modsecurity-devel-3.0.10-bp155.3.3.1 4>$  ApdI%z u1~N?dNJ_רC+axdFFPm-:F rRE& q" #-!F$LɡN)HW"qc0EKعȏ? #9} z=jr?UU*[iG:*0JREnMRyy -F2zV]󈨄 \X!MK$ pX&9K+dy?CeXxNxhM(w5soc&f-{>D8?-h}Ru9$Ϣ($кV;Rm* G@hS'|5Ќ{͜hWb""riR`l6vSQ ]uK`jҿ:rƓ\Z,aqpP*X{L{:҆Cl UpӇnAצ@2Q7|wTuB趲{H{S FBDnD|306iSV}MlqgP02&b_lLPe3!tעiu߸`4wNG:80X^ᓦߔTb)S?rm, SGv3HiѡƪTԯY07ؕQ"' *& 9]%|@S(%' =a`UㄅhW=U *+ K;OVqHkEeToe䕅0<~K(^X-O`ڑo%G,R[\'On\I2!GKd k8sR a ^+gcG `yyT4M%{x>&>p>F@?F0d ' l  9BO h$ ^     i     6 `   0 ( 8 9 :E F>pG>H>I?lX?Y?\?]@<^BbBcCWdDeDfD lD uDvDwDxETyEzEEEEF,Cmodsecurity-devel3.0.10bp155.3.3.1Development files for modsecurity, a web application firewall engineModSecurity is a toolkit for real-time web application monitoring, logging, and access control. This subpackage holds the development headers for the library.di03-ch2cSUSE Linux Enterprise 15openSUSEBSD-2-Clausehttp://bugs.opensuse.orgDevelopment/Languages/C and C++https://www.modsecurity.org/linuxi586 Af/F}$x!u M. - v Xb8]2 AA큤A큤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.so.3.0.10rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootmodsecurity-3.0.10-bp155.3.3.1.src.rpmmodsecurity-develmodsecurity-devel(x86-32)pkgconfig(modsecurity)@    /usr/bin/pkg-configlibmodsecurity3rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.103.0.4-14.6.0-14.0-15.2-14.14.3ddZ5c]bb_*@[I[CN@[:Z@David Anes Danilo Spinella Michael Ströder Georg Pfuetzenreuter Ferdinand Thiessen Dirk Mueller jengelh@inai.demrostecki@suse.commrostecki@suse.commrostecki@suse.com- Update to version 3.0.10: * Security impacting issue (fix bsc#1213702, CVE-2023-38285) - Fix: worst-case time in implementation of four transformations - Additional information on this issue is available at https://www.trustwave.com/resources/blogs/spiderlabs-blog/modsecurity-v3-dos-vulnerability-in-four-transformations-cve-2023-38285/ * Enhancements and bug fixes - Add TX synonym for MSC_PCRE_LIMITS_EXCEEDED - Make MULTIPART_PART_HEADERS accessible to lua - Fix: Lua scripts cannot read whole collection at once - Fix: quoted Include config with wildcard - Support isolated PCRE match limits - Fix: meta actions not applied if multiMatch in first rule of chain - Fix: audit log may omit tags when multiMatch - Exclude CRLF from MULTIPART_PART_HEADER value - Configure: use AS_ECHO_N instead echo -n - Adjust position of memset from 2890- Update to version 3.0.9: * Add some member variable inits in Transaction class (possible segfault) * Fix: possible segfault on reload if duplicate ip+CIDR in ip match list * Resolve memory leak on reload (bison-generated variable) * Support equals sign in XPath expressions * Encode two special chars in error.log output * Add JIT support for PCRE2 * Support comments in ipMatchFromFile file via '#' token * Use name package name libmaxminddb with pkg-config * Fix: FILES_TMP_CONTENT collection key should use part name * Use AS_HELP_STRING instead of obsolete AC_HELP_STRING macro * During configure, do not check for pcre if pcre2 specified * Use pkg-config to find libxml2 first * Fix two rule-reload memory leak issues * Correct whitespace handling for Include directive - Fix CVE-2023-28882, a segfault and a resultant crash of a worker process in some configurations with certain inputs, bsc#1210993- Update to version 3.0.8 * Adjust parser activation rules in modsecurity.conf-recommended [#2796] * Multipart parsing fixes and new MULTIPART_PART_HEADERS collection [#2795] * Prevent LMDB related segfault [#2755, #2761] * Fix msc_transaction_cleanup function comment typo [#2788] * Fix: MULTIPART_INVALID_PART connected to wrong internal variable [#2785] * Restore Unique_id to include random portion after timestamp [#2752, #2758]- Update to version 3.0.7 * Support PCRE2 * Support SecRequestBodyNoFilesLimit * Add ctl:auditEngine action support * Move PCRE2 match block from member variable * Add SecArgumentsLimit, 200007 to modsecurity.conf-recommended * Fix memory leak when concurrent log includes REMOTE_USER * Fix LMDB initialization issues * Fix initcol error message wording * Tolerate other parameters after boundary in multipart C-T * Add DebugLog message for bad pattern in rx operator * Fix misuses of LMDB API * Fix duplication typo in code comment * Fix multiMatch msg, etc, population in audit log * Fix some name handling for ARGS_*NAMES: regex SecRuleUpdateTargetById, etc. * Adjust confusing variable name in setRequestBody method * Multipart names/filenames may include single quote if double-quote enclosed * Add SecRequestBodyJsonDepthLimit to modsecurity.conf-recommended- Update to version 3.0.6 * Security issue: Support configurable limit on depth of JSON parsing, possible DoS issue. CVE-2021-42717 - Update to version 3.0.5 * New: Having ARGS_NAMES, variables proxied * Fix: FILES variable does not use multipart part name for key * GeoIP: switch to GEOIP_MEMORY_CACHE from GEOIP_INDEX_CACHE * Support configurable limit on number of arguments processed * Adds support to lua 5.4 * Add support for new operator rxGlobal * Fix: Replaces put with setenv in SetEnv action * Fix: Regex key selection should not be case-sensitive * Fix: Only delete Multipart tmp files after rules have run * Fixed MatchedVar on chained rules * Fix IP address logging in Section A * Fix: rx: exit after full match (remove /g emulation); ensure capture groups occuring after unused groups still populate TX vars * Fix rule-update-target for non-regex * Fix Security Impacting Issues: * Handle URI received with uri-fragment, CVE-2020-15598- add baselibs, fix packaging (install into %_libdir) - update to 3.0.4: - Fix: audit log data omitted when nolog,auditlog - Fix: ModSecurity 3.x inspectFile operator does not pass - XML: Remove error messages from stderr - Filter comment or blank line for pmFromFile operator - Additional adjustment to Cookie header parsing - Restore chained rule part H logging to be more like 2.9 behaviour - Small fixes in log messages to help debugging the file upload - Fix Cookie header parsing issues - Fix rules with nolog are logging to part H - Fix argument key-value pair parsing cases - Fix: audit log part for response body for JSON format to be E - Make sure m_rulesMessages is filled after successfull match - Fix @pm lookup for possible matches on offset zero. - Regex lookup on the key name instead of COLLECTION:key - Missing throw in Operator::instantiate - Making block action execution dependent of the SecEngine status - Making block action execution dependent of the SecEngine status - Having body limits to respect the rule engine state - Fix SecRuleUpdateTargetById does not match regular expressions - Adds missing check for runtime ctl:ruleRemoveByTag - Adds a new operator verifySVNR that checks for Austrian social security numbers. - Fix variables output in debug logs - Correct typo validade in log output - fix/minor: Error encoding hexa decimal. - Limit more log variables to 200 characters. - parser: fix parsed file names - Allow empty anchored variable - Fixed FILES_NAMES collection after the end of multipart parsing - Fixed validateByteRange parsing method - Removes a memory leak on the JSON parser - Enables LMDB on the regression tests. - Fix: Extra whitespace in some configuration directives causing error - Refactoring on Regex and SMatch classes. - Fixed buffer overflow in Utils::Md5::hexdigest() - Implemented merge() method for ConfigInt, ConfigDouble, ConfigString - Adds initially support to the drop action. - Complete merging of particular rule properties - Replaces AC_CHECK_FILE with 'test -f' - Fix inet addr handling on 64 bit big endian systems - Fix tests on FreeBSD - Changes ENV test case to read the default MODSECURTIY env var - Regression: Sets MODSECURITY env var during the tests execution - Fix setenv action to strdup key=variable - Allow 0 length JSON requests. - Fix "make dist" target to include default configuration - Replaced log locking using mutex with fcntl lock - Correct the usage of modsecurity::Phases::NUMBER_OF_PHASES - Adds support to multiple ranges in ctl:ruleRemoveById - Rule variable interpolation broken - Make the boundary check less strict as per RFC2046 - Fix buffer size for utf8toUnicode transformation - Fix double macros bug - Override the default status code if not suitable to redirect action - parser: Fix the support for CRLF configuration files - Organizes the server logs - m_lineNumber in Rule not mapping with the correct line number in file - Using shared_ptr instead of unique_ptr on rules exceptions - Changes debuglogs schema to avoid unecessary str allocation - Fix the SecUnicodeMapFile and SecUnicodeCodePage - Changes the timing to save the rule message - Fix crash in msc_rules_add_file() when using disruptive action in chain - Fix memory leak in AuditLog::init() - Fix RulesProperties::appendRules() - Fix RULE lookup in chained rules - @ipMatch "Could not add entry" on slash/32 notation in 2.9.0 - Using values after transformation at MATCHED_VARS - Adds support to UpdateActionById. - Add correct C function prototypes for msc_init and msc_create_rule_set - Allow LuaJIT 2.1 to be used - Match m_id JSON log with RuleMessage and v2 format - Adds support to setenv action. - Adds new transaction constructor that accepts the transaction id as parameter. - Adds request IDs and URIs to the debug log - Treating variables exception on load-time instead of run time. - Fix: function m.setvar in Lua scripts and add testcases - Fix SecResponseBodyAccess and ctl:requestBodyAccess directives - Fix OpenBSD build - Fix parser to support GeoLookup with MaxMind - parser: Fix simple quote setvar in the end of the line - Fix pc file - modsec_rules_check: uses the gnu `.la' instead of `.a' file - good practices: Initialize variables before use it - Fix utf-8 character encoding conversion - Adds support for ctl:requestBodyProcessor=URLENCODED - Add LUA compatibility for CentOS and try to use LuaJIT first if available - Allow LuaJIT to be used - Implement support for Lua 5.1 - Variable names must match fully, not partially. Match should be case insensitive. - Improves the performance while loading the rules - Allow empty strings to be evaluated by regex::searchAll - Adds basic pkg-config info - Fixed LMDB collection errors - Fixed false positive MULTIPART_UNMATCHED_BOUNDARY errors - Fix ip tree lookup on netmask content - Changes the behavior of the default sec actions - Refactoring on {global,ip,resources,session,tx,user} collections - Fix race condition in UniqueId::uniqueId() - Fix memory leak in error message for msc_rules_merge C APIs - Return false in SharedFiles::open() when an error happens - Use rvalue reference in ModSecurity::serverLog - Build System: Fix when multiple lines for curl version. - Checks if response body inspection is enabled before process it - Code Cleanup. - Fix setvar parsing of quoted data - Fix LDFLAGS for unit tests. - Adds time stamp back to the audit logs - Disables skip counter if debug log is disabled - Cosmetics: Represents amount of skipped rules without decimal - Add missing escapeSeqDecode, urlEncode and trimLeft/Right tfns to parser - Fix STATUS var parsing and accept STATUS_LINE var for v2 backward comp. - Fix memory leak in modsecurity::utils::expandEnv() - Initialize m_dtd member in ValidateDTD class as NULL - Fix broken @detectxss operator regression test case - Fix utils::string::ssplit() to handle delimiter in the end of string - Fix variable FILES_TMPNAMES - Fix memory leak in Collections - Fix lib version information while generating the .so file - Adds support for ctl:ruleRemoveByTag - Fix SecUploadDir configuration merge - Include all prerequisites for "make check" into dist archive - Fix: Reverse logic of checking output in @inspectFile - Adds support to libMaxMind - Adds capture action to detectXSS - Temporarily accept invalid MULTIPART_SEMICOLON_MISSING operator - Adds capture action to detectSQLi - Adds capture action to rbl - Adds capture action to verifyCC - Adds capture action to verifySSN - Adds capture action to verifyCPF - Prettier error messages for unsupported configurations (UX) - Add missing verify*** transformation statements to parser - Fix a set of compilation warnings - Check for disruptive action on SecDefaultAction. - Fix block-block infinite loop. - Correction remove_by_tag and remove_by_msg logic. - Fix LMDB compile error - Fix msc_who_am_i() to return pointer to a valid C string - Added some cosmetics to autoconf related code - Fix "make dist" target to include necessary headers for Lua - Fix "include /foo/*.conf" for single matched object in directory - Add missing Base64 transformation statements to parser - Fixed resource load on ip match from file - Fixed examples compilation while using disable-shared - Fixed compilation issue while xml is disabled - Having LDADD and LDFLAGS organized on Makefile.am - Checking std::deque size before use it - perf improvement: Added the concept of RunTimeString and removed all run time parser. - perf improvement: Checks debuglog level before format debug msg - perf. improvement/rx: Only compute dynamic regex in case of macro - Fix uri on the benchmark utility - disable Lua on systems with liblua5.1- Remove rhetoric part from descriptions.- Remove libltdl7 from build dependencies- Make use of %license macro - Make use of %{version} variable - Sort dependencies alphabetically- Initial releasei03-ch2c 1694076556 3.0.10-bp155.3.3.13.0.10-bp155.3.3.13.0.10modsecurityactionsaction.hanchored_set_variable.hanchored_set_variable_translation_proxy.hanchored_variable.haudit_log.hcollectioncollection.hcollections.hdebug_log.hintervention.hmodsecurity.hrule.hrule_marker.hrule_message.hrule_unconditional.hrule_with_actions.hrule_with_operator.hrules.hrules_exceptions.hrules_set.hrules_set_phases.hrules_set_properties.htransaction.hvariable_origin.hvariable_value.hlibmodsecurity.somodsecurity.pc/usr/include//usr/include/modsecurity//usr/include/modsecurity/actions//usr/include/modsecurity/collection//usr/lib//usr/lib/pkgconfig/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protectionobs://build.opensuse.org/openSUSE:Maintenance:18064/openSUSE_Backports_SLE-15-SP5_Update/0682298853c0e2d2d6071a5b5338ca11-modsecurity.openSUSE_Backports_SLE-15-SP5_Updatecpioxz5i586-suse-linuxdirectoryC++ source, ASCII textC++ source, UTF-8 Unicode textpkgconfig filePR0 7puKutf-8a0801f0d107f52fa9cdfd7f71afd2e5abb9a811c0c074e86f351614392429cdd? 7zXZ !t/H] crt:bLL (f#A|r#)e=nGY 5@OŧE?l&ۨKW\XJ(sbpC 0(DL߲Aj[o?v :@/,(K@!jP>M ]o+KPpD|@i*V#P!|%ͱ ޵ c 5wa΀ a~弾g>6sWmUn!|2֢ P_\|cBEQ ͓kр1g 8G'NS0el)Ku78qCybދ@c/x/ƘDxK(Pg~r-OUNmkc䤘}5N LL)zJ"0bDM$f%Ik2 xIHFO#zVhB@g '')a[h-ʓ=(/Q腷p^KQ52DQVR$@,ymD]u/U3Ӵ g<@uТ[0\.B% m\!D Xtv 1 |<P#VmEzUph$&=WS P-$5d*mm?E\Հu9%ԆΑƁ}jݦN2j%d\}3jk?YF#xc#׌!BCea׃"P (kZϧ.hVy= ujY=Md{ד^`öfqh}}ƞӮd9g;!,%ݪ:pF%-Tp>k7/]ޡcCY:g àm]+XZ0NWxIR&) 6Fowđ1M-Y-CuV= CsJ0y]*bk]ˬ} m3Mv^lxy6aSXl~\]0hpZc|9PfucF;זO<DZ(5A,D;4bCr':tsY®Dd@XFp;|a#V@'{,$3QG=+ ׭)]Wތ 7wya+g'W.3[sEYW5G.߱Ԝis"n(׭.g㠉Yw K t5rH1&!;ٍ5.˗Z&U ܦ@Bܫ5s $SBEq!h$+Sv:ˌ)it#h(Z? 2[^hI/8NI xv( /z7Q"SN[~T)=ɡ,X0u2B2p@m78f$=~q "ݠԳ#yžΚ!2[E<F#m]0u|p NV 9Ѐ;3g~mLuY=$Tܜ@,03}8(ya+x}ʭp4K-Y"BBFa0x?)"Q X@Ȋ j;8ߙTTrfJ|T3\ ^ Q rBY>cd{qV w6 1Zt*~(7Dڅ7B>x|Vg4R9mm.N T<ÿG`4 L&W#&y# p$u.bBj|wJugh+4|" OgmW'"^|rF+fz2 ܃lM6!)vgޒ/5bbi?iBu.WڬgCH[ꨣ ;:]&yJʚhBZu\YU2zu@cjt$G1v+[)4Nk9~Ew$7$!2ܞn툗&,mxaڦ$Ol Q[ඒAM_JkpP^uA(J 'ޱU+9,E{Th"s!|7εQ$h%I] YMpk9`+Ghv/d2ffys>.wCdzpvdļα }=::R3S(~eN _$:.0 mS*VT&{Y <ԡՕTf֡hGX5yיRXLD3!ZץxckYExs̉3 ᭘g҇{m.ɝ ``pzXSu0!Ow9 \ ?"dM!b~tu$`X tk1S?J`K+JznNA~ͰG<+% 6J$.Ho: 1EC׫I?~VCƾr7&tV6Z)R[%bޤO,=WȔ9 㦂hʏM{Q$苞sǃe/d@un{Zl"\&1Zoo S|+ݹ%)Qt{dmP i=< uA4mRmξnKQ^BeK4, i&\ 5!~ƕsc<xop"gwXK&EgMrTVX૔'pNӞ`=&*E|y{^f >Mz}\ C_sz(N ,$A,9"iCO:NNR_t&biemh.K5I^w\Q|į s2\* #=颂p۳ e^PlOoCLo} Ȇ9qO /|MA*"JvD\7|q;ZE00>Cě@Ϡ~xM5&ϠB}p..ǂ%|Ahm1<iS0~c/t/9R~N^Թ+t{D l.IȝNV jd>8xGNKqoZIqKKe$|Iw,‘O|ULgd'dDqiٖIE ghq U֋!d !j팜 DVUհ9_n$M-syeMjx֏US!"k:\ʎW]ğ|ho ٵɷm!Tޗh"UkBpFƤƁDV MЉ`|u~~ ~Ku\';kC5CxسJ#Wv9]QurVάQD4lJͿINI R?eOPD lz 嵭\+[э 6F SO=Cc`l|tKkT m~C@d_.M1!qJS-h~\3!Kæ{T0p.&rM *:NECXZ,g\/Ffkʾm8F)>3d%j@#HP(hES BIߣ_'ac|@ g.^ _jBp96r}9."WyRc5^Eڭ&伧]S YNE"!N>2MYqZu*:j: B1RgDEbFьC)lDI!;ĸE⦃X^YڼջGn^Mz!/h3%BAdS3txJ:J$ƶR% KA,RȖ@K 4'h(Lwit=4:ƔhLE6eqF8%?~za M7mˇ ++B惖um`zCT뭊[jAe6Mx)Wk JBxketxF6nݔ|p SXsygܑ^ҺktZ2 3ڿ||]kV/8:vk*XMέ+KSoʦ$@xy]ޛn8oq/8ƒ&tNE h/E+tp(E2ղ,48gpDQIJ%4ۣ+RQSNH( d|5R z{(D-/\q}^%ݶ B:ڊ=ߴt! c ` ,Nh7dS]x[zoL};[GDZU0Q): ̍l&.H%: 1 }'NI2z!vP`@aHZAԳ"|TQ9̇N`]S&hU`wRY6CO:r\>Vac5R,/i[/&h~DG_c[M@0;5X@;"F`S, JGeUvEֈ%__JʆfGI/5}? O *aSRg{~&} _vu(;T؍jBsɓGr%1N"ꆁjA/gjzrFrkqz˜w, 333%nLת~^*SA0:q:@H>-b> ~piIDWs&BtnvXrd َ|nI`虉<9gPe3_c33%P̄ ѵrp2Ҍ(3QRh.W0 P*PQQh+Eִ\;^WA$ϕ9_wfDSB*1GВŲn-cxUBH_8~.$O= 6Jm2+ۿS$LncɌR4rR&W!0{r ZA>kh'-4'^;+p(!PZ&54J o %,;=PGY߀5l_#uڜP:"Mv-)F!G".~I88ɒw^`s 2'y7T.3+o,>xk+8C zesH&!)xzTUE$ ~H{;RHW _Ԩ7^K= 9>m^Xo5Vg8oko$汍Cr<9ڿS蠀'Px"'-(q޶(2FX]XR`KCrmKm[ MU5M7}^B% <ѭ{% ^[ (Q~mg4;:0#![ڦk(Z 04s *wpŘt9^v#2m]ܸp/wDpsvHbu&;7Kjy( $2+[q瀋#$8O.l K7nC=Ό}Zt5 c#ڻ^h}!%XcMY"Q8=YBp1W5r 0X[b5`oXQi-jt@ yzS `LdF#RW0m5XWڟN#cyvRֵoD}w"1I"13j iDT{dEW;{^(d< Ձh0_AÂW(s덹d*|]BeI#fd͂%n CC(oY̾ïY/:%@{!j>|Pk魹>.4T$o %:M*3ZwƐQ񶄻4Ri_%Q=G5`BkSGI@P ZZ};257PǕ?tzPw ()8^$I{2',r]gmwYt s/ٵG ,:C> d,D:2FTS~O[FI4Ek囄o=ņC.f>sICoyʝ%lqN?VnҼL~i$cdP3vX֫=85#OȽ[y%Ua9QM7lM`P`IRhL ;HkQ҂OV|~v;jxXp7b&xp&xFu2}h/wK4mS&MG6Q':aq5,#2$uHc&%\xo- >QMFۚYڙC#PZo W:R>JkK&!#׊6q2oqr9VXLEeRIlvWԴݴFMHJ6m*9lS9Z$aâ%9tث yy^ r#K!cf .kߵnD!gB_;ՏF|We20]E\trs)BhWiM\jRhjՄm[0I~oO{I>P1F?XQKA_)n\Vd"1?o޾1K:]lZL~Ӛ |7j>e7EiN|,}$sP5.pmYԕqF(I)jxN۟LPjj 3EӐu@VF̸Xmf_r_F{2]I.+P/fRBnk5 i4\K5 H#-(!p`}=TzP8, e:ka0,OCQtczMߟ{&='a0`~n6kћ!){Rl50_ppX4m!zCJ ,ySG؜ݥ5*Gk" I ^߀bńYWLm\0=`Ô$?AX-ECƆq$1?-bh_jZ.6/ڷN+ o^e ^UezR oĒ'K99KPu2:O"M#@1b%\)H'rZ,lbvjHT5(ۗ#:w-z1A^^&]WL }0e;%i*Yµ5 > 8kTH|~{䥃DI'[pls!Bsq쭧NW:ULWw(uF[rgI޳ P#xpՉc %2(&;0ժ@ H9[7;;6/[W#Z Pʽ[gڨLZ$/0hpކJ[Cnrn >_@ם5H!e|ղEH HYզV/Oڰ0pGDMBJ%yї8Lt2&.'sF9=zԠš EsI6L#z5hJH>c(#EmӞ~&!>86 Iai [,or?d\( b&;Ɍ2TtRCKqk D̺|Gl/tc?.L^+ZUY:[Uo:BE7w?Sx$O#,p\StS?$}?/$Nz!%7'ZGdY!^PWѺv:?b_3]1]p$JV7׭}S0m)G-Od?V NwF[ 7boXQB':ƛj!hcoGH=t0c`&nLW.\D]ZHҋf5ɭj)1S[) tn/*k!iǻ, ÂܬYS#7u Ć폓 H)5 \LՑGOeh9GU==kHò&vl!=/ǃ_+;Lk>U~Lc/4),Te#JOEc.{7{!OGf1Jey?=J)G.#AYh8I o\D ;.v]˶E6=bϐ,ӹYt7 &Du EӶ"OJ 냂5o$:̤ Am ox؛5pmn<eK ¹ϹP*rt.Մ3@4\eـ1wMnoUT6CFXV 2 l@{ԇ.s"rVj P`'?"_ \&occ_8sطAT;@ɉV.Ѷ1EJhih4 \%˚2V7e㾛]>OsΨȸ `75*ts譆-bȳ 8\Q"ꥳPܕlaGLHჯ Y!+m𐡛<8ܚu9Ϲz2xU3oƗ"35CoIR+8JI6(AhQ*Gnw_㿲ݻ?(p[n#k60|܋&aylGz^bYz_&TQQ9~F3Gf؄`:jot9x M~J^OSt`=f޶)=.}OĹ7eWh##{ʇS|)ڐ ty7H-b s4j{B/ەl]ō9 H z`?ZtbuS{G;`FHۗDj s^2ÙjzԕbI֝Zg )_t[ e󕟳y5jlhe}#IBg)_m(J+F wՀ8c8iJ v1bKczm2Y̩Wk.f M?UsBDsnD7 O_Ikn!3"Ӗ໎0{rBFf!E~Mkt\ٞ AګM B6*wLt7mA⦟tD ==N )^Tamr-'>b8Jo"P=B뽤-8N9ԯyeIw`𑌮P/MqIBwb@cst. eL\9cN*F?GuU Gjڎz q7;POEr72yOE 9~!w:֬щV "mTf%*EKp}^$qZƃyy 7̢Y1IoJV9 Fd]D>Zp1Yx{ߐҡ+.5ؠ4 cQfRVv}6~P9-wK1*(^Npdwdu -myM+2oISRoɜ i2hO 5%S&#ṱ`D#Bſ g/O/Xqe2哔]`zԕRx:+wEXyBkb"f. /٣mW}4ɜj*Tk_F'A2҄ ݷ@cB5~W5Vk>%?302"nKUuHl"niAi+N}~d |vU'P^.$ptX#ݾ 8l}M)oG .4dooӡMFrGp)%sj+{:\S;JM$0TȱňyCViv&6£L *r[E+w>[a'A#t޽Nˎl,j gENr uKQ.O<{UX YiZ`9 )fWwRp/DžmvBR?a\?6h,zYW_1Fc6_D3*ѧSfJN0{)J (PG(\Lk4$<1G+K>Oq}^A=7 8U (-| b/\x`H >-)ZcA!Ɖ {u.cF8ƊAw:\S^ Hr>D@›,RS*si wƼd>)U?- wּ ;uQc7/M)}2EަxL}옓& 3VGM̴0 nn x @,lߔUNFkoA0GOÿi4Ӕۃƌ{0+Rt(ܝ#p Krv$E8rw'Kofh},QW5O0j G4aocZ`gb!om[ ?*gbWZS'䋒2idg>IT !С7{z @eiOm %]OlZb =o? gP\XzH ?6'"W@d2…QW(m8Z Dn)/Qݮ;#GQ»U k!g$vujlQYZCHah!Ԧ2jjw!0ciqK' d/!z97P+˥%-fY{qG"Y4Ϡ_"hqi}w c)M[ݞ:#=[Iҽ⪞TDk/s0(`qů8قUhy]jAHqo^Ghި\QfA98o"t Z5cPV9תOǸ*jΟM U/E TP\bPwvNa{S40xܘ\O5^9Dؘ"[Ⱥ jt2X0ͫYɣ^B7{ޝ(gғkԥt]myknS}T.1G#paJGv;2=97>-39ol][awo?rSx}Ay%^K\Knr/T=r7®}ndnv:p/3ûeh*`͍g$ ]wcH=>Y2C(oo ntBwqY SntA7* PA"s-{|nU)fHBTiVYCN+V>}) Mh4!&d6Y;X|2Q+B%}Z^8 5']ј;5)B`~s')awr ֪e()ThF 8m8+ݲ۷%cwSPޔp mMW%g2Q rrn ?U+כ5 w1 b[KM^07`5~CݓNGa[_8#r H{l4F;۔_-b9V]v!ʳAimج72g @}2Yx o '~%=]櫆>>CC-ϑ;ٙN`; ӳwdCZw  iF44l.u= C_Nx=q׍tBs"xw9VXY~i?&y* K?qKa.cu* %kRHybZʖD0_j] EjM^B |:\ ]YاS N:D7ٳݔ aS%㿃!?AQ:MOaMVq-|>xT \8@znGA l*4{cb(<ѷVODĜT1]<8V,u|Ul 73ܯڿ*^;Ҙ<"~s2/&<P􉉼Ndy00h~/Qnx.~'I%Y {hQF\38FEM&TxfTեD l5wkEN8W@o{FNd5blhy8\ba=YrP{=y4kY#_LMܵP?v\@Y?]zS7(R)qYA[nt5)Y;;A䛊}V:cGbzE {ТؤFP!M9 %*Q۷B5=Fqzła0@AsF<2g«\+xƦImr&md" hQR{\A>"0.eҝŕ ѷ%GAl| ]]lcpmd*z0Rr{F|9~p%#~Rg + -GG}Qcֳ ݀l&ܴ%z!dbNysb V I 0m.ՍQ~9{tDvP'c!w^qʟuvgPp]݄^4TȳUdYNe_/słZ\8#gJHZL<,$)b0X.$@Jq@:^%}3 ݌NWy쐳nchȷRScEmI@,'ÄG~8W]\(5u2h3z:sZ>q G\%2cm86:C;C'{6$fwҾRHkih,Qn#FL+_POP+q~ٳ.P\pZejj(g~I#( jq2*[((' ?hs~2N~l 00P(7n}QyxjUg|^@YہWS6x ꯥH|GMYCɁsM>rwh ~nLh#/}r*1Ʉߐ|ނt2*7/WѠM=: -0ioѝ‰x]P)*y Nuw: `+L'fˤrj 9A>雚ߕ^V$(bj9MhK7gCi0e ?^]O2c:gM ^R/t׮GI%wCyT*jA>qvu+W%:}'bKDyE1 %P$%Зꪁg݊0N덿0 +yh!2!?^BwX$_eF=l Ė/+Wબ{O oƕ$lJHQ/sZdY*i :oLL=?RlaۺGUCr tusRO?C(}*ZઈxN`ĵ0Z 8}x}GTUƌ#$ 73^`ep+ZqLA/ӫF+_O٧W~9gC2= iaWq0b2,[z rzu#J( AJ\¶hJ xcQև1wcm?u3'#SbR&kXoNҞ% @nfC:Qs+gId"1З߻ YZ