freerdp-proxy-2.4.0-150400.3.6.1 >  A cp9|9CZfBd3(OwI5pfߧM@}dBCSP>nP@y Kxjڅ Eތ~v*H}\qpߐ.\SY&H}ck3 -?o`ƈ]9HKt;b-l$H~]'TwV #$ME&gUqL|fggZ.=\ū5Ŧ9lFҩz{@aa7026d6bc7ae2348ca6d85a509dfc2e569c169f6c45dcb5cd65f5a2882560217128af6b71613c4f568696aad3915bf65b5e031e0cp9|9'N iOɷ+ص.d( Ôhmp8*>huw 7+r<~Cԓ!ksލYNgnXja+&)z :+6yQDDIOQǣp e:s"n޺aI P9ld)Q+Ppgbwe^Ci&)o]ܡ*J?=~]/ᵂO$򑬕 %#-ꢬtXc L>p>a?axd # V-NY o      8<`(:8D-9-:-F^eG^xH^|I^X^Y^\^]^^^b^c_yd_e`f`l`u`v`w`x`y` zaa(a,a2atCfreerdp-proxy2.4.0150400.3.6.1Remote Desktop Security and Monitorig Proxy ServerThis package contains a proxy that allows to select specific features and channels allowed for all connections passing through. It allows monitoring of the running sessions.cFsheep28HSUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Productivity/Networking/Otherhttps://www.freerdp.com/linuxx86_64Hc=b3bf501191c2482e3984d939d3f7e3be36ccb427ee3ef89108c3a05723bdc08frootrootfreerdp-2.4.0-150400.3.6.1.src.rpmfreerdp-proxyfreerdp-proxy(x86-64)@@@@@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libfreerdp-client2.so.2()(64bit)libfreerdp-server2.so.2()(64bit)libfreerdp2.so.2()(64bit)librdpgfx-client.so()(64bit)libwinpr2.so.2()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3bL@b@a^@a]aEaD@aD@aA@a@a`OL@`<@`7@_@_^@^@^^^I^@^@^T@^^t@]@\@[@[j@Zz@Z@Z`@ZkZWQZY@@YKYKY=0Y;@X~@XW local * #gh:FreeRDP/FreeRDP#6985: Support newer FFMPEG builds * #gh:FreeRDP/FreeRDP#6989: Use OpenSSL default certificate store settings * #gh:FreeRDP/FreeRDP#7073: Planar alignment fixes- Updated to release 2.3.2 Noteworthy changes: * Fixed autoreconnect printer backend loading * Fixed compilation on older mac os versions < 10.14 * Fixed mouse pointer move with smart-sizing * Added command line option to disable websocket gateway support * Fixed drive hotplugging issues with windows * Fixed smartcard issues on mac Fixed issues: * #gh:FreeRDP/FreeRDP#6900: Transparency issues with aFreeRDP * #gh:FreeRDP/FreeRDP#6848: Invalid format string in smartcard trace * #gh:FreeRDP/FreeRDP#6846: Fixed static builds * #gh:FreeRDP/FreeRDP#6888: Crash due to missing bounds checks * #gh:FreeRDP/FreeRDP#6882: Use default sound device on mac- Updated to release 2.3.1 Noteworthy changes: * This is a compatibility bugfix release readding some (deprecated) symbols/defines * Also add some more EXPERIMENTAL warnings to CMake flags as some were not clear enough. * Fixed a memory leak in xfreerdp (mouse pointer updates) * No longer activating some compile time debug options with - DWITH_DEBUG_ALL=ON which might leak sensitive information. * Added -DDEFINE_NO_DEPRECATED for developers to detect use of deprecated symbols- Updated to release 2.3.0 Noteworthy changes: * Websocket support for proxy connections * Progressive codec improvements. Reduces graphical glitches against windows and ogon servers * Fixed +glyph-cache, now working properly without disconnects * Huge file support in clipboard * XWayland support for xfreerdp (keyboard grabbing) * Improved wlfreerdp (wayland client) * Option to allow keyboard scancodes to be remapped manually * Improved mouse wheel behaviour when scrolling * Improved dynamic channel behaviour, more stable event detection * New connection state PubSub notification: Clients can now monitor current connection state Fixes: * gh#FreeRDP/FreeRDP/6626: Fixed parsing of FastGlyph order. gh#FreeRDP/FreeRDP/6624: Added support for xwayland keyboard grab gh#FreeRDP/FreeRDP/6492: Added clipboard CB_HUGE_FILE_SUPPORT_ENABLED flag gh#FreeRDP/FreeRDP/6428: Improve NLA error code logging. gh#FreeRDP/FreeRDP/6416: Http gateway message support gh#FreeRDP/FreeRDP/6753: List of pull requests to backport for stable-next - Added freerdp-rpmlintrc to supress a false positive as gethostbyname() is a windows-function call not a unix one.- Updated to release 2.2.0 (boo#1174321, gh#FreeRDP/FreeRDP#6381) * SECURITY: CVE-2020-15103 - Integer overflow due to missing input sanitation in rdpegfx channel * Sound & mic - filter GSM codec for microphone redirection (gh#FreeRDP/FreeRDP#6263) * windows client title length (gh#FreeRDP/FreeRDP#6335) * "Alternate Secondary Drawing Order UNKNOWN" (gh#FreeRDP/FreeRDP#6370) * remoteapp with dialog is disconnecting when it loses focus (gh#FreeRDP/FreeRDP#6298) * v2.1.2: Can't connect to Windows7 (gh#FreeRDP/FreeRDP#6299) * fix: memory leak in nsc * urbdrc: some fixes and improvements * build: use cmake to detect getlogin_r, improve asan checks/detection * server/proxy: - new: support for heartbeats - new: support for rail handshake ex flags - fix: possible race condition with redirects * Drop upstream fixed patch: freerdp-CVE-2020-15103.patch - Removed freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch- Drop BuildRequires of libavcodec for Leap/SLE (bsc#1174200)- Added freerdp_Mask_CACHED_BRUSH_when_checking_brush_style.patch which fixed frequent crashes described in boo#1173605 and gh#FreeRDP/FreeRDP#6298- Updated to release 2.1.2 (boo#1173247) * CVE-2020-4033 Out of bound read in RLEDECOMPRESS * CVE-2020-4031 Use-After-Free in gdi_SelectObject * CVE-2020-4032 Integer casting vulnerability in `update_recv_secondary_order` * CVE-2020-4030 OOB read in `TrioParse` * CVE-2020-11099 OOB Read in license_read_new_or_upgrade_license_packet * CVE-2020-11098 Out-of-bound read in glyph_cache_put * CVE-2020-11097 OOB read in ntlm_av_pair_get * CVE-2020-11095 Global OOB read in update_recv_primary_order * CVE-2020-11096 Global OOB read in update_read_cache_bitmap_v3_order * Gateway RPC fixes for windows * Fixed resource fee race resulting in double free in USB redirection * Fixed wayland client crashes * Fixed X11 client mouse mapping issues (X11 mapping on/off) * Some proxy related improvements (capture module) * Code cleanup (use getlogin_r, ...) - Removed obsolete upstream patch freerdp-bug-6205.patch- Updated to release 2.1.1 (boo#1171441) * CVE-2020-13396: GHSL-2020-100 OOB Read in ntlm_read_ChallengeMessage * CVE-2020-13397: GHSL-2020-101 OOB Read in security_fips_decrypt due to uninitialized value * CVE-2020-13398: GHSL-2020-102 OOB Write in crypto_rsa_common * Enforce synchronous legacy RDP encryption count (#6156) * Fixed some leaks and crashes missed in 2.1.0 * Removed dynamic channel listener limits * Lots of resource cleanup fixes (clang sanitizers) * A couple of performance improvements * Various small annoyances eliminated (typos, prefilled username for windows client, ...) - Removed freerdp-bug-6175.patch and freerdp-bug-6207.patch because included in upstream- Added freerdp-bug-6205.patch to fix reading newline on certificate accept gh#FreeRDP/FreeRDP#6205 - Added freerdp-bug-6175.patch to fix Certificate Checking Recently Broke gh#FreeRDP/FreeRDP#6148 - Added freerdp-bug-6207.patch to fix Abort on first possible certificate validation error gh#FreeRDP/FreeRDP#6207- Updated to release 2.1.0 (boo#1171441) * Fixed CVEs: - CVE-2020-11039 - CVE-2020-11038 - CVE-2020-11043 - CVE-2020-11040 - CVE-2020-11041 - CVE-2020-11019 - CVE-2020-11017 - CVE-2020-11018 * Fixed leak and crashing issues: - gh#FreeRDP/FreeRDP#6129 - gh#FreeRDP/FreeRDP#6128 - gh#FreeRDP/FreeRDP#6127 - gh#FreeRDP/FreeRDP#6110 - gh#FreeRDP/FreeRDP#6081 - gh#FreeRDP/FreeRDP#6077 * Noteworthy features and improvements: - Fixed sound issues (gh#FreeRDP/FreeRDP#6043) - New expert command line options /tune and /tune-list to modify all client settings in a generic way. - Fixes for smartcard cache, this improves compatibility of smartcard devices with newer smartcard channel. - Shadow server can now be instructed to listen to multiple interfaces. - Improved server certificate support (gh#FreeRDP/FreeRDP#6052) - Various fixes for wayland client (fullscreen, mouse wheel, ...) - Fixed large mouse pointer support, now mouse pointers > 96x96 pixel are visible. - USB redirection command line improvements (filter options) - Various translation improvements for android and ios clients - Removed upstream patches fix-freerdp-2.0.0-usbdk-build.patch and fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch- Updated and reviewed make command and added fix-freerdp-2.0.0-usbdk-build.patch to fix boo#1169679 and make USB working again - Fixed build for SLE_12 - Cleaned up spec file- Add fix-URBDRC_DEVICE_ADD_FLAG-definitions.patch in order to fix boo#1169748.- Added cairo support for scaling - Cleaned up spec- Removed patch freerdp-Fix-realloc-return-handling.patch - Added pkgconfig(libusb-1.0) for building - Added new package for freerdp-proxy - Cleaned up spec file - Updated to release 2.0.0 * Fixed CVEs: - CVE-2020-11521 - CVE-2020-11522 - CVE-2020-11523 - CVE-2020-11524 - CVE-2020-11525 - CVE-2020-11526 * Fixed security related issues: - gh#FreeRDP/FreeRDP#6005 - gh#FreeRDP/FreeRDP#6006 - gh#FreeRDP/FreeRDP#6007 - gh#FreeRDP/FreeRDP#6008 - gh#FreeRDP/FreeRDP#6009 - gh#FreeRDP/FreeRDP#6010 - gh#FreeRDP/FreeRDP#6011 - gh#FreeRDP/FreeRDP#6012 - gh#FreeRDP/FreeRDP#6013 * sha256 is now used instead of sha1 to fingerprint certificates. This will invalidate all hosts in FreeRDP known_hosts2 file and causes a prompt if a new connection is established after the update * First version of the RDP proxy was added (gh#FreeRDP/FreeRDP#5372) thanks to @kubistika * Smartcard received some refactoring. Missing functions were added and input validation was improved (gh#FreeRDP/FreeRDP#5884) * A new option /cert that unifies all certificate related options (gh#FreeRDP/FreeRDP#5880) The old options (cert-ignore, cert-deny, cert-name, cert-tofu) are still available but marked as deprecated * Support for Remote Assistance Protocol Version 2 [MS-RA] * The DirectFB client was removed because it was unmaintained * Unified initialization of OrderSupport * Fix for licensing against Windows Server 2003 * Font smoothing is now enabled per default * Smart scaling for Wayland using libcairo was added (gh#FreeRDP/FreeRDP#5215) * Unified update->BeginPaint and update->EndPaint * An image scaling API for software drawing was added * Rail was updated to the latest spec version 28.0 * Support for H.264 in the shadow server is now detected at runtime * Add mask= option for /gfx and /gfx-h264 (gh#FreeRDP/FreeRDP#5771) * A new option /timeout was added to adjust the TCP ACK timeout (gh#FreeRDP/FreeRDP#5987)- Disable LTO on aarch64 and %arm to fix build- Add freerdp-Fix-realloc-return-handling.patch: Fix realloc return handling that results in memory leaks (boo#1153163, boo#1153164, gh#FreeRDP/FreeRDP#5645, CVE-2019-17177, CVE-2019-17178)- Add Requires: lib%{name}%{major_version} = %{version}-%{release}: freerdp should depend on the same release of libfreerdp2 (boo#1129193)- upgrade to version 2.0.0-rc4 (FATE#326739) * Fix the following issues: - CVE-2018-8784, boo#1116708 - CVE-2018-8785, boo#1117967 - CVE-2018-8786, boo#1117966 - CVE-2018-8787, boo#1117964 - CVE-2018-8788, boo#1117963 - CVE-2018-8789, boo#1117965 - CVE-2018-1000852, boo#1120507 * Security and stability improvements, including boo#1103557 and boo#1112028 * Refactored ntlm_av_pairs API * gateway: multiple fixes and improvements * client/X11: support for rail (remote app) icons was added * the licensing code was re-worked: Per-device licenses are now saved on the client and used on re-connect: WARNING: this is a change in FreeRDP behavior regarding licensing WARNING: this is a change in FreeRDP behavior regarding licensing. If the old behavior is required, or no licenses should be saved use the new command line option +old-license (gh#/FreeRDP/FreeRDP#4979) * improve order handling - only orders that were enabled during capability exchange are accepted. WARNING and NOTE: some servers do improperly send orders that weren't negotiated, for such cases the new command line option /relax-order-checks was added to disable the strict order checking. If connecting to xrdp the options /relax-order-checks *and* +glyph-cache are required. (gh#/FreeRDP/FreeRDP#4926) * /smartcard has now support for substring filters (gh#/FreeRDP/FreeRDP#4840) for details see https://github.com/FreeRDP/FreeRDP/wiki/smartcard-logon * add new command line option /smartcard-logon to allow smartcard login (currently only with RDP security) * add support to set tls security level (for openssl >= 1.1.0) - default level is set to 1 - the new command line option /tls-seclevel:[LEVEL] allows to set a different level if required * new command line option: /window-position to allow positioning the window on startup * client/X11: set window title before mapping * rdpsnd/audin (mostly server side) add support for audio re-sampling using soxr or ffmpeg- upgrade to version 2.0.0-rc3 See: https://github.com/FreeRDP/FreeRDP/milestone/9?closed=1 * Improved and cleaned up the command line interface * Fixed automount issues * Fixed several audio and microphone related issues * Implemented AAC and MP3 codecs * Added Wave2 support * Addedd dynamic resolution with full screen toggle support * Improved redirection handling and certificate issues * Improved automatic reconnects * Improced connection error handling * Fixed invalid pointer, double-free, integer underflow, buffer overflows issues as well as other memory leaks * fixed X11 Right-Ctrl ungrab feature * winpr: Updates time zone data to April 2018 * added libressl compatibility- removed SLE11 condition - removed no_connection_to_windows_10_17101.patch - removed -DBUILTIN_CHANNELS=OFF switch - explicitly set -DCHANNEL_GEOMETRY=ON - Disable the new X264 and OPENH264 codecs because openSUSE does not provide them - upgrade to version 2.0.0-rc2 See: https://github.com/FreeRDP/FreeRDP/milestone/8 Noteworthy features and improvements: * IMPORTANT: add support CredSSP v6 - this fixes KB4088776 see #4449, #4488 * basic support for the "Video Optimized Remoting Virtual Channel Extension" (MS-RDPEVOR) was added * many smart card related fixes and cleanups #4312 * fix ccache support * add support for memory and thread sanitizer * support for dynamic resloution changes was added in xfreerdp #4313 * support for gateway access token (command line option /gat) was added * initial support for travis-ci.org was added * SSE optimization version of RGB to AVC444 frame split was added * build: -msse2/-msse3 are not enabled globally anymore Fixed github issues (excerpt): * #4227 Convert settings->Password to binary blob * #4231 freerdp-2.0.0_rc0: 5 tests failed out of 184 on ppc * #4276 Big endian fixes * #4291 xfreerdp “Segmentation fault” when connecting to freerdp-shadow-cli * #4293 [X11] shadow server memory corruption with /monitors:2 #4293 * #4296 drive redirection - raise an error if the directory can't be found * #4306 Cannot connect to shadow server with NLA auth: SEC_E_OUT_OF_SEQUENCE (boo#1085416, boo#1087240, boo#1104918, CVE-2018-0886) * #4457 Fix /size: /w: /h: with /monitors: (Fix custom sizes) * #4527 pre-connection blob (pcb) support in .rdp files * #4552 Fix Windows 10 cursors drawing as black * smartcard related: #3521, #3431, #3474, #3488, #775, #1424- Fix boo#1090677 activate pulse optional component- Added no_connection_to_windows_10_17101.patch to fix Windows-connection-problem after Windows march 2018 updates. This fix is related to boo#1085416- Do not use xorg-x11-devel, instead buildrequire individual x components. - Only attempt to ge rid of __DATE__ and __TIME__ if SOURCE_DATE_EPOCH is not set.- Users can connect only once wo windows sessions due to [#]gh/FreeRDP/FreeRDP/4348 Therefore WITH_GSSAPI has been disabled until that issue has been solved- Updated to 2.0.0-rc1 Noteworthy features and improvements: * support for FIPS mode was added (option +fipsmode) * initial client side kerberos support (run cmake with WITH_GSSAPI) * support for ssh-agent redirection (as rdp channel) * the man page(s) and /help were updated an improved * add support for ICU for unicode conversion (-DWITH_ICU=ON) * client add option to force password prompt before connection (/from-stdin[:force]) * extend /size to allow width or height percentages (#gh/FreeRDP/FreeRDP/4146) * add support for "password is pin" * clipboard is now enabled per default (use -clipboard to disable) Fixed github issues (excerpt): * #gh/FreeRDP/FreeRDP/4281: Added option to prefer IPv6 over IPv4 * #gh/FreeRDP/FreeRDP/3890: Point to OpenSSL doc for private CA * #gh/FreeRDP/FreeRDP/3378: support 31 static channels as described in the spec * #gh/FreeRDP/FreeRDP/4253: Rfx decode tile width. * #gh/FreeRDP/FreeRDP/3267: fix parsing of drivestoredirect * #gh/FreeRDP/FreeRDP/4257: Proper error checks for /kbd argument * #gh/FreeRDP/FreeRDP/4249: Corruption due to recursive parser * #gh/FreeRDP/FreeRDP/4111: 15bpp color handling for brush. * #gh/FreeRDP/FreeRDP/3509: Added Ctrl+Alt+Enter description * #gh/FreeRDP/FreeRDP/3211: Return freerdp error from main. * #gh/FreeRDP/FreeRDP/3513: add better description for drive redirection * #gh/FreeRDP/FreeRDP/4199: ConvertFindDataAToW string length * #gh/FreeRDP/FreeRDP/4135: client/x11: fix colors on big endian * #gh/FreeRDP/FreeRDP/4089: fix h264 context leak when DeleteSurface * #gh/FreeRDP/FreeRDP/4117: possible segfault * #gh/FreeRDP/FreeRDP/4091: fix a regression with remote program- Remove extraneous Obsoletes for packages that never existed in openSUSE:Factory or X11:RemoteDesktop. - Rename libuwac0-devel to uwac0-devel and libwinpr-devel to winpr-devel, as that seems to be their upstream name which packages are encouraged to stick to. - Remove duplicated pkgconfig requires (these are autodetected).- Fixed download location- Switched to official RC0 - Create wayland client package and libuwac0 package - Create separate libwinpr2 to be used in other packages - enabled gstreamer (currently disabled for tumbleweed) - enabled kerberos authentication - Update to official RC0 Fix the following issues identified by the CISCO TALOS project: * TALOS-2017-0336 CVE-2017-2834 boo#1050714 * TALOS-2017-0337 CVE-2017-2835 boo#1050712 * TALOS-2017-0338 CVE-2017-2836 boo#1050699 * TALOS-2017-0339 CVE-2017-2837 boo#1050704 * TALOS-2017-0340 CVE-2017-2838 boo#1050708 * TALOS-2017-0341 CVE-2017-2839 boo#1050711- Redo history by using changelog url - Update to version 2.0.0~git.1497095982.1dbd2d28d: See https://github.com/freerdp/freeRDP/compare/043243f...1dbd2d28d for full details. - Packaging : + Move to xz tarball in _service + Remove 3472.patch merged upstream - Update to version 2.0.0~git.1496304402.c42ccb508: See https://github.com/freerdp/freeRDP/compare/043243f...c42ccb508 for changes.- Forcefully enable PIE in CFLAGS as the automatism did not work.- Add 3472.patch until upstream #3472 isssue is fixed and PR merged this fix boo#1004108- Update to version 2.0.0~git.1477034991.043243f: * fixed kerberos authentication * shadow/rdpsnd: Fix race condition in rdpsnd channel server. The output buffer and format parameters are not protected. * wfreerdp: fix invalid VerifyCertificate callback * rdpsnd/server: decrease audio latency and make it configurable. * Add an environment variables section to the man * protocol violation: rdp_read_extended_info_packet * Added support for OpenH264 1.6 * freerdp: fix sending of TLS alert on NLA failure, add better handling of server-side NLA in shadow server * freerdp: add configurable NTLM SAM file option for server-side NLA * freerdp: make modifications to NLA server-side fixes according to PR comments * Fixed a windows 8.1 issue.- Kill off __DATE__ from built sources.- Update to GNOME 3.20.2 FATE#318572 - Add obs git integration. - Update to version 2.0.0git.1463131968.4e66df7: + Fixed memory leaks. + wfreerdp: fix name build without client interface + libfreerdp-codec: fix xcrush decompression, revert remote control fix + KB3153731: May 2016 DST update for Azerbaijan, Chile, Haiti and Morocco + libfreerdp-codec: make proper xcrush context reset fix- Update to version 2.0.0, git master branch id a7ca42e (FATE#319661), no upstream changelog available. * Warning: This is a git snapshot regarded as technical preview by upstream. * Warning: For xfreerdp, new /long-option commandline interfaces have replaced the old --long-option interfaces. Existing user scripts need to migrate to the new interfaces to avoid breakages. For more details, see: https://github.com/FreeRDP/FreeRDP/wiki/CommandLineInterface * Add Network Level Ahthentication support. * Add Windows Portable Runtime. For more details, see: http://www.freerdp.com/2012/05/24/winpr-windows-portable-runtime * Obsolete libfreerdp-1_0-plugins. - Drop FindALSA.cmake: deprecated - Drop freerdp_branch-1.0.x_fix-kpdivide-issue831.patch: fixed upstream, implemention now in include/freerdp/scancode.h. - Drop freerdp-CVE-2014-0250.patch (bnc#880317): fixed upstream 532c420. - Drop freerdp-CVE-2014-0791.patch (bnc#857491): fixed upstream f1d6afc. - Drop freerdp-fix-FindPCSC-macro.patch: fixed upstream 9148af3. - Drop freerdp-handle-null-device-name.patch (bnc#785437): deprecated, related implementation dropped. was: freerdp-fix-pulse-no-device-name.patchsheep28 16615107262.4.0-150400.3.6.12.4.0-150400.3.6.1freerdp-proxy/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:25612/SUSE_SLE-15-SP4_Update/53bb9c0053403e28d68c8110007d8e22-freerdp.SUSE_SLE-15-SP4_Updatecpioxz5x86_64-suse-linuxELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=3c2f707f53e4e1a460fd1a12972c0ca145d1fb42, for GNU/Linux 3.2.0, stripped RRRRRRRRR R\[_;kutf-8eba821a035fc661714ee42970a1aaa7a0e6e32627ef1d1e8bee9e3dc0c047a17? 7zXZ !t/Kw] crv9w_hpŗ\nwƄ>ϐ?|-3Y) YfDZXIfz#',[ m,x)kzZPLv1ډ(ׄڎu|e.&$.JWM3׳ьX]κQїjI 6R 8l󃔟^zWU*FH8y54TNLk>&V,2eCz&Tk7.ҺR cTq3NJymsMR& MQMV PS21E$%<~%W<D),#O^Wo?[M3L~硩Pk{;8[RoC^IM-ug3=įzcEaLՐ063Nc726~,"vs"B H^N9}H*1ٓW& X2o(2\I#YB ܬ;Z|eV@ ְ\፷xf[6 XNQgƍD1(.ո_FN/nn8"|BƭaSZZl{yBnm y\J.:+Z))F n|VJ0:?U)O!ۖ ؎vYutgQJKnpzí nWЉؖwZ[{T:Ҧt[|(m$('FlqLvkxZ ._DSOmdw=RUqT8ix5G.9<<Vpjzu-<}M#{Ջ|kx`]\̓w@ ܮg$,7JP ?w! qPܱ3YuN5X" b;2C, p ,Y-Z &aX;5vPc/>]ǜWOla|{˛'\4<^燁܎|({w9B#*VQaܼ!vePA)O|TJRw?T2  8B[>sOf^=~q1{ORҞ@(}*GrR+YVwl6)^ N&]J7~&P)2oXGVjk*ư2G ’]~R<{9bZ(fx5SM:qKuNY!~$-gעGrmsTA0Ǭ 48|(n9NN[^_ǻ!Կ5L{rGG}p@w4GEŽO{} h.xr+LubDÕ@7~-ɷQ<Z 3exҐSc8 Bna?r? ZAJ ݅c2GEGmk‹w*B;Rk^L'8}iJ$ĵ6:A3H:H9?Pl-oT3xpT'Y[~atPlŎ$UN~H29y7IfyL ҙ`EL4GV Y :D LL /A0muy 97y*X]@sPAx(r N8YW({ͽTֺ1z?`M(ILpY:A64Kk,: Ŕ$ mڑUi*Lv uf~(u]_lXjK'P[С ^_Wi^Hj?Ꮺnt\msmmO4;_o?Ş]T91s {2(BVLk}ܵ ǥ2nݜ8|y4b.%хli@@etpS@&K_GAqDsLY*Wv쁄1u PxKj5#YȱOu[v¬kPt>Jឥq*_c)YwLcEJ,2c!Jj',PwЪy080(AJSC (0RKmFxtg!3rCqfq x ȡcjmM|oU "8ABJ-'a+KwxLn2#1;I Q)75'T]LQ]u&tLF&v9u4B$\kK/|dQkQ˝F'R8qh9J8z&_ɋ==|MDZ_ܗZC0.Da3~͠|_hp{4,OicPFbaV7,b%Y=τus 8sy`Vy,(Vzg/DX1ooFyDE~'*ba5`A]YDpH6^aڛFM:eq%ٟvpNH?0#<QWX%Bֵ5*/UEب,DM=|xWPFjw#bM I\g@}o9hA(N]zbLua)$iZnMm~S[.5n{׵Lz>6]ۉV,Ӊ):|4mw,jp<4uV7Ttf DpÆb(z|$Pwfe4½{"} MMξԘӪ^~RKF(L~g#N,˓r"gC+#`A0le}9Id gfK0xQ ,Kj,veV_[EN^f|t@Frqk<~oʟԃdWb aڝNʚpsVa:pۈSB)TYaiϦA1ЕUݱ^XG#p*4pUAA^v{ʧ*ZB,0_L~& Jŋ6P +ni-` oRhxwZSΪK'Rp2#Wq}uD6"I{y@C>k@LzC}:?P΄#^C=Dru 9evO.@BD8!_:p@yLO+s /<7{62F;T^ 4I9"ȷWy7lJqzeu'(g,/x4WkPxC)9TY<'( t+G:2Ih Vߙ#+`:+"jAI )sBV"ex>Wςx h]>Ӈ`4."9⺁]X䱧v6 (.gu=DqSy6Ȟz7,Da&T0+ }2k;GٸmR%2g"hqZ웞 %xv2DH\fL+ V^eJL yGn(!qN -;f 6f=T&eN@p|O|dVcFЧn.ӂH6g`P-78''UЊ8aE$x1(p>>W4G{kQ)r2ӌ3<2s5^g kp16贵d,x 2^y~j7rAƗgDED.lNͯjuo BHftz\Wfh)D2P!X0JQ˱ OY셕T M>Hˉ80J gMUlJ-)FV́k{_z4t#6rNټ:o yDCX0{ *~}ߣ>.3f(_vS2oY8>0~'ɬ2,d*{=&Jw2 "t\Z.^ŖtِQ, 8͜2Sx#\2)tnT1ò7GQpfyg0{ďZ?3dG23#(Ov'vwƝ2{)?jBز[gg^h:WbO%urh.@ɸs3c)9o*%tvU%(WkVIo}z7Lhcm=C򕱁c]~!ow#]3 zTGCҋ[hO]+&r{NMqYwc@ .Q>&t^3c?¥Q#@RSMÝ Ϥl\tұFYC%&+] W&j /Ш㙄uy{VT^tYTGo]Zߺe'E-KbgePph=RVXr`rTvh!dѻ1vVs(p0MDw3㖵ό-ImabxsG/~[*6Tz$GRHm2wWQ¶ z=_3*b_cSEx.VCHDD85ƹ hYNϽyhUuwL^/=_b&Wqa; wy BP ӊ#5^,~5 >Pf@N6V$K(#Tmw"+vLa 1fe\i4nG e) ѳԩvVf8uZQ?)oMLc2.H>Q%oU4?s*0͟o/ҔF^hAbx 31gKj̾䦂R7 %"J}ZȶM? S/x?±/8 6BOn[X^VpmUZ)DXqVZ'N?7Q悞0ݖ/[ڭЎd"JlR. {X(lZFR`E9pnD02md4f' ˎ4DAe'_@װ5n恃$D4! N,9BRBFaehI;ЃrbJ7Vmwp2H??EFonf%\i?tI5h0)l a?."@T3ը2ЊQh!?Zx>F<[Pc?YquGքI+wC >ŴqhEOqCJeezLŊ`cbs4~0tuGFO{ɩeVL&nBpvϮ{SWRYʋLCX0Nzq}ˊ^{km ' 6 |?x  q][ W쌿&%vB,.!{VuLS.=`}xeqo倥TϭNUTŃhm$KlGGXٓ2ؒ[_JB6^ 8-BfxFA"|cD4hˤX)uA}̓-t@%X^q>ֵCU{p)R3Jp_Q`x;W )*mZ2z:&#"mw`4-"{cX IW4owxI֣pzJ܌,TDp?%g9TpOlT;ؤ0byG]O#~1UJp`__9r3]~VrBOc$QъXp54#DHCAɽ*[acDK$$`GW}Ud"b6&m9b&~/ns0 ̉O۸7 đ<ݸY`(lnEsz9/Q՞i,>G=('sFnSեx3mj7AIyHz0>[ڃOI/7.iv5Ȇ: =O A8JeqGx@{.Y[ler 4S.yMVC3[I<]k=( DZ:{IrZ3'oXn4fߩi%\)~aǽ7!?}AWgn (vPBgJ3P1gK$۳2Ïx8f}&{(o?s]i ʏ ;IVDjIQ(9_*FB)ao6RT} ;Iw:aQDGc_d 0 _;|P/jұ L"YJْ)i %u3 1$w{MmFBt|Rvn0@6=nwH|T7#㇈Gu# }X_gitpd/C);SP\CEG?#|<04>5G:TwMOq?88❐atT]wR0\xn:8@ v^f0G#9QfvBk8>jڶtk8ܔ0r5l*h*g>V^DvP`({~ [17G@y8bk&ʕ ^/Sy[a]aƲ}J;aJ WgZ /0kf`8R^?nCO4 -4,98B:6"cda1ؖc+\~&0;9Txs9͓m9]شpT !M䑌12-͗c+'Z|t5@ܞ:&?Qz9`MB| R,&J`=}ݪb:+ I飈S-\ 'MbgR(8Q?J{ƕQ {4/5{YdD vJoAg4?$JW"'hȶ@5,>.vλrHDfJ)nx8"`q~c/Ăy0]p.oA/@jnlRa&)b*]#udG5U^*Qɗ! &\n:IwlyU±}ķf (+|%9ĠpJ8Q>7 NDȺ{"mMKc K8X^ c >W{9%0_sRP{f: SQ9 [eDGݹ% 7Kq{M6*m`M7ҝZ`SP@i@]۪3oZQzM QHFP-;J)rbsvRO2lH'(sޯ':ot9vQ)jκ(F[8"@0RCܓ %:^gp(1cbԑ!P Μ_§z"Ygt`cqZ/lbBZn!aUStzb u/8k6=׋ La2f|*딸Q7ptv;+UUnq<,;+:ZBbq-/?G%(#r 9Bw:4NίBG@w ^4sX?LV'iE6^%M>߉"u x[?Esy8XҎq#RU~ 7ċ13_ 7ɏ=ɚ8A3`s\G¸Mx틡+n/vi.uGb",}iDVNq,P5{-,ޢ`:aNYFvk(轆y:^&1Һ}je%` R+Gh:[ODOWdC8oB")fNbFa5Rȭ`yVO57k@SFp INY-O0ؾWJ?謅ma1 0ǘ~qgІ)FZ2Rb wv^P}_^ت-bF)fR1K",=t0Et,\q\Ҙ: 2#x+V^1|N+lY|C>׶anہL,"NoH(n~*??1iǍޙz..pP' s "cyk7E#ZVcXH+E:ww|-Nm6GlgQ /-)0(~kv`CܥOaS/iF8ULC|yL)-#Q+Us14[et͂9L|ʫ *ʞⅮ-!0'g6Qy*-χe{D]׻Ky+q2aPvu?(Q2gsւ5% @zOaٛv8fH>rLU nK󲃒M:7k6Tzf;]Of5*hKwmZ}~Xw`}1e(ZAԲxD!q)4ӎr~TeVCq4 FQz"*F.IH57ضQ c Ԝ2=jc`R<d&ohn[mSүH :$_sK;A7l* eB=2 Sdauj;\d= 0_ҜSTy^Ϩ[!FeqNaP~),M<,?R^a^F|F QIbazW,HVJ@} Xӂ<VMna~`twօjcCᶤ%ēl;j4IQQ rj)Zƍ"] wJߍȌMNo VN^? ﺌUP}~"k~\sV5q #䠎_鱓 Ho6sEF,b\9j* *=aM 7wp%@}JM/5Xhχ̨ˆjP'RT VQ eO.0br_7W-fZ_kWQDbێPb:ӏK.ۜW, \0bj_gR$%`Ѿ|.:L}RmXv'T'dīN]67, /ƓBKUbVzԀCcOΚu>t-'X@[ bi@pEHmd^/YRasZ >yrNPjĔ:%t nq0LVVtc>|d KUu9'6D0tPhۛgC5t0:"%gFP\ yUc{?Y0KqʋQA!JXtȁ# ñKU ,&{uȢ" ٛΤ( k($m9Z!5!'Y3dK* !۹9fI2'UN"Lk7 &`WI{)M.W}r lo{5 Wsw&B6ryNkt'7IP<vUZpP2 Vk 5NuezT tCȚqwȠin#]Y+ 򗢊t*1UI91⒒k/ˋ\[*~®FC7m&vcn %5(k~4V`,$9Kd;0/m l8EG ۺvヨC##j=`"S/@_~+vHgYMIaFHp'FaSKp^H cHpuvUqڄs䓱Ikޛ(R`R/Vq B2m^r~dDW"ƐB'|圢 r㋚NE!"w"=XD"\7MeNyrg:2 CQLu"yӨ̿R(@i|HUI3AuEEe>bN  "FgM_vǘ?IA(9ugʺ2CӋ {.zN ϿBN|G!gEN5@iQ)?y]W|]@~OC}}YVۓ=].:ZxjO'xJI%-+xuc&IJp\:`04l\ })T徟`?CK|n{O!wsdغn72I0l6FƇ=O TbG;) \:>]/Q`\sY,C4#dz:휰IN74}=&UϢ6$ P+ZV]5i.ƃFjz29: Gwz]c]oљI&P[a/w^+V8U/t! H 0/Wb*[֘`zVQ}n-;Ǭ?@DáIG9RQ3coT8RU3U`[/QҸv| 4PEnj+"P|@GaY>CbwMFމqAL,>Ҟvgb;//hp2`Z}s=,5fX='@+ۨNU'ظ⇚RFH tV%Xڕ{4&룂O!+P]6^40>N̥J'?p&3ܻc1x7K >W>=ijwJ K'b$^ wy65;}9jJʟ0 &ᛵ}c2*O]eC(36&c~bU;P'Z B&N)~JG6.-bg@YڄcCc>·xЫ߱NwQ3*}lx/+msS n>MiMi/}ec`U=_9Pn *l lYԬ<NV{Qe)WZke K-DŒ`,So[ࢳ˴vh }b2M,9MH)vhV@%[*8#8nGE{vi]O(X"j/خhF)[-p`oBO2Y+ȕy*1_8+$t<'.\OlaTnރ]<Ь9 !^B^i8JYcyka+`^O2)nZS /n~e̳$j]Gf)Txc<~a+LayΧ:(K0:5[6zy~nZ!۳#0NҼx x7YG6AHz:#tܻ/#O/ lNT<@ a j#:~Ҿ8zW2|Ya-I W+?9,e}tUf~=[Jƒ05բvPg` `E]T}tȷD9(Ŝ;Qm['Gh>t:s<4,o n |Њ3g "Lb]X(ta08~ޓ?}OąŴjRwx~,Sݖ8K̈́CSî5QYs&YI^b)+TGc8## IȎnh&^ OƧ@;!Pl,ϹlsNN(bY;+UGW ^8%#(1*z Z鶂dxIK(yF1Cu842(b\*]-SyRxQlf) ԋX| G-ևi%SeŇo3|3K4q<\K 蟁 p%,kxUpǣsL# \.t#t*MY旝.09Cq1SbTw@ sЛV~9(N$(} %PaAT㰾cU yTcZ&V޾Ja Cͤ}Uaot(qM#`y8(y ļ/0Bo@!ҢĀV~h FGli?r=6qĐtkFC>xs">4(@D#VJu=U[Kv%vp|ifl$Aҙ\YQOE $4^]+LdE m;~C*iW@'e*)r@0&d_KrQEȬ WO3#;?D%+-SЪ&c.*qq2>0V>VM00DAN1S kE2˭ gW\O (-[ߍ{C(CZZ;':&DYkSt7VуWo3 HpEh:ܬO8A%ËaN iR=M(GDYZelhK4h$陌1RE 3+L]߶B"j@&NC]I?9`+_UFAvKcksyP a{{M--a1],s WһǺT,hIw3/ۖI01_\c-ExM-{QP6J.Ǵ$rW|GDFu>E?V425QH@?&nZ.0oU׉ dP!KH ١)k9pXQ msOB)fW&2;#WH*0D/N**\{KSt\`EKx+E#l(j4dCW@<2\sj/aMT[A(Ҝ`jBTk-5LLzBvΙ13އ{.nܷm:Qw;yBJf1Oc\@p:ѽl3?DOe|287yx'o-Iz qjY`9~MopBP_1K~Cci\|/VH IoZ(F9rwMc,ٜp=3e% {aE'I9 ȗ\zo5%V j ^>YXd9k+ Aq{I*!ݴHOy޶o̭ZLqYߙEBۍ]ߜk A h+V^ݳẃ{3.[ST$O|8Le?< KI !qxlgyc?%_/'RjhZx6!lpAquY7V'[m{ v%.}. ܃[Ϝ {{d,kn:ׯm җ?^ڃه`UTP^'P?BTzݧ3lIҶ$,u|nS8i9szԈ)?&M[./>=;> K'8iО &[ckj5$)^mFjR i[JU*#-  vdCm!#q@Uqg50&C`}\/o8w!.x'9ܐqh={GU薌QЦؗمYpoq!w)4fQnu& QpT#} )SCn`2'P[G1fZG)6SpT6Mq {=K>hԊQW|#) V?sT;PTg]gKʁ_h$1<qS:aL!Ͻeܠ|OzTvk0x^O,XGWG2"I[Xms-.tseҊ4_ڮ]W>jۼv}wHT"fr$\ۢR˩XxmiRk!"Åq`HC!rKɟg_0N6伵. 7-'( 1A:/ϠY_{d~'--'YSQb>>|cyOUw]8rH>Lr zM<$>g3*+!32}hu$$(;$$P[q@Hx¡-D Uzx{(Ǽ30#&ªt ^K 7mT#l_te`<&M~_}Yd7G4*O`\\]3#~fs]Azk wg+RFĉyzqW\]@!m;n >C]dq Do ,u}o5mܹAįwq#A%7Yv$rX(l%44ec]@jjl1Ԁumܖ.T蒺H+ 8>{Y ʯ UNAْdbP;afQx#q3%,52)x痢׎MO?{% X?=7u#y\֤ _ BߜG藫=I ?Uw(jwP#%ȓSk؆N-9YI}ea1|&NJ(z}dD e&tna!ch\X XjM6fyRi֯E쉶T!|k7KG'XgEs6RPfah( t1)+>0z9j=| (`ўW%Kb 9ЋcoNM LKPo Hd3(8wq5i?hBK _.xJ&uѮfRe5jG:R dR1hNU!sCbPn^|o-$9 &Zc5c)rp4(Mޖqd.\([W ɟ chyX3kUHjP/42-#ƍ9wl2e&܍X`w@DrP]a}]: {lM@6fZ,{cLOialh3RZ/#`:$@<Z[OxmZ.M@eǸ᾿Ü9Ѹ;KT/.Gc  a߾Q  ]lNN;/H_;-cMYkqKL˾_˕ˇSk8ݮ[O3@߲Pq!_I./ sHxgfDI98Zi3@IE7#g"JKλ_z@sǒf=okhf-pPfr LwF[QAêW"UŎow*I낄z{kNIPzG.(2Vڵ*'8בgx%;WPGHt0e_ivH<{ "G2^GI>֭NFTpHOJi}|z1![.ODRX]KK#b:WM ۂyh aSf:i@ ߹Gl$[\; ,~Pj4v57F:˯nRΒsYWS WmB`pw= YDev_~g#DFɷ..O4aYni#pd${6<+&?zUaerlN1do&T*2o\B;gR߸&N0f؅NjF^\EK6C2BQqLVT m*ar6S>O}I~G 9+*%Nt jz cz`D>Ot\BߡTuŇ 7 EF$b"Iyi0:/9EBZʤe*g ^z7WPNhJl e:@y5!!;0x=9W`lkxa'(_*sQ~@\i={ [/ #mpn#Z_&ۺ "3(%_ƞ:`:іkkJ_$/q@MFIX,]v62UF;v0 *.ᦦsUƃ3RQAc6 ò쓩Dt[Ćvvցi ܰ@yrACpf)DL/bt3 M#u-|{$:_\؝F),@`_Pv4"J‘5={Q-gC*_1ީm`*^F%iu,{+W˱PlA2LWs*B沂J" ұ]~kUW`Czw3%:B5x?uG&B$pّBO y䥍 E5Դa+A9gQ95#z_mgӴB+7r N\m!qcOg;( YvZfɠ:1Lѯ5P"AP f.Bdp^a otgJK")88ߛeYdJNJ+mJv(JX6%Sv/5$s z?0|zSW2t@P1h7dT5F7aXF( fV67zƯE-BĥImnXcc:Mf6K}Qx,|o;ͅݠBqaXnV\Sy^??\&F$h;{jnbh^H<ۻʊ9K(z)UXK\W{Oj&5uu8wKP(Q\ H? FXq*1w#s~Y!E$ږ+ÞV%7ܰ#KOk\]l"MZ9|.x#W|%RvJcs[1ol9Dv8MJAВe`eW>Xܬ4sdln GeC<[&7\ٔJJnt>ΟI0FUo|({iӾiBIJfw{3JmBYJ4A!F@qAbf[+~Nh~]6A +Qg9V3~E57 zG8-^,Y8Bb>rfݕV{?~kyehѦ[C>6m{ϜF$VGZƃ9cI̕u1uʋ!dVhXt`CHqѬ`B cyh#<Q귉6!ݒ;:,C#?0;+Q]_6u$0&br!'nNڨo3' uI'q0PpX4i}FB@}!|JS#P;ң/?=g"GAN r[1 Mc?P6M_5(z[=Q&3_b6;<@ΚJ N;F_^k춲5^{,_{?{Ee4KMD ߮/ 6ydD14*zm?Y<\Y?RA+}o)܂l|1$ /%VJwVe:Ges@ɰ\}hTme 绷#Ioөu< 5E:OQW n &wn{,% wl^s tFGΒ{iV^I!{Դ$4iV(*W?Yᘚ}}jeߛLӫxN>W8E$Y,U[JѬr͔R p*`H eK؄~_ (-OwXC] Rۧ@PCz*PC cI ӊ XKm() \-&C );4 ganACݧo5 K SȮ3~fhTzGx" .H'1np$ij5GBy)" Gz6{B1tK^3dn)Q01e&RQ讄]:+2gıtyQ|2%1 2p%4)v]B%) =|L}\4S:f @;\v 7PvoOErBMKf z'o/ŔZu 9ij]4b)yd3)nT츉o]X^}506PM YTzoiӹ/_t?w)?*3 zJU =2`桸4.$} +g,%HA3Z" `K# &OT{o׷W$a1Ȩ43C暑ŷ{w=Zfe VtEBG%}ma&'J r,ӄ #[p,Y~^zbO>v9&F"7&,a4(T8X-=Y-ZMLZ|?|4~M+ym$kOϩBMK qr{rǻAws_zc9 r?O +I /H S؟3 #ŀ_r燄q;-T+̶@Si2(eȾ೩ Q ¯ڄVpn&r+"8\DSgS & et=։9VUTP1+&?,+I`_?6Ϊ6'8rd!)ܩш>%?9+''_8=\+$0'q\f~@N>'rXN 1in[Oq\*S5 :w84uH7mm`z/FQ ||(P\`7/gU9pkp5$0.1hl1=G :^ 7% vH+nc΂#ᗆ 5 o,Rz^PS m_F{eSDHM,Sn~/h% dhw"N%&$2F(R跫2!"j:G^_{k2g]e0Ka1.vbi0I~U)ȔyrN *!Uzr;aEh"J@YR$ʅ2ϱFO+IPL<=Yޢv}{@0oB(*y^]G X-T9Mq@~G!3Q)RX"ÕNK*cߴB?RO"}*-cD0ҁ#WiWͻI(+Ź]5wR3dwQk|ܛ],mqCB)2ghyT ge܃Ĥ;n+aV5ܻry+41 ٽmoF&b|^ˠgf65=TYAWBlqrN]J8 }CB1ް`O29 'C`>z^f% pep%4_#-z+5W6wضOO걋KiJϟ2$nԭs0 |v6sP'@4ESFAk5VN!tTR嗿މ=h N vO'5K~;iߜPrsStp4[?=(X_2.`0ܹ'4ll n=UWX nuxyp}P1u=z\d6B6"uʐQLeH26e7Tx>)e{֌9pobl*FtA4\Ѵӭل7G_qڛ~-;: C%i6`j[0'B-wGZT"j,F3kbq))b,-1 ƈ([1_ vnE7 Bq7mKP8Eq!]M+kh&Pna(LLQ*ʺJУ)xlOj~V(ԗJRȳ@, )RGC{c!9pxu>! ޜ&Cy̴/@ YZ