mod_session-2.4.6-97.el7.centos.5>t  DH`pb<$ƨ8 U]-A`ȁ WNӸ2Mk L}-suļXYڀrURӪa|m.~T,Ó6jßԓ-dǯ+J ىݎ^q>ܽH0?1P96_; #!,x1Y4:EőWuxM)5 ʝ@ =ب:"9(-`q(+o@8@cz\+Qp]ZKn06/H]N} ٞH#!i6Ќ VB2_YBmQEd]d8a#-xw=x9Q!֭i^^kXB?Wnͤ=6Y$!aw7-IkF0* BKxع{@ /.!m4;{uW vw`N~ xf72e21d90a71e206288fdece39dc37aef8b121a6b<$ƨZFSV/[PRdcmO m2mVl7Հz*9[x'1mou}t;h U( -Ē{5lzDS-)/|R -#͈+ ¨rlHew'62z?zd $ Q +F_el    : @Xv(Z(89:*MGxHxIxXyYy\y4]yL^ybydzezfzlzzCmod_session2.4.697.el7.centos.5Session interface for the Apache HTTP ServerThe mod_session module and associated backends provide an abstract interface for storing and accessing per-user session data.b<^x86-02.bsys.centos.orgCentOSASL 2.0CentOS BuildSystem System Environment/Daemonshttp://httpd.apache.org/linuxx86_64m\x+\Laeb<$b<$b<$b<$b<$51df0ceeb7dae9922817f4af0554f83fe01d6268025ee08260aeed69be3953d1dfbceee53fdf5592615249083dd6591db50611ed4d53a88bcdf7bace2d47401acd5b7c11b27e08c57ba87a52c79653d6531d987069ef4d7191d2a65f53cba71ebb8442cde81a97d5ca2fcb0b24c32a0b62a396f507dd0339a282bba5d544a6d52f35b27f4a2d7c74ebd2f6036fea17237715397bf82cf7350dfd311708912323641827fcb5cf2695572a3e71d972ff71562f3f06ebfda6cbe15434a9bc7f6841rootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.6-97.el7.centos.5.src.rpmmod_sessionmod_session(x86-64)   @@@@@@@ httpdhttpd-mmnapr-util-opensslrpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(CompressedFileNames)libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)libpthread.so.0()(64bit)rtld(GNU_HASH)rpmlib(PayloadIsXz)0:2.4.6-97.el7.centos.520120211x86644.6.0-14.0-13.0.4-15.2-14.11.3b<]@b9@aaav@a^@_}^@^|@]z@]^]A\@\[+@[+@[+@[*A['[d@[d@ZZS]@Y@YeY@YY@YY@YdYp@Y{Y{Y*@YYw2Y@Y@Y@XXg@X,X,X@XƉX•@XCX@X@XXXXO@XO@XO@XO@XXWWW{@Wc@V͛@U@Uݪ@UoUȒ@UU@Un@UY@U.RT}Tto@TXTG@T2@T @TTS@SS@S@SuSǺS*@SSRUR@RRΏ@R@RkR1@RsRrF@Ri RM\@RC@Q@QQޞ@QQo@Q@QQ@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@CentOS Sources - 2.4.6-97.el7.centos.5Luboš Uhliarik - 2.4.6-97.5Luboš Uhliarik - 2.4.6-97.4Luboš Uhliarik - 2.4.6-97.3Luboš Uhliarik - 2.4.6-97.2Luboš Uhliarik - 2.4.6-97.1Lubos Uhliarik - 2.4.6-97Lubos Uhliarik - 2.4.6-95Lubos Uhliarik - 2.4.6-94Lubos Uhliarik - 2.4.6-93Joe Orton - 2.4.6-92Lubos Uhliarik - 2.4.6-91Lubos Uhliarik - 2.4.6-90Joe Orton - 2.4.6-89Luboš Uhliarik - 2.4.6-88Luboš Uhliarik - 2.4.6-87Luboš Uhliarik - 2.4.6-86Luboš Uhliarik - 2.4.6-85Luboš Uhliarik - 2.4.6-84Luboš Uhliarik - 2.4.6-83Luboš Uhliarik - 2.4.6-82Joe Orton - 2.4.6-81Luboš Uhliarik - 2.4.6-80Luboš Uhliarik - 2.4.6-79Luboš Uhliarik - 2.4.6-78Luboš Uhliarik - 2.4.6-77Luboš Uhliarik - 2.4.6-76Luboš Uhliarik - 2.4.6-75Luboš Uhliarik - 2.4.6-74Luboš Uhliarik - 2.4.6-73Luboš Uhliarik - 2.4.6-72Luboš Uhliarik - 2.4.6-71Luboš Uhliarik - 2.4.6-70Luboš Uhliarik - 2.4.6-69Luboš Uhliarik - 2.4.6-68Luboš Uhliarik - 2.4.6-67Luboš Uhliarik - 2.4.6-66Luboš Uhliarik - 2.4.6-65Luboš Uhliarik - 2.4.6-64Luboš Uhliarik - 2.4.6-63Luboš Uhliarik - 2.4.6-62Luboš Uhliarik - 2.4.6-61Luboš Uhliarik - 2.4.6-60Luboš Uhliarik - 2.4.6-59Luboš Uhliarik - 2.4.6-58Luboš Uhliarik - 2.4.6-57Luboš Uhliarik - 2.4.6-56Luboš Uhliarik - 2.4.6-55Luboš Uhliarik - 2.4.6-54Luboš Uhliarik - 2.4.6-53Luboš Uhliarik - 2.4.6-52Luboš Uhliarik - 2.4.6-51Luboš Uhliarik - 2.4.6-50Luboš Uhliarik - 2.4.6-49Luboš Uhliarik - 2.4.6-48Joe Orton - 2.4.6-47Luboš Uhliarik - 2.4.6-46Luboš Uhliarik - 2.4.6-45Joe Orton - 2.4.6-44Joe Orton - 2.4.6-43Joe Orton - 2.4.6-42Jan Kaluza - 2.4.6-41Jan Kaluza - 2.4.6-40Jan Kaluza - 2.4.6-39Jan Kaluza - 2.4.6-38Jan Kaluza - 2.4.6-37Jan Kaluza - 2.4.6-36Jan Kaluza - 2.4.6-35Jan Kaluza - 2.4.6-34Jan Kaluza - 2.4.6-33Jan Kaluza - 2.4.6-32Jan Kaluza - 2.4.6-31Jan Kaluza - 2.4.6-30Jan Kaluza - 2.4.6-29Jan Kaluza - 2.4.6-28Jan Kaluza - 2.4.6-27Jan Kaluza - 2.4.6-26Jan Kaluza - 2.4.6-25Jan Kaluza - 2.4.6-24Jan Kaluza - 2.4.6-23Jan Kaluza - 2.4.6-22Jan Kaluza - 2.4.6-21Jan Kaluza - 2.4.6-20Jan Kaluza - 2.4.6-19Jan Kaluza - 2.4.6-18Jan Kaluza - 2.4.6-17Joe Orton - 2.4.6-16Joe Orton - 2.4.6-15Daniel Mach - 2.4.6-14Joe Orton - 2.4.6-13Joe Orton - 2.4.6-12Joe Orton - 2.4.6-11Joe Orton - 2.4.6-10Daniel Mach - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Jan Kaluza - 2.4.6-6Jan Kaluza - 2.4.6-5Jan Kaluza - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9.1Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3.2Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Remove index.html, add centos-noindex.tar.gz - change vstring - change symlink for poweredby.png - update welcome.conf with proper aliases- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input - Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted request uri-path containing "unix:"- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool concurrency issues- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Resolves: #1565491 - CVE-2017-15715 httpd: bypass with a trailing newline in the file name - Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect - Resolves: #1724879 - httpd terminates all SSL connections using an abortive shutdown - Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive - Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in mod_cache_socache can allow a remote attacker to cause a denial of service - Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in mod_session can allow a remote user to modify session data for CGI applications- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect expiry time- htpasswd: add SHA-2 crypt() support (#1486889)- Resolves: #1630886 - scriptlet can fail if hostname is not installed - Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in mod_authnz_ldap when using too small Accept-Language values - Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after failure in reading the HTTP request - Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch directive - Resolves: #1633152 - mod_session missing apr-util-openssl - Resolves: #1649470 - httpd response contains garbage in Content-Type header - Resolves: #1724034 - Unexpected OCSP in proxy SSL connection- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation in mod_auth_digest - Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency- fix per-request leak of bucket brigade structure (#1583218)- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple SIGUSR1- Resolves: #1458364 - RMM list corruption in ldap module results in server hang- Resolves: #1493181 - RFE: mod_ssl: allow sending multiple CA names which differ only in case- Resolves: #1556761 - mod_proxy_wstunned config needs the default port number- Resolves: #1548501 - Make OCSP more configurable (like CRL)- Resolves: #1523536 - Backport Apache BZ#59230 mod_proxy_express uses db after close- Resolves: #1533793 - Use Variable with mod_authnz_ldap- don't terminate connections during graceful stop/restart (#1557785)- Related: #1288395 - httpd segfault when logrotate invoked- Resolves: #1274890 - mod_ssl config: tighten defaults- Resolves: #1506392 - Backport: SSLSessionTickets directive support- Resolves: #1440590 - Need an option to disable UTF8-conversion of certificate DN- Resolves: #1464406 - Apache consumes too much memory for CGI output- Resolves: #1448892 - Cannot override LD_LIBARY_PATH in Apache HTTPD using SetEnv or PassEnv. Needs documentation.- Resolves: #1430640 - "ProxyAddHeaders Off" does not become effective when it's defined outside setting- Resolves: #1499253 - ProxyRemote with HTTPS backend sends requests with absoluteURI instead of abs_path- Resolves: #1288395 - httpd segfault when logrotate invoked- Resolves: #1368491 - mod_authz_dbd segfaults when AuthzDBDQuery missing- Resolves: #1467402 - rotatelogs: creation of zombie processes when -p is used- Resolves: #1493065 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method- Resolves: #1463194 - CVE-2017-3167 httpd: ap_get_basic_auth_pw() authentication bypass - Resolves: #1463197 - CVE-2017-3169 httpd: mod_ssl NULL pointer dereference - Resolves: #1463207 - CVE-2017-7679 httpd: mod_mime buffer overread - Resolves: #1463205 - CVE-2017-7668 httpd: ap_find_token() buffer overread - Resolves: #1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection in mod_auth_digest- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1445885 - define _RH_HAS_HTTPPROTOCOLOPTIONS- Resolves: #1442872 - apache user is not created during httpd installation when apache group already exist with GID other than 48- Related: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- Resolves: #1397241 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Related: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1378946 - Backport of apache bug 55910: Continuation lines are broken during buffer resize- Resolves: #1364604 - Upstream Bug 56925 - ErrorDocument directive misbehaves with mod_proxy_http and mod_proxy_ajp- Resolves: #1324416 - Error 404 when switching language in HTML manual more than once- Resolves: #1353740 - Backport Apache PR58118 to fix mod_proxy_fcgi spamming non-errors: AH01075: Error dispatching request to : (passing brigade to output filters)- Resolves: #1371876 - Apache httpd returns "200 OK" for a request exceeding LimitRequestBody when enabling mod_ext_filter- Resolves: #1372692 - Apache httpd does not log status code "413" in access_log when exceeding LimitRequestBody- Resolves: #1376835 - httpd with worker/event mpm segfaults after multiple successive graceful reloads- Resolves: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1396197 - Backport: mod_proxy_wstunnel - AH02447: err/hup on backconn- Resolves: #1348019 - mod_proxy: Fix a race condition that caused a failed worker to be retried before the retry period is over- Resolves: #1389535 - Segmentation fault in SSL_renegotiate- Resolves: #1406184 - stapling_renew_response: abort early (before apr_uri_parse) if ocspuri is empty- prefork: fix delay completing graceful restart (#1327624) - mod_ldap: fix authz regression, failing to rebind (#1415257)- Resolves: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- RFE: run mod_rewrite external mapping program as non-root (#1316900)- add security fix for CVE-2016-5387- add 451 (Unavailable For Legal Reasons) response status-code (#1343582)- mod_cache: treat cache as valid with changed Expires in 304 (#1331341)- mod_cache: merge r->err_headers_out into r->headers when the response is cached for the first time (#1264989) - mod_ssl: Do not send SSL warning when SNI hostname is not found as per RFC 6066 (#1298148) - mod_proxy_fcgi: Ignore body data from backend for 304 responses (#1263038) - fix apache user creation when apache group already exists (#1299889) - fix apache user creation when USERGROUPS_ENAB is set to 'no' (#1288757) - mod_proxy: fix slow response time for reponses with error status code when using ProxyErrorOverride (#1283653) - mod_ldap: Respect LDAPConnectionPoolTTL for authn connections (#1300149) - mod_ssl: use "localhost" in the dummy SSL cert for long FQDNs (#1240495) - rotatelogs: improve support for localtime (#1244545) - ab: fix read failure when targeting SSL server (#1255331) - mod_log_debug: fix LogMessage example in documentation (#1279465) - mod_authz_dbd, mod_authn_dbd, mod_session_dbd, mod_rewrite: Fix lifetime of DB lookup entries independently of the selected DB engine (#1287844) - mod_ssl: fix hardware crypto support with custom DH parms (#1291865) - mod_proxy_fcgi: fix SCRIPT_FILENAME when a balancer is used (#1302797)- mod_dav: follow up fix for previous commit (#1263975)- mod_dav: treat dav_resource uri as escaped (#1255480)- mod_ssl: add support for User Principal Name in SSLUserName (#1242503)- core: fix chunk header parsing defect (CVE-2015-3183) - core: replace of ap_some_auth_required with ap_some_authn_required and ap_force_authn hook (CVE-2015-3185)- Revert fix for #1162152, it is not needed in RHEL7 - mod_proxy_ajp: fix settings ProxyPass parameters for AJP backends (#1242416)- mod_remoteip: correct the trusted proxy match test (#1179306) - mod_dav: send complete response when resource is created (#1235383) - apachectl: correct the apachectl status man page (#1231924)- mod_proxy_fcgi: honor Timeout / ProxyTimeout (#1222328) - do not show all vhosts twice in httpd -D DUMP_VHOSTS output (#1225820) - fix -D[efined] or [d] variables lifetime accross restarts (#1227219) - mod_ssl: do not send NPN extension with not configured (#1226015)- mod_authz_dbm: fix crash when using "Require dbm-file-group" (#1221575)- mod_authn_dbd: fix use-after-free bug with postgresql (#1188779) - mod_remoteip: correct the trusted proxy match test (#1179306) - mod_status: honor remote_ip as documented (#1169081) - mod_deflate: fix decompression of files larger than 4GB (#1170214) - core: improve error message for inaccessible DocumentRoot (#1170220) - ab: try all addresses instead of failing on first one when not available (#1125276) - mod_proxy_wstunnel: add support for SSL (#1180745) - mod_proxy_wstunnel: load this module by default (#1180745) - mod_rewrite: add support for WebSockets (#1180745) - mod_rewrite: do not search for directory if a URL will be rewritten (#1210091) - mod_ssl: Fix SSL_CLIENT_VERIFY value when optional_no_ca and SSLSessionCache are used and SSL session is resumed (#1170206) - mod_ssl: fix memory leak on httpd reloads (#1181690) - mod_ssl: use SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!SEED:!IDEA (#1118476) - mod_cgi: return error code 408 on timeout (#1162152) - mod_dav_fs: set default value of DAVLockDB (#1176449) - add Documentation= to the httpd.service and htcacheclean.service (#1184118) - do not display "bomb" icon for files ending with "core" (#1170215) - add missing Reason-Phrase in HTTP response headers (#1162159) - fix BuildRequires to require openssl-devel >= 1:1.0.1e-37 (#1160625) - apachectl: ignore HTTPD variable from sysconfig (#1214401) - apachectl: fix "graceful" documentation (#1214398) - apachectl: fix "graceful" behaviour when httpd is not running (#1214430)- mod_proxy_fcgi: determine if FCGI_CONN_CLOSE should be enabled instead of hardcoding it (#1168050) - mod_proxy: support Unix Domain Sockets (#1168081)- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581)- rebuild against proper version of OpenSSL (#1080125)- set vstring based on /etc/os-release (#1114123)- fix the dependency on openssl-libs to match the fix for #1080125- allow 'es to be seen under virtual hosts (#1131847)- do not use hardcoded curve for ECDHE suites (#1080125)- allow reverse-proxy to be set via SetHandler (#1136290)- fix possible crash in SIGINT handling (#1131006)- ab: fix integer overflow when printing stats with lot of requests (#1092420)- add pre_htaccess so mpm-itk can be build as separate module (#1059143)- mod_ssl: prefer larger keys and support up to 8192-bit keys (#1073078)- fix build on ppc64le by using configure macro (#1125545) - compile httpd with -O3 on ppc64le (#1123490) - mod_rewrite: expose CONN_REMOTE_ADDR (#1060536)- mod_cgid: add security fix for CVE-2014-0231 (#1120608) - mod_proxy: add security fix for CVE-2014-0117 (#1120608) - mod_deflate: add security fix for CVE-2014-0118 (#1120608) - mod_status: add security fix for CVE-2014-0226 (#1120608) - mod_cache: add secutiry fix for CVE-2013-4352 (#1120608)- mod_dav: add security fix for CVE-2013-6438 (#1077907) - mod_log_config: add security fix for CVE-2014-0098 (#1077907)- mod_ssl: improve DH temp key handling (#1057687)- mod_ssl: use 2048-bit RSA key with SHA-256 signature in dummy certificate (#1071276)- Mass rebuild 2014-01-24- mod_ssl: sanity-check use of "SSLCompression" (#1036666) - mod_proxy_http: fix brigade memory usage (#1040447)- rebuild- build with -O3 on ppc64 (#1051066)- mod_dav: fix locktoken handling (#1004046)- Mass rebuild 2013-12-27- use unambiguous httpd-mmn (#1029360)- mod_ssl: allow SSLEngine to override Listen-based default (#1023168)- systemd: Use {MAINPID} notation in service file (#969972)- systemd: send SIGWINCH signal without httpd -k in ExecStop (#969972)- expand macros in macros.httpd (#1011393)- fix "LDAPReferrals off" to really disable LDAP Referrals- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- restore "ServerTokens Full-Release" support (#811714)- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- rebuild- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)2.4.6-97.el7.centos.52.4.6-97.el7.centos.501-session.confmod_auth_form.somod_session.somod_session_cookie.somod_session_crypto.somod_session_dbd.so/etc/httpd/conf.modules.d//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericcpioxz2x86_64-redhat-linux-gnu?7zXZ !#,ᢧ}P] b2u Q{LR|ES*+оdBȾ@s -:_X w-+IAx_N`¬Y3v[.y +@C#~^[\BwI'u]U[+P^Ŋ0US]pz|q4KlY=Vjr9!?"Oodw$|[h0`J]StUԀQhm^6 B>0W~Q<\FW~ tsbZS[P9@W?A훋DȆ1i̒nw](w<.=wvF]rNK$&ó Xqĭ.Y"GfC竓);B&ox>J|;2:6yn3|@B42kl.^+0g ~N~G$;2vADz*19*bֈAs>lZ ElZxQc@98BjI^MJuA}H&-" NF IۇtFU(}'}m5{{\zDŽI&۶#pٹoJϘ5<-aR$;9)t5ct& :<86() (<Xf`Hls>WqY1YxÌyƅ5}Šy+0bs6-\nl M&:&Y}0)T"ZurfwVSe6$B@s_4Ce:@7fQ̃;بsE:NAC QPq/|d=c6 &AM9.x#Fr$ rz;MzP7KN%ΡÈ? N4X0FSg.aݷ:Z,.=̑ V^*`a.t(`DQ'<0uD=؟w!䁵yR~]BX[zSmjm A.?!p@ss9;V/gN k7r!/OK~qBjE-!rpXěob%j! b/V cIQ`fpwJiew,Q,=p%E zۊ<(Eړ.'$ %" Y64BRR*L@8A"{?j ƞTS~̌14hɰE?70fΪN9;349W#Zة3`!I\4ܨ3XA< bUJVlb7/g_|iUuQEmyVQFiEơ gҰw"Vyp%_C ʊ {Nr*> I]J}$UeX-[Ś3vkuEa֓4r&G`+:-X^& ֜"Nl. EmЃ.%L2PBp$ D:?q.9߷] PC}Wc2=K0"=!2mu5gy;Ph"i>xPzj*3(pq1gΝHL#yuTwC WƲq0u j'/>m tDZĨ+)_DO%I1uTdPH* =n]<\6`a^,3"\DTl>\w4L syjpϖ8ԬwѠE׿m_ZWg>nsnO'/k˰2?a-$ˎcf`ddPP[dsT&Q K:(0 CP/q>0a@C{:X+t}B,Mv9'h0d>:eO"32\rPVPCI++TϷ,ˉ"aw<S$8JINJ(t[YtJge !6YP2v23}?ҧ7LB0JmIr] ,2<DPe rG{BƏ! Hť$SӜ~H~Ҁ}\TJE~1f:ZKmK;œ￧&B&*E`':hR{Ӄ,oX~^:[s#*oiY>ZYk TwkSu˯1!&E+brب R0vl"$Y{8toXb˫) (F$Efu\DJ8֖_=/x%aeASKk\t9Z *ENoU} [D v}~(`z>==SsNOe>`QǍIeC'`8N!xMk/;Cg7R)Q'm,(I.7j£qd1i}9G?o1ri9E[|v#kz 928dǏyY^F8jC ɷJT?$EZKA$5 GibqF]~=!f(YZxjL/j ` ^QKףKy N롧l*`S/PDV*g:J#sd@@SոO1VyZWCAY8d J?Ѹܤ5w𞴟a+>QIs@3N!Ę19v6hT`ؘ\Ԑ?Pi%d*gRl; ؔzL8mIMk?+0Ie5Be9gXL(;te_p@]Nh7^%o.><**ʠLPݟdX8qK'+$㖹;Yh!taФ7ꏿv{1#;r3JUO:Yׄm oo{CȠ+Ў"m(]霆Rj@b ŔB́=4q֤GȱLH- ~ƁQp@#S&WVޮm&?UɌXOsZ7,虖FƶzGRbUa"+m %=#akGRZl#\Ox7A1>:g()Oq p &62TQK;s[?aע[wœͪ״n禗 'R!,5a +%S)J~_ ^u; k#2JԘ*jYy \6tF]9i$ +>v]bT{E/N_3/xrחwi|t\ b!+{vj/Lo oy;#Z6w Mi΍7*".j`*ųL\B$# d4D4.vN?ArvN4` 1cb > =\Q:|uPfdw,6}dE0<{L݉q[{埰( Ǽtyq,e) I <_18bꞞ 8^od\"8pGV \^{ozPm3@a W6&tvt=yMrѭāiFׅ9up$%Fbo97cDWL1. OjD=]x;r5`5!e}̫Iԩa|$R& #' 0_`dg7 fcoOz#c (e7FLŤ HG K_3x)܊ [C_ּ \VkdbDu­08)$i*ɝDϼG }kOC*ǿ0ӻ `Qsk99# `~tQzm~~7aAa9mXH_9h3U մ'Wi+\ &+p7SC!|-oG[+}q6Ϲn ǯ[<x~H>)W`{K]p? xۯ >@>|4njx{jMS~A-Wt^DӇg=>^v~ة V-t-N}B 魵TVP@bPt4Cypd>ζwA}2t+ [\T:[zXM+ C3O T{@ -cTņ}~-?`ֳ7ٞQVms@KoV膐xtg&ba>QQbX_b<ĸ[Ko-SjX{岓135oi ĦWu ON+T:۳?뙋qُyfUs~>ÊWJbP6E5\_uwwsVUMP4\>5Ei nkѳ)x6ӖGQS/ozѺCPf1&% 2lSX/7 w1GC;.{2WU.{b A kyæx԰}[; ?Fc'ݱ+%(O}3wPSqtD{!sNP:f 2Ȝp CEP_,;[WЦ]օg2lz g{<Ҍ{Yd|m͙I~:j!& 9` 2K{,cÕǘk(-m# /nʽv(}{41l\U Ay퍌䦄 cMqk梂#dw&]Ijm'۱}&.bQ9⠓ו?hc 37:Hn@QTr8vns7~* Kݺ) y߭1EV+@ALdC{B 8GUމf's`A/Id[SA6қ3Z~{&oc3,b+q>C{w2Rm@ 4JF?p=w^8A.PXssRl\4TBqm~6j1H,vv[ @ЯXTħC¿V^)d3NMx+^EQ! lM}љߥx%r?Q 42!3DwNoI;IQI7R(ըsъ0jNhN}B WQOΓ&39JtcN+(#DzP<_J9 x̃Esٳ+W0\p Y1zw$RPD&"t `HwsԸSsj:`f$n/`Axe5-w 8%(Ųɝ%,FGD[UW;ؤ~n "!$cqZLXV9LTzUtogLfT* oZP_/lXx/L" >yO-lUߟyS@ƌ 1y~Uu>2-< :fb,jN^J] CXмɑVމ*ݢ )ϧQgJf|)<[GFYK8)9\jrs-iS=CLAm3 #@4VרwnCt늡3r>fccN\>%f׵W_9yT9ȭA}2l`v<3DGz䚮 g8 X}m$.%Nk7ҀkTa7_\cS"_5AuE(彩}Ou,4eGÓHWfr(d=GV;*ZۢK!c8UryGhodHmx_'5+QQbWhZ͑|_-Lf5,LޝhVX0gyu m׬/8S¿Ҡ$%,{?BΨ\=s7D:eN . 8Ԗ ޚ)X_sfU(!(Y=Fٔ3%{c Wʜ2!HzD'&,jbҧR^Pw`gРUq#UQy@I]VfVW'Gr6 ʯX$nIDm*6֮0bjXP$xDLֲrެR 4M%q5uW)%<zJ+{*fFj? -[svƬzod[o[p4OoHGto1-UP1)}:`5^ mq9{M`Ei\{#P!cjl}cO@EA,"k/=}XxٺM:`b*>'Aþ _Yj2Ϗi+'aO*PU7܇U9\Xbo;-)]ÑNcnw(0wzh'Bqyz::dsЉb^|սGJnh'(?>,4GZ-OxLrI_fgP )E\^ͅZdY?$r4ҧnvsYK̂BFQ;(+]ZWilk:nOW}iwV)Xc#Ůi ҡcir'IOO liZË7( ]j#h>n^K6SZ:^hXq>lo4PC F:: 9dG Ml9: 6@)|غEl֐2=c M6O&|*[ѓdEꤦK 6 ]}-,jPs{H/OD|tx#-ӈÅąjo":R&>`!P{u6ĐKOOQ((C-bS{r2\:hx%U Ӥ>HHZ?EMsvᴻ+-Bjr5E:w 2UldJ~h5'!EWހ_U4=)whq]5.w}O7MMګi1G`je8&ql5$$;(g#(<]Ujgbja!~1ƖN>6ɩl' njFȾ_S:Q^tR&P9~nQCdZXTTP81 X,Q.pI)q9J7J)"%"rH2&;{8tp^>imxcb 7aY(%brcf[~vgO:@$psTC:8]WxaղJ?WG([! x;<1]+$ &͸6SgkЃ4Ð >}!zCԠ\z?&nz+~aG)@_|u!HxjKUrJ b'z(xnyhj*J3?'}rtp3쉏uN $M`7W%i"J[s]Np#uauɿnגue4mo!y K=mh~}M+T2 />NMYuӤ#߽b9^m; =d>$Yj{8L޼hi)s̯]=t-A4v.}n T8T,|~S KB+!L>L1b7x,( 'OVZT D/J`WWyPP(!3?,kD.݇``)y)ݝVhB?cz1AWr/?7cT2yTBOm qiD`ҴW^1Ђ-Bmi0%#ߪ䦵OezvIB\rINZ)s`ߑOHZ 5{35J`G)bQ5xP0a y йV5sf5`p!пcϛ,z/?SIMڂ(Y~%2m3qMeɯ.#Vf.>K jr& :ܣE s=I*~ GБsFó~&ʦI+߇e4]S,{a.BZ*NW3ω(=DOY.di#{e9coͭ6_L]/ $dsdg"ֆT}ܚ,:sOZ@z( :3f壔ƬۼY_Bڀ 1 ѪvmE,c~9Nm|1r39D8ɷl ZSU!x0r>[[&^,em@|IU} ܍C63n]*@rEړiޯRfH4 jhаo7]>F_|AˢϤ{% R)yAS`bފPEۺHR趢cM 1L3c._@=T?/+5$bps+(xvvhtsb?AB֞AȫvoeIv/yutFҨ(Odы&>=_dMWUL3YQ-?zs[>(Dp))zZ(?y]}REVVGeͪ;Z<-wD{U\ 88>&1\Z@E7JDq ,@RXozFxh\"]]Nृ>͉#:ً3h%ϋ4xSi77#wtKDDM1&|{{69y9mx2iֳ[e fl}3Wr#--@@D.rfpr2kd.2--:STVLy{"Rj]b#2geAkꑝʓlLɃ&ȆӪL*(ht_t`Cqjh`z7zenxPAmʼѵal} ֢u_tV.\a[Mw(% @UtCD|-1GL b\)!Q]Dfw A~?~BB6&!VVv3FxMO2ų]5ꇉq+^lxPwЙtĵׅRd>-[mmAb0 oA^ǑlBAwrxUCJ?TnţR#9*6arSEK>EQhRkn6:hqgظGadrd'a*-F-ťĪ|]˂$c,_q^_Cݜ)<~)CoYIv·TH\I<7RA7@"X" zD֩V*b(ȹZM}\@m?N*˪!QX3D@]Oț5sT'dJ4ӧ}tt%6baycY !l-Ҝ$jRk|*7/^ߩ)eJYU afMя<]?UIF )|ew~*`Ñ1<L]  gor=C #=ݥ,D8QvЋS;g(Ʊ 5Q]`xـ_k$QF^kjKD(*%b0 !|Q5D.#Άe>\$_dkǎCmJkfex"ɸ%v}rJٻK nu‹$ݺNj*q\4m&~v. ,g^]U*,M. ^D`If'<]6'Z ,\#l`( 8dˢNdѠ11Q='z8pfD̉^A o9Z0qC 8X w ;gqc,rk{|}'/v('H̿xG&FԔW09fǿ}R Njisպ_qI8hRvR url|6HmCwi|?}#17ZȮly!Hj>1Cw$JmZ;Z?!DuD_Я͎ioƕʣ7^ƈGU~cG|U; &_pho /4c=TuVRÓBQQ&7 XCàg~T8׉txj"mv (3~퓕4$F2fVj"e%1&jh;խl>~S0:+kCTG,ԿR_@&Nb #gd:eqDl0~؝,܉0-Ve}IRA].?{?pru$*D^\R7LCbUl|70IN"q'_§DW\ 5io`M>zs@ uWPӮ݆ dQrn ʸ d )}sX#Z ۤ^}0- $yL,QDf>[ Y5fM,63-e$Sv3skeU})̜Y/d$;E :kڴ_?7+_CӉDkx8q`7tۭ4Wf Pl6[BBjԉ 5Y7uB<- F,螘%P|x)"A򤍜Ae*D-iz ?7L+ kA}Ӣ$=k CKҙVc(kQq'9ho<* sQ*[cBZu|PN)CC֊XtmKwڨҫZq2S2;MQC!Ӿ7ߎQA>P>R;#fg,ځFia\'jBOc:HU"sy7- >p]˟nrh'*x4' 3]{>5xJH#$soŰ{L:<6"uƼWg5'YGgF2&.f=q*fePP|O8[@M;O ,7VW<5͟?$me _tҚiN=-$sdۯjZj|Y 1&Hi BAe?C}Fgc5JFHuX? oCHP bPl2EMYg ԝyjfo2 GCq:Bp3α/WњgV=ˡ"K2].WX(q.@GaWЅ{^ "rB@H-հ޸Irgim5DZ[FB 9x`lY=c⸲+*B3n6[ 9*/K8>^k9؁hW)D\n>$8AS\h]*/p~:ac=mҦ(°Y2ЋyHS{Ml< d`-lbxވ#NUs @N2{6FO4A20Y G[tVjAGJ%qbӘm l  'nj8!'ިpÇo`S"b}^_,BڷF-bޛ}@D*`28KEWn^+1(/ H]c٤3rr[07㗋Ct2uf p] TURU~1+2/J˄>a>q*4e67XÔ~utp_ 8nZQVChɻ8c 5wʐßlBէ5>UA79}F2c׏Z))0a︸bJm?7x, =xy8 .Uz:ׄfJTqxɄ\ת{1ߘBxCx[Ds]fp )=hI٭J1Isz׶O t=Yaf':VyD!6.פ E:hrH5Tݕ 4LD+r< ϭ 6?z;±), ثl N  A-; Q 3n݃"ࠤ4>iUmgt:sq ~o0k…pP4Mu)_RdwK6=ZЇKha!"SlS 2HW1K'N z)85³@1UpYP&1 VM /.\C6J¦4]y> |K6N`1G*^*h9(oa(3.\%HTϏ"IǒoE"H4%7eSGv f-1ގkNGGf p! j?- gptPzmIcl,Ǖ&0L%[եm^k+BN3?w_;9T qA2n!Ąέ=ewsY8%%cG~䠗;(|7y7KIVPp#  1˔/p+^)Z7A '4P  n_h.gB8Nv Un˛Cd7NJws%L='g'e. 0|\i>p Y\gѬQVCс@ TGĆBt$rWf^+a7)j:>> f%E= #r>"TIA֏KZP_;A(Kh16O iq;]Lw++!y'ۉtw0}pbqB@DÖMvM`ru-L^tiM"o MQ}d:EH\"D@%WQn\z֮}܎;p3p^6;HJ.r DolUe(pejqw Ǚ_}h+r{r㎽ U)nV6]HrLTtcIPFűd8\Ef$NI6 e 7cG4{wMm|:(\t[wthwv+,qϾR}8$4U3b oÆrZ@1N~c &@njCMTX"Ks[?I%l9!,Zz67D0߱b/@(គAL_fla.zUn2~@9  >/;n#CCP@y%}?s/0i}7/mڮ{-HpRl#i7T ~"Tk#x^N+Rf/GG g7WU?}'`5&H(2]>ICr7)|a"jB!=~:?ϔj<ZRħ6ۛķWi<:}YF7wP㖺 d1?v|鎃.\r~vS&FP-& h^q8й.I|v 6*x_o-mf}NB!jbY~2nI1H1UaOn3 vuѪÁk`38P`<x7qhyU,Mۜ6Z7ImDQ1Xa#?\'qҏɼT'& G1wb7rbJӯX:{GϽNY 'ѤL3yO?q_BԶ~s|@xd| A~H T&f8]!u6Ň̬,-OO,M{CP9OgJwo(f60N? Z8lx Rd7|, }iJ^"eS] v'̳-C^]~CE 2a;ZS35lJcY88j Hl W7=HgboCwLRn^SL<@'ݵAѷ}n =ZZ\f!7wz/A>6nPLT1b9ԓn'{AU-48Jt¼8F`2 D~%K- {Y8<&YU$5+F;1YT׊c4yٛ'Nv10# ׂ7Vq;|*¤AF۸5}V$S;Eadw$@*WG1]PN<3!҉ }_61jL&r'ri7 VSű={ [y;w|MF2rs^1mVvzhhP9<=-TpQك$ћ7| ]XHH;huA,,^Lѯ b٬Hw,p58?V3juAn [n~-Z}dbBiTlqLD#K:%hz4CphdbFZyV}R+1v-%9@3.ظ 1bXX7y5E>4h_[~O*wEDrLë!JuϙA)H5oJB7i/Ñ4:6a=m<`|6TXo/?U)GEͶ7[i :&+(ԢnWec)"@oQi; "T`(s)ྒྷh1aWfe q6ZȺD=f:N ʎNJ^T'xrdVRƠ&Z_h~n;~gsn;-S2glҨglzs9 .oI 8;_5u~_ 鼜pDv!09Wܵ=rJM  ڔ%Ol֌j{9e~q{񍬵ۜοVr@ X 8YF ;}~}N"n1ءMHitE!wX-aXsv;=^|f9?"gyW[ɰcULQø-_\4 +]4~&ybI+2Egdμ 5Ye:X êFs2B\YSSu$Ջe:]P^iͅ&od@#b1x[qB7{4sQ1.Wpv8B~a|y䡽H)/Fe@g .gV@4OD0,ќbQ]Y `j K;bI֎5c#|hءxX8 ;{N"uMy T"[М)̑"Gx,l^ɰq^ p((TiSy~{'R5h N+C%[,Y*"ȅq 0grbE֞Oj`h2?V=rt% ߮ afݱ0 )6l,As8 9>t,||ʲU5kʋRсZYӀ Se{כ95qі @9H:Ȑlb<sW9/uUB*Z)H8`Q_MzB9,\t[PC,91BN{n }az<킰?`4%aLu t"1ڼ@~t3]C!MB`Ff*TۥUpbb4 n .N^:seJ1Y+H 1ȧGYQlѶ4 e)k4?駵Яfnh&ʎ2J/.1-ɣDŽ%gr\BN)Rs=Mnc^BR,Ҹ?6fFUwkhU7>\궮n]"gj,J[&[WKjCB&>}Jza6 3Xd FlB8cG/45c}|(WJ'6h&X9k`Z XJO^[$ʹ{.HoGշ.ESz4a%8Jlyva5en#0'e0*Og8 Ŋkh#T7ngP3îUc)'h\׊ޫ(#Jĝɹ'hP&[IaE%ɐhVqaǸ\r|7P,j3 E =Rk:@h\qP7%*zBymKЪ6g;nr!+.ph cP FZ~vʌxٹ| zElKE9x@:)#Bzt hOw3%|w˳r~ߝO2UOrҾ*/uuOӈM|/ d] ~:K(Ri0@^d]MSpr$)S牬@41ĻKYyFS:*0b(,J7&>ҟQZ8V1 E><;X.X"?_0/4Ʒ^2ؾ(F6/r(jM:|_Qiy>y[ocBJAs:M\knr¾ Fw q򬞎xHR#Y+kK,x22M:KI[ΎWo&KW%)nӏ)䒊w[$^*pB7O_f+$;MR# E7LrNJqj±1)v;]Aic3t'9kV>)zoY\( +=bLJV5^ {Mx=l#kKJO}V?Ȝ8LCc4 m.b~A35ɀyXkV?97=+NÊ7}c5 JEDqN(!w!AE|ΆoU!q3HQ"픽s֔ێYe` 2-M/9Sio'.Txw͗٧b3ANd 1${K:ԗN"cuHr-αPEeRUB9g},3taܫܠ]Ĺ^-iZeN<Ư{w=#ö҃F"7 v-تɚ' tR3rhS\&ClKG`Klf^<0? ֯Ǣ97PWYQ!C(l!Lie~BґZ) ;I ̭ LNU0l j"WhsGwA؊5wv!HڭQi8心4X|)lFS2H`t9##wqV#Z{4 t 6/1-,c7wH qOŪ/Pb+1)X;9$j~IL~p})ޖھskFÌݳ('uqkY[0BAξ> 31جRBYtnO{V'%ݬ:#^[;?iKm VU?]4lr8S%& /O٦~@kKE:> t^ɂl5#]4ű,Gt9o+,خ=)RJ u~A&d6_>/ZSdYO \`'0a9!W./N~zS$?ȑ}.p"5%|zfܯ']/8)0nAg j]~)3AIih*܄Z%2:+t׊`eR+Fx<˜VPK \|v:| G!|F.}\O0\9tژp苗*yM7VH(WvGR(4x1 cQH |@#{IInn {`VTGP')=GHCO&w%^>/i)6Ϧ4ݰX-ūƃ阇\wˉvou铮15O\^k0tPB+wSP-؊J]E_ެwԔv$W\3䜨XE=wD FBɹ35p{i3<U8?-+ۚ,9Ejl:-gʖ~Z7~#|܏KI5BOۡ^rl5ܬz $GhqBa'$O}:67v;7O@1NtWk8$o֢NB w$92j% 3NWS᮸hC%kπ&Dp#x&u,?p xF˅dĞ;j*6QG`(4;Au2XbeRfݔ7b8φ|K~un#w 6lRjL ‡`6IoE$p @k9H2|RkWཱྀ)+58jjs UB'^,Y{^u)bzhyEP8fK%F|T[?z9[6~]:_Oy"|^[Τ./mq**+ @:i^;G]a26<$L6)'LOH)CUvt*#J_κ!ηnEpӴϒq9I-vw@sE<&16lbr/pC6KtxCmnWhUaϻ|`n;K}Ud8Tnӯ, 0"myt ׎ۦS75Gnesf3Y!9 JdCW!jo[NUJu[kKkMWpcv9`KywYܰuQf<*$&|o=5G/wKo%֤]7^,<ϙ]d.V/W˨u?e{Kd4.cJYuw\]w2K#P3-VS-N Fpv́^EK\0Tim:wo+{]#FJz&?puT(m{(.NknOeKɾOQAaa Ѕ8{rtHV%@-QFG0fI ϥϪhKT8]vyreh ")uE7NK =DDЌqS!lČ|׬,Y(xeDj;ZĴ|bDEսe^g"(%ZF3HsQ(f4C)ԢK /_ OHkcO$eXAʖw͈#/z5Մ&!@8TKυ"ױr?U>bږQӔ!V^xI"Q/!YkSНl %@EcDi|ސJ[L`>u\s-wq"owzQ=繰m'[MpKO"qm A`6EM*(GPt "{~ >Orl\3V7))k*¾f8DN%% TY92㪢6ZO„;-KbuylQc}mBZw.¥vd{b[*WqC 5&s=0^oȪ. D[bo#n[4QI9Kq`-xpO lԍ*hI!OQ,rP4ծ>͟Z*&[T%2s {2{' 5q3>'U[E՝(b()g(M)7@-™;c0D>O3#"]o!ΌwlkG0 `Q/[tޑ#RѮBt W$Xvӎ}bh)l6zhv`+uIM>s-y,ù-he25{~DK{|@_elS9vTؽzJlw~vSF%7c >XhJ`V"xh"\[Ǔz'\Np"{d=nIs(P۳t|Pr#H;s쁤O2 C x~ S,v)"5sv$@0PSRP?EŀQrP{.c&C =ޗk^ՍM}bpigޟ `u(j4_< d73LPSm^wS8#Iݒ3I! ݟ̊^o6]$w˵&_ػ=]'JK뒮2t+d>ǗŜA3 q){OcɭJTh+@̼mz+t@EwUL,ҟJ)y X:Pln ㉶ _ +ȇ;gJeql&B-8^ŵv2A~s_<<=#m9BGvyӷT1"jȬi4g̉.:mDi[>-rZߔa!y"b |Iǖ 8Ag b.I|Qx, tO-!9L'u :%ܒf fxv?[s6hExס 0#+dAKqݤs,Vgej\c8ևáL)[^h+!,m ii&~zn*AwǙҵ@vk/Y|5E=6p$M,@$9-ƄwotsSPn7B#C6ީ4:*"paS׀m>_dh1өovٿH1LN;Cw6-%TiT15_Ok`pOfE0}7tIPMOOv M۩'$SYnl2 JZڭ >JokцgK&u dom'fdCDQn~U<֐<]b#"30~s,`c V:%@'|Vмw:Jo:_%Q eɑ+p oG{8qR cwo#3=cev8Z^ȫ:m WÈ1?,Xo|;H*XI"yz+E|Ԧ#u9d]PHAOduwC29f)&9T@?|PQ#DCT@RbUj0A]ɳ@y3Hw0IdHH!2UL(G0蒋M!ԙkEԣ,4;ʀ< G._:Y;Z)uN\8ԓ/&oq`p̂eSe%X0)dȫ&4"?S[.x@_M P*En6r/wDnãe,v 0M DN  rN\}J$ :ks9܌ņBmJW"3T%&\'j #Ϧ Ce[1*O#BG ˣ=gVI_}̭{r ҔY"dd^Vن A'e5H*R YS)h6+e:ADU{4aWtʕyrn!m"F]'=}w#øv>yF1\\܈ԌhW_KgҬ%GY~T*iU$$ܯV{ !yfԒ%>N6Ow -kkԏcc^@/DƳMy ]@ϵQTkB=/ 'ٺ;Um(lD/(o NgY\3CvnJMeigwoVOVMh?]hy$>E I*IO>mA\*FfA%KRF8g,hqՃ}Z, ,6Zu ~'-``@|HA*/q>A!1?ֆ+\Fc+FSq3 5X;kCӿ^U_k<bd!4aSm Gw_ T>~ڴ_)q,pwΫF$+!#s+&zE."07HU&`)})Mn{QjCۦBRi |IB%n_z;KAxx{}VD>'3wF ʭ'"O}mQ(9SkBT犰x"<_ WZ2~3Ӈb-4[d5Z^v<'6<܋:S#pe.9 b#aqU==JP)5.up~< XA(zw}@S /mlVA|6]7tMsݤ r-[!'[tY|M4CJSӐRYl|]@^2vaevKӪbpY) f.bwz=XL&-SՂ)"#GY%)70S+8L "6RaBI0wE*1Rg󍃠OBcS4Crܵhd75x׃KsW4"D\`pT=xNY(Y[}fׂX0k5d!NBio7s` FMa[b!.b8Y\m:T{49b̴ "\Dt9[oS.# bkdKidj\SO8RyC,Ca[R(Ny8Kee=CT<u_vW`[HycNbChsvvfzO=q#Ci[C=>.(KA68NplbC;gsA=ȁ؀ "FwQ( >P M@(?:82)}zG9Ƞua/;!ix棥!~1Rr@C;3V"vrYasz%60K{/Q?~DQbx&w"h^SƃN[M;!UKkr`ߦc9 & 뽔 HX)8c"iTj%6vྼ!gG-(FKH->ƀK;^FB b5~81PA+]qrAv|Z-#, ڸ-3Hٶs5^',LnmZ˾Ub2"xL5iZ=vS9p2b"6ͯ+p0*52z6K|bQa!9rݿvv}c-*8fNk4 PZB&0A78A/Mb9w_'O1xgI YZ