mod_session-2.4.37-62.module_el8+657+88b2113f >  H d U]D~w&3dH m`F',=Lh|bGXYCH@YqS n(i@͉ [fbLpC| H0ˇV뗀ee<2ڀ&{0]6Pz /.N6m*/_DTzt 8ݨ EW,9s<f'5Uj<\V<oRz@ PWXr tmVL4k}"7r ~^ܲ;]cǁR K#;36 X@ݙBsl/Iޢm3^!|Ѷ`.f /FQOO8f8[W^*d΢#GtEBQҍsR4RI 0]V8cǝ. 6A+1_@+ok's~2eh=0~ Uh259d4273dea4f684e21f14847b0bf8eeece454716e1a088ecddf8536eeb6a865684bddc105c94de1318d418ff0be27c87ae9ff2a7"d U] XQ&_~QD'F%.~1¡1ɿ:ϛ^PPmTDSA=pfD{ p>p=g?Wd 0 ]  -Hbhp              P Q(89 :8Gl H I XY\L ]| ^bjdeflt u v<w xD yt04Cmod_session2.4.3762.module_el8+657+88b2113fSession interface for the Apache HTTP ServerThe mod_session module and associated backends provide an abstract interface for storing and accessing per-user session data.d)x86-02.stream.rdu2.redhat.comOCentOSCentOSASL 2.0builder@centos.orgSystem Environment/Daemonshttps://httpd.apache.org/linuxx86_6469942h_/8_XOXAd)ad)d)d)d)d)d)d)d)d)d)d)51df0ceeb7dae9922817f4af0554f83fe01d6268025ee08260aeed69be3953d11d4eb05e05aa29f0f91357947fbbd7d9b4fb3c57111b08df5cb682056e50dd92aa3d7d477f92742299bfe4f1cc264f48951a9df3ea2f3afa13ffc4c1e35fa0c539c92b75f732c3aba691b2d5324c9710148408e37cebbb35f476d5c4b04f61f411d351da2a101e46c1540586209482e24832037551e555bbbe1e9d5c50eaf04e8eb58277951238d0fad1b283359759e42c778131e7202008987249c25f513778../../../../usr/lib64/httpd/modules/mod_session_dbd.so../../../../usr/lib64/httpd/modules/mod_session_cookie.so../../../../usr/lib64/httpd/modules/mod_session_crypto.so../../../../usr/lib64/httpd/modules/mod_auth_form.so../../../../usr/lib64/httpd/modules/mod_session.sorootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.37-62.module_el8+657+88b2113f.src.rpmconfig(mod_session)mod_sessionmod_session(x86-64)@@@@@@    @config(mod_session)httpdhttpd-mmnlibc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)libpthread.so.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)2.4.37-62.module_el8+657+88b2113f0:2.4.37-62.module_el8+657+88b2113f20120211x86643.0.4-14.6.0-14.0-15.2-14.14.3d d\@d!d-@d-@d-@doMdJcdcck@cck@c(Ybޅbb2@b8haNaaaawaU`:@`f@`@`@_м@__@_:_^b^(@^@^]]@]߶]҇]@]g@]-@]]@\7\Z@\Yz\T4\\U@[@[[[@[H[u[[[ā@[ā@[ā@[@[@["@[YZ@Z@Z@Yp@Y{Y@Y@YéYéYéYéYX@YYYYx@Ym@YlYf@Ycl@YV=@YGY5GY@YXۡXP@X @X@XwoX[@X[@XEVX)@X@WW~D@W~D@W~D@WKW@VVVVn@VhV.VCV@UK@U@Ua@UF@UQUQTp@T=@T@T @TT_Tk@Tk@S0S@SGS@SS/SS@SSS"@SS5d@S4S&Sz@Sz@S(S@R@RRG@R@R@RsRrF@Ri Re@RVQ@QQޞ@QQo@Q@QQV@Q@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Johnny Hughes - 2.4.37-62Luboš Uhliarik - 2.4.37-62Tomas Korbar - 2.4.37-61Tomas Korbar - 2.4.37-60Tomas Korbar - 2.4.37-59Tomas Korbar - 2.4.37-58Luboš Uhliarik - 2.4.37-57Luboš Uhliarik - 2.4.37-56.5Luboš Uhliarik - 2.4.37-56.4Luboš Uhliarik - 2.4.37-56Luboš Uhliarik - 2.4.37-55Luboš Uhliarik - 2.4.37-54Luboš Uhliarik - 2.4.37-53Tomas Korbar - 2.4.37-52Luboš Uhliarik - 2.4.37-51Luboš Uhliarik - 2.4.37-50Luboš Uhliarik - 2.4.37-49Luboš Uhliarik - 2.4.37-48Luboš Uhliarik - 2.4.37-47Luboš Uhliarik - 2.4.37-46Luboš Uhliarik - 2.4.37-45Luboš Uhliarik - 2.4.37-44Luboš Uhliarik - 2.4.37-43Luboš Uhliarik - 2.4.37-42Luboš Uhliarik - 2.4.37-41Lubos Uhliarik - 2.4.37-40Artem Egorenkov - 2.4.37-39Lubos Uhliarik - 2.4.37-38Lubos Uhliarik - 2.4.37-37Lubos Uhliarik - 2.4.37-36Lubos Uhliarik - 2.4.37-35Lubos Uhliarik - 2.4.37-33Lubos Uhliarik - 2.4.37-31Joe Orton - 2.4.37-30Lubos Uhliarik - 2.4.37-29Lubos Uhliarik - 2.4.37-28Lubos Uhliarik - 2.4.37-27Lubos Uhliarik - 2.4.37-21Lubos Uhliarik - 2.4.37-20Joe Orton - 2.4.37-19Lubos Uhliarik - 2.4.37-18Lubos Uhliarik - 2.4.37-17Lubos Uhliarik - 2.4.37-16Lubos Uhliarik - 2.4.37-15Lubos Uhliarik - 2.4.37-14Lubos Uhliarik - 2.4.37-13Lubos Uhliarik - 2.4.37-11Lubos Uhliarik - 2.4.37-10Lubos Uhliarik - 2.4.37-9Joe Orton - 2.4.37-8Joe Orton - 2.4.37-7Joe Orton - 2.4.37-6Luboš Uhliarik - 2.4.37-5Luboš Uhliarik - 2.4.37-4Luboš Uhliarik - 2.4.37-3Joe Orton - 2.4.37-2Lubos Uhliarik - 2.4.37-1Luboš Uhliarik - 2.4.35-10Lubos Uhliarik - 2.4.35-9Joe Orton - 2.4.35-7Joe Orton - 2.4.35-5Lubos Uhliarik - 2.4.35-4Lubos Uhliarik - 2.4.35-3Lubos Uhliarik - 2.4.35-2Lubos Uhliarik - 2.4.35-1Lubos Uhliarik - 2.4.33-4Joe Orton - 2.4.33-3Luboš Uhliarik - 2.4.33-2Joe Orton - 2.4.28-8Luboš Uhliarik - 2.4.28-2Luboš Uhliarik - 2.4.28-1Joe Orton - 2.4.27-14Joe Orton - 2.4.27-13Joe Orton - 2.4.27-12Stephen Gallagher - 2.4.27-11Jeroen van Meeuwen - 2.4.27-10Joe Orton - 2.4.27-9Jeroen van Meeuwen - 2.4.27-8Stephen Gallagher - 2.4.27-8.1Joe Orton - 2.4.27-8.1Joe Orton - 2.4.27-7Fedora Release Engineering - 2.4.27-6Fedora Release Engineering - 2.4.27-5Joe Orton - 2.4.27-4Joe Orton - 2.4.27-3Luboš Uhliarik - 2.4.27-2Luboš Uhliarik - 2.4.27-1Joe Orton - 2.4.26-2Luboš Uhliarik - 2.4.26-1Joe Orton - 2.4.25-10Joe Orton - 2.4.25-9Joe Orton - 2.4.25-8Luboš Uhliarik - 2.4.25-7Luboš Uhliarik - 2.4.25-6Joe Orton - 2.4.25-5Fedora Release Engineering - 2.4.25-4Joe Orton - 2.4.25-3Luboš Uhliarik - 2.4.25-2Luboš Uhliarik - 2.4.25-1Luboš Uhliarik - 2.4.23-7Joe Orton - 2.4.23-6Joe Orton - 2.4.23-5Joe Orton - 2.4.23-4Joe Orton - 2.4.23-3Joe Orton - 2.4.23-2Joe Orton - 2.4.23-1Joe Orton - 2.4.18-6Joe Orton - 2.4.18-5Joe Orton - 2.4.18-4Joe Orton - 2.4.18-3Fedora Release Engineering - 2.4.18-2Jan Kaluza - 2.4.18-1Joe Orton - 2.4.17-4Jan Kaluza - 2.4.17-3Jan Kaluza - 2.4.17-2Joe Orton - 2.4.17-1Jan Kaluza - 2.4.12-4Joe Orton - 2.4.12-3Fedora Release Engineering - 2.4.12-2Jan Kaluza - 2.4.12-1Jan Kaluza - 2.4.10-17Jan Kaluza - 2.4.10-16Jan Kaluza - 2.4.10-15Joe Orton - 2.4.10-14Jan Kaluza - 2.4.10-13Jan Kaluza - 2.4.10-12Jan Kaluza - 2.4.10-11Jan Kaluza - 2.4.10-10Joe Orton - 2.4.10-9Joe Orton - 2.4.10-8Jan Kaluza - 2.4.10-7Joe Orton - 2.4.10-6Fedora Release Engineering - 2.4.10-5Jan Kaluza - 2.4.10-4Jan Kaluza - 2.4.10-3Joe Orton - 2.4.10-2Joe Orton - 2.4.10-1Jan Kaluza - 2.4.9-8Jan Kaluza - 2.4.9-7Jan Kaluza - 2.4.9-6Joe Orton - 2.4.9-5Fedora Release Engineering - 2.4.9-4Jan Kaluza - 2.4.9-3Jan Kaluza - 2.4.9-2Jan Kaluza - 2.4.9-1Joe Orton - 2.4.7-6Stephen Gallagher 2.4.7-5Jan Kaluza - 2.4.7-4Jan Kaluza - 2.4.7-3Joe Orton - 2.4.7-2Joe Orton - 2.4.7-1Joe Orton - 2.4.6-10Joe Orton - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Joe Orton - 2.4.6-6Jan kaluza - 2.4.6-5Joe Orton - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-7Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- change for CentOS Stream Branding- Resolves: #2221083 - Apache Bug 57087: mod_proxy_fcgi doesn't send cgi CONTENT_LENGTH variable when the client request used Transfer-Encoding:chunked- Fix issue found by covscan - Related: #2159603- Another rebuild because of mistake in workflow - Related: #2159603- Rebuild because of mistake in workflow - Related: #2159603- Resolves: #2159603 - mod_status lists BusyWorkers IdleWorkers keys twice- Resolves: #2176723 - CVE-2023-27522 httpd:2.4/httpd: mod_proxy_uwsgi HTTP response splitting- Resolves: #2190133 - mod_rewrite regression with CVE-2023-25690- Resolves: #2177748 - CVE-2023-25690 httpd:2.4/httpd: HTTP request splitting with mod_rewrite and mod_proxy- Resolves: #2162499 - CVE-2006-20001 httpd: mod_dav: out-of-bounds read/write of zero byte - Resolves: #2162485 - CVE-2022-37436 httpd: mod_proxy: HTTP response splitting - Resolves: #2162509 - CVE-2022-36760 httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2155961 - prevent sscg creating /dhparams.pem- Resolves: #2095650 - Dependency from mod_http2 on httpd broken- Resolves: #2050888 - httpd with SSL fails to start unless hostname command was installed- Add the SNI support in mod_proxy_wstunnel module for Apache httpd - Resolves: rhbz#2017543- Resolves: #2097015 - CVE-2022-28614 httpd:2.4/httpd: out-of-bounds read via ap_rwrite() - Resolves: #2097031 - CVE-2022-28615 httpd:2.4/httpd: out-of-bounds read in ap_strcmp_match() - Resolves: #2097458 - CVE-2022-30522 httpd:2.4/httpd: mod_sed: DoS vulnerability - Resolves: #2097480 - CVE-2022-30556 httpd:2.4/httpd: mod_lua: Information disclosure with websockets - Resolves: #2098247 - CVE-2022-31813 httpd:2.4/httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism - Resolves: #2097451 - CVE-2022-29404 httpd:2.4/httpd: mod_lua: DoS in r:parsebody - Resolves: #2096997 - CVE-2022-26377 httpd:2.4/httpd: mod_proxy_ajp: Possible request smuggling- Resolves: #2065237 - CVE-2022-22719 httpd:2.4/httpd: mod_lua: Use of uninitialized value of in r:parsebody - Resolves: #2065267 - CVE-2022-22721 httpd:2.4/httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody - Resolves: #2065324 - CVE-2022-23943 httpd:2.4/httpd: mod_sed: Read/write beyond bounds- Resolves: #2090848 - CVE-2020-13950 httpd:2.4/httpd: mod_proxy NULL pointer dereference- Resolves: #2065249 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations- Resolves: #2035063 - CVE-2021-44790 httpd:2.4/httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2007199 - CVE-2021-36160 httpd:2.4/httpd: mod_proxy_uwsgi: out-of-bounds read via a crafted request uri-path - Resolves: #1972491 - CVE-2021-33193 httpd:2.4/mod_http2: Request splitting via HTTP/2 method injection and mod_proxy- Resolves: #1968278 - CVE-2020-35452 httpd:2.4/httpd: Single zero byte stack overflow in mod_auth_digest - Resolves: #2001046 - Apache httpd OOME with mod_dav in RHEL 8 - Resolves: #2005128 (CVE-2021-34798) - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #1984828 - mod_proxy_hcheck piles up health checks leading to high memory consumption - Resolves: #2005119 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input- Related: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path- Resolves: #2007236 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path - Resolves: #1969229 - CVE-2021-26691 httpd:2.4/httpd: Heap overflow in mod_session- Resolves: #1680111 - httpd sends reply to HTTPS GET using two TLS records - Resolves: #1905613 - mod_ssl does not like valid certificate chain - Resolves: #1935742 - [RFE] backport samesite/httponly/secure flags for usertrack - Resolves: #1972500 - CVE-2021-30641 httpd:2.4/httpd: MergeSlashes regression - Resolves: #1968307 - CVE-2021-26690 httpd:2.4/httpd: mod_session NULL pointer dereference in parser - Resolves: #1934741 - Apache trademark update - new logo- Resolves: #1952557 - mod_proxy_wstunnel.html is a malformed XML - Resolves: #1937334 - SSLProtocol with based virtual hosts- prevent htcacheclean from while break when first file processed- Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache- Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile to be able to handle certs without matching private key- Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel - Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()- Resolves: #1651376 - centralizing default index.html for httpd- Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool concurrency issues - Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1680118 - unorderly connection close when client attempts renegotiation- Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does not respect expiry time - Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer overflow - Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package - Resolves: #1869576 - httpd : mod_proxy should allow to specify Proxy-Authorization in ProxyRemote directive - Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1891829 - mod_proxy_hcheck Doesn't perform checks when in a balancer- Resolves: #1209162 - support logging to journald from CustomLog- Resolves: #1823263 (CVE-2020-1934) - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Related: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work- Resolves: #1823259 - CVE-2020-1927 httpd:2.4/httpd: mod_rewrite configurations vulnerable to open redirect - Resolves: #1747284 - CVE-2019-10098 httpd:2.4/httpd: mod_rewrite potential open redirect - Resolves: #1747281 - CVE-2019-10092 httpd:2.4/httpd: limited cross-site scripting in mod_proxy error page - Resolves: #1747291 - CVE-2019-10097 httpd:2.4/httpd: null-pointer dereference in mod_remoteip - Resolves: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work - Resolves: #1794728 - Backport of SessionExpiryUpdateInterval directive- Resolves: #1775158 - POST request with TLS 1.3 PHA client auth fails: Re-negotiation handshake failed: Client certificate missing- Resolves: #1704317 - Add support for SSLKEYLOGFILE- mod_cgid: enable fd passing (#1633224)- Resolves: #1744121 - Unexpected OCSP in proxy SSL connection - Resolves: #1725031 - htpasswd: support SHA-x passwords for FIPS compatibility - Resolves: #1633224 - mod_cgid logging issues- remove bundled mod_md module - Related: #1747898 - add mod_md package- Resolves: #1744999 - CVE-2019-9511 httpd:2.4/mod_http2: HTTP/2: large amount of data request leads to denial of service - Resolves: #1745086 - CVE-2019-9516 httpd:2.4/mod_http2: HTTP/2: 0-length headers leads to denial of service - Resolves: #1745154 - CVE-2019-9517 httpd:2.4/mod_http2: HTTP/2: request for large response leads to denial of service- Resolves: #1730721 - absolute path used for default state and runtime dir by default- Resolves: #1724549 - httpd response contains garbage in Content-Type header- Resolves: #1696142 - CVE-2019-0217 httpd:2.4/httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696097 - CVE-2019-0220 httpd:2.4/httpd: URL normalization inconsistency - Resolves: #1669221 - `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang - Resolves: #1673022 - httpd can not be started with mod_md enabled- Resolves: #1695432 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: #1696091 - CVE-2019-0215 httpd:2.4/httpd: mod_ssl: access control bypass when using per-location client certification authentication- Resolves: #1672977 - state-dir corruption on reload- Resolves: #1670716 - Coredump when starting in FIPS mode- add security fix for CVE-2019-0190 (#1671282)- add DefaultStateDir/ap_state_dir_relative() (#1653009) - mod_dav_fs: use state dir for default DAVLockDB - mod_md: use state dir for default MDStoreDir- add httpd.conf(5) (#1611361)- Resolves: #1652966 - Missing RELEASE in http header- Resolves: #1641951 - No Documentation= line in htcacheclean.service files- Resolves: #1643713 - TLS connection allowed while all protocols are forbidden- mod_ssl: fix off-by-one causing crashes in CGI children (#1649428)- Resolves: #1644625 - httpd rebase to 2.4.37- Related: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- mod_ssl: allow sending multiple CA names which differ only in case- mod_ssl: drop SSLRandomSeed from default config (#1638730) - mod_ssl: follow OpenSSL protocol defaults if SSLProtocol is not configured (Rob Crittenden, #1638738)- mod_ssl: don't require SSLCryptoDevice to be set for PKCS#11 cert- Resolves: #1635681 - sync with Fedora 28/29 httpd - comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in default configuration; now follow OpenSSL system default (#1468322) - dropped NPN support - mod_md: change hard-coded default MdStoreDir to state/md (#1563846) - don't block on service try-restart in posttrans scriptlet - build and load mod_brotli - mod_systemd: show bound ports in status and log to journal at startup - updated httpd.service.xml man page - tweak wording in privkey passphrase prompt - drop sslmultiproxy patch - apachectl: don't read /etc/sysconfig/httpd - drop irrelevant Obsoletes for devel subpackage - move instantiated httpd@.service to main httpd package- Resolves: #1602548 - various covscan fixes- apache httpd can work with TLS 1.3 (#1617997) - drop SSLv3 support patch- new version 2.4.35 (#1632754)- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All" configuration (#1622630)- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki, #1527084)- new version 2.4.33 - add mod_md subpackage; load mod_proxy_uwsgi by default- remove %ghosted /etc/sysconfig/httpd (#1572676)- Resolves: #1512563 - httpd: update welcome page branding - Resolves: #1511123 - RFE: httpd use event MPM by default - Resolves: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- new version 2.4.28- add notes on enabling httpd_graceful_shutdown boolean for prefork- drop Requires(post) for mod_ssl- better error handling in httpd-ssl-gencerts (#1494556)- Require sscg 2.2.0 for creating service and CA certificates together- Address CVE-2017-9798 by applying patch from upstream (#1490344)- use sscg defaults; append CA cert to generated cert - document httpd-init.service in httpd-init.service(8)- Address CVE-2017-9798 by applying patch from upstream (#1490344)- Generate SSL certificates on service start, not %posttrans- move httpd.service.d, httpd.socket.d dirs to -filesystem- add new content-length filter (upstream PR 61222)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- update mod_systemd (r1802251)- switch to event by default for Fedora 27 and later (#1471708)- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig- new version 2.4.27- mod_proxy_fcgi: fix further regressions (PR 61202)- new version 2.4.26- move unit man pages to section 8, add as Documentation= in units- add httpd.service(5) and httpd.socket(5) man pages- require mod_http2, now packaged separately- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Resolves: #1434916 - httpd.service: Failed with result timeout- link only httpd, not support/* against -lselinux -lsystemd- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- mod_watchdog: restrict thread lifetime (#1410883)- Resolves: #1358875 - require nghttp2 >= 1.5.0- new version 2.4.25- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of LimitRequestFields directive in mod_http2- fix build with OpenSSL 1.1 (#1392900) - fix typos in ssl.conf (josef randinger, #1379407)- no longer package /etc/sysconfig/httpd - synch ssl.conf with upstream- add security fix for CVE-2016-5387- load mod_watchdog by default (#1353582)- restore build of mod_proxy_fdpass (#1325883) - improve check tests to catch configured-but-not-built modules- update to 2.4.23 (#1325883, #1353203) - load mod_proxy_hcheck - recommend use of "systemctl edit" in httpd.service- have "apachectl graceful" start httpd if not running, per man page- use redirects for lang-specific /manual/ URLs- fix welcome page HTML validity (Ville Skyttä)- remove httpd pre script (duplicate of httpd-filesystem's) - in httpd-filesystem pre script, create group/user iff non-existent- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- update to new version 2.4.18- re-enable mod_asis due to popular demand (#1284315)- fix crash when using -X argument (#1272234)- rebase socket activation patch to 2.4.17- update to 2.4.17 (#1271224) - build, load mod_http2 - don't build mod_asis, mod_file_cache - load mod_cache_socache, mod_proxy_wstunnel by default - check every built mod_* is configured - synch ssl.conf with upstream; disable SSLv3 by default- update to 2.4.16- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- update to 2.4.12- fix compilation with lua-5.3- remove filter for auto-provides of httpd modules, it is not needed since F20- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583) - mod_lua: fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments (CVE-2014-8109)- require apr-util 1.5.x- use NoDelay and DeferAcceptSec in httpd.socket- increase suexec minimum acceptable uid/gid to 1000 (#1136391)- fix hostname requirement and conflict with openssl-libs- use KillMode=mixed in httpd.service (#1135122)- set vstring based on /etc/os-release (Pat Riehecky, #1114539)- pull in httpd-filesystem as Requires(pre) (#1128328) - fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348) - require hostname for mod_ssl post script (#1135118)- mod_systemd: updated to the latest version - use -lsystemd instead of -lsystemd-daemon (#1125084) - fix possible crash in SIGINT handling (#958934)- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119) - switch default ssl.conf to use PROFILE=SYSTEM (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- add /usr/bin/useradd dependency to -filesystem requires- fix creating apache user in pre script (#1128328)- enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf- update to 2.4.10 - expand variables in docdir example configs- add support for systemd socket activation (#1111648)- remove conf.modules.d from httpd-filesystem subpackage (#1081453)- add httpd-filesystem subpackage (#1081453)- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- add support for SetHandler + proxy (#1078970)- move macros from /etc/rpm to macros.d (#1074277) - remove unused patches- update to 2.4.9- use 2048-bit RSA key with SHA-256 signature in dummy certificate- Create drop directory for systemd snippets- remove provides of old MMN, because it contained double-dash (#1068851)- fix graceful restart using legacy actions- conflict with pre-1.5.0 APR - fix sslsninotreq patch- update to 2.4.7 (#1034071)- switch to requiring system-logos-httpd (#1031288)- change mmnisa to drop "-" altogether- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide for transition- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)- systemd: send SIGWINCH signal without httpd -k in ExecStop- load mod_macro by default (#998452) - add README to conf.modules.d - mod_proxy_http: add possible fix for threading issues (r1534321) - core: add fix for truncated output with CGI scripts (r1530793)- require fedora-logos-httpd (#1009162)- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- ignore /etc/sysconfig/httpd and document systemd way of setting env variables in this file- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311) 2.4.37-62.module_el8+657+88b2113f2.4.37-62.module_el8+657+88b2113f2.4.37-62.module_el8+657+88b2113f01-session.conf.build-id472fa29f2ad2fdb9fa642d5f4c11e90c50e04ad3b7c76191618d31d8b219168048a6192cd9ab28fc5b8850fe1c8a80f730af53638a1f8c07e5a81b51ada4d8b0ef4d20dd1d16aee55c56971a8fffaa4ec31bbdafeaf4cd67ea5112faa3a78bmod_auth_form.somod_session.somod_session_cookie.somod_session_crypto.somod_session_dbd.so/etc/httpd/conf.modules.d//usr/lib//usr/lib/.build-id/3e//usr/lib/.build-id/5e//usr/lib/.build-id/bf//usr/lib/.build-id/df//usr/lib/.build-id/e4//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=dfa81b51ada4d8b0ef4d20dd1d16aee55c56971a, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e48fffaa4ec31bbdafeaf4cd67ea5112faa3a78b, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5ed3b7c76191618d31d8b219168048a6192cd9ab, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=bf28fc5b8850fe1c8a80f730af53638a1f8c07e5, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3e472fa29f2ad2fdb9fa642d5f4c11e90c50e04a, stripped RRRRR RRRRR RRRRRR RRRRRR RRRRRR utf-86232f8f6dc7d5dc62462167f992d1fcd6175acb37260a5297d1cf7a494fb581fhttpd:2.4:820230817140043:9edba152?07zXZ !#,o] b2u Q{LVyS_YtDvC5@Gw@UjZ$Vtפ.)BdzUm7-ͩ ;[)-YnޡK L9`:{|iƝt\Ŭj&28_/8ƓPT1|V+ȏ̲&n "+.i1=k&EX`f#=NDg-΋gI4=W?gƉ1;bP;Խ8cyzm[P;"n |͒]6@ӎ:Kd*׉Ok/8݃|kϞտ9"ϵUvptnをJđ%f%1O25Hxtb'n0u. $MFـIp//xc8 > 8w.2ʦϪ{6CpN ;4]N\zJ[bP5ϒk}{;9ۜ%uoF8Vkm? ve9iO} (VC8 @ H+VvGe!/lF19Zxhf)[H5H.ݧ{d2:S]6%tǺZ2!ED "SጃC)HͿjcw`F )кWv8 >'&|֥D!X!C7t6U,)}#򕎘{D  hgB' y J+rJH/Ưݞo(oJ ԳФOCHPR>_qZD@ԳB7Ǽ_vѤ! dcYW^\aD,(KI B+WpI?tE~#h#gv8Hm|5UۜB/i`pH1f T y+u`[b\}f0,1v"ZYܖ{Grٷ*{X]d p K(Wc2w(W0gCX}!j2Řk.` Z+r*UR 8dm Rīé#NsŪܞ^,t R\c/c\'}J+Vz]gLCqՙ~,ڧ Ы`qùNX?3"DX!ӍIXT g%z8(>K,Mg¨av"6u?@drՌ>a4ou \?b]6^L=  @|&@BӃ+`+[fnpz ֧#,C{b R9O?×@m'jA|k6mK~koζq 7`gHx֭/ҀE&m;8"@n%ֆՉ,M ('OE*^c(QR3[*/V l?WDMo#*ٽ:fQt){vwJ_]Wm1D$:܆p taOu4.uY8jQŶ . Ɵj8AM,{dHg9ЃG^NmjP ]=1/F=Hj~m횸,ُ=Aռ>X-a%! [>Iv+c r(seũcTJ mJ nO ch"Y~P:A:/W;YG%g̷_3)J\4yވ./w"'@:ՍhLgE}# j/A6ɗKtN`xJc~IcԎ\ ڤV;ۥ1z6 ]wF9DkTЊ@bbq!&MWbG n IUa[Jh]7R+špTWNH_ (G7L֛k0#D,UX׌pi6v7l?.ǔkvp[C/ܶK 2TI_`S*e5aZ \*sYF SފmQɨW / j۾E!=}K7OW9ʧT3\_F9>k̀ƺYqUH?rVwH_|s V#Dv36:IJI9Ձ'<ΰ6nt aBQcof8ږlH.e0WmJBբ7`(P[([IQ_A^撡o&: oϦSyײ}JKb(тm pX,^(!Dvg>ƺ=zCx=Uf4 \>tTl"[ JHqMit*t"UC7 Qah7Y:[&Hzj}"4(bB;ҳ脝J{D͚WG<;7eL\w7&}@KYdC.c0]ډt>SҾ Ƿ1lT(%/屇{ug> 1Sra0₉i/nmg!<@݀Ԟ*lZ ܌;\atf֟!T0dCE&^6"s8:w4)1w,^T2h݌4wɢK0Gjɱ=mX̽3w0H. AeUΟ._ l,C-(D~`#7_!#2|cBc׸N&&=+AJcA(:IMBz;_mTe@̪HʝL[2! %Hp):H7>^{hsZ3M%RLJZF+zxzFk/?;5+tXO(=J t2Qx_r$R_$zCB؁*G _l9'42#n& q|f|'rv3YNN3 ($\6L:s3fjAQ+g4GP~Gm(a M#m6/Q0-dDZ^},94ܧ[hNnR4bkɒ(bC:p2u$ ƨEꗯZ:$Q[QP)8'(ǧ8~10v>D*CKkq L  uݿ6W:Q;(*zEB~ 붸 @ : wf>7=MR.|rсMØ9Srkx[i4u^h*e@@ksсh|+LA83 qr)`"m|ڹS8CMΈvy栄Yo)dڜs'(gnέo-vO/b>)E I) _O{_&&x0n^B|AAUv/~qRpS`%L l< kJe*I dʸ}B$1'2\惪1.h  GUWΪ-!<%8f1bNćO?vP|LG+FIB}z(!Qen1NHKQ%Hd{FP35nwVP"eefa9H(}~<9A"s2&ց.(L~p| 6շg>F4ㄷ DrrT^pׯ&nFH AC]a/ *z+5 mZ^t9((g0UNY j(&ښѧL)4 |݆騧кBW>mUH3xv0L:?h*rzWzA4Hxg?,! b G0|!JZPϫ&G+poCҥݶR)f+jiv#%Uw)ڡ8S&ŕ@aѸ jc ;p" wc} t}qzJ"KWvRe$C \^ 8ji>tV(2w"ĕm-`Ƹ/,]6;9,MߗsD!_;OXE`| ¿]$_m͛ ة$]GXD{x8guRxp_hutqR&[ZȮndR\r4Ndr?xR^ƿaz!F[D$*ybz3-nIpKIᲤ0M<Ԗ 0Iߏc7(vۜRxq͚/9 %nĴ>E\s΃1[rė&b:B]&eQя+>76PdVюn>sl*l/d`U嵊CWFM _w5>u^M}0~$fk)W=g۳ىc+5A:JXZ4?%#Gyv.o^yF_ ?ع1 3~ c": 'P!bdu/Hpcف|88!8j<s >(AI=l>[R'9,urd2d/K +ꯅ89Aܹ K;=SmZp4RU{?_4Fo%ۋ qi (bhRB<y&Y  n/(sW-m ˳2!Ⱥ,o;>a)2sSqLC)Ku6!;oXezNZ i8=wLAU$o Pwu ;%Q2 2 a7i3(^ہLU6[ гw*(ڲMBw~msD¿U":Q4WlWVgq!gNRꊻ!%1:y/vPq ]Fun B!t -DYB*h]iak8;9GoIUC{mҲQ<C(`u`TɈtAyp烧n#cDF]XTa^1Y =lr7[v\0’h(C=w}t[ dI#,~CV+ĹJ5eM%,k9c nዙ&Ԑc=0綅J諕qlGнGTMjheԲ(a?,ڱgrbi&-|6z'^xlViHϼ{ WCڸ/]=uYL\ʮzE߮> UjdM{ _4o=6w+?W&G^-(R۸g8S+>uv Q-t1{¸ȥlDQ0Uyd'NUy{V;4 ">|Q`C粑7J"ㄲK|Y?ШsDJ2faV u2gpݰQwu/ / ;6 p0wǕ7FS~ +0 ̊ P_3PF(KqFw'nGu9(o &&"?S;4,kޤ|{=A7{ň"\Ε/ϒU5'rj|me" O)Z)w) y~LlC5f][4?J7o,_F.ϧq/?桯S샑\Ō 9%YVU`۷obö=ViЈao$켥jYnL3ZLw1[xgY6zxMa|qa;WJ;T8Eͷ?sABvM^~`v IP: B푟2|amPN#|>(-UeCFv5nwB'{+z^󘃩L 7f:HgCj@CՀ\6=%p6i"iT+;\rCR/ w.o~șd9ffs,X:innx O oV.5aժM ZIFR: lE5b9]4%/:Q@Tjɸ`&/ HЂƍ;4[2~SK$D =tk٦i4uq}!ae٤E!A*ST㻳 k,-kj85p<)[/"kuVabUVO(itO{̑ńX]ġlݧT3&Ҁiw (¦@by egѓ~n°fH4Arty0,^z }H{DsK%pd24QeHW.IՊ$'}Q\%?gCF$6i@@X:ótm{q}ncc?Rf= -K%dh<dQz\V)}Qw49|b@i{V–*u,Ogd| r\~aвݙ"0+;TZ㜿c4K RH>na6?hO1'8\SzL>aˎL%=3=>am`)\vy ؝ =Zj1%ؾw>/ba#d`ǧL-iԳk8!n6Qȫנe?lG \*䊥ӝ4^Y>S -yԲ;'ԕ ٘]*YmY1; _wDrbLyW7x,?B]z?_seZ#~.,`Z^Hі*0Cc Q"U,w KmzMhR'tw]̉Q8[K ~s&.rJ1yU!@%HX78r(ˍ~lYY"PYtƄn }޻G2+ڡĴ8;JF~iݻ P}lz΋2~Ϗ74)$ [+wɈ|2Kjăi5<+P(sKt \k6uJl-+=0C2 |BnV$ҏr+p3TFB݈;=_[X"3?0޸HF[>mg'v6u[[΍[2Xӽ1ni\][ˎzm^UtSgy+)@A1HLGJxXBz}&%J~ $~ ;Gy¦^c[u;nM1yL4Ee-I7}oQƿMeRYM .+&g}$Mo1 8ޔgE9]_oݚCM>u^+=ȣv eTmpѧnV_D7]Uhԋ3#wGQ+>_4zhth qSHƌz#RF^ހE\f9QuscX7970f# ܅<9/GqK?/܂22 ]f"e%|αhӽ8W|i{KdCe#7Fl_ɛЎnO(,> ;T&Qt?ۊsͬɹ]فsz'ܕ(n|^w†(V jqEp_}9P9rYp;pp,wדM4Z (VkՐ:e6TwSjS* G?vchb( :8۟Dm3tmk7w}m-79A`g0-pNWb0`:Z$[CYM#?ӂdзf v'Ѣ*2+S".hz&UĶ ezafi# N<nTdӀvKi.\lix+-2kST= 8')KTcra󈼛 Vy`;UBL; V~ic*w閂ST%?`F2CgUF6UZ - SɽE &U̠Jq}]Y4[8Szz`%]7fs}Haf`F2w_ó_#Mӯ,(bѤ}}UO5 //-|x;)> w9,??!SDvWL.ids羿w߲#jӤJ_hHԩ"nm'S6o+ƆȨ#(2[%PGyQ6zIt)ZXoFZsʵy<{dyÏE=24wvhܡ81.Ff ilkR=yA{HO6JA nءZoT~5.szMEfz>2J0{~EVY_ItmxAr{yB2:+&7tւ˅عIȹQjOC@u\ѱW!' lx藪/K{&Z%c3"Eg 1 gUܔ`ܝ*2=)I(gyq՛m>Pn}fbMiUպ5x*A다#V5XUiBdQvVCn vZEzQ ,O8W*8) S2K驱5-8DH0gDBu w!9[ %#-YgNWn ?W%:B|j u5xdaS =ǁʤ2B,X)=ltHl&osr?2]UOM" 01bS X+hs,'8 pn1 ?UEW](n^+(k}lty2S<'+ ZR J?r=(O͎1FӢK%L7Hkn@Wr+]"4Yj9 6sSMpH"@`[*DN_@[V^3KΎAʎjT]eQ3P qOv۝f!4q09BX9s ѫ"= ڇ"9p6;t].ÇvPVQb=*!j[poq@^"ݳe;e!Z:eVǜEb"`ƈh%b`bl65g#oWZ(AΎoM("_e?S> N&T5SʋAkRuX}aQTX~C '2֋d‰P&h, Xq)>ELTS#Df1 Q38L[3Sn*S[ N(bKGpӡM2) SsVSNGh٩Oj .O{ӫX{w.Yz"%%[ c7{(h{:J%.2iM9*"$V=ߓA-C]mSn37 m4'|&sywWK^J!$1B힢 $nGjTm#r,N{ܤ̔z_0Go @7-xYHV}[0j 6Sr Su `fzwe\M(aqa^ Hj=@~9jeT2n%Y5DP Mrt.fCy^Tא WR!ub粸 ac $RnO N cȍ~=ɀ|a%qV@5e0RD˘W[^uph}ISP)BN:fv7H']њhlӷ,a99`Bfm-&B0cH((9qsݟq>A{ G*SG;d!;|cb(Reu$ɑ [$\uq ) .][0z7ܲPL>OWgBg44Gʼ\R]d@I9zorZ >'[6 d S`,\`:MSf!+ݚ\XX8>SIac,(`ϗ1F}ɇi) >t!0 kϽUZ^ 򮝄o!#L;~PQ7+U\ u]>Je!Sᵤ'R\_ hF@M¦@jdjsP8f. ])xm|m .z6ۘCI_gBn+AgE ) I Wi1\=-`/QKH*,[1+ɸ4H6j&+J|1 z^ Dg=r5TFUD>wtv[̔*퀲\Vk.%heєDMQ)j"F#dPQ.|Y *`0rzч_ё_HP[?qÐSz:TDK@UkcMh<-E3s)a(gcK+ѐjab4kӧj<iÏ(Pvz."銍 قΉF$s&d&;7#uL?U%&wAF/s &[w"{ʂ_5r|y[h]D/f޹}8d ,\ I,`guu{;7 vzv¾NXQek@FnogWW,`~iу|ZŎ7Xb^׮'Ra&gKo~̄Q3;d摳{{J=E D尸eo!1_הO.'هE-]<}9^y% ȅ˷'zl)5X%淑O wnc$AOhVG\]  S-\c|3[Y?ji2pA[!Oacat[{U2)۸&@;eP0)1Ξ*&5!-ba@dG^ %9dioCĜu>tFq%:-GoR0m A1DGu gCqWMTe$3  pu[J`dhAD5dM$UyL]?hct::nie :]U'`<8}d.lwuS%u{Yx>Ȧ\2*znR#V|ȾggoQiҫ:y\g^N98R)x`PVj@O[gx^2_wJIoî$1C*Uvu-OMn"XJ}/Aa eݠ@:+"H13xtc/:Olmi.DV ])4KRk2t8Y"bK- o"wGYpuWc^4( h:%!tG >}'7wvU<| )LVV>G'y7HJmt+`Qamz&:I`-oQPe~G#D'PH=/B|/oHXC2 V#ş8mةp,fzx{t7>1O9QWAݳJ"2KAh|bk<>š=RkR+rkyRȵÐ 1R4xQmJs#v'#reR3Xof Ifc .Ô8 qBOR.( 'ʁʞi:^*'m1 Tr) ?^_&;,EclLv/޲h"w7^eyYn[x)7ȷB [E4nGm_aZKOЮʇf;X<@/nq·~hV`kCtl-Ǒu3{ *w߰hsml[=-4&uá-o}ݮ_rb U-ShZ@ bXO9I9+"Mր"m9We|٫*V|[yVf`8BT%* ftjE Z:¯L5op#,Kۮą9ɫ "xP{"8Q;E I x~a3K rlL8MI@n 63.#bDG-}7)IxdW6p/Ÿ3qa:m~acJfkfS(M 5?}Pjqy{O<$jju],/8Ĉthx>DN;kiQ (aqy5ʇYzPVqy20IgbM5AЇ48Џ0] `qOV->\2Vh7/CBp)SS}xȍtt"sEGHɊD5j5o.1*+>.K!:浾*i^]乮+iSFӪ'7E<^22Ng&qaj7LmC8>pKPM.pmB ԚPU}~{0<~ =u)3Scs LY5B8:GUN6ft}>͝ݑZEΫb&7=9wֱY+a̙N((iUrʔ`U'kŇr}KSòݫ]WWPY$v^1 πpY[A 1j^rAR$/ JV1#y<e E\t.FhF~rEGƁ$@uOLd_:"GEQ{b]T.ؠћNp}AM'wB S.N^/b̎Aa'](w;\h:a T+բfi]b!.$C'Avg+Eay$(SjR{_ʔyHܼ T5 ƽ(XDᴻ\N&b^Ԅχ`+{L= ! ߘ*zp0X{A+.|T,no%(\T/KB5zD30C)lg1\7D9,ތvGFY@A8ienj=!ի] S {j`6ew uD#kxoL}or +6Qr.A͋[Ro0:jYܡ2z5{+YUy^$R&6fZUr VW:#txE?KݓBMei;/Vhf`r':0Sݍp\ 7*A~RKtes-SGU$Q}^-g b&ѓ.V3USCFYX\n&O@k.W#W A sqzfG@\:5Qrih$sL~@@_#2+{" &w"QASGC,u**>'Qb?#/EHofr.37ķVGшBU&ּr[ Xz/K4{5竝tw}/v\_W\$y`GpXE(+ӎʯ^O*D̮-K|Dp'K J5D\קm} +Y!ZW׾6;Yg}NgÝ5dsdѪ N:%+N0\gg*![q S^?΅5G%0:?LL5HCloPOkufܕ Ē0@xLဆ[Tvc,".e7@/[$?8yAivG}¡t0+ ]=toi/z$[A^f?ޥZA ̑"HU@&*9az.{:q>D >'C21*9 G^c\ܞozs0j1٭ un: _+CrU j] gH}N?m?8]gM/~L\:#ٹ4bGE.B $wWKsIBd[ZšLιhvrd_%L5&S60Vau=\}bEMoNmT~K'_3m0h L0.ʰvVH]#h<(1 m9e b}e8|ȍ\(>S\#7 SnL^Wi&\y ϰ1VSKѳB7 ˿5xS&ր=>! T ^4ʛqlx8&5+%V)W*9!^s K@2nbsq5vTߡ{44t3=5 ̀-eJ "hS7۩Q+4Nȥ7@2o ` rxKK?x2(<) %M2VH U(.*1׈r}&p{0ή+xw H xt79 *)m1SP{l0ɮ,;Vj"oqih;G:x~!:r);(*FՌÓ2$(Z⣁q^] )7AQvnɦ?T!PFUh|ߞX[dhSt_Di< D:Y1Eo=6k>P!OOB%!Q6}WNXp߲!mQ$ 1GQÑ{;Wy&.fSRpqLa%R3W%@0dY7 V@W.3^]<]ef+t!fa!˚-U#)FIKkF QFXE[9M+ T@+co.܈6/ĪQ +4; g'^uJ+#'-f-o^1#% |aŎ:jxLʂD_EUޓ N#})zVR#91a|A&>dC.qc،Y Tӌb<g̭ih:XCGmon5ʶz0h>WwdtPOdزCO=a 9d'q)X&@yˊWa?\, QapJ {9,EYSQ1 TXd] 8jwԓ=p_Q}4eiy2KSJy+BCNIt|z0N:繤Қ!%^Ρ6lyFRA:^E`ĞbW(+R·Z!,g'M77N9Ra;Q7=F. ?0DD"=m pIn?YR IG)z5[1&+δ݁Y cd~IWʓG=l ]C., ;!Bg YlڕP>sЌp(}qBAW $^=Ongb]C(ڈ;O9VD'1=AjDz1vq^k"7E gbAJnA\{BMFe5\,-鄤xWݲ>T1c!JTpQd63<uqi|W$f)wkMBfY}  pBAU<^:= u#_G,@ &K/M .!h:KgYC J `QѣHM8g;G1$ m5xM-xPFo"zJȒyY*LzG\];b1&x_4+-w/œ{ hYCߏz,L*-j' !grW۠0yZ储2qrMN+Av0(r~~SV*B)z!LJ|ѱy M F䁮+%MwԺ~)I.;*0tgp:-6#,86Lm csI)2O6}™@4cUYC2t*jjփg/qz.Tl[cTo9jۥIֲT]FиUT/ynb~Ihf>Zdd$VHƦ~gyoc&4Y NF&Yu)5:'*Xzf 5oiO%H,Y9:B!M^J0RdBz, ;ӓY3Qz+WId '4,KȈ`S˷?q65@%錎R=tG>l8YbHuN>[ke.~fXKK?[1}fu3dŧ¦%"w!5yФL["aY 血3|]Ua$x2J@om8bq~'4 h\Vn?3u@a%,n[ǚ3jEr(./bf!y-¬?ʏx^{-Zm2 c]QoDة.~!#֝ҜHwi1p'`7a-}mxqBMx)9\QuzhQA;?;Aq9SE Xu6Ech5oHzIIJ Iyd~gH=3V iH:?>1W^RJ2&GQͰ.] U#0p!̥o>ىCF9 D8?9Os0N|͎ X@X Z oS*0yxT2Oti NUɿ>~MYSyRY\E Qs8jp=N;)~z}m,9//4oWngaF{ɚz.̼F1)žN ET}}0KәutꚮCeT8P 6 n:G)CN=XwR~g2˸G B7WiXݥ'L#:|5#ѹ]]_.\S};:x%u``?ee},{&IHw'=G8 ޥ$2p> Ӂ}=b{9zS~)vPAn,2y~3nw{D<&í@a >xeգ=141trE( M{VnJslU1;~>5QOU)Fe+E\WUz60;0^ =spM+]q%`u=tN_%^~̀9h'squjN.wF?wؠ@s%zXvܛc0bFHL&vu'H.&*nu?"Q9Rr׿&lFT#DDJNLEjURޞcT6ekh;U'h\ 5tJBipZ_VK=/OT;}LBr$:[NE/#ׁQ4jX?<\`}Fn9ـ1-R)U[{xxbd*-,)fΆOcAiR_r|\ ul-CPRw17wC-1BF\%p.mW)ٓW謹=5]GO̔t ^X\ U8:ț'_y]4 LFoْA_)z$bPAرm UpA٧-͝S+LtNSjvvãȻlB|Y~]4眓Xu OIn9X:,ʸ qKe19> 3xFy!7Sp4PՎNG%cm;r Dl!}"0 4JLjm|-[j g1[ֶX5=1GiaqS!S&Cy][XW8ymZB)تceYƂ9 u#ưԇw174;/4KdZ.sYì IH7#2R$>_|\pqὌ5_QyuR"ۅ2&kb@gay^C*!s5L{1rF1v̌z\Bt2xT{GAy}n|Zqy#s簙k^VqFߙG9rMZ: Bd|s:xFz >^&xg ((džZ(/iBZ\$2)SÌ$Ꮂ6ḾaeAM`8VEamJO +>-wG"!**"hS;ʇny88uIԑrkÙNk aE}$l3'en@|&t]j.!l$cnu Rth7|Դ1:$$ʭO+;:&u& Jo[^l= i2.])^TE'uv.pR4a._Ns].GfC7^,"ߔ!{EG%@R 6ZC3 ,ksk'6 J3бC D#5^u,D$hBP TBd߾].xG钭|]c~'t/0$: 1`Y/!`0訜z7ZS/sIKЦO ,ҧ|h*Fz* F wr@N5EwZU8g;ʦ5ܼ_brLd|]"ЙHVȗU, U_=Mhn#JPiS,tT eZ[;ʴ^f2-23HNNhWy`| ,$!w'qUEK]+Y?4lOfd'Rn)uar@޶ |\^ן`%r9!u &S)΅:5Rs!P# G:?VyqlzSJ 6%9Ū\4*kK0Ш֝AR`sW_z]N G25AQԇ"Jjf Mju1O8]ɴŚRzQ叽9!jf0橘yrpP~?P8Z0-kf89`+ nLjofwRŢ $pihuk91'eF^jЬ_nzEXC78}_ -߀Ԫ_n[،;$J'>QMx^d2͛꠿f:H&~LRt5P80+lǔsĬ=ܬ @L)d/y6 ߮$5S7B{,>ioe曪ç=gt"`% ZKr`$(>X -D÷MeY4 Moy#2@sTz@ A`a:jG;>|tf}N/w׿mοUv =S- y>[=~`ƴO8x/+-NS ) {Tζq.hIBY Tl ١l,po Q`:D/1&SR6vSyv8\ SN5@sYR{`;> kKV&&MNƩcШ᧻Rڢ~' a,Ӳ/!v󘹵+ֻ.d'L)W8bޓ2_Cܕ"@ [ x @5ɺ/nmQdF k䂐 Eq>w|NV(xDA;>!,q_IܞNGehw^NM0mc!,4m4$sT!%?oHu<ZP3O)%d hFv S?1[\ֈэh׭,eLڶicϘ,4.%*裈ttAB4J~ ,Dc>}O"u.E-z$gP52%ԋʫ#sߢnbdP|DhLl7g?ۂuzi`٥9m6uyia背ӓE t} >Q *^:74@qaW7֥+' *c~ >Ø,I vlSHL)l=z2#OKd]r2Bs?q '2Xtae&&6%%~R=o:^ 훀C$p 2c@N79+|y4h{Z4j /5=mTȕr?U;3f~=hBZ3uXENNִƷUnwKrDCui׬U&aI{L\O2`跃@κq?9(_/1v#u8p۩LS:"a -hj8t 5p"n}0_J?LX݄깾7taT0hH5 W:*h1KHЅZ8f29z#04fy,IE9Id&I.Jd82usR_zЇ`}Sn\Ty{[/e¢K2h M$([ rU:cR9U@cM*D,ߏLF`5I&GUNrǬWD24x} X6Sor+fg Lq]Ҡ(eDU C(E\!`TG2]H]sdv!zvgPb[ Bew2D:UpG/G̖\J hQe:etO nOlxJXSH;[-5Jk5N>.BwN(*N0o 3Q1İV9PZB.jNʗ%XTu|bG@fNrDɼ~M)AЪ{'m Ъ-]Fgi}<ۦd8{(0ԭK"8aM'RWP ixKD}I bYN0Ed_ϊ]]gCœ 7%-yʔA<KL7" ),Jcݑ +Xu!8TlU`vQa&TM7q+y48xK`ˠTRrtlhm"o6eP 9l<\OĮD2f.%$P䈿CcT3q@1?šd&]C/D=hqBqGq*9 d)aZ_qKaJPv5Mi.Pُg`J-|vBF:1IGa*]PK7wpk=G$.nT_ `yP j*ngiA֕3?l8ʕAf'_݆` 0fuw7'|_}7U\|TP$6; FXtDPbt<{G;T{PKtBhs)ю.RYk ÖCS0({iunuxbX8\Uf/`0 NTbOX^CE!u hK-?ٞq4zt Uƞ3җ !4R`w_FJC~xlSኾzQLtS9 )U{0pB$[5dt Roý}PQ(g\f4.LmRPjXv.v2H\űByΧ1/򿼌vlE\d"%?քD'TK  3Pb{P4KVB2L.b+k,%3X#zr9ç ` EX([beF:H$,S 0v8M J{ +9l*<9R ?X/迠EkxRm4&ɰ1r!ZԌ8ja+~lLH֩s^Q> ?*(m@g5u=ADl+YQ6.<@\Nб sSH 7V 1ph yTpI{ m7H</$}ؙR탇AW|S"%Q(\lO Įeghہ0Or $p'\k ggM;|#gpA4l|GI2*%H@/[><Pe(|P=cxfw4CVA{n_ }Wler:Ȯu˝Cix{ }[ƼUAa/7 ?'xd)!S.3pUl.hU_.x܁$lĻRq$.|mqb0/;TI(pGdb[MJFp^>< OǑqT%py>_LTDL: M^6!mo39B2l{OIд(.u2Yl'Ҵs&)`e׵HHR~U+]K5CPAu5wp+){O28ݦf6ݮ;o4d;]"Fݲ6L4mj4f.!8uڟ;,4=lz?s&` n]c˰WA'jh |ߝrZ7 !c`|[kH ,:<=p:`ERKk鼄)L3a7FYz82, YZ