freerdp-proxy-2.4.0-150400.3.15.1 >  A cPp9|k}B@%˵cSc5TFKp|^-P!@9|-?.W69$kc[ p>c?cd $ W 5Va w       @Dl   (8090:0F`G`H`I`X`Y`\a ]a^aba(cadbSebXfb[lb]ubpvbtwc8xc<yc@zc\clcpcvcCfreerdp-proxy2.4.0150400.3.15.1Remote Desktop Security and Monitorig Proxy ServerThis package contains a proxy that allows to select specific features and channels allowed for all connections passing through. It allows monitoring of the running sessions.cQ\s390zp31SUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Productivity/Networking/Otherhttps://www.freerdp.com/linuxs390xcQW0a82a50d605bcfea8fc08d24e796e5d6c7b76d22dd8dfd2512752777785a619drootrootfreerdp-2.4.0-150400.3.15.1.src.rpmfreerdp-proxyfreerdp-proxy(s390-64)@@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.4)(64bit)libfreerdp-client2.so.2()(64bit)libfreerdp-server2.so.2()(64bit)libfreerdp2.so.2()(64bit)libwinpr2.so.2()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3cEc\cN@bL@b@a^@a]aEaD@aD@aA@a@a`OL@`<@`7@_@_^@^@^^^I^@^@^T@^^t@]@\@[@[j@Zz@Z@Z`@ZkZWQZY@@YKYKY=0Y;@X~@XW local * #gh:FreeRDP/FreeRDP#6985: Support newer FFMPEG builds * #gh:FreeRDP/FreeRDP#6989: Use OpenSSL default certificate store settings * #gh:FreeRDP/FreeRDP#7073: Planar alignment fixes- Updated to release 2.3.2 Noteworthy changes: * Fixed autoreconnect printer backend loading * Fixed compilation on older mac os versions < 10.14 * Fixed mouse pointer move with smart-sizing * Added command line option to disable websocket gateway support * Fixed drive hotplugging issues with windows * Fixed smartcard issues on mac Fixed issues: * #gh:FreeRDP/FreeRDP#6900: Transparency issues with aFreeRDP * #gh:FreeRDP/FreeRDP#6848: Invalid format string in smartcard trace * #gh:FreeRDP/FreeRDP#6846: Fixed static builds * #gh:FreeRDP/FreeRDP#6888: Crash due to missing bounds checks * #gh:FreeRDP/FreeRDP#6882: Use default sound device on mac- Updated to release 2.3.1 Noteworthy changes: * This is a compatibility bugfix release readding some (deprecated) symbols/defines * Also add some more EXPERIMENTAL warnings to CMake flags as some were not clear enough. * Fixed a memory leak in xfreerdp (mouse pointer updates) * No longer activating some compile time debug options with - DWITH_DEBUG_ALL=ON which might leak sensitive information. * Added -DDEFINE_NO_DEPRECATED for developers to detect use of deprecated symbols- Updated to release 2.3.0 Noteworthy changes: * Websocket support for proxy connections * Progressive codec improvements. Reduces graphical glitches against windows and ogon servers * Fixed +glyph-cache, now working properly without disconnects * Huge file support in clipboard * XWayland support for xfreerdp (keyboard grabbing) * Improved wlfreerdp (wayland client) * Option to allow keyboard scancodes to be remapped manually * Improved mouse wheel behaviour when scrolling * Improved dynamic channel behaviour, more stable event detection * New connection state PubSub notification: Clients can now monitor current connection state Fixes: * gh#FreeRDP/FreeRDP/6626: Fixed parsing of FastGlyph order. gh#FreeRDP/FreeRDP/6624: Added support for xwayland keyboard grab gh#FreeRDP/FreeRDP/6492: Added clipboard CB_HUGE_FILE_SUPPORT_ENABLED flag gh#FreeRDP/FreeRDP/6428: Improve NLA error code logging. gh#FreeRDP/FreeRDP/6416: Http gateway message support gh#FreeRDP/FreeRDP/6753: List of pull requests to backport for stable-next - Added freerdp-rpmlintrc to supress a false positive as gethostbyname() is a windows-function call not a unix one.- Updated to release 2.2.0 (boo#1174321, gh#FreeRDP/FreeRDP#6381) * SECURITY: CVE-2020-15103 - Integer overflow due to missing input sanitation in rdpegfx channel * Sound & mic - filter GSM codec for microphone redirection (gh#FreeRDP/FreeRDP#6263) * windows client title length (gh#FreeRDP/FreeRDP#6335) * "Alternate Secondary Drawing Order UNKNOWN" (gh#FreeRDP/FreeRDP#6370) * remoteapp with dialog is disconnecting when it loses focus (gh#FreeRDP/FreeRDP#6298) * v2.1.2: Can't connect to Windows7 (gh#FreeRDP/FreeRDP#6299) * fix: memory leak in nsc * urbdrc: some fixes and improvements * build: use cmake to detect getlogin_r, improve asan checks/detection * server/proxy: - new: support for heartbeats - new: support for rail handshake ex flags - fix: possible race condition with redirects * Drop upstream fixed patch: freerdp-CVE-2020-15103.patch - Removed freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch- Drop BuildRequires of libavcodec for Leap/SLE (bsc#1174200)- Added freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch which fixed frequent crashes described in boo#1173605 and gh#FreeRDP/FreeRDP#6298- Updated to release 2.1.2 (boo#1173247) * CVE-2020-4033 Out of bound read in RLEDECOMPRESS * CVE-2020-4031 Use-After-Free in gdi_SelectObject * CVE-2020-4032 Integer casting vulnerability in `update_recv_secondary_order` * CVE-2020-4030 OOB read in `TrioParse` * CVE-2020-11099 OOB Read in license_read_new_or_upgrade_license_packet * CVE-2020-11098 Out-of-bound read in glyph_cache_put * CVE-2020-11097 OOB read in ntlm_av_pair_get * CVE-2020-11095 Global OOB read in update_recv_primary_order * CVE-2020-11096 Global OOB read in update_read_cache_bitmap_v3_order * Gateway RPC fixes for windows * Fixed resource fee race resulting in double free in USB redirection * Fixed wayland client crashes * Fixed X11 client mouse mapping issues (X11 mapping on/off) * Some proxy related improvements (capture module) * Code cleanup (use getlogin_r, ...) - Removed obsolete upstream patch freerdp-bug-6205.patch- Updated to release 2.1.1 (boo#1171441) * CVE-2020-13396: GHSL-2020-100 OOB Read in ntlm_read_ChallengeMessage * CVE-2020-13397: GHSL-2020-101 OOB Read in security_fips_decrypt due to uninitialized value * CVE-2020-13398: GHSL-2020-102 OOB Write in crypto_rsa_common * Enforce synchronous legacy RDP encryption count (#6156) * Fixed some leaks and crashes missed in 2.1.0 * Removed dynamic channel listener limits * Lots of resource cleanup fixes (clang sanitizers) * A couple of performance improvements * Various small annoyances eliminated (typos, prefilled username for windows client, ...) - Removed freerdp-bug-6175.patch and freerdp-bug-6207.patch because included in upstream- Added freerdp-bug-6205.patch to fix reading newline on certificate accept gh#FreeRDP/FreeRDP#6205 - Added freerdp-bug-6175.patch to fix Certificate Checking Recently Broke gh#FreeRDP/FreeRDP#6148 - Added freerdp-bug-6207.patch to fix Abort on first possible certificate validation error gh#FreeRDP/FreeRDP#6207- Updated to release 2.1.0 (boo#1171441) * Fixed CVEs: - CVE-2020-11039 - CVE-2020-11038 - CVE-2020-11043 - CVE-2020-11040 - CVE-2020-11041 - CVE-2020-11019 - CVE-2020-11017 - CVE-2020-11018 * Fixed leak and crashing issues: - gh#FreeRDP/FreeRDP#6129 - gh#FreeRDP/FreeRDP#6128 - gh#FreeRDP/FreeRDP#6127 - gh#FreeRDP/FreeRDP#6110 - gh#FreeRDP/FreeRDP#6081 - gh#FreeRDP/FreeRDP#6077 * Noteworthy features and improvements: - Fixed sound issues (gh#FreeRDP/FreeRDP#6043) - New expert command line options /tune and /tune-list to modify all client settings in a generic way. - Fixes for smartcard cache, this improves compatibility of smartcard devices with newer smartcard channel. - Shadow server can now be instructed to listen to multiple interfaces. - Improved server certificate support (gh#FreeRDP/FreeRDP#6052) - Various fixes for wayland client (fullscreen, mouse wheel, ...) - Fixed large mouse pointer support, now mouse pointers > 96x96 pixel are visible. - USB redirection command line improvements (filter options) - Various translation improvements for android and ios clients - Removed upstream patches fix-freerdp-2.0.0-usbdk-build.patch and fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch- Updated and reviewed make command and added fix-freerdp-2.0.0-usbdk-build.patch to fix boo#1169679 and make USB working again - Fixed build for SLE_12 - Cleaned up spec file- Add fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch in order to fix boo#1169748.- Added cairo support for scaling - Cleaned up spec- Removed patch freerdp-Fix-realloc-return-handling.patch - Added pkgconfig(libusb-1.0) for building - Added new package for freerdp-proxy - Cleaned up spec file - Updated to release 2.0.0 * Fixed CVEs: - CVE-2020-11521 - CVE-2020-11522 - CVE-2020-11523 - CVE-2020-11524 - CVE-2020-11525 - CVE-2020-11526 * Fixed security related issues: - gh#FreeRDP/FreeRDP#6005 - gh#FreeRDP/FreeRDP#6006 - gh#FreeRDP/FreeRDP#6007 - gh#FreeRDP/FreeRDP#6008 - gh#FreeRDP/FreeRDP#6009 - gh#FreeRDP/FreeRDP#6010 - gh#FreeRDP/FreeRDP#6011 - gh#FreeRDP/FreeRDP#6012 - gh#FreeRDP/FreeRDP#6013 * sha256 is now used instead of sha1 to fingerprint certificates. This will invalidate all hosts in FreeRDP known_hosts2 file and causes a prompt if a new connection is established after the update * First version of the RDP proxy was added (gh#FreeRDP/FreeRDP#5372) thanks to @kubistika * Smartcard received some refactoring. Missing functions were added and input validation was improved (gh#FreeRDP/FreeRDP#5884) * A new option /cert that unifies all certificate related options (gh#FreeRDP/FreeRDP#5880) The old options (cert-ignore, cert-deny, cert-name, cert-tofu) are still available but marked as deprecated * Support for Remote Assistance Protocol Version 2 [MS-RA] * The DirectFB client was removed because it was unmaintained * Unified initialization of OrderSupport * Fix for licensing against Windows Server 2003 * Font smoothing is now enabled per default * Smart scaling for Wayland using libcairo was added (gh#FreeRDP/FreeRDP#5215) * Unified update->BeginPaint and update->EndPaint * An image scaling API for software drawing was added * Rail was updated to the latest spec version 28.0 * Support for H.264 in the shadow server is now detected at runtime * Add mask= option for /gfx and /gfx-h264 (gh#FreeRDP/FreeRDP#5771) * A new option /timeout was added to adjust the TCP ACK timeout (gh#FreeRDP/FreeRDP#5987)- Disable LTO on aarch64 and %arm to fix build- Add freerdp-Fix-realloc-return-handling.patch: Fix realloc return handling that results in memory leaks (boo#1153163, boo#1153164, gh#FreeRDP/FreeRDP#5645, CVE-2019-17177, CVE-2019-17178)- Add Requires: lib%{name}%{major_version} = %{version}-%{release}: freerdp should depend on the same release of libfreerdp2 (boo#1129193)- upgrade to version 2.0.0-rc4 (FATE#326739) * Fix the following issues: - CVE-2018-8784, boo#1116708 - CVE-2018-8785, boo#1117967 - CVE-2018-8786, boo#1117966 - CVE-2018-8787, boo#1117964 - CVE-2018-8788, boo#1117963 - CVE-2018-8789, boo#1117965 - CVE-2018-1000852, boo#1120507 * Security and stability improvements, including boo#1103557 and boo#1112028 * Refactored ntlm_av_pairs API * gateway: multiple fixes and improvements * client/X11: support for rail (remote app) icons was added * the licensing code was re-worked: Per-device licenses are now saved on the client and used on re-connect: WARNING: this is a change in FreeRDP behavior regarding licensing WARNING: this is a change in FreeRDP behavior regarding licensing. If the old behavior is required, or no licenses should be saved use the new command line option +old-license (gh#/FreeRDP/FreeRDP#4979) * improve order handling - only orders that were enabled during capability exchange are accepted. WARNING and NOTE: some servers do improperly send orders that weren't negotiated, for such cases the new command line option /relax-order-checks was added to disable the strict order checking. If connecting to xrdp the options /relax-order-checks *and* +glyph-cache are required. (gh#/FreeRDP/FreeRDP#4926) * /smartcard has now support for substring filters (gh#/FreeRDP/FreeRDP#4840) for details see https://github.com/FreeRDP/FreeRDP/wiki/smartcard-logon * add new command line option /smartcard-logon to allow smartcard login (currently only with RDP security) * add support to set tls security level (for openssl >= 1.1.0) - default level is set to 1 - the new command line option /tls-seclevel:[LEVEL] allows to set a different level if required * new command line option: /window-position to allow positioning the window on startup * client/X11: set window title before mapping * rdpsnd/audin (mostly server side) add support for audio re-sampling using soxr or ffmpeg- upgrade to version 2.0.0-rc3 See: https://github.com/FreeRDP/FreeRDP/milestone/9?closed=1 * Improved and cleaned up the command line interface * Fixed automount issues * Fixed several audio and microphone related issues * Implemented AAC and MP3 codecs * Added Wave2 support * Addedd dynamic resolution with full screen toggle support * Improved redirection handling and certificate issues * Improved automatic reconnects * Improced connection error handling * Fixed invalid pointer, double-free, integer underflow, buffer overflows issues as well as other memory leaks * fixed X11 Right-Ctrl ungrab feature * winpr: Updates time zone data to April 2018 * added libressl compatibility- removed SLE11 condition - removed no_connection_to_windows_10_17101.patch - removed -DBUILTIN_CHANNELS=OFF switch - explicitly set -DCHANNEL_GEOMETRY=ON - Disable the new X264 and OPENH264 codecs because openSUSE does not provide them - upgrade to version 2.0.0-rc2 See: https://github.com/FreeRDP/FreeRDP/milestone/8 Noteworthy features and improvements: * IMPORTANT: add support CredSSP v6 - this fixes KB4088776 see #4449, #4488 * basic support for the "Video Optimized Remoting Virtual Channel Extension" (MS-RDPEVOR) was added * many smart card related fixes and cleanups #4312 * fix ccache support * add support for memory and thread sanitizer * support for dynamic resloution changes was added in xfreerdp #4313 * support for gateway access token (command line option /gat) was added * initial support for travis-ci.org was added * SSE optimization version of RGB to AVC444 frame split was added * build: -msse2/-msse3 are not enabled globally anymore Fixed github issues (excerpt): * #4227 Convert settings->Password to binary blob * #4231 freerdp-2.0.0_rc0: 5 tests failed out of 184 on ppc * #4276 Big endian fixes * #4291 xfreerdp “Segmentation fault” when connecting to freerdp-shadow-cli * #4293 [X11] shadow server memory corruption with /monitors:2 #4293 * #4296 drive redirection - raise an error if the directory can't be found * #4306 Cannot connect to shadow server with NLA auth: SEC_E_OUT_OF_SEQUENCE (boo#1085416, boo#1087240, boo#1104918, CVE-2018-0886) * #4457 Fix /size: /w: /h: with /monitors: (Fix custom sizes) * #4527 pre-connection blob (pcb) support in .rdp files * #4552 Fix Windows 10 cursors drawing as black * smartcard related: #3521, #3431, #3474, #3488, #775, #1424- Fix boo#1090677 activate pulse optional component- Added no_connection_to_windows_10_17101.patch to fix Windows-connection-problem after Windows march 2018 updates. This fix is related to boo#1085416- Do not use xorg-x11-devel, instead buildrequire individual x components. - Only attempt to ge rid of __DATE__ and __TIME__ if SOURCE_DATE_EPOCH is not set.- Users can connect only once wo windows sessions due to [#]gh/FreeRDP/FreeRDP/4348 Therefore WITH_GSSAPI has been disabled until that issue has been solved- Updated to 2.0.0-rc1 Noteworthy features and improvements: * support for FIPS mode was added (option +fipsmode) * initial client side kerberos support (run cmake with WITH_GSSAPI) * support for ssh-agent redirection (as rdp channel) * the man page(s) and /help were updated an improved * add support for ICU for unicode conversion (-DWITH_ICU=ON) * client add option to force password prompt before connection (/from-stdin[:force]) * extend /size to allow width or height percentages (#gh/FreeRDP/FreeRDP/4146) * add support for "password is pin" * clipboard is now enabled per default (use -clipboard to disable) Fixed github issues (excerpt): * #gh/FreeRDP/FreeRDP/4281: Added option to prefer IPv6 over IPv4 * #gh/FreeRDP/FreeRDP/3890: Point to OpenSSL doc for private CA * #gh/FreeRDP/FreeRDP/3378: support 31 static channels as described in the spec * #gh/FreeRDP/FreeRDP/4253: Rfx decode tile width. * #gh/FreeRDP/FreeRDP/3267: fix parsing of drivestoredirect * #gh/FreeRDP/FreeRDP/4257: Proper error checks for /kbd argument * #gh/FreeRDP/FreeRDP/4249: Corruption due to recursive parser * #gh/FreeRDP/FreeRDP/4111: 15bpp color handling for brush. * #gh/FreeRDP/FreeRDP/3509: Added Ctrl+Alt+Enter description * #gh/FreeRDP/FreeRDP/3211: Return freerdp error from main. * #gh/FreeRDP/FreeRDP/3513: add better description for drive redirection * #gh/FreeRDP/FreeRDP/4199: ConvertFindDataAToW string length * #gh/FreeRDP/FreeRDP/4135: client/x11: fix colors on big endian * #gh/FreeRDP/FreeRDP/4089: fix h264 context leak when DeleteSurface * #gh/FreeRDP/FreeRDP/4117: possible segfault * #gh/FreeRDP/FreeRDP/4091: fix a regression with remote program- Remove extraneous Obsoletes for packages that never existed in openSUSE:Factory or X11:RemoteDesktop. - Rename libuwac0-devel to uwac0-devel and libwinpr-devel to winpr-devel, as that seems to be their upstream name which packages are encouraged to stick to. - Remove duplicated pkgconfig requires (these are autodetected).- Fixed download location- Switched to official RC0 - Create wayland client package and libuwac0 package - Create separate libwinpr2 to be used in other packages - enabled gstreamer (currently disabled for tumbleweed) - enabled kerberos authentication - Update to official RC0 Fix the following issues identified by the CISCO TALOS project: * TALOS-2017-0336 CVE-2017-2834 boo#1050714 * TALOS-2017-0337 CVE-2017-2835 boo#1050712 * TALOS-2017-0338 CVE-2017-2836 boo#1050699 * TALOS-2017-0339 CVE-2017-2837 boo#1050704 * TALOS-2017-0340 CVE-2017-2838 boo#1050708 * TALOS-2017-0341 CVE-2017-2839 boo#1050711- Redo history by using changelog url - Update to version 2.0.0~git.1497095982.1dbd2d28d: See https://github.com/freerdp/freeRDP/compare/043243f...1dbd2d28d for full details. - Packaging : + Move to xz tarball in _service + Remove 3472.patch merged upstream - Update to version 2.0.0~git.1496304402.c42ccb508: See https://github.com/freerdp/freeRDP/compare/043243f...c42ccb508 for changes.- Forcefully enable PIE in CFLAGS as the automatism did not work.- Add 3472.patch until upstream #3472 isssue is fixed and PR merged this fix boo#1004108- Update to version 2.0.0~git.1477034991.043243f: * fixed kerberos authentication * shadow/rdpsnd: Fix race condition in rdpsnd channel server. The output buffer and format parameters are not protected. * wfreerdp: fix invalid VerifyCertificate callback * rdpsnd/server: decrease audio latency and make it configurable. * Add an environment variables section to the man * protocol violation: rdp_read_extended_info_packet * Added support for OpenH264 1.6 * freerdp: fix sending of TLS alert on NLA failure, add better handling of server-side NLA in shadow server * freerdp: add configurable NTLM SAM file option for server-side NLA * freerdp: make modifications to NLA server-side fixes according to PR comments * Fixed a windows 8.1 issue.- Kill off __DATE__ from built sources.- Update to GNOME 3.20.2 FATE#318572 - Add obs git integration. - Update to version 2.0.0git.1463131968.4e66df7: + Fixed memory leaks. + wfreerdp: fix name build without client interface + libfreerdp-codec: fix xcrush decompression, revert remote control fix + KB3153731: May 2016 DST update for Azerbaijan, Chile, Haiti and Morocco + libfreerdp-codec: make proper xcrush context reset fix- Update to version 2.0.0, git master branch id a7ca42e (FATE#319661), no upstream changelog available. * Warning: This is a git snapshot regarded as technical preview by upstream. * Warning: For xfreerdp, new /long-option commandline interfaces have replaced the old --long-option interfaces. Existing user scripts need to migrate to the new interfaces to avoid breakages. For more details, see: https://github.com/FreeRDP/FreeRDP/wiki/CommandLineInterface * Add Network Level Ahthentication support. * Add Windows Portable Runtime. For more details, see: http://www.freerdp.com/2012/05/24/winpr-windows-portable-runtime * Obsolete libfreerdp-1_0-plugins. - Drop FindALSA.cmake: deprecated - Drop freerdp_branch-1.0.x_fix-kpdivide-issue831.patch: fixed upstream, implemention now in include/freerdp/scancode.h. - Drop freerdp-CVE-2014-0250.patch (bnc#880317): fixed upstream 532c420. - Drop freerdp-CVE-2014-0791.patch (bnc#857491): fixed upstream f1d6afc. - Drop freerdp-fix-FindPCSC-macro.patch: fixed upstream 9148af3. - Drop freerdp-handle-null-device-name.patch (bnc#785437): deprecated, related implementation dropped. was: freerdp-fix-pulse-no-device-name.patchs390zp31 16723029402.4.0-150400.3.15.12.4.0-150400.3.15.1freerdp-proxy/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:27292/SUSE_SLE-15-SP4_Update/f9fe9a8578077227f2860dd6e5df1659-freerdp.SUSE_SLE-15-SP4_Updatecpioxz5s390x-suse-linuxELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, interpreter /lib/ld64.so.1, BuildID[sha1]=110919bf7fd48198fa94463c587e883b33d09e5b, for GNU/Linux 3.2.0, strippedRRRRRRRG]Ǝy<¯Autf-85d6414abb7cd767efbe4e183a4a7dd96c03fec32861dab484a5b0bdfc8adf50a? 7zXZ !t/ṋk[] crv9w5UB-֌gz +R` C-TEWILJ[$[-բ#ڒ!=0 摂ɯ,l22z=DaUw!SU_80n 0봠>r:i/S!j62P Ii9i[?,6Fuv3qovLJqI tET `-=0u4DW :!}o JdP;a]Lh,ʦS ʔ1cnWqoEÂ҆S`3F3!5N7,ا#&bBTMٴvu%0XܝfI@X~ Lc(g]? h1ϒX  &0hݦ#]Np!|9Q hH61\zq6Ld>; YȻF~(_=YÑLY f2%a3KH!3DP>a ,z4jAI9[L;%CLDVw.y;INQ`a*pE*>@KJ*'%vVJo:eicC4.)ql!WU4_<_@(Y¶{ظv*SIB8U;3g0}ɠkX?„ *L;PWcZ(3ėPP9$s,Iiiٖ]-,>)jdʾ !yeJM:\'!tR|9vmQ#M=IfFWkA8\vJi8Z3mbQphDq W]7w53E،䲯.4?-ifI"Qwu>࿸q++mhDmԬc;O[AS,<<\Vg +Dv51W9=aZ8@P^3vٿ1\S2嵹kjōy qŕ\y;RA>@\ . '4RabZ3< *SM=G2;1GTNX` R_1.f֖%+f\c`ٍ62AEv aHȔ+d7Bi;2UjO18Zl<8%qρdW11fo58;.gP%֒ANlJ7:Zٳ-uubWG,y,gt30lE Mf9e$>CtQ>PM$G6m:`[@\ ATԴ_86_̛Qi&3αl \g'>p4j+/eKtjCŚ9tle3{rc|$$Ll*M_5%LءU+ 5 BwjFI~2 <6)}ފ|xE/IE6?\OG#,-_tD<9bUj&ajOL@:woBpIQҔ#},SzAXϳPd-ҟY" !ψQ=\xrXϽ("]r5> nl%+G*xIRKۜz; q5sҺD"OdX]Vx~˦Kե]KU&t0"ute 5p8P_m%ā!…*К!(Mrʇ=su pS%AhDkUѡYrbҀ*#v[ڮj 4?Hޛjf ?$% u(;YLmz~Iq z4ԡvkat{H0اW rՌSIiXJ{ׅY)~\Ϋ5eqv q'Н\3t!pD5!Y?c#(cWy< Ƈ6"R ~M-bRZfS﫤'~XrɸU{eP'b_+lOC BKG OPprsmiDuGƑ[(B;Jx yN1/e?lB<ɻ.\~oPٔxJ&93‘-cԐY!VE2 bj_OX+7Bٲ㇟xsx%ỏhP3: Lsn3ᮧ,M wQ5 \, =]"ɀ}$>J3"~ {R)h_SD :Tr9qL$tY# ; }?:CpxBRSA_ҩrdl`.bkU۟H0%b :ד,=#ٺCH, yIwiZrd]l(1kEsoX6>#暕,rSWx\ߓό.S W'mWŮEM׆6M>#4;ũ&'K0u1W$ʳޑhDa~SWfu/lM$ tڈ=-wKK㎰WLWPd/:-V'V$ m(Tl-vU޾5J#!ɯ-kRlz[ZR\SNf&G`H%h%) P 2QGGe#6z10G.=SVAC%j5&62=*8ELulڿ<2U E]7 /\%f@l"&)&+D_,T қ(a:[.fz+]Ci–dٙ퓮7VW3h Ђ<i)u k>"e,nEG`C ٧;Í(iۣKx @z}UyUWREy4LK@/>Zܠ:f}@sOxO 紪Ι}zʙ#ߋP;q (9&TώHB6Id9K賠I5ăHe,A9ح0 ` +Q s)>7NոR] b`L #/RAQdiNkpZɈ6èp AMD`f߫ ?{6ROi8%]Jq(PI zm+gѡ64 gw"daGݑ AobC4G)k .6wTg@*3\0Ȣ!-ql|5 ύ ƮH1^HOQ\=[x$ ̔+xЇKr''&eȟ`W/??z>rF^/K+ubڃ X`=+N ꢼ@,z(We"ڱTE(Q߼\ϱ* =WFSTtO?UkU&\Y/%lYKj1P-g7Z,iҲ>+u1"lQUB@=-V'ь*Z2>kcP3 oC*:d|gT؇|4R+cLq/q6kc[f,棪,)*]EPy燺T$hj3UN2'p>BWpo$,xGųf,{sU]e0m@*d )̶\4<ݷĵPFcgA$T=szEuH(mTu\c/LX4jO7+rQ5ʷ<>a,8NxM5s0vx7Ϲ:TrD1&2YDSC 4f}m=eV>ak;/=bhZ.ܧ3ï^p>]xdjmN 'hyay&yȯ&RxaC;,t;To,~1 !GK(K̮yvBXBxsB7n,{T4:a}]%Ou90s꒾+]DH;}|cQm"[; .M x%D:aG]6&p|)RBĂ[O25`h0Y )4S;.& ;x$S. B ZNsJ ŷnun/0̜-꽦?з'`~܌x( ?D{pir]CĆ~*/ѵOnu9$SpsRM'X5Pۚ}.Jks=Tu\ec?k#~?ג"ω0eO zS5law>S^ jrU{%0P(1n7b~x0ͼ]Y"EsL8:qs3nQmw>OR_筪?^4ehO[-tH+n%CoŰ~VOtJ\\cx0:u#HЇ;815OEp}p5Auz@9dpn?Ѫho Y8KV*\2`(ɪUH56] 3PvjU{WIڄ\ Zy{n.wZ f60몍͖WhEU3\$$5Rgl[`9 ߾Lfrs7ؠ%3['@N:jRd$PFbg&Ñ# VcgxloESl|g6u+TΑ<bQt[Fy6U+f\`t_8_XX0  Ʊ0)b;h4KteGJϷAAMB:,́Zv\m8WxF/<5۔kԲ8<ⓣ_G4B?P+9b[c@ۨxB.] 텪Fϡ߰x,XfR۫?܍,@,o)ToH̅7>"b/oRLR`˸vQ'?#'խH4"X!c=GۑkX OB\IPЧMIy&tf1?M윷KIVؐc>%C$[!_|L 2 IcoCOͺE kUaʀIRݦ8le Ną !t P[qZ?] oV¨QO޼N9hُUe\%c/>@'x:4r?63.kh'}{WwyԄ7#n&h:#~pKEIQPo_zu@GM] sK~]3#d scy;5^ĎFꡃjMހK 5y5)|{izG^6Ӛp]3hȔ_ITE-'/K3ޠò6l;3i+g<8׼/h)|Z3ut2%=x a:ab[5-fƃm2OBAlo~i3 O[#~3VjXYx@Si8p>K(LWݵE#G;m-#D3V,#Q8 k(UDpMR6/π84+{udJczc(MjC3tkb/fffgOGKO\|068;(4d8gb(ݩKNՂ4xtԮu0E仾wɯY8ϊ3YXV o5-8t 48/Fcc2Vd&JNoe2J Zz(wL4f42o]FhF.=B ;*p4 Ynn]yRϐ} AE: ^5=Ri GHdX"SS,w򞏓@IINP^h쬬%f3"ӕt4L<B䇷>*p_]-S ۊ:@q&Ƣuwe*"C+rx 4ѯ_b B5Js\<.תr<{*c!cte662iR؞|etRBbLȭ}V@:Ch;Ub,U`:>rM oۑf/wk$s#]~|5K¬{fY0 unҩƠa~l I0;#\LLEf ohQw?_8rL qC.U+ &DmψlB-c<w"O\y:6_dkmlcARQ$-׃٤qh%O&YoY[NJF< %a/o_trcڱ{vCX÷v̒]*ju*I/F=x6`?}h6a6M PyC\'{x:esj#'rV7 q+p ?~y[$D>&i c$Yd8lg},NCy5af- I]rY.7K`L <"{a@*]1TFl O;qXD waF }?uZ&FBA' ,Dz+7&8;է!F(?h~~zx~(0~UZqS6~C3 2ⱗ<د{l][44)휊tyұ*I."ycԇq4R.%5Մ-[OL -4>O";4N~]߆4(H~{]50hirY:nَr8\t-k@HtD_eqgitI 1oItz0ɹr+R럟UO?MmKrg(eQ|L1Xzhf ;x>nxUqCʖvtɺdVm$A?MKۋ. "6 ajK]Mlۤ|+hxjN"/™~@ƅS]B)7jK|-hQOi:{O\#}#M|!ں@x]A'9>Ļ̎ >!PP)x.ўl{Cir=|9+Hvp4}2JŃ3C$ߎWB*#:m$#ofQŠ{O㵞1eWoN/)A")gt&$Q;ޣ 8[/LWkSx"746'm0eᨲЦ1Ju3@lWq9s@ɘ):soz(Τg;Nmn@q~5v߅cj]4xbʃҘTHa0/WzVv$D#ޙd!}Ⱥ+TF@+?rx/ѳ6`x[5V{e, \O"SJ9-g۹3搊@|͓$/ u>`ű NփUQrCVoܚ;QȭMjC@ޯ3ovgfML/|7rtS;ڑ81* S~$__\^ʽK1ke䦳)WDЀCSmЏ-XS:2nٷk7+25jR054<3lȅT|h‹0"NwFS璉Rxp1ei'Vh1"M*BH^'퓚 ӣy7cPiNYf(D読DObf0>ݣ6a|8kEtzμ>g|ʮś-^SoV|Cf )ϕ,"*"5rYt E2o\#ypz7&3Sڛi/}G jKdlo+ޯKH p5W%i0s #5p \9pS; *rwθ#(Co\q t5?tӽ-ސ oZfmtNXPr]aS [R'ytC(Fe{D=E!q0|9gDeNAb059UR/)W;6g-UwlKxgST{ghhW44l=sY*6&c=I\n^U#2*S"&t~kuy `4??-AĞZ+zvBFFfc 1|5A :.~ݖ,tX(w9g'3҉j̗e+B@P46  FeUY6ÿd- \7(,ļ*CI䏼w\5}ugVC`dMgNmDzUCgeJ@{Ft|?d®k %GF|Ⱥ(~ "( OTfz$XF֥=6b'"פ͞kjK!޹/5Iv&d%4!q-*SG,١/$2zQDcָE(Y5Icꀷ O6\ =P*ΆrD/0$tc On©[cP-v\)U2U;?5,DA1  .e;eA;3mO?\NR~Jv2CLL\5XFcJ:6|ҧp fYM:{[(CϖiFyFrq} ֝f0ʡmC7"FD \hw4@O4^:})|@u^D&뙴I&IvT]x㇌@%_c2c"f`X<% Mڕ}L8IĤ|2+m1wF2g./i$whQ'~I_bTJ HG !yּ~kk44qQ/Sqn|5%.rn GA0u SZf O R6&^u8dEj7'aX~i& ̝zRYpf$A:9s~3 Ӛ!lY:-}/)cb 4Ѡ\r/l+ͧr%:B>GG>#;gP8a&WQ]J1Ҟi{3=G^i8 9k*4Ծav& ֩]='#Ef/q;2.%5ֲFw!),y"c}մۄr{H_~\5M 8 >Z$}WsbFxL:)cOXM ,(Lٕ|~ o~0Zj `ꁃY50镴{m\\I.EXQa0@Y(.+;-e% b@s%o!s4<5X4\,m>d񉒧 \[M&qG#|f5`6&`IƎSYU^@;IoqdyNC| ((J./}XeUz5?\s.q"e!YQiexiT $$YoOQqQh2"[:ګ9Ryft;NGR}ōҚӖ> CLl_ o{of=uSflvˣm(TsP5#@uxh 0^yH"x'+_bLob0-Qq5zM̝<[,ԃ!.a1[!$7c9KLh@0 :?|v[GĿ{ rBwOp%hXw#r|pү+I324ͬMHh9hf_پ}sE1f d kU|7}GОo<3v$FοgG #"@t ^:j)ߛs+Qw]ZPae C4f +"-ej7 qj ɨ^d 1?OܓDYŋN2-S"B#OFw>htVjcEp@ߖrCkb.򫦒`dhxG{fDz*:&C t49,D f^R 7?4N0 ] O3CuA}}&k^9N8% (G_ܓM>2F :jb` &>%`i4\3#=]E1RB{k̋Ж?앆G#,Ӵ ,: !/, `oywMCfNoLyH1͊">i{%i\O2rӍX͸m- "P~ 7ފQS9aǁB>^"חn%0(Jc mN"V{GqͷKӂH{'G5Gw@k$ eVop2X.o*H`dk ݨqJP^%q8#(GbMJ9؃*^7Yx 0I6FӶw!)uxZd"LbDZ1e!i/Fg'@ #w, ܋,F3Tp_g#i^m6M1  KF%ClO[xYϕe>AȺݼ ؝$@ap>`'cz$# n~C6R.Tlٯk,wORW̙PoQ (֌0S葃)k Y^0ĀVEXO _,>ܬ+#,6yca9`5 mL1Rm=0KѮL&-{EFmA 7w/ƱU!I~1{7v=,C~aDEŋr5n%.S `/n >:Ɩs-\7+- >TD3o2NAs:dA7e0lgӦة)\Q]$*9:yTQZ#?A'<6J'=bT_ .HLk5a0&7x<#3F ԿK:Z} (Ȇ7b_"ꪓTDi,a=ʺփ&fVX.'ev^CW2bWEBtvX`nY~qFtjl1XJ2yM򑟯Oͣva^Լ|?\7=?\gd7 0~WN0gd;J,P(RM1m1yS*BSYE*睊a[1 8xroN/gN㨝2}7ZNS,(l J8G}M<*jMvtWL0.8ISP^zgQŝBW6q7~j:O66])wjKCw&,^!rtlYdLv/[R,wSisiŎ џ4SU u,,ˇ풓ch6jRg*+x7@>U|3 13~l9~#.YU5ƷA|΋ "DC%m , W "=LZ0~{r{Ğs'l $st_\Jp,&`˰ґ)#<tqŌ<$S37>0ť-<ס惔vt=[r ~g}R>;HP 9E_> !7?BdpZsq`"`x3^vr_l|Ayd͵M%C4,ś?D!!]gbXm \:pb BNQs*rP0>^|Ҭ!*)Jz4a^{e;R۠/Yr|Leѫ*#OY*GS}g nlBt^W\#kgh[֯zף P9e$F0N<ۦl<< #pHx~W٨G!E_V=d}..,"T)fGv7\x f'+DV*F\K"1~BЩæpm.;.]< {4y=Ds< z0j&#aJ0,玈o+%H bu]h규!bQC s,V;B`xb7_Cl!޲/l~D%7z^H80aSNu# pG]pA#36S?ZE_:IZ+)KD>]͟p}9`V*O]oHcj!<=g ڻf<,}|]$y}|D}2-]LyݪD3z7`ESD;U"۲ݐx?܃OAjY*zdNFS8 uUk*^03>?)7xOl =^UO:߀Ȫ>!D¨dӰ<ĉ%q 1HZUvИ,gw;l9L4$;*uSְ[!/Fݹ]+IFdLbw oLa{TATct0U̓nJ74qYQ` uF'Rn|&%k'D'8㺥@Ÿ:M5`{0>REOJ>E2%d|mciA#'3קF[3Up@oAt}i@归S(Q.ۇ|&RpYJ~g(bo~倁2^ܬI}Rے@ ک6 xG+ م##kP Kx=hN nJP ]>e@@)V&|+SHLuSn#GL5&φist#Fh<Һ&>ML8ZAQ )8 ]wcM1J4)5bbv4L7%=ꨱ eݭVrhTgÒ8_fr[^B⬊|ٍ H{.X)C#.m!$A{K•KCB#jQ٫`,G߇,?d倕C znQʳnehMc_l;j>j?(aid'FQ n6~ܡ WNܑ҅<$ jgvʷf֮+عGQAw nVU7[?Fէ?hQCd<*"'aGDZF]jK+Pǡy_aI;@u sI9p@ɍ;7O>ĕ8pU䊜c޲)pQ 2F)Xu|@;.t^guUO{נp['Q`#o=J<ODF#eNAŪK|l.!<.pZ-,IK(+)1W WlD E@X%p3_>  j[bׄU`w$q+ЬYӒdb[$?+>x K|AFYPx ]iX#j<ײd]K%>ܠGC) PiIL$M)&.03o >pe݉X[wG0%Mik }PF)oΧ2!NBN>93]$}fU)Js~H;JvcڏMV'N$Ie([4E9CbE'd"|q95;쑺ƴ's7?O޽pnA]#tr\2E`c"9\Vq#qqR,":# 1T7i8atZo[yo|Lod!J|yRTj F`y|Z]USwȑ^QzXJAWiGԪ`ڼv5fnfV0¬l`$;e[ C\zlbN @_-A#3x<+R@ż^":;fO5Qվʑ2'kX>tKe#U3' 8 O!2T?J.#qVPWN P,(4tI)*2f->o6so-ZYWhkXV5U6y^n{_6+ `Ob .|zp7LJ㹎]AٕuI@NГWO lN!a9~Miݎ!c. %ldv8NF] 쭜ȥDa 5Ŀ4fs5u'\YdtdLݠ73qw2s.J2 шظkoElxZ #x#lu7GEhQv0C, .ɃL%sC ΨJ,-h4/u5$s {cVpɜ`W_L:M<*Xkyx@1' 2JU;3J%&ap~^X4I36P8u-FGrL2n%Y2";ҥ@Yx59piz! }#_â` Nۯ=\ <"L.Yf3`sEigkE5_аe)oEϵ+l"0X-iGАpR.UuSG7$Fej;IÔQ+#MT6, WdӯOpd`k}w) ϵ[Ft֐DF@/$tu)<~p!gK!y2n?,F+(wޝ}qE|9pߴ<:Q]NC\e.K7:!=xB!dR^؛pvGGzx2Q`s:20+x<~0K]X_n$^<LGA=3wZ9:OoՆ#A`ipsqOjcY@wʉ=E[񱣉C3M]2|з{쁢K&_jyh (hwD oΕ{zԫEثMq?^(=FdW$xm iصᘥm]G6t餢heSt7G wFp cMr(uyb j༕Ycc909QmyaeC2rdHȱGr.@6ʞQl$>[5} Foʂ\ͳt.kQX}B`G)+QE0;46v]Hz>k(mLw ="X"5_s]Me2} ZE9j)=s5>=zBF8mrɊ f?RkM lo Q[wUK&SݴS3b='/&9 ^h7@#;8`OgŽ:׈֠]4Y]c$O;ӊFJKSIle.hϙxIeVrz⯆Ў>[͞C\Ӻ>}_ 8Q V3!M4I f4z-Rfm/_gu8@\Qc a u BG8zZ{XU E]opY',SϜ8ʁՂew ɐv*T(&g*1sF0"Gߧ]mP\Bv@É .a\ɖRU,Nڄb&FMdւn3|P4$N)GFl-pCSz/Pûx/c'"'w*3bEdvgaj=\8}2{b'ր|I93f*9vm!)jk8>UQӽ|e6( )E(w:Q՜MPj8>Hs5c d3^.f0-88h1NRHXǯm%'2=/& ?6ӡ uZ@0$kw XUoE$Qs_TTP`O]A~6'I725Lpc|o|$yދ7o֡ KęzC3tET%s AOVe؈#п5i')'0#tuIp3۲hKѾ'w"K8?Xts)n8}w}CKk^zL3&F0{ᇔ?/4K68*bhOHI~G .3W* ifJ%s%sw6R2^'/I1^R!z8Eu͌Sjygvy +]w&iO/XEI_njN !l]5<8BWչ1=韸R|p͊m9哬=hAYd?̠>H'6wB:@E ȄY4Ca$ 8Id.v Y˟US u_M9GMjpIhW0(pJzn%}</ !I1bje|Jmzs$)STH:[_C>=Ea{hv,ܛ2!&ji%:]?%NT{}S,u;=ށV̭}+ໞodx55P#V[t(Qj~ +i 59$JܸVC!iyz3GEokr1bDD̺զ-#yI(W3w 7󐨂W?JApYķ׮61\iDrm|`W䏿UlG2"trT;u@lH\-;a{`tUq iuz5e,МXSChW˴,:4a{yx$B,-I׵|iFK;xSJIӂ(GkIlZɍ6DٚJ4PV=zM]l93WsZ܁nEv-&&--"rE ^oÅBt?rݺ.>"OP1H_Eݨ4ԅn~,|̸n$ f s4۔50՝=cZ_>-~au8u'eHfj p))p7@N `jIb˜S&loM̻SC YZ