcNdp`s 2yE1?p5A~3 )=c~$9}kk2/𳊫ΤoKU#o _01 fdHŠA+ O5'8yx@8IAQ®Jlp_IJK@JS~͙fX`UvqϧsFB )Q''Dk.$;d\&u&2-nڰM2I|Vٳu$ƔʰR6ʗmVZ$::XcrzˣU(_ (f;GX7:p]9zD)M]x#^):t{,'zA~mpTy9v+ϙi:cP*=OTXs*KFNp7CoDm{{k?@Z$0DzsA}P ]@{l2m6lD0Uxr. B[S O_<ݨk>&PLahKo {,0ᦃ=s4 ޘlC0ɄiYŠe0Zsڌ*s'^J|fto8YA?۳R!-ި9GGԯmxփ -o>kH)*WT n7EDWGR{89\ C،t2 Ec݀S1+7-7R+A `V/pJ*ʃ]F@&z's¬6U4lpG>r^#Y֧ܦWuҘoP>WR7|'Fö ,YWyU6g+ėOhlTDu Զ7ɠ2~3o`3[^ko6 W ms+ayNJղsټy /Ij͞h@4 ڪDlղ3eS/TvP&x05jNf IiE.YބeP Ot&{G @& )ξa@]M\JM`MI@ 0b|umNm23m-ӰZySw2/ @KO<ǭjR#Z{M,FƖC_p(u.rDU5U٤aP-6M 'H0lޔ(a],p w>B&E`M'YAIPOn5N蝏3xuA <mW@ҿԤe(&o{SC>xܙ N` m}P],=UNb-X\IX *\ǿ6==0nQ'zfYvc"WUz.;y(4ACƐ& m'7ݗi3&ќ){.{*. ,?EmҘ:|5rbdw,0 P]Tdu ǚքJ|2 vbFVMTדdZ_3:ڐ0op [g'\J>lw b^!Hָ]N[8|Te> Dc'nOK sV]He ?$I!=o,c"r'EwO9,َb-1bdb1InXl$4|z'Zu@}MEDwN}0AT aWkZ-*aj$h1Cg͂ lAzT!՚ +7FE܋]P`Grg<6:Qèg}Ҩצ hPH`rk iU 'L3vv!j>txgo+m?h@$n%= $kO`6Db^ZfpqQO0Ahbn2j\!engqocLMf򶟘{,ށzq3kH&tV 2[#IYhE[%\0>12oh[Z#к 4AVL엢l_]Q%U!*,Om4q[7*I^܄iq/>kNLOtxi Uj_n@">zۺV/^G vƼ9g`W|Bu@6h{дݚ!`*&~h%o鿓`sկ4I3'|zqWQ ( {Z1 ]rC['d;|вgv/ղ50{3茬CkJTfIfO";Wq ugKRY'aOoqHj(0j(&B2}z`)4@`L}v V>].o7iT e85 ZbAY~^s ?8C˝E5 ~+[߉-r{uU4~!USq Qtb ggsI=Ż&<ܞjyan1upTtjzqK6Ak,wV>vfytؚ4)wyZn9i],9 =Z:STE$_t$Mk(>]Ma1I_eW*a d4/WoR1ƎU3/T$`baNrByZq YSFz{Ƹ41,Oa|Љ;'`&q w5>ó0;Lz3?mR\?՗`e';8u'lpʮL@j$qzGW[xQ'4~Adh0~])l]W3Jb)J_kV*Z#s^z,NH|| V P7eIdy=_yr8̏\ԔΦi[Z9C 5yqLnhzu %TrkFaO¼ZLOhxfq(rLZMm==&Pl3X'6 T3Pڣx}aTN1sw'l>ccPdez=z} 3𰔹VnE|b 5_*(\T|,9w:TFdN[wտT0p OmXB.5`|X`)wՒ̻!zfyvVe UXAoP )WQ1/Dm 2n=PQ@՝،xgCʈp5WP? O%Hf1c1/^dfy IsB34ˇ^ߥۮLE$;k+=#B!18/8m8k/;$/Cjgjx&|0dԬ89}H15  jAWxiԚ iM4fEn5(d9x4g\:6M;g> ĸ8T/)!kvP:w| ؁KȞh"M="]+/=lm ԍPZ ?]-kwׯU<ęBx89s8C!Ϫ^t(, grI9^ 'رSr`ix}VDW~ NJCY"%lb:zVf.1isd,&[l klѰY13B+$ HYGx.Y!(uCLTJi*Ѣx!$> EЩaaMȠ0P33a3I⹅a7/>S9IiA4$b v$Hl!&󾭔tkv1"ڱٸ~lp4&W@Pܐu`&'LsDI~92ܢH_Y$[ MeP7-jɎ] -%dvgzRP @ր ؉z+>( %\۠Z`FgTs_ttm0 \FfǷ ĢUrRsb;܁:T.V#[5^+OmU=(7TrLƣ`y܇hLf 93(Q+2ȅ<ʶq0%aBIu͹w3Qބžr?=.Xh~ȕ()G`"g ;Xn;${REW)Htj'~t@jLWCp1Y,ܭXM>+6Xs|T;>wzdϝC[c#Eߛ~q `[0IAcXLUt#\S*#~H!љdk P{"x 0(o+7U.!\y'j>B>6A)V;{KGf$kz1 ݕ`egopݓe; Fzͳ::2,[` 7'6r3vuLYecY6~cpbk]mS P(~rϓdԨ1SVMz$hCe(~pԪ4P f~\΅"Vw勣V7+P̷NX7 tPLlלDzTu*+p ldd3{IԩfN*}Fz'r,[C"(=;p; ;}"#ݷ=ohCרlC l5W'9W(A5+q2ۡݱ2ỉgM b;c$+oAyo6;nٚ7Żw?8GVP`TI=bf`z~Sٱd?aPg j8ooz>I'-#6'yCOY~GVkU>cŠMEmQqLVWɾHj9K%xKB+WUR TViPfX~05,t6ڽz BnأAN$ПIЫ<97(K1-ѳ5*^'卽^H.A"f:7!qTAWݞF c0q[naPsO I&vPd+oq4, ?npbuM8G?+~0-F|c#˨f#o$^ޢU|A1e{ɇ-F&~ ֢zS nTjt75[t4z+Re_0qJlk/a[;Iٔl$&oc>OM #JYh`(eh[ }hp\YD'u|?L72B xgnb$Mļ$ R$8߉;c'jywظÊPK >xB`C/[y.Ŀ[?(Cb'6X47XX߀].ZlyMOzy{}UѰwG q[>LEhMDM4>gFΨQ.qO Es qI.bDMAaC Jֳ} ub8 r,fX݂] g>Av͝:#S&;Ԟa9v;Y]= (i)q?_ϧY[.o,@KmiOL2^B!$Dcp'tܣߨ~@  =fl]z5{9OW!#| qUp]tT2cJFuWˍU[d5G(6=-ZEz%(>+'6@Wڏ`Rf4Z뿢LA 8һ?*Hm׌̏ ΋9nzk]yEZ{M۫p!Kv.M(I@Q+W<0w L_%,Kyc+J eVc%Nhx> "b2 ;(9h ϏMƄ< <ƲzS[H:-+%}pri( <