mod_session-2.4.37-61.module_el8+563+4ebf229f >  H    ?PTpd U].!H'zkgr]E2h25EDO|a^ך*}%siEչҰ;z \ҩ,=2xroH8>.A.\ltD= n7Ov::E&pơx4SI\&piL;Eўٹh6l)4v3- -R]Rwv 4MܬIѧbڴ!(ifhEeu܆S Ki1׮ - 9;e#VC1^\h4':eї"d gZ* UG`X~Vubc/snpW%hGCv$|=+o8lD_a)tة)~jEDAp"mTծtbԧAQb 8~qYKG80bT(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!cd U]]cXb]lc0o{#X kN?bnDSM{G[aM&dlYZ>&9Э.yq%LS@{ĩ| >k\"§<ŧaFm\\&wY,I)OlbbV鯬Gc˪sFAp v'ubë2~3rvP5szpzJŎ9CO'?w~d u1dD[-| W$e 16AIlg 8 y^D ":H(8ųSW[un"m:VswЫ_g=+rT;}x(H @ɖ0ir~ )Qa9Sͼ1@Wl`i̩RcU`/VWIe3ʋ\ s%WvXfWLb'37G5=x>P=??/d 0 ]  -Hbhp              P Q(89 :7GD Ht I XY\$ ]T ^bBdeflt u vw x yL Cmod_session2.4.3761.module_el8+563+4ebf229fSession interface for the Apache HTTP ServerThe mod_session module and associated backends provide an abstract interface for storing and accessing per-user session data.d1x86-04.stream.rdu2.redhat.comWCentOSCentOSASL 2.0builder@centos.orgSystem Environment/Daemonshttps://httpd.apache.org/linuxx86_6499462p_/8_XOXAd1d1d1d1d1d1d1d1d1d1d1d151df0ceeb7dae9922817f4af0554f83fe01d6268025ee08260aeed69be3953d16c4485151da4a62e90198561c75c84defc93d91517bcac4fefe4504367d463fa477a7c3d4b0b7add0fdc208cb34f7a91e99364fbed8e873ae8fe6af6ab4c4e591a5eb844f98c61fe4e8da5e89076e3676ac7e741182a9a93d9db148600452c6d773d8f4393295a27fbf730255a393a09ce0208cff942bd058e78c391061688404d1561db9c0d3d54fd268e578c30f70213d670aa31f3316877ea6bc337e48004../../../../usr/lib64/httpd/modules/mod_session_cookie.so../../../../usr/lib64/httpd/modules/mod_session_crypto.so../../../../usr/lib64/httpd/modules/mod_auth_form.so../../../../usr/lib64/httpd/modules/mod_session_dbd.so../../../../usr/lib64/httpd/modules/mod_session.sorootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.37-61.module_el8+563+4ebf229f.src.rpmconfig(mod_session)mod_sessionmod_session(x86-64)@@@@@@    @config(mod_session)httpdhttpd-mmnlibc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)libpthread.so.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)2.4.37-61.module_el8+563+4ebf229f0:2.4.37-61.module_el8+563+4ebf229f20120211x86643.0.4-14.6.0-14.0-15.2-14.14.3d!d-@d-@d-@doMdJcdcck@cck@c(Ybޅbb2@b8haNaaaawaU`:@`f@`@`@_м@__@_:_^b^(@^@^]]@]߶]҇]@]g@]-@]]@\7\Z@\Yz\T4\\U@[@[[[@[H[u[[[ā@[ā@[ā@[@[@["@[YZ@Z@Z@Yp@Y{Y@Y@YéYéYéYéYX@YYYYx@Ym@YlYf@Ycl@YV=@YGY5GY@YXۡXP@X @X@XwoX[@X[@XEVX)@X@WW~D@W~D@W~D@WKW@VVVVn@VhV.VCV@UK@U@Ua@UF@UQUQTp@T=@T@T @TT_Tk@Tk@S0S@SGS@SS/SS@SSS"@SS5d@S4S&Sz@Sz@S(S@R@RRG@R@R@RsRrF@Ri Re@RVQ@QQޞ@QQo@Q@QQV@Q@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Tomas Korbar - 2.4.37-61Tomas Korbar - 2.4.37-60Tomas Korbar - 2.4.37-59Tomas Korbar - 2.4.37-58Luboš Uhliarik - 2.4.37-57Luboš Uhliarik - 2.4.37-56.5Luboš Uhliarik - 2.4.37-56.4Luboš Uhliarik - 2.4.37-56Luboš Uhliarik - 2.4.37-55Luboš Uhliarik - 2.4.37-54Luboš Uhliarik - 2.4.37-53Tomas Korbar - 2.4.37-52Luboš Uhliarik - 2.4.37-51Luboš Uhliarik - 2.4.37-50Luboš Uhliarik - 2.4.37-49Luboš Uhliarik - 2.4.37-48Luboš Uhliarik - 2.4.37-47Luboš Uhliarik - 2.4.37-46Luboš Uhliarik - 2.4.37-45Luboš Uhliarik - 2.4.37-44Luboš Uhliarik - 2.4.37-43Luboš Uhliarik - 2.4.37-42Luboš Uhliarik - 2.4.37-41Lubos Uhliarik - 2.4.37-40Artem Egorenkov - 2.4.37-39Lubos Uhliarik - 2.4.37-38Lubos Uhliarik - 2.4.37-37Lubos Uhliarik - 2.4.37-36Lubos Uhliarik - 2.4.37-35Lubos Uhliarik - 2.4.37-33Lubos Uhliarik - 2.4.37-31Joe Orton - 2.4.37-30Lubos Uhliarik - 2.4.37-29Lubos Uhliarik - 2.4.37-28Lubos Uhliarik - 2.4.37-27Lubos Uhliarik - 2.4.37-21Lubos Uhliarik - 2.4.37-20Joe Orton - 2.4.37-19Lubos Uhliarik - 2.4.37-18Lubos Uhliarik - 2.4.37-17Lubos Uhliarik - 2.4.37-16Lubos Uhliarik - 2.4.37-15Lubos Uhliarik - 2.4.37-14Lubos Uhliarik - 2.4.37-13Lubos Uhliarik - 2.4.37-11Lubos Uhliarik - 2.4.37-10Lubos Uhliarik - 2.4.37-9Joe Orton - 2.4.37-8Joe Orton - 2.4.37-7Joe Orton - 2.4.37-6Luboš Uhliarik - 2.4.37-5Luboš Uhliarik - 2.4.37-4Luboš Uhliarik - 2.4.37-3Joe Orton - 2.4.37-2Lubos Uhliarik - 2.4.37-1Luboš Uhliarik - 2.4.35-10Lubos Uhliarik - 2.4.35-9Joe Orton - 2.4.35-7Joe Orton - 2.4.35-5Lubos Uhliarik - 2.4.35-4Lubos Uhliarik - 2.4.35-3Lubos Uhliarik - 2.4.35-2Lubos Uhliarik - 2.4.35-1Lubos Uhliarik - 2.4.33-4Joe Orton - 2.4.33-3Luboš Uhliarik - 2.4.33-2Joe Orton - 2.4.28-8Luboš Uhliarik - 2.4.28-2Luboš Uhliarik - 2.4.28-1Joe Orton - 2.4.27-14Joe Orton - 2.4.27-13Joe Orton - 2.4.27-12Stephen Gallagher - 2.4.27-11Jeroen van Meeuwen - 2.4.27-10Joe Orton - 2.4.27-9Jeroen van Meeuwen - 2.4.27-8Stephen Gallagher - 2.4.27-8.1Joe Orton - 2.4.27-8.1Joe Orton - 2.4.27-7Fedora Release Engineering - 2.4.27-6Fedora Release Engineering - 2.4.27-5Joe Orton - 2.4.27-4Joe Orton - 2.4.27-3Luboš Uhliarik - 2.4.27-2Luboš Uhliarik - 2.4.27-1Joe Orton - 2.4.26-2Luboš Uhliarik - 2.4.26-1Joe Orton - 2.4.25-10Joe Orton - 2.4.25-9Joe Orton - 2.4.25-8Luboš Uhliarik - 2.4.25-7Luboš Uhliarik - 2.4.25-6Joe Orton - 2.4.25-5Fedora Release Engineering - 2.4.25-4Joe Orton - 2.4.25-3Luboš Uhliarik - 2.4.25-2Luboš Uhliarik - 2.4.25-1Luboš Uhliarik - 2.4.23-7Joe Orton - 2.4.23-6Joe Orton - 2.4.23-5Joe Orton - 2.4.23-4Joe Orton - 2.4.23-3Joe Orton - 2.4.23-2Joe Orton - 2.4.23-1Joe Orton - 2.4.18-6Joe Orton - 2.4.18-5Joe Orton - 2.4.18-4Joe Orton - 2.4.18-3Fedora Release Engineering - 2.4.18-2Jan Kaluza - 2.4.18-1Joe Orton - 2.4.17-4Jan Kaluza - 2.4.17-3Jan Kaluza - 2.4.17-2Joe Orton - 2.4.17-1Jan Kaluza - 2.4.12-4Joe Orton - 2.4.12-3Fedora Release Engineering - 2.4.12-2Jan Kaluza - 2.4.12-1Jan Kaluza - 2.4.10-17Jan Kaluza - 2.4.10-16Jan Kaluza - 2.4.10-15Joe Orton - 2.4.10-14Jan Kaluza - 2.4.10-13Jan Kaluza - 2.4.10-12Jan Kaluza - 2.4.10-11Jan Kaluza - 2.4.10-10Joe Orton - 2.4.10-9Joe Orton - 2.4.10-8Jan Kaluza - 2.4.10-7Joe Orton - 2.4.10-6Fedora Release Engineering - 2.4.10-5Jan Kaluza - 2.4.10-4Jan Kaluza - 2.4.10-3Joe Orton - 2.4.10-2Joe Orton - 2.4.10-1Jan Kaluza - 2.4.9-8Jan Kaluza - 2.4.9-7Jan Kaluza - 2.4.9-6Joe Orton - 2.4.9-5Fedora Release Engineering - 2.4.9-4Jan Kaluza - 2.4.9-3Jan Kaluza - 2.4.9-2Jan Kaluza - 2.4.9-1Joe Orton - 2.4.7-6Stephen Gallagher 2.4.7-5Jan Kaluza - 2.4.7-4Jan Kaluza - 2.4.7-3Joe Orton - 2.4.7-2Joe Orton - 2.4.7-1Joe Orton - 2.4.6-10Joe Orton - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Joe Orton - 2.4.6-6Jan kaluza - 2.4.6-5Joe Orton - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-7Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Fix issue found by covscan - Related: #2159603- Another rebuild because of mistake in workflow - Related: #2159603- Rebuild because of mistake in workflow - Related: #2159603- Resolves: #2159603 - mod_status lists BusyWorkers IdleWorkers keys twice- Resolves: #2176723 - CVE-2023-27522 httpd:2.4/httpd: mod_proxy_uwsgi HTTP response splitting- Resolves: #2190133 - mod_rewrite regression with CVE-2023-25690- Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy- Resolves: #2162499 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2162485 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2162509 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2155961 - prevent sscg creating /dhparams.pem- Resolves: #2095650 - Dependency from mod_http2 on httpd broken- Resolves: #2050888 - httpd with SSL fails to start unless hostname command was installed- Add the SNI support in mod_proxy_wstunnel module for Apache httpd - Resolves: rhbz#2017543- Resolves: #2097015 - CVE-2022-28614 httpd:2.4/httpd: out-of-bounds read via ap_rwrite() - Resolves: #2097031 - CVE-2022-28615 httpd:2.4/httpd: out-of-bounds read in ap_strcmp_match() - Resolves: #2097458 - CVE-2022-30522 httpd:2.4/httpd: mod_sed: DoS vulnerability - Resolves: #2097480 - CVE-2022-30556 httpd:2.4/httpd: mod_lua: Information disclosure with websockets - Resolves: #2098247 - CVE-2022-31813 httpd:2.4/httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism - Resolves: #2097451 - CVE-2022-29404 httpd:2.4/httpd: mod_lua: DoS in r:parsebody - Resolves: #2096997 - CVE-2022-26377 httpd:2.4/httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2065237 - CVE-2022-22719 httpd:2.4/httpd: mod_lua: Use of uninitialized value of in r:parsebody - Resolves: #2065267 - CVE-2022-22721 httpd:2.4/httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody - Resolves: #2065324 - CVE-2022-23943 httpd:2.4/httpd: mod_sed: Read/write beyond bounds- Resolves: #2090848 - CVE-2020-13950 httpd:2.4/httpd: mod_proxy NULL pointer dereference- Resolves: #2065249 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations- Resolves: #2035063 - CVE-2021-44790 httpd:2.4/httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2007199 - CVE-2021-36160 httpd:2.4/httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path - Resolves: #1972491 - CVE-2021-33193 httpd:2.4/mod_http2: Request splitting via HTTP/2 method injection and mod_proxy- Resolves: #1968278 - CVE-2020-35452 httpd:2.4/httpd: Single zero byte stack overflow in mod_auth_digest - Resolves: #2001046 - Apache httpd OOME with mod_dav in RHEL 8 - Resolves: #2005128 (CVE-2021-34798) - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #1984828 - mod_proxy_hcheck piles up health checks leading to high memory consumption - Resolves: #2005119 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input- Related: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path- Resolves: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path - Resolves: #1969229 - CVE-2021-26691 httpd:2.4/httpd: Heap overflow in mod_session- Resolves: #1680111 - httpd sends reply to HTTPS GET using two TLS records - Resolves: #1905613 - mod_ssl does not like valid certificate chain - Resolves: #1935742 - [RFE] backport samesite/httponly/secure flags for usertrack - Resolves: #1972500 - CVE-2021-30641 httpd:2.4/httpd: MergeSlashes regression - Resolves: #1968307 - CVE-2021-26690 httpd:2.4/httpd: mod_session NULL pointer dereference in parser - Resolves: #1934741 - Apache trademark update - new logo- Resolves: #1952557 - mod_proxy_wstunnel.html is a malformed XML - Resolves: #1937334 - SSLProtocol with based virtual hosts- prevent htcacheclean from while break when first file processed- Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache- Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile to be able to handle certs without matching private key- Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel - Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()- Resolves: #1651376 - centralizing default index.html for httpd- Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool concurrency issues - Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1680118 - unorderly connection close when client attempts renegotiation- Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does not respect expiry time - Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer overflow - Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package - Resolves: #1869576 - httpd : mod_proxy should allow to specify Proxy-Authorization in ProxyRemote directive - Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1891829 - mod_proxy_hcheck Doesn't perform checks when in a balancer- Resolves: #1209162 - support logging to journald from CustomLog- Resolves: #1823263 (CVE-2020-1934) - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Related: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work- Resolves: #1823259 - CVE-2020-1927 httpd:2.4/httpd: mod_rewrite configurations vulnerable to open redirect - Resolves: #1747284 - CVE-2019-10098 httpd:2.4/httpd: mod_rewrite potential open redirect - Resolves: #1747281 - CVE-2019-10092 httpd:2.4/httpd: limited cross-site scripting in mod_proxy error page - Resolves: #1747291 - CVE-2019-10097 httpd:2.4/httpd: null-pointer dereference in mod_remoteip - Resolves: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work - Resolves: #1794728 - Backport of SessionExpiryUpdateInterval directive- Resolves: #1775158 - POST request with TLS 1.3 PHA client auth fails: Re-negotiation handshake failed: Client certificate missing- Resolves: #1704317 - Add support for SSLKEYLOGFILE- mod_cgid: enable fd passing (#1633224)- Resolves: #1744121 - Unexpected OCSP in proxy SSL connection - Resolves: #1725031 - htpasswd: support SHA-x passwords for FIPS compatibility - Resolves: #1633224 - mod_cgid logging issues- remove bundled mod_md module - Related: #1747898 - add mod_md package- Resolves: #1744999 - CVE-2019-9511 httpd:2.4/mod_http2: HTTP/2: large amount of data request leads to denial of service - Resolves: #1745086 - CVE-2019-9516 httpd:2.4/mod_http2: HTTP/2: 0-length headers leads to denial of service - Resolves: #1745154 - CVE-2019-9517 httpd:2.4/mod_http2: HTTP/2: request for large response leads to denial of service- Resolves: #1730721 - absolute path used for default state and runtime dir by default- Resolves: #1724549 - httpd response contains garbage in Content-Type header- Resolves: #1696142 - CVE-2019-0217 httpd:2.4/httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696097 - CVE-2019-0220 httpd:2.4/httpd: URL normalization inconsistency - Resolves: #1669221 - `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang - Resolves: #1673022 - httpd can not be started with mod_md enabled- Resolves: #1695432 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: #1696091 - CVE-2019-0215 httpd:2.4/httpd: mod_ssl: access control bypass when using per-location client certification authentication- Resolves: #1672977 - state-dir corruption on reload- Resolves: #1670716 - Coredump when starting in FIPS mode- add security fix for CVE-2019-0190 (#1671282)- add DefaultStateDir/ap_state_dir_relative() (#1653009) - mod_dav_fs: use state dir for default DAVLockDB - mod_md: use state dir for default MDStoreDir- add httpd.conf(5) (#1611361)- Resolves: #1652966 - Missing RELEASE in http header- Resolves: #1641951 - No Documentation= line in htcacheclean.service files- Resolves: #1643713 - TLS connection allowed while all protocols are forbidden- mod_ssl: fix off-by-one causing crashes in CGI children (#1649428)- Resolves: #1644625 - httpd rebase to 2.4.37- Related: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- mod_ssl: allow sending multiple CA names which differ only in case- mod_ssl: drop SSLRandomSeed from default config (#1638730) - mod_ssl: follow OpenSSL protocol defaults if SSLProtocol is not configured (Rob Crittenden, #1638738)- mod_ssl: don't require SSLCryptoDevice to be set for PKCS#11 cert- Resolves: #1635681 - sync with Fedora 28/29 httpd - comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in default configuration; now follow OpenSSL system default (#1468322) - dropped NPN support - mod_md: change hard-coded default MdStoreDir to state/md (#1563846) - don't block on service try-restart in posttrans scriptlet - build and load mod_brotli - mod_systemd: show bound ports in status and log to journal at startup - updated httpd.service.xml man page - tweak wording in privkey passphrase prompt - drop sslmultiproxy patch - apachectl: don't read /etc/sysconfig/httpd - drop irrelevant Obsoletes for devel subpackage - move instantiated httpd@.service to main httpd package- Resolves: #1602548 - various covscan fixes- apache httpd can work with TLS 1.3 (#1617997) - drop SSLv3 support patch- new version 2.4.35 (#1632754)- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All" configuration (#1622630)- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki, #1527084)- new version 2.4.33 - add mod_md subpackage; load mod_proxy_uwsgi by default- remove %ghosted /etc/sysconfig/httpd (#1572676)- Resolves: #1512563 - httpd: update welcome page branding - Resolves: #1511123 - RFE: httpd use event MPM by default - Resolves: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- new version 2.4.28- add notes on enabling httpd_graceful_shutdown boolean for prefork- drop Requires(post) for mod_ssl- better error handling in httpd-ssl-gencerts (#1494556)- Require sscg 2.2.0 for creating service and CA certificates together- Address CVE-2017-9798 by applying patch from upstream (#1490344)- use sscg defaults; append CA cert to generated cert - document httpd-init.service in httpd-init.service(8)- Address CVE-2017-9798 by applying patch from upstream (#1490344)- Generate SSL certificates on service start, not %posttrans- move httpd.service.d, httpd.socket.d dirs to -filesystem- add new content-length filter (upstream PR 61222)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- update mod_systemd (r1802251)- switch to event by default for Fedora 27 and later (#1471708)- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig- new version 2.4.27- mod_proxy_fcgi: fix further regressions (PR 61202)- new version 2.4.26- move unit man pages to section 8, add as Documentation= in units- add httpd.service(5) and httpd.socket(5) man pages- require mod_http2, now packaged separately- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Resolves: #1434916 - httpd.service: Failed with result timeout- link only httpd, not support/* against -lselinux -lsystemd- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- mod_watchdog: restrict thread lifetime (#1410883)- Resolves: #1358875 - require nghttp2 >= 1.5.0- new version 2.4.25- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of LimitRequestFields directive in mod_http2- fix build with OpenSSL 1.1 (#1392900) - fix typos in ssl.conf (josef randinger, #1379407)- no longer package /etc/sysconfig/httpd - synch ssl.conf with upstream- add security fix for CVE-2016-5387- load mod_watchdog by default (#1353582)- restore build of mod_proxy_fdpass (#1325883) - improve check tests to catch configured-but-not-built modules- update to 2.4.23 (#1325883, #1353203) - load mod_proxy_hcheck - recommend use of "systemctl edit" in httpd.service- have "apachectl graceful" start httpd if not running, per man page- use redirects for lang-specific /manual/ URLs- fix welcome page HTML validity (Ville Skyttä)- remove httpd pre script (duplicate of httpd-filesystem's) - in httpd-filesystem pre script, create group/user iff non-existent- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- update to new version 2.4.18- re-enable mod_asis due to popular demand (#1284315)- fix crash when using -X argument (#1272234)- rebase socket activation patch to 2.4.17- update to 2.4.17 (#1271224) - build, load mod_http2 - don't build mod_asis, mod_file_cache - load mod_cache_socache, mod_proxy_wstunnel by default - check every built mod_* is configured - synch ssl.conf with upstream; disable SSLv3 by default- update to 2.4.16- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- update to 2.4.12- fix compilation with lua-5.3- remove filter for auto-provides of httpd modules, it is not needed since F20- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583) - mod_lua: fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments (CVE-2014-8109)- require apr-util 1.5.x- use NoDelay and DeferAcceptSec in httpd.socket- increase suexec minimum acceptable uid/gid to 1000 (#1136391)- fix hostname requirement and conflict with openssl-libs- use KillMode=mixed in httpd.service (#1135122)- set vstring based on /etc/os-release (Pat Riehecky, #1114539)- pull in httpd-filesystem as Requires(pre) (#1128328) - fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348) - require hostname for mod_ssl post script (#1135118)- mod_systemd: updated to the latest version - use -lsystemd instead of -lsystemd-daemon (#1125084) - fix possible crash in SIGINT handling (#958934)- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119) - switch default ssl.conf to use PROFILE=SYSTEM (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- add /usr/bin/useradd dependency to -filesystem requires- fix creating apache user in pre script (#1128328)- enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf- update to 2.4.10 - expand variables in docdir example configs- add support for systemd socket activation (#1111648)- remove conf.modules.d from httpd-filesystem subpackage (#1081453)- add httpd-filesystem subpackage (#1081453)- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- add support for SetHandler + proxy (#1078970)- move macros from /etc/rpm to macros.d (#1074277) - remove unused patches- update to 2.4.9- use 2048-bit RSA key with SHA-256 signature in dummy certificate- Create drop directory for systemd snippets- remove provides of old MMN, because it contained double-dash (#1068851)- fix graceful restart using legacy actions- conflict with pre-1.5.0 APR - fix sslsninotreq patch- update to 2.4.7 (#1034071)- switch to requiring system-logos-httpd (#1031288)- change mmnisa to drop "-" altogether- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide for transition- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)- systemd: send SIGWINCH signal without httpd -k in ExecStop- load mod_macro by default (#998452) - add README to conf.modules.d - mod_proxy_http: add possible fix for threading issues (r1534321) - core: add fix for truncated output with CGI scripts (r1530793)- require fedora-logos-httpd (#1009162)- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- ignore /etc/sysconfig/httpd and document systemd way of setting env variables in this file- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311) 2.4.37-61.module_el8+563+4ebf229f2.4.37-61.module_el8+563+4ebf229f2.4.37-61.module_el8+563+4ebf229f01-session.conf.build-id5ca5f9138fe3c9900b9455bc4c6c0ddb6b3d4f8929cbe9b4375275575d58786397867c16f291a185ba59174aa26b19eda7b9d2adb0e6efd2034e2c2962ec2a12a488828c120e3f83326f3df2b5b98f26afe8b1557987275ffc742268c7153dmod_auth_form.somod_session.somod_session_cookie.somod_session_crypto.somod_session_dbd.so/etc/httpd/conf.modules.d//usr/lib//usr/lib/.build-id/07//usr/lib/.build-id/3a//usr/lib/.build-id/3b//usr/lib/.build-id/89//usr/lib/.build-id/e4//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3ba185ba59174aa26b19eda7b9d2adb0e6efd203, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e4b5b98f26afe8b1557987275ffc742268c7153d, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=075ca5f9138fe3c9900b9455bc4c6c0ddb6b3d4f, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3a8929cbe9b4375275575d58786397867c16f291, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=894e2c2962ec2a12a488828c120e3f83326f3df2, stripped RRRRR RRRRR RRRRRR RRRRRR RRRRRR utf-8951f81e170cd5e0b205b118419a42f9a5859955c7471f76e3613882747bd546ahttpd:2.4:820230720125714:9edba152?07zXZ !#,w] b2u Q{LV9᳾R{ƞاhɄ@u2T . *Q.E\B|?SbMX]o3^C$t@o"%Qyg+<,'- Ws] věW 3a_Xe#l[9@c,#pV9; Z:U x.z"դtʉD7Δ50mnZ^.?l˭P<*;Uz-j>S.pحߘOezJS0o?W6D&uoZԁY3`/B/uV%ڒt>|֯(!іQ 9+ٛF6sB9*O/)yT c'nEHVei3 Nf~ C{ȂVefv%O|Y82觊4 *'Lǒ̀3}R<싓H;QYwk nJgsTJ6ܶ 6i.dwԓgX~\#]hm.B(oj -)rk֮@:w9( -Vjz|-f޾ v72ߠ!brd"A=u[Q*o'(@LCC3N1_;ݴE*^~b0O:RiF&SɿTڒgRܙo6Z X4~uB bYιA/$\[vȌa4'RXi?қui82Uu9,DHƾddx_ =ӓTw}dy]39(VX5T}ݭcr^.C+busLs{گƷxڣ7գɁ=S7}T1} ?~ {|;KMJFn w"V-o?dS;SԔ,{ț_Iߩz+O/O7+0p8N$,Ӯ~' AU}bʝΗP$=c/aL2od(]i-E{˩HX\icPug#P(,O11y1q/K`ÊXJ~qҕ|q_Rh&lGNX0#f8.HiؔI)~X[h4BFcMh]k*îrG%ZyuĝG}U7=`[GR߼h`S+ PޚRpK>Q$ S5SF}0!c9×Le-p[G Z6H"lԵ@g`c(ceg߉Ppj6~id!5p茾wʝm2܏@-99IMgR^Z0$Z~zM.ˤVYbyrd|Z *~v'J2WcŸ*>Ks30:;~a gb 6%`|J}G73MZ8FeSoS?`Zȷt=H,ps)|cifL0^yWݷ=4bvChGxGE*xƨwiZxo7="}cG'BbWcEw~Q=5sp%O%<,AK>`[jw R{>)?A똷ڰIڞ)k3& TK1,^ԁe"gpޠf߃ 賓KK0ʮM5ztW&Ɛ;^N6t3 w`59 \T{Z0n-^%>tUOn Kܷ.~ịhM6|j ſ&Uh#}ʝ" $7kgBg-v9ǹY{4%[^r2C(F|2hzEzQؓAS!aA|^$6n]Yob\X߱-dsu q?q&IXτ!}ϩw 'G9Hb\_`>hk =UR(C ͙CY§CiKQFOpA0@۸j_L}E 4/\ ,:ɖp<ޡXv>ҹCa2~ksN=TV2wQ7W%$Uѡ[>-?ckO@=h畝l3`Y\*°ج*郫A-2eT9YB߽ ؙrǯ:Dg +R&2]M R:uJ4䷾Y!bzW Sͨ`0a&vQ"vFYZÎ պ \au̷= [+ 5PgfxΎї1M)?5#s]c#iLx1U*Ž)^C28,.n+@IETX/!%yt3p; =rQөDnjwQfG,y&Ӗ[NJnII4Ec?hX!PZ"3 >Z2O6*ue{'>BgY 7l#T~ Ia$JJpApsY[zň?~vqrk`@Xj=:$<ƒvA!$Ot`j?= !d (0PA-^ޱ'u&N*ؽ>ReuqbZה4ƩZ#W} -M:A¯-&e{U.V#UvoR&U-409ýHRmZ\eFlB*ù\%`£+8xCi_AcfF6*r91z{g[#'*R-q;IM| #K җmv5-%XhkpAniX=8=,(kgVHQD/ Au Bjy31Gø]=3@fk2-J[lكq{.T )U[̋c!$[7E\G8 R#H_ 4]Cw9*{ۤ}O Q|ٟVX9Ƕb*7eh,ě=nc,zj`HW[jE~- ՞jQ+luCC~dBj֣7?98ꉧPZW+;-` (kDq ܭ e1ToUM+:Q&Y4X/oqO2 yw q*8ōpӵǜ( -v>n(;9/Y~MbBidNN:O{{nn8޸ϛ)z] 瀞%2ξhh.cɝhHߕ:cQDkmbu?2!DUeڃU$)AuG6j&oޒ)8 wi+L(<ͼxLkqXw luA4 _TVwK^>!Tr5MƁ3:CJߧ)~Li6}Sd$d|SO/S?YӗW%pyCȂIIYZ=.l*z<7Ng!l<Żx9zOHDvr2{"DG\A(T}]IniA~EA /wce`o3І2J*~[gm"Qfb=t3 ^eqࠚg-d4ŨBbEk&(mבEOٿ8Pu u赛Mj7*孭Ul7}Бl"1JΜ7[8qN᷺?Wd#T]1HΛDQ9$<#H}?Ὸpш4,g.,lvF:/7[C#m&f/q0K$]ZN=q&{(zkd<.`W ה|yPeU2H(>^ξY_]웞lmE*!/u_;-=eZVx)_PBH ^9RJ3~M;)FTw쭍 6ex'ٖnb|%~ 8[F5) '+i>JꪐᆀV Ґk^̻ Y3ahoCYj EANdCrRm̬6Eo3Pkzc 2_;9%7: W d#>Ing(c {" ع$ s;q P>Biݣ"MtĪJt c.{]Ve>_#׿ZqqO;}XOsVnnF|ǻNQXkH0yݥ{Rwfa_I]c5:>3Oj"6jWX _g^TkJk; vX##|r%9NF6Y,҅?t+4uY\nD axB3qR2r*8$zwGVD2^F|YV)]F~eÑtOba_ϜP׮ sNk_2Y` uXyTf4Ԋ^ΌKa/vM8D,&^9/DE?|3TQyߘ;"UP(OhV*^> SzE,KkG \ H5 E1q4vnȒ tTwRTTSVJgvsX.)[ډ]v3B7@GL F-?1̉A|Ls'%m22}St-䎩Ս._G>pBڋ" :omow@뎦x=ȤGĂCb%˓;{yo.W4O !zxDt-@|-6.pd1E-O}{/F:/MT)ӃlC XK܌ȜY [ܫj>/ҳ Y)ɞŲñ𖮗U<ђHR߄E3a&A,hA) ףJBn 7#o|Ֆ>*٭R_þ0que7]hn&RGF6D,йɉw|OBa,mrJ4JU;Nk&u]Yb/̆DrHɎjdb힪޶ͫmU*(R_[hĭG3%TfWB4As*]Q07ݵ܂>^JzBǰcպr ;RZY:!&] Iټ"V4P\-v$7qcUj^x=9;G weZOubl83,'yU<<2Dl|)S3dj>[mY^.Is"~Ut4dnF/D[f3Oߑxw {7 ̰oY9b KI@o t!/LaE07 {hnáRpGiN7Q-}FI>%=I%rV9c8F2P` ~oFZbw0VL $;˧?d-{E4 2.jq\6\Gu9x<|<"A*?|Bڀ=P䔹!hi/`Y(~um͉_7\Vi11w?ϧND4Hn!``LTR?tOs3=u%.Z t 59abz 2I5uކό0R>Owֈ^]T8]-&\}|]GL(^#ri2wADtl.z%X1tYig~@x1N"/Z4H?^b֘ `\=ҔKvhBM~VK.@arpn/i^E7]3Y4w!}DKQss\52 =@oѥV'ĥ]6#[GmPL°Th)楑3;Tn+hTe[3%|qswTa[{"Acg*X/F }I'tNcgZj`L;6:Wu0OL2|k>lH_k Ϲ//@Eʎн8R߻)* إɦdS3/j~M.[n3ŷèIg;IRMnBm}.n=~/7*еWּdsUyS|Fi(y}W覾2xUeHTv(-9KdЉkaLoP~8ܻrJ}E,04.[]k~g:8u{e^33܀\ʚS,aF_ZiuLNۤ0dA䒺C{H{MA8=jy`7a(IX~ [bc)&O'R`ϝل< ԏ(@]O 5ɷlut`~i(ތs|*=,h4"+x&k*&uXY xgA@'VpSf&uFM͙\ JAם('4Y=6 &__:&,ͅrf@ҡbpzPzxS{mᓆ3k?_{^"pTDv;ڇxoMe| Ey\N@"KN#Z(H]5fo/#/[IΕ[x}Gwy8k#:"m~"=".le-aֻŚj_m{m7ǎ/6$zv )"xէ!R8"w?dA_Ez^gݏB-G4 U} C YZydqa ~,k-gơGXvpɷQqԤ9iH" " o1D%KMS_ {K y؉Fch]swA(#܆f19(P@* ћ\Cv}@LZ]$3];D D澬Zm#J#o>uwQ(IB_N梖o\Ay~'S3 iʶQ'gJmN R*Ā.1`YЬT]d&z`e@4^yv c Ĩλ5ig_".o}d-O(g]Ӿk-^NK7U߸ĸX%>3h'B_@Q$._#YK_0 >YE\m!WåRj5A X)֡dYgK6K}8Oʷ Gp =%EpRygʬ |oLcK[6?>bJߚ!km+V{шhy5lΠI2~^zVd|m} UאznJ?~*f:%4}:/z9n-& GvlmY @Q[ AqNE)/YeZ}:A#*^ H54n2 m ޠB0_&$~ؗxq.̓_~ ^Pwq̩ ȹ$Nf[E^ ?>%jP%TS>Pjn5>!CCu q]cEu4XF@d _f])1Nnd K"crWg]X t3۫2l:ѠRduy>\ReWa7σF6*@ #k7l৶O1'C;` D sOsa\()}b Q$2 9*,ZTA8biz|Ae#&Zst(nKq@Y4-l^#zQCL-8қyf3) D.W1@5ݣaL*4(Tðplz-a v?c)Ub"(9;d[Nyg>eξ{ J WPgV&b-\NFyy47$R ,#{ȺYLjʒ;z[&}/9 cq8T_g!N>a[nJIV$;gPo _W. 4k_<$S +=-7.n8^dmc=€Nކ!]ʮr+友bI==rfN:sHVdGvme$qjTdꚴfuH.3B gI>+.Pf}n֥b:;NmOŜ D{8vD8NK|;]#ӱhtz̐C#&=?KL(5ĽzE,?p:mLD:Kh?E_ vvG(#ֈ-ܓjPccyWK6Bxz(lt;-޳{RӪA={ wuа֤\ B P4`O  ̵( p*& 4,g[PWM5lûjb}:\Ph>=A)Cߞ瀝 HRJ:5e,m? x3Eatz$zU˧˗9]Tup,a |TKϛDSǵ2YotۗvR2xEyH+<C0R5AK0M?2;)Yrfq2ڴ>lvVao_2semM)]\Rl6&)]F{X8zԮ )aX7):(UDGk+MavOen>WP6F64)QTeSOEdA!L"WiO CD\ [}ɍFlT:KɕPP^L\b{;@&}- .Qn_&Y'ú%<0øRzO|Yt] 8&ޗ&(H u J3늰z {Ԕ,vI`p Bƞ܁B9# LG<,QK 9mQ&I%Yw3?^u.pMFw) `Y贫6)IhB^+gdc[v(ġC3Ġ*v <zO''xk6 [Cy! ooVl=,LoYc/w|iZ1-/zbE&tU'B %NO<%x#{إ K*BHߩ"2^q?I}Hݒ;x01FI3]ZWhn07}udd]YŠB^zagJêN`xP&7glj]ՐJ)ut3؏a̒+u؛C0o\Yޏ@M/];JN|hgg|>ܜ B u:hTpF.EC3VGWKVM(V f, QsG;Ƽk/1FK="DmhӬÍ.Nb)NoSJ򸀼ӌ  ,KmB%rms6/ {6k/Pȗ;je#Ap\L|, ! h:TZ*=߻{6Zŕv#=SCcg+#]wQKR)ZYIR P)^{oT,"dBFv/v"x6V%BBWt-5w[8ƇN~Q)2 ^%4u(ve4 z_%p/urFnr+Ue+lZSlȏix71rc^'fءL+V iE !SX2OX9"hT:l-H@|6S#!_zm@TbiˤP 7v5^UQ^)+ ̾fe{Ț'h }qT@mU5W+=ͩә/ANRә`H-hxC]jGǁX2GXo+f{zǼȭm<83woBɎ?[xQ^9Js6Hj"o:ۿt)8sn#r #P,Q\9hw~vبTdv颯nuGU@ 9a9}$ʵ v:? ~aMq`9rڦ,3Q΍k)ʞm-1A:r~qV ʌj{*C~?g~0\&@Z -*nKBVW/49*J S? * p? mj&) CH@ <hv5dVAʙZjnE1ҌV&Z$JAx95= i7K'9V(uBUx6Ky*U|ȄC#20]ܶfɃW%K+'Kn7]q+^b;}Xc )֝<ij.ǥ^rxNZ6:21U5]3$EViǞem*?R™pfE ]\Uu;~h$UV8iH$ @@2s.Zuy~ lj5p2Uz{甿7VJ1\19pFԒ ӏL>| ;JY}_PHj?y9:? 24ZS,yYMF_ri!~9iZ1v #]FiH七n/2.0IqrMM^D(rG{G/S(jRsL(2>ld\{AnfKˆx~fR!W..W&۷iMHc[+I:ԗR%W ,.UHPθC@%'7|Hd4(FB&eMuKV"uW)(eb?0x>u(?~h*Y}\g];d\5Xy<61/ UզevqO>gl_߲Y`E% }_o#Uf;bd}*Eszz啽xuo݊w>m>wPqU~u1*{g| hSF4"׍\&GT\U Ǒ[+e#~/t) JXzG6[[|Fsщ[ؼ$M%v$SED?=MUǹC4jt}fqw>{0PFCrC#H^塤i>MN)_-@'K<ooYKxE(ld,稐]s6bm'LySW**ƪ9y[S7%id`c^kĽmRjGj#ƽ4'TV(= ^7iJ:?d:[oZ*2?ý5EYl ]RA~ɹ-`i!1EfwX-ݿ`^BJŵ\>7tS<' B)'Q}sd_n*8ɪVQ$XYn:,f\ ~I Z`r =D(jMl})q@=ӷ~UZby+O`>UI5==;;f{z9*nѼ H˦2f9ƒ b?p3wOcT)%~: f ?Σ2mz>18Q“飕o^J. vs|AЀ78,Q 1ꤽ@v2WT?=9oePi6w]>u(+[:\ .)8V|Z”B1|YZ2\{ϋ ֪@I:ngbGIuJ}>WWi7u<\Qgqz&4ޛ_PS䈈:{C)$]nB+F)VX0LjͼEmg:W1L&{ё|;<(IĠ lt$NrGF4ys SlJwTv[N xR2o޿_&(YJpuUD%m(\^KY#3\SRwۂHOŵrqC%qӞg[kFzY7OnA@u )mrcWYB$P$/V~reWoJ ‹!>_MBU\{ḑqxsyH)#L]77g;h!-Q:v$\8 miUi̎j #N.*~oHtBc[Ni[лPZd4:x~n)2Q;2bK:L_'޻vui΅Z";vLXGޅ$µ@ryA,$k\[(lv/CGjl"Dnm+=@@ZA4^Ǯ t&pZjE߬lpx,̥1NR;#}W4;T:yR6OuIzpݳ6V*bA+P Jwjmk/xR=Dph/9i RJmBo5{::nk¼Eo8`X4c\r P(*/B0e}5&Ҕ&Zk^GReLϋl&deX0uw% nR&t~$_+(#3YE;W;ߍe>Ws:_vLl\+Ao6i^f~<[)A@~M,o2NKYB.[5eO= TVϖ랦9nrU"Zb}z/tñE y.8R#Q5[9UaxMɯ懵vnOs XWt3l}[vD3^WA#K>_.a#I0 yMDTW e6(>2o;-ln$.6* ##k -"#i}>n(d`$DR~M{LVbo+FrnlGsov: }8H70/yب)sv!)Klw/'V R^ߏ AYթ-Rb;S)#oK f;y&b0Q10eQ׼ק&Zӓ0cU4R|?NRrJYr{rqycߘ_{q?]ԙ$F ꎯfPR4gS;=Ȑv;!Z]!k G11n6r(<-l@S ~wZ_ bl;P<5!^< ^rd.Ps ERTfJrxB>dYH橱]mrvsWteUʜt E1ԥgѺǐ# yڗ^);'S0{׋EbyG r۩ U^5FЏGMq=J)$`TDSYaSCwzMCӅ hT;V!{6P.>lC9q)6?N&E˂*dA~Ч΋Z%ӹQ_:,rW)`r@oz(QWK tIp\W䢰6ъ9~62c3[zGjP@sWszA\zYɢPC! ]n`@p١q/joϽ6\%oaRC(+\>U3^ ',Nכryi9KB u oGlE·(`} 9j-DΡ a?*%D;#)!#$^d.p ܲl/׎6 G<(ÐfNt#la^'r뇳vE #D@u~dF~ /F򅪚8+e+wO}nx( l'׾ bJ[GJ_cO8D䤌Uuq{_8YVE =N{l<Z5}4iTA*6ӧUr&_4k[XN1OO-klG _H=Om{> C73t,bb_JM?qlp\23eUk,^΅$45oj,HRg" h /&e`pXX9Ue&dA*/!g]">`pLh`Z<>2Aj9+7<ԏ5WIqe,ja/ڕOi*sc3^ =pa`T; ƕV=eu*Gnj9B(.3- fΜ\g"1RD4j>^:0\95pNx;aDgMS˰= =ʻr-5]j?jW0/vWB?d4|JhPX! 凱Ґh-i0ՌEo]Q@-y3o'rS' >a[z߁:;1.UFsDuG<퀳q\(Z38}9ꩲ#uyShm B!Rr6~{Bq L)p'eEPY!W'ÅIGNt:Η 6[% sՅ9r7Pڕn=䒛 Kd7)}Jo.շĬ%mXd60FV5k%P]\ ?ݧoe9J}|jht }оn@ l XGҒiC 7LuF7+{@]ceUB%ڻmQ ve\'XaPn,txTS+ nrp'~K|h[azs6a޶t1{*]mS;)LiTk]gmCoqDY $oAsm\Sn==''LKN[y>9Tyz' /@NFi?C[sCi 9QAM! 7_b&a{ YS0xd(G{oz-Jn9OAU ؎YkC; 8~! w5 1Dܮ y[k#0U5z#nn S9 I|b֌KU!Ywi:kBv{_0~4>kVؿET֬TT~k#J4uvtꜣ*8oHDGZIp塚)sg/㬑bY8IjrO'<ʹ)~QWJ뢁ܴl1!j B@߼{V5]M9ޥ9t=eCsk{{d^$iJ)AFd&%pG Yȃ"Z*d/-Zna J(y` SJbI}8MJY+JͱM_kCw8.#>C]2oPrGiX`hѝK-yz@3 䴿R>^L)Ɯ6R5xw^IJ08Z}>"ӧHufeĖXŊ9 ׸,"]36Q M*9gOѩX˅F=KF.ˊOϤ`EDTJT5<A\m-Y}v?I; 2ףo?`sJ's3G9V}L(]O%~d! c@1 :휩vV*QvI [>a` o f; 7A;NbQů0awXK3 9:Gs_kslJ٨AֵBg/,uDl)amm,'ˇͨM4 LKY05dvMG@8L2(:@+D`f m(^P\$▢3 vƈ|ZȊFPm6;'#[!#̐-DFNF=+9:Gx\OlJ2H;IDZMtd'rfB)̶Axâ@ڹ'ִБ3~.l~܂%&*NؖL!$aq ϑ]7bE&I3Jowf }],Y܈ǶǴ{֑EakΫ>y=n\|s=])l@W(a-Ml|T_Y*F^5sW{=ZYOY5,OސCw3I2 d2$'`5.,{}>"t Úh;yڊUx q8"o\dA>d#j '|6/cl16J2Rm^*fv'|ːs[0QuDQrB^8sl䭰iKv4=BaUMr˯8u[x 5⃾RzDW``~Oi/K~_r;u#Ë4bFf?F0r!6`g=*&G V_ƻߜ0lC=0G+o=YYG{kYlU(o|fiq%@/CyYvTTLMDG0]*TW)7l"n@hJ8ĭHt*gJWF'־$a6,ݽKrSR*Hhq Pƀ3b|X)g/NH1f LӻCI&vܖmZ= )U'\PY?}o&ZDЃam^A;nAQ'9XU+p~qq+bFV:zީ;u Ʉw0#n˺<1%OL339:9.tU&(ckՕٯ{Dd.x]}܏SJBP]| |ϸL#)%BˮPZ@9$%}oxRI4H;;[379?;#zn\j7=g?UPbO^sp;zXG*]>0t}Ag{ROD(\X/C0ԃ뗺-)?MPybHH%&JnrΧî4fB@<$db`Te;Ma_ݴCMtmFbQqT YNm:OՓ*֧UfWڅ&'N%aQ9Fk{>^_3] :{$u1@0NbZTt5ڗUT&ȺN"-xhaPGd)2I;pjD7"IDNY2Ƃl,. cjsPOTEYp> Ej;//)|i1DWiU]BPB=.J,8Y_[;gϾL! Vf**(eǽIk8-}ZBG[/a_B.ƱhQxtievu؈eƳa[2&>fNIw iɴ5mZzыŦ nɒKs1CF&D$IEoait:lH d i(I?+O8Wkʏ(HsTE!)XVa- re6s? ~_UHǬ8 y`Q N+b4| 橏Ay[I$܌ З;uvx*bM5y!8)iT}/9 eQU@C6Jԏʬ^CB~Pq<s1v>1^X,ʠwD_QjQJ!ٮmcUDWhA1țh*͝wTշ[)Q ]L,.h0 R]FDt!Gpcop\qQRM`[D^Ձ/pQ@g;<*F.mϣ4xډL4LM3R>E<,)Ibzx֫b=Ѝ[bܥ?M4ODw9\GhN_#}qQ:;O f\L&x5PbIrAvB"݄?⅀ϙ>PgIC ʰ\aQZq4eC8R 8`Jz؁CDٻڞ-#}Գ 4ǃ;p{x0jW"kgZ}S,HfRMՓYh@zٛ9O<_1&tYiy8?Y9Wsǵ{. 0c/"`3N5c5YZߘ E9<9N@ht)`1,aqu[$>ǕT͜Î qp>ҋh˭6o|L ְeW8]wD{F ;S~EBfr/6kl5Q yCuC&@JeO<[\=]DVf/(ȝÉb-rdhpX ;4:<[\6S:I7չY-""[?-SÐ-2`~9s57aFMv;D%.o' 8NXa%3P?覛OaȊn 3"g\InE WA ms+fE,Q$ߑT;t^-D8)y'l@r \{WDGH@"RY3V9rahyVB;!'( s3B{6M `LLJH|_O'!")ğx?Cn/ H$9+ di~(/Ł=ʥa{ЬQP0nKC+6E>5e޻hgz@1,$KJj9xyVgTBHk}cA)ȇ(EaTQݑ6a W§wc V'7[%s: 3e{/<-hl%tw4{\(߸t \ U8ej1A^Lc!te8E}:3fãa+_8]H20ض YZ