asterisk-dahdi-13.7.1-1.fc22$>łGų?Nl>>?d  Chl , X  n      {     :\ Hw(8*9 |*:F*=kBsG H I XYZ0[4\H ]t ^bYdgelfolqt u v w x@ ylGCasterisk-dahdi13.7.11.fc22Modules for Asterisk that use DAHDIModules for Asterisk that use DAHDI.V%buildvm-04-nfs.phx2.fedoraproject.org 'Fedora ProjectFedora ProjectGPLv2Fedora ProjectApplications/Internethttp://www.asterisk.org/linuxi686/usr/sbin/usermod -a -G dahdi asterisk ))j@:H<K*X(큤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-13.7.1-1.fc22.src.rpmasterisk-dahdiasterisk-dahdi(x86-32)asterisk-zaptelconfig(asterisk-dahdi) @@@@@@@@@@@@@@@@@@    @/bin/sh/usr/sbin/usermodasteriskconfig(asterisk-dahdi)dahdi-toolslibc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.16)libc.so.6(GLIBC_2.2)libc.so.6(GLIBC_2.3)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)libgcc_s.so.1libgcc_s.so.1(GCC_3.0)libgcc_s.so.1(GCC_3.3.1)libpri.so.1.4libpthread.so.0libpthread.so.0(GLIBC_2.0)libpthread.so.0(GLIBC_2.1)libpthread.so.0(GLIBC_2.2)libtonezone.so.2.0rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)13.7.1-1.fc2213.7.1-1.fc222.0.03.0.4-14.6.0-14.0-15.2-14.12.0.1V=@VV@Vk@Ua@UrU&iU&iUUTr@Tr@T TT5TmTmTeTD@TD@TD@TD@TD@SS@SSSSSSt@SW@SS@R@R@R@Re@R7R7QQ@QV@Q@Q@QvwQT0QP9@PrP!@PqP@P7@PP@P@P~PtPb@Pb@Pb@PE@PE@P?UP?UP?UP?UP/P@OOOG@O#O#OO O OOOtNOc+@O]I>]I-I-I-I-IH,HCH@HWH@H@H@HkmHQHO@H1kH @Gu@GGG@G@G@G߮G΋@G@G@G@GG{|Gt@Gl@GiGiGg@GcGcG_@G_@G^{G]*@GO@GB@GAzG=@G9G G m@F%@FS@F^F^F @F@FF;@F;@FF@FtF#@F@FEF@F@Fzh@FvsFvsFvsFvsFvsFu"@Fu"@Fr@FAF1F@EWE@E@E8@E7hE6@E6@E6@E2"DDD(@DWIDLDGwDGwDF&@D - 13.7.1-1Fedora Release Engineering - 13.3.2-3.1Jared Smith - 13.3.2-3Robert Scheck - 13.3.2-2Fedora Release Engineering - 13.3.2-1.2Jitka Plesnikova - 13.3.2-1.1Jeffrey C. Ollie - 13.3.2-1:Jeffrey C. Ollie - 13.3.1-1:Jeffrey C. Ollie - 13.3.0-1:Jeffrey C. Ollie - 13.2.0-1:Jeffrey C. Ollie - 13.1.1-1:Jeffrey C. Ollie - 13.1.0-1Peter Robinson 13.0.2-3Tom Callaway - 13.0.2-2Jeffrey C. Ollie - 13.0.2-1Jeffrey C. Ollie - 13.0.1-1Jeffrey C. Ollie - 13.0.0-1Tom Callaway - 11.13.1-2Jeffrey C. Ollie - 11.13.1-1Jeffrey C. Ollie - 11.13.0-1Jeffrey C. Ollie - 11.12.1-1Jeffrey C. Ollie - 11.12.0-1Jeffrey C. Ollie - 11.11.0-1Jitka Plesnikova - 11.10.2-2.2Fedora Release Engineering - 11.10.2-2.1Jeffrey Ollie - 11.10.2-2:Jeffrey Ollie - 11.10.2-1:Jeffrey Ollie - 11.10.1-1:Jeffrey Ollie - 11.10.0-1:Fedora Release Engineering - 11.9.0-2.1Dennis Gilmore - 11.9.0-2Jeffrey Ollie - 11.9.0-1:Jeffrey Ollie - 11.8.1-1:Jeffrey Ollie - 11.8.0-1:Jeffrey Ollie - 11.7.0-1:Jeffrey Ollie - 11.6.1-1:Jeffrey Ollie - 11.6.0-1:Jeffrey Ollie - 11.5.1-3:Jeffrey Ollie - 11.5.1-2:Jeffrey Ollie - 11.5.1-1:Fedora Release Engineering - 11.4.0-2.2Petr Pisar - 11.4.0-2.1Rex Dieter 11.4.0-2Jeffrey Ollie - 11.4.0-1:Tom Callaway - 11.3.0-2:Jeffrey Ollie - 11.3.0-1:Jeffrey Ollie - 11.2.2-1:Jeffrey Ollie - 11.2.1-1:Jeffrey Ollie - 11.2.0-1:Jeffrey Ollie - 11.1.2-1:Jeffrey Ollie - 11.1.1-1:Jeffrey Ollie - 11.1.0-1:Jeffrey Ollie - 11.0.2-1:Dan Horák - 11.0.1-3Dennis Gilmore - 11.0.1-2Jeffrey Ollie - 11.0.1-1Jeffrey Ollie - 11.0.0-1:Jeffrey Ollie - 11.0.0-0.7.rc2:Jeffrey Ollie - 11.0.0-0.6.rc1Jeffrey Ollie - 11.0.0-0.5.beta2Jeffrey Ollie - 11.0.0-0.4.beta2Jeffrey Ollie - 10.8.0-1Dan Horák - 11.0.0-0.3.beta1Dan Horák - 10.7.1-2Jeffrey Ollie - 10.7.1-1Jeffrey Ollie - 10.7.0-1Jeffrey Ollie - 10.6.1-1Jeffrey Ollie - 10.6.0-1Jeffrey Ollie - 11.0.0-0.2.beta1Fedora Release Engineering - 10.5.2-1.2Petr Pisar - 10.5.2-1.1Jeffrey Ollie - 10.5.2-1:Petr Pisar - 10.5.1-1.1Jeffrey Ollie - 10.5.1-1Jeffrey Ollie - 10.5.0-1Petr Pisar - 10.4.2-1.1Jeffrey Ollie - 10.4.2-1Jeffrey Ollie - 10.4.1-1Jeffrey Ollie - 10.4.0-1Jeffrey Ollie - 10.3.1-1Russell Bryant - 10.3.0-1Russell Bryant - 10.2.1-1Jeffrey C. Ollie - 10.1.2-2Jeffrey C. Ollie - 10.1.2-1Jeffrey C. Ollie - 10.1.1-1Jeffrey C. Ollie - 10.1.0-1Russell Bryant - 10.0.0-2Fedora Release Engineering - 10.0.0-1.1Jeffrey C. Ollie - 10.0.0-1Jeffrey C. Ollie - 10.0.0-1Jeffrey C. Ollie - 10.0.0-0.7.rc3Jeffrey C. Ollie - 10.0.0-0.6.rc2Jeffrey C. Ollie - 10.0.0-0.5.rc1Jeffrey C. Ollie - 10.0.0-0.4.beta2Jeffrey C. Ollie - 10.0.0-0.3.beta2Jeffrey C. Ollie - 10.0.0-0.2.beta2Jeffrey C. Ollie - 10.0.0-0.1.beta1Petr Sabata - 1.8.5.0-1.2Petr Sabata - 1.8.5.0-1.1Jeffrey C. Ollie - 1.8.5.0-1Jeffrey C. Ollie - 1.8.5-0.2Jeffrey C. Ollie - 1.8.5-0.1.rc1Jeffrey C. Ollie - 1.8.5-0.1.rc1Jeffrey C. Ollie - 1.8.4.4-2Jeffrey C. Ollie - 1.8.4.4-1Jeffrey C. Ollie - 1.8.4.3-3Jeffrey C. Ollie - 1.8.4.3-2Jeffrey C. Ollie - 1.8.4.3-1Jeffrey C. Ollie - 1.8.4.2-2Marcela Mašláňová - 1.8.4.2-1.2Marcela Mašláňová - 1.8.4.2-1.1Jeffrey C. Ollie - 1.8.4.2-1:Jeffrey C. Ollie - 1.8.3.3-1Jeffrey C. Ollie - 1.8.3.2-2Jeffrey C. Ollie - 1.8.3.2-1Jeffrey C. Ollie - 1.8.3.1-1 - 1.8.3-1 - 1.8.3-0.7.rc3Jeffrey C. Ollie - 1.8.3-0.6.rc2Jeffrey C. Ollie - 1.8.3-0.5.rc2Jeffrey C. Ollie - 1.8.3-0.4.rc2Fedora Release Engineering - 1.8.3-0.3.rc2Jeffrey C. Ollie - 1.8.3-0.2.rc2Jeffrey C. Ollie - 1.8.3-0.1.rc1Jeffrey C. Ollie - 1.8.2.3-1Jeffrey C. Ollie - 1.8.2.2-2Jeffrey C. Ollie - 1.8.2.2-1Jeffrey C. Ollie - 1.8.2.1-1Jeffrey C. Ollie - 1.8.2-1Jeffrey C. Ollie - 1.8.1.1-1Jeffrey C. Ollie - 1.8.1-1Dennis Gilmore - 1.8.0-6Dennis Gilmore - 1.8.0-5Dennis Gilmore - 1.8.0-4Jeffrey C. Ollie - 1.8.0-3Jeffrey C. Ollie - 1.8.0-2Jeffrey C. Ollie - 1.8.0-1Jeffrey C. Ollie - 1.8.0-0.8.rc5:Jeffrey C. Ollie - 1.8.0-0.7.rc3Jeffrey C. Ollie - 1.8.0-0.6.rc2Jeffrey C. Ollie - 1.8.0-0.5.beta5Jeffrey C. Ollie - 1.8.0-0.4.beta4Jeffrey C. Ollie - 1.8.0-0.3.beta3Jeffrey C. Ollie - 1.8.0-0.2.beta2Jeffrey C. Ollie - 1.8.0-0.1.beta2Jeffrey C. Ollie - 1.6.2.10-1Jeffrey C. Ollie - 1.6.2.8-0.3.rc1Marcela Maslanova - 1.6.2.8-0.2.rc1Jeffrey C. Ollie - 1.6.2.7-1Jeffrey C. Ollie - 1.6.2.7-0.2.rc3Jeffrey C. Ollie - 1.6.2.7-0.1.rc2Jeffrey C. Ollie - 1.6.2.6-1Jeffrey C. Ollie - 1.6.2.6-0.1.rc2Jeffrey C. Ollie - 1.6.2.5-2Jeffrey C. Ollie - 1.6.2.5-1Jeffrey C. Ollie - 1.6.2.4-1Jeffrey C. Ollie - 1.6.2.2-1Jeffrey C. Ollie - 1.6.2.1-1Jeffrey C. Ollie - 1.6.2.1-0.1.rc1Jeffrey C. Ollie - 1.6.2.0-1Jeffrey C. Ollie - 1.6.2.0-0.16.rc8Jeffrey C. Ollie - 1.6.2.0-0.15.rc7Jeffrey C. Ollie - 1.6.2.0-0.14.rc6Jeffrey C. Ollie - 1.6.2.0-0.13.rc6Jeffrey C. Ollie - 1.6.2.0-0.12.rc6Jeffrey C. Ollie - 1.6.2.0-0.11.rc5Jeffrey C. Ollie - 1.6.2.0-0.10.rc4Jeffrey C. Ollie - 1.6.2.0-0.9.rc3Jeffrey C. Ollie - 1.6.2.0-0.8.rc3Jeffrey C. Ollie - 1.6.2.0-0.7.rc3Jeffrey C. Ollie - 1.6.2.0-0.6.rc3Jeffrey C. Ollie - 1.6.2.0-0.5.rc3Jeffrey C. Ollie - 1.6.2.0-0.4.rc3Jeffrey C. Ollie - 1.6.2.0-0.3.rc2Jeffrey C. Ollie - 1.6.2.0-0.2.rc2Jeffrey C. Ollie - 1.6.2.0-0.1.rc2Jeffrey C. Ollie - 1.6.1.6-2Jeffrey C. Ollie - 1.6.1.6-1Jeffrey C. Ollie - 1.6.1-0.26.rc1Tomas Mraz - 1.6.1-0.25.rc1Fedora Release Engineering - 1.6.1-0.24.rc1Jeffrey C. Ollie - 1.6.1-0.23.rc1Fedora Release Engineering - 1.6.1-0.22.rc1Jeffrey C. Ollie - 1.6.1-0.21.rc1Tomas Mraz - 1.6.1-0.13.beta4Jeffrey C. Ollie - 1.6.1-0.12.beta4Jeffrey C. Ollie - 1.6.1-0.10.beta4Jeffrey C. Ollie - 1.6.1-0.9.beta4Jeffrey C. Ollie - 1.6.1-0.8.beta4Jeffrey C. Ollie - 1.6.1-0.7.beta3Alex Lancaster - 1.6.1-0.6.beta2Jeffrey C. Ollie - 1.6.1-0.5.beta2Jeffrey C. Ollie - 1.6.1-0.4.beta2Jeffrey C. Ollie - 1.6.1-0.3.beta2Jeffrey C. Ollie - 1.6.1-0.2.beta2Jeffrey C. Ollie - 1.6.0.1-3Jeffrey C. Ollie - 1.6.0.1-2Jeffrey C. Ollie - 1.6.0-1- Bastien Nocera - 1.6.0-0.22.beta9Jeffrey C. Ollie - 1.6.0-0.21.beta9Jeffrey C. Ollie - 1.6.0-0.20.beta9Jeffrey C. Ollie - 1.6.0-0.19.beta9Jeffrey C. Ollie - 1.6.0-0.18.beta9Jeffrey C. Ollie - 1.6.0-0.17.beta9Jeffrey C. Ollie - 1.6.0-0.16.beta9Jeffrey C. Ollie - 1.6.0-0.15.beta9Jeffrey C. Ollie - 1.6.0-0.14.beta9Jeffrey C. Ollie - 1.6.0-0.13.beta8Jeffrey C. Ollie - 1.6.0-0.12.beta7.1Jeffrey C. Ollie - 1.6.0-0.11.beta7.1Jeffrey C. Ollie - 1.6.0-0.10.beta7Jeffrey C. Ollie - 1.6.0-0.9.beta6Jeffrey C. Ollie - 1.6.0-0.8.beta6Jeffrey C. Ollie - 1.6.0-0.6.beta6Tom "spot" Callaway - 1.6.0-0.5.beta5Jeffrey C. Ollie - 1.6.0-0.4.beta5Jeffrey C. Ollie - 1.6.0-0.3.beta4Jeffrey C. Ollie - 1.6.0-0.2.beta4Jeffrey C. Ollie - 1.6.0-0.1.beta4Jeffrey C. Ollie - 1.4.18-1Jeffrey C. Ollie - 1.4.17-1Jeffrey C. Ollie - 1.4.16.2-1Jeffrey C. Ollie - 1.4.16.1-2Jeffrey C. Ollie - 1.4.16.1-1Jeffrey C. Ollie - 1.4.16-2Jeffrey C. Ollie - 1.4.16-1Jeffrey C. Ollie - 1.4.15-7Jeffrey C. Ollie - 1.4.15-6Jeffrey C. Ollie - 1.4.15-5Jeffrey C. Ollie - 1.4.15-4Jeffrey C. Ollie - 1.4.15-3Jeffrey C. Ollie - 1.4.15-2Jeffrey C. Ollie - 1.4.15-1Jeffrey C. Ollie - 1.4.14-2Jeffrey C. Ollie - 1.4.14-1Jeffrey C. Ollie - 1.4.13-7Jeffrey C. Ollie - 1.4.13-6Jeffrey C. Ollie - 1.4.13-1Jeffrey C. Ollie - 1.4.12.1-1Jeffrey C. Ollie - 1.4.11-1Jeffrey C. Ollie - 1.4.10.1-1Jeffrey C. Ollie - 1.4.10-1Jeffrey C. Ollie - 1.4.9-7Jeffrey C. Ollie - 1.4.9-6Jeffrey C. Ollie - 1.4.9-5Jeffrey C. Ollie - 1.4.9-4Jeffrey C. Ollie - 1.4.9-3Jeffrey C. Ollie - 1.4.9-2Jeffrey C. Ollie - 1.4.9-1Jeffrey C. Ollie - 1.4.8-1Jeffrey C. Ollie - 1.4.7.1-1Jeffrey C. Ollie - 1.4.7-1Jeffrey C. Ollie - 1.4.6-4Jeffrey C. Ollie - 1.4.6-3Jeffrey C. Ollie - 1.4.6-2Jeffrey C. Ollie - 1.4.6-1Jeffrey C. Ollie - 1.4.5-10Jeffrey C. Ollie - 1.4.5-9Jeffrey C. Ollie - 1.4.5-8Jeffrey C. Ollie - 1.4.5-7Jeffrey C. Ollie - 1.4.5-6Jeffrey C. Ollie - 1.4.5-5Jeffrey C. Ollie - 1.4.5-4Jeffrey C. Ollie - 1.4.5-3Jeffrey C. Ollie - 1.4.5-1Jeffrey C. Ollie - 1.4.4-2Jeffrey C. Ollie - 1.4.4-1Jeffrey C. Ollie - 1.4.2-1Jeffrey C. Ollie - 1.4.1-2Jeffrey C. Ollie - 1.4.1-1Jeffrey C. Ollie - 1.4.0-6.beta4Jeffrey C. Ollie - 1.4.0-5.beta3Jeffrey C. Ollie - 1.4.0-4.beta3Jeffrey C. Ollie - 1.4.0-3.beta3Jeffrey C. Ollie - 1.4.0-2.beta3Jeffrey C. Ollie - 1.4.0-1.beta3Jeffrey C. Ollie - 1.4.0-0.beta2Jeffrey C. Ollie - 1.2.10-1Jeffrey C. Ollie - 1.2.9.1Jeffrey C. Ollie - 1.2.8Jeffrey C. Ollie - 1.2.7.1-6Jeffrey C. Ollie - 1.2.7.1-5Jeffrey C. Ollie - 1.2.7.1-4Jeffrey C. Ollie - 1.2.7.1-3Jeffrey C. Ollie - 1.2.7.1-2Jeffrey C. Ollie - 1.2.7-1Jeffrey C. Ollie - 1.2.6-3Jeffrey C. Ollie - 1.2.6-2Jeffrey C. Ollie - 1.2.6-1Jeffrey C. Ollie - 1.2.5-1Jeffrey C. Ollie - 1.2.4-4Jeffrey C. Ollie - 1.2.4-3Jeffrey C. Ollie - 1.2.4-2Jeffrey C. Ollie - 1.2.4-1Jeffrey C. Ollie - 1.2.3-4Jeffrey C. Ollie - 1.2.3-3Jeffrey C. Ollie - 1.2.3-2Jeffrey C. Ollie - 1.2.3-1- Update to upstream 13.7.1 release for security fixes - Resolves AST-2016-001: BEAST vulnerability in HTTP server - Resolves AST-2016-002: File descriptor exhaustion in chan_sip - Resolves AST-2016-003: Remote crash vulnerability receiving UDPTL FAX data - Full changelog at http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.7.1 - Also build the 'radius' sub-package against freeradius-client-devel, as the radiusclient-ng project is dead- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Remove %defattr macro invocations, as they are no longer needed- Rebuild for libical 2.0.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- Perl 5.22 rebuild- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28, 11.6, and 13.1 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28.cert-5, 1.8.32.3, 11.6-cert11, - 11.17.1, 12.8.2, 13.1-cert2, and 13.3.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerability: - - * AST-2015-003: TLS Certificate Common name NULL byte exploit - - When Asterisk registers to a SIP TLS device and and verifies the server, - Asterisk will accept signed certificates that match a common name other than - the one Asterisk is expecting if the signed certificate has a common name - containing a null byte after the portion of the common name that Asterisk - expected. This potentially allows for a man in the middle attack. - - For more information about the details of this vulnerability, please read - security advisory AST-2015-003, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert5 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.32.3 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert11 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.17.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.8.2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-13.1-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.3.2 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2015-003.pdf- The Asterisk Development Team has announced the release of Asterisk 13.3.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.3.1 resolves an issue reported by the - community and would have not been possible without your participation. - Thank you! - - The following is the issue resolved in this release: - - * --- pjsip: resolve compatibility problem with ast_sip_session - (Closes issue ASTERISK-24941. Reported by Matt Jordan) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.3.1- The Asterisk Development Team has announced the release of Asterisk 13.3.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.3.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - New Features made in this release: - ----------------------------------- - * ASTERISK-24703 - ARI: Add the ability to "transfer" (redirect) a - channel (Reported by Matt Jordan) - * ASTERISK-17899 - Handle crypto lifetime in SDES-SRTP negotiation - (Reported by Dwayne Hubbard) - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24616 - Crash in res_format_attr_h264 due to invalid - string copy (Reported by Yura Kocyuba) - * ASTERISK-24748 - res_pjsip: If wizards explicitly configured in - sorcery.conf false ERROR messages may occur (Reported by Joshua - Colp) - * ASTERISK-24769 - res_pjsip_sdp_rtp: Local ICE candidates leaked - (Reported by Matt Jordan) - * ASTERISK-24742 - [patch] Fix ast_odbc_find_table function in - res_odbc (Reported by ibercom) - * ASTERISK-24479 - Enable REF_DEBUG for module references - (Reported by Corey Farrell) - * ASTERISK-24701 - Stasis: Write timeout on WebSocket fails to - fully disconnect underlying socket, leading to events being - dropped with no additional information (Reported by Matt Jordan) - * ASTERISK-24772 - ODBC error in realtime sippeers when device - unregisters under MariaDB (Reported by Richard Miller) - * ASTERISK-24752 - Crash in bridge_manager_service_req when bridge - is destroyed by ARI during shutdown (Reported by Richard - Mudgett) - * ASTERISK-24741 - dtls_handler causes Asterisk to crash (Reported - by Zane Conkle) - * ASTERISK-24015 - app_transfer fails with PJSIP channels - (Reported by Private Name) - * ASTERISK-24727 - PJSIP: Crash experienced during multi-Asterisk - transfer scenario. (Reported by Mark Michelson) - * ASTERISK-24771 - ${CHANNEL(pjsip)} - segfault (Reported by - Niklas Larsson) - * ASTERISK-24716 - Improve pjsip log messages for presence - subscription failure (Reported by Rusty Newton) - * ASTERISK-24612 - res_pjsip: No information if a required sorcery - wizard is not loaded (Reported by Joshua Colp) - * ASTERISK-24768 - res_timing_pthread: file descriptor leak - (Reported by Matthias Urlichs) - * ASTERISK-24685 - "pjsip show version" CLI command (Reported by - Joshua Colp) - * ASTERISK-24632 - install_prereq script installs pjproject - without IPv6 support (Reported by Rusty Newton) - * ASTERISK-24085 - Documentation - We should remove or further - document the 'contact' section in pjsip.conf (Reported by Rusty - Newton) - * ASTERISK-24791 - Crash in ast_rtcp_write_report (Reported by - JoshE) - * ASTERISK-24700 - CRASH: NULL channel is being passed to - ast_bridge_transfer_attended() (Reported by Zane Conkle) - * ASTERISK-24451 - chan_iax2: reference leak in sched_delay_remove - (Reported by Corey Farrell) - * ASTERISK-24799 - [patch] make fails with undefined reference to - SSLv3_client_method (Reported by Alexander Traud) - * ASTERISK-22670 - Asterisk crashes when processing ISDN AoC - Events (Reported by klaus3000) - * ASTERISK-24689 - Segfault on hangup after outgoing PRI-Euroisdn - call (Reported by Marcel Manz) - * ASTERISK-24740 - [patch]Segmentation fault on aoc-e event - (Reported by Panos Gkikakis) - * ASTERISK-24787 - [patch] - Microsoft exchange incompatibility - for playing back messages stored in IMAP - play_message: No - origtime (Reported by Graham Barnett) - * ASTERISK-24814 - asterisk/lock.h: Fix syntax errors for non-gcc - OSX with 64 bit integers (Reported by Corey Farrell) - * ASTERISK-24796 - Codecs and bucket schema's prevent module - unload (Reported by Corey Farrell) - * ASTERISK-24724 - 'httpstatus' Web Page Produces Incomplete HTML - (Reported by Ashley Sanders) - * ASTERISK-24499 - Need more explicit debug when PJSIP dialstring - is invalid (Reported by Rusty Newton) - * ASTERISK-24785 - 'Expires' header missing from 200 OK on - REGISTER (Reported by Ross Beer) - * ASTERISK-24677 - ARI GET variable on channel provides unhelpful - response on non-existent variable (Reported by Joshua Colp) - * ASTERISK-24797 - bridge_softmix: G.729 codec license held - (Reported by Kevin Harwell) - * ASTERISK-24812 - ARI: Creating channels through /channels - resource always uses SLIN, which results in unneeded transcoding - (Reported by Matt Jordan) - * ASTERISK-24800 - Crash in __sip_reliable_xmit due to invalid - thread ID being passed to pthread_kill (Reported by JoshE) - * ASTERISK-17721 - Incoming SRTP calls that specify a key lifetime - fail (Reported by Terry Wilson) - * ASTERISK-23214 - chan_sip WARNING message 'We are requesting - SRTP for audio, but they responded without it' is ambiguous and - wrong in some cases (Reported by Rusty Newton) - * ASTERISK-15434 - [patch] When ast_pbx_start failed, both an - error response and BYE are sent to the caller (Reported by - Makoto Dei) - * ASTERISK-18105 - most of asterisk modules are unbuildable in - cygwin environment (Reported by feyfre) - * ASTERISK-24828 - Fix Frame Leaks (Reported by Kevin Harwell) - * ASTERISK-24751 - Integer values in json payload to ARI cause - asterisk to crash (Reported by jeffrey putnam) - * ASTERISK-24838 - chan_sip: Locking inversion occurs when - building a peer causes a peer poke during request handling - (Reported by Richard Mudgett) - * ASTERISK-24825 - Caller ID not recognized using - Centrex/Distinctive dialing (Reported by Richard Mudgett) - * ASTERISK-24830 - res_rtp_asterisk.c checks USE_PJPROJECT not - HAVE_PJPROJECT (Reported by Stefan Engström) - * ASTERISK-24840 - res_pjsip: conflicting endpoint identifiers - (Reported by Kevin Harwell) - * ASTERISK-24755 - Asterisk sends unexpected early BYE to - transferrer during attended transfer when using a Stasis bridge - (Reported by John Bigelow) - * ASTERISK-24739 - [patch] - Out of files -- call fails -- - numerous files with inodes from under /usr/share/zoneinfo, - mostly posixrules (Reported by Ed Hynan) - * ASTERISK-23390 - NewExten Event with application AGI shows up - before and after AGI runs (Reported by Benjamin Keith Ford) - * ASTERISK-24786 - [patch] - Asterisk terminates when playing a - voicemail stored in LDAP (Reported by Graham Barnett) - * ASTERISK-24808 - res_config_odbc: Improper escaping of - backslashes occurs with MySQL (Reported by Javier Acosta) - * ASTERISK-24807 - Missing mandatory field Max-Forwards (Reported - by Anatoli) - * ASTERISK-20850 - [patch]Nested functions aren't portable. - Adapting RAII_VAR to use clang/llvm blocks to get the - same/similar functionality. (Reported by Diederik de Groot) - * ASTERISK-24872 - [patch] AMI PJSIPShowEndpoint closes AMI - connection on error (Reported by Dmitriy Serov) - * ASTERISK-19470 - Documentation on app_amd is incorrect (Reported - by Frank DiGennaro) - * ASTERISK-21038 - Bad command completion of "core set debug - channel" (Reported by Richard Kenner) - * ASTERISK-18708 - func_curl hangs channel under load (Reported by - Dave Cabot) - * ASTERISK-16779 - Cannot disallow unknown format '' (Reported by - Atis Lezdins) - * ASTERISK-24876 - Investigate reference leaks from - tests/channels/local/local_optimize_away (Reported by Corey - Farrell) - * ASTERISK-24882 - chan_sip: Improve usage of REF_DEBUG (Reported - by Corey Farrell) - * ASTERISK-24817 - init_logger_chain: unreachable code block - (Reported by Corey Farrell) - * ASTERISK-24880 - [patch]Compilation under OpenBSD (Reported by - snuffy) - * ASTERISK-24879 - [patch]Compilation fails due to 64bit time - under OpenBSD (Reported by snuffy) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24745 - [patch]Add no_answer to ARI hangup causes - (Reported by Ben Merrills) - * ASTERISK-24811 - asterisk-publication sorcery object does not - use realtime (Reported by Matt Hoskins) - * ASTERISK-24790 - Reduce spurious noise in logs from voicemail - - Couldn't find mailbox %s in context (Reported by Graham Barnett) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.3.0- The Asterisk Development Team has announced the release of Asterisk 13.2.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.2.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24342 - PJSIP: Qualifying endpoints attempts to do them - all at the same time. (Reported by Richard Mudgett) - * ASTERISK-24514 - res_pjsip_outbound_registration: stack overflow - when using non-default sorcery wizard (Reported by Kevin - Harwell) - * ASTERISK-24472 - Asterisk Crash in OpenSSL when calling over WSS - from JSSIP (Reported by Badalian Vyacheslav) - * ASTERISK-24607 - res_pjsip_session: re-INVITE with declined - media streams results in 488 (Reported by Matt Jordan) - * ASTERISK-24563 - Direct Media calls within private network - sometimes get one way audio (Reported by Kevin Harwell) - * ASTERISK-24604 - res_rtp_asterisk: Crash during restart due to - race condition in accessing codec in stored ast_frame and codec - core (Reported by Matt Jordan) - * ASTERISK-24614 - Deadlock when DEBUG_THREADS compiler flag - enabled (Reported by Richard Mudgett) - * ASTERISK-24449 - Reinvite for T.38 UDPTL fails if SRTP is - enabled (Reported by Andreas Steinmetz) - * ASTERISK-24619 - [patch]Gcc 4.10 fixes in r413589 (1.8) wrongly - casts char to unsigned int (Reported by Walter Doekes) - * ASTERISK-24536 - AMI redirect with PJSIP fails to move extra - channel (Reported by Niklas Larsson) - * ASTERISK-24459 - bridge_native_rtp: Native RTP bridging is - chosen for RTP compatible channels when the DTMF mode is not - compatible (Reported by Yaniv Simhi) - * ASTERISK-24337 - Spammy DEBUG message needs to be at a higher - level - 'Remote address is null, most likely RTP has been - stopped' (Reported by Rusty Newton) - * ASTERISK-24513 - Local channel apparently leaked in off-nominal - DTMF attended transfer (Reported by Mark Michelson) - * ASTERISK-23733 - 'reload acl' fails if acl.conf is not present - on startup (Reported by Richard Kenner) - * ASTERISK-24628 - [patch] chan_sip - CANCEL is sent to wrong - destination when 'sendrpid=yes' (in proxy environment) (Reported - by Karsten Wemheuer) - * ASTERISK-23841 - DTMF atxfer doesn't set CallerID for the recall - calls to the transferrer. (Reported by Richard Mudgett) - * ASTERISK-24376 - res_pjsip_refer: REFER request for remote - session attempts to direct channel to external_replaces - extension instead of context, without providing for the - Referred-To SIP URI (Reported by Matt Jordan) - * ASTERISK-24591 - Stasis() side of an ARI originated channel - cannot be Redirected (Reported by Kinsey Moore) - * ASTERISK-24049 - Asterisk Manager Interface: A number of list - type responses aren't using astman_send_listack (Reported by - Jonathan Rose) - * ASTERISK-24637 - Channel re-enters Stasis() when it should not - (Reported by John Bigelow) - * ASTERISK-24474 - sip_to_pjsip.py lacks documentation and does - not function (Reported by John Kiniston) - * ASTERISK-24672 - [PATCH] Memory leak in func_curl CURLOPT - (Reported by Kristian Høgh) - * ASTERISK-20744 - [patch] Security event logging does not work - over syslog (Reported by Michael Keuter) - * ASTERISK-24665 - Configure check required for - pjsip_get_dest_info() (Reported by Mark Michelson) - * ASTERISK-23850 - Park Application does not respect Return - Context Priority (Reported by Andrew Nagy) - * ASTERISK-23991 - [patch]asterisk.pc file contains a small error - in the CFlags returned (Reported by Diederik de Groot) - * ASTERISK-24655 - res_pjsip_outbound_publish: Hang on shutdown - while attempting to publish (Reported by Kevin Harwell) - * ASTERISK-24485 - res_pjsip cannot be unloaded or shutdown - (Reported by Corey Farrell) - * ASTERISK-24663 - [patch] Unnamed semaphore autoconf check fails - on cross compilation (Reported by abelbeck) - * ASTERISK-24624 - Transfer to invalid extension results in hung - channel. (Reported by Zane Conkle) - * ASTERISK-24615 - When Multiple Transports Exist in pjsip.conf, - Incorrect External Addresses is Used in SIP Packets When - Responding to INVITE (Reported by David Justl) - * ASTERISK-24288 - [patch] - ODBC usage with app_voicemail - - voicemail is not deleted after review, hangup (Reported by LEI - FU) - * ASTERISK-24048 - [patch] contrib/scripts/install_prereq selects - 32-bit packages on 64-bit hosts (Reported by Ben Klang) - * ASTERISK-24600 - Stuck IAX channels, Asterisk stops responding - to most traffic, potential deadlock (Reported by Jeff Collell) - * ASTERISK-24560 - Creating a named ARI bridge twice causes a - crash (Reported by Kinsey Moore) - * ASTERISK-24682 - app_dial: Multiple DialEnd events emitted when - MACRO_RESULT or GOSUB_RESULT are an unexpected value (Reported - by Matt Jordan) - * ASTERISK-24640 - Registration pending stays forever after sip - reload (Reported by Max Man) - * ASTERISK-24673 - outgoing sip registers cannot be removed or - modified without doing restart (or doing module unload - chan_sip.so) (Reported by Stefan Engström) - * ASTERISK-24709 - [patch] msg_create_from_file used by MixMonitor - m() option does not queue an MWI event (Reported by Gareth - Palmer) - * ASTERISK-24649 - Pushing of channel into bridge fails; Stasis - fails to get app name (Reported by John Bigelow) - * ASTERISK-24355 - [patch] chan_sip realtime uses case sensitive - column comparison for 'defaultuser' (Reported by - HZMI8gkCvPpom0tM) - * ASTERISK-24693 - Investigate and fix memory leaks in Asterisk - (Reported by Kevin Harwell) - * ASTERISK-24626 - Voicemail passwords not being stored in ARA - (Reported by Paddy Grice) - * ASTERISK-24539 - Compile fails on OSX because of sem_timedwait - in bridge_channel.c (Reported by George Joseph) - * ASTERISK-24544 - Compile fails on OSX Yosemite because of - incorrect detection of htonll and ntohll (Reported by George - Joseph) - * ASTERISK-24723 - confbridge: CLI command 'confbridge list XXXX' - no longer displays user menus (Reported by Matt Jordan) - * ASTERISK-24721 - manager: ModuleLoad action incorrectly reports - 'module not found' during a Reload operation (Reported by Matt - Jordan) - * ASTERISK-24719 - ConfBridge recording channels get stuck when - recording started/stopped more than once (Reported by Richard - Mudgett) - * ASTERISK-24715 - chan_sip: stale nonce causes failure (Reported - by Kevin Harwell) - * ASTERISK-24728 - tcptls: Bad file descriptor error when - reloading chan_sip (Reported by Kevin Harwell) - * ASTERISK-24729 - Outbound registration not occuring on new - registrations after reload. (Reported by Richard Mudgett) - * ASTERISK-24676 - Security Vulnerability: URL request injection - in libCURL (CVE-2014-8150) (Reported by Matt Jordan) - * ASTERISK-24666 - Security Vulnerability: RTP not closed after - sip call using unsupported codec (Reported by Y Ateya) - * ASTERISK-24711 - DTLS handshake broken with latest OpenSSL - versions (Reported by Jared Biel) - * ASTERISK-24646 - PJSIP changeset 4899 breaks TLS (Reported by - Stephan Eisvogel) - * ASTERISK-24736 - Memory Leak Fixes (Reported by Mark Michelson) - * ASTERISK-24635 - PJSIP outbound PUBLISH crashes when no response - is ever received (Reported by Marco Paland) - * ASTERISK-24737 - When agent not logged in, agent status shows - unavailable, queue status shows agent invalid (Reported by - Richard Mudgett) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24552 - ARI: Allow associating a channel as an - initiator of an Origination for record keeping purposes - (Reported by Matt Jordan) - * ASTERISK-24553 - ARI/AMI: Include language in standard channel - snapshot output (Reported by Matt Jordan) - * ASTERISK-24643 - res_pjsip: Add user=phone option (Reported by - Matt Jordan) - * ASTERISK-24644 - res_pjsip_keepalive: Add keepalive module for - connection-oriented transports. (Reported by Matt Jordan) - * ASTERISK-24412 - [patch]Incomplete channel originate/continue - handling with ARI (Reported by Nir Simionovich (GreenfieldTech - - Israel)) - * ASTERISK-24678 - [PATCH] Added atxfer* settings to - features.conf.sample (Reported by Niklas Larsson) - * ASTERISK-24575 - [patch]Make capath work for res_pjsip (Reported - by cloos) - * ASTERISK-24671 - Missing docs for the CDR AMI Event (Reported by - Dan Jenkins) - * ASTERISK-24316 - For httpd server, need option to define server - name for security purposes (Reported by Andrew Nagy) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.2.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28 and 11.6 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28.cert-4, 1.8.32.2, 11.6-cert10, - 11.15.1, 12.8.1, and 13.1.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerabilities: - - * AST-2015-001: File descriptor leak when incompatible codecs are offered - - Asterisk may be configured to only allow specific audio or - video codecs to be used when communicating with a - particular endpoint. When an endpoint sends an SDP offer - that only lists codecs not allowed by Asterisk, the offer - is rejected. However, in this case, RTP ports that are - allocated in the process are not reclaimed. - - This issue only affects the PJSIP channel driver in - Asterisk. Users of the chan_sip channel driver are not - affected. - - * AST-2015-002: Mitigation for libcURL HTTP request injection vulnerability - - CVE-2014-8150 reported an HTTP request injection - vulnerability in libcURL. Asterisk uses libcURL in its - func_curl.so module (the CURL() dialplan function), as well - as its res_config_curl.so (cURL realtime backend) modules. - - Since Asterisk may be configured to allow for user-supplied - URLs to be passed to libcURL, it is possible that an - attacker could use Asterisk as an attack vector to inject - unauthorized HTTP requests if the version of libcURL - installed on the Asterisk server is affected by - CVE-2014-8150. - - For more information about the details of these vulnerabilities, please read - security advisory AST-2015-001 and AST-2015-002, which were released at the same - time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.32.2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert10 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.15.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.8.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.1.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2015-001.pdf - * http://downloads.asterisk.org/pub/security/AST-2015-002.pdf- The Asterisk Development Team has announced the release of Asterisk 13.1.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.1.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - New Features made in this release: - ----------------------------------- - * ASTERISK-24554 - AMI/ARI: Generate events on connected line - changes (Reported by Matt Jordan) - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24436 - Missing header in res/res_srtp.c when compiling - against libsrtp-1.5.0 (Reported by Patrick Laimbock) - * ASTERISK-24455 - func_cdr: CDR_PROP leaks payload (Reported by - Corey Farrell) - * ASTERISK-24454 - app_queue: ao2_iterator not destroyed, causing - leak (Reported by Corey Farrell) - * ASTERISK-24430 - missing letter "p" in word response in - OriginateResponse event documentation (Reported by Dafi Ni) - * ASTERISK-24437 - Review implementation of ast_bridge_impart for - leaks and document proper usage (Reported by Scott Griepentrog) - * ASTERISK-24453 - manager: acl_change_sub leaks (Reported by - Corey Farrell) - * ASTERISK-24457 - res_fax: fax gateway frames leak (Reported by - Corey Farrell) - * ASTERISK-24458 - chan_phone fails to build on big endian systems - (Reported by Tzafrir Cohen) - * ASTERISK-21721 - SIP Failed to parse multiple Supported: headers - (Reported by Olle Johansson) - * ASTERISK-24304 - asterisk crashing randomly because of unistim - channel (Reported by dhanapathy sathya) - * ASTERISK-24190 - IMAP voicemail causes segfault (Reported by - Nick Adams) - * ASTERISK-24462 - res_pjsip: Stale qualify statistics after - disablementation (Reported by Kevin Harwell) - * ASTERISK-24465 - audiohooks list leaks reference to formats - (Reported by Corey Farrell) - * ASTERISK-24466 - app_queue: fix a couple leaks to struct - call_queue (Reported by Corey Farrell) - * ASTERISK-24432 - Install refcounter.py when REF_DEBUG is enabled - (Reported by Corey Farrell) - * ASTERISK-24411 - [patch] Status of outbound registration is not - changed upon unregistering. (Reported by John Bigelow) - * ASTERISK-24476 - main/app.c / app_voicemail: ast_writestream - leaks (Reported by Corey Farrell) - * ASTERISK-24480 - res_http_websockets: Module reference decrease - below zero (Reported by Corey Farrell) - * ASTERISK-24482 - func_talkdetect: Fix stasis message leak in - audiohook callback (Reported by Corey Farrell) - * ASTERISK-24487 - configuration: sections should be loadable as - template even when not marked (Reported by Scott Griepentrog) - * ASTERISK-20127 - [Regression] Config.c config_text_file_load() - unescapes semicolons ("\;" -> ";") turning them into comments - (corruption) on rewrite of a config file (Reported by George - Joseph) - * ASTERISK-24438 - res_pjsip_multihomed.so blocks Asterisk reload - when DNS settings invalid (Reported by Melissa Shepherd) - * ASTERISK-24307 - Unintentional memory retention in stringfields - (Reported by Etienne Lessard) - * ASTERISK-24491 - Memory leak in res_hep (Reported by Zane - Conkle) - * ASTERISK-24492 - main/file.c: ast_filestream sometimes causes - extra calls to ast_module_unref (Reported by Corey Farrell) - * ASTERISK-24447 - Bridge DTMF hooks: Audio doesn't pass when - waiting for more matching digits. (Reported by Richard Mudgett) - * ASTERISK-24257 - agent must dial acceptdtmf twice to bridge to - queue caller (Reported by Steve Pitts) - * ASTERISK-24504 - chan_console: Fix reference leaks to pvt - (Reported by Corey Farrell) - * ASTERISK-24250 - [patch] Voicemail with multi-recipients To: - header fix (Reported by abelbeck) - * ASTERISK-24468 - Incoming UCS2 encoded SMS truncated if SMS - length exceeds 50 (roughly) national symbols (Reported by - Dmitriy Bubnov) - * ASTERISK-24500 - Regression introduced in chan_mgcp by SVN - revision r227276 (Reported by Xavier Hienne) - * ASTERISK-24505 - manager: http connections leak references - (Reported by Corey Farrell) - * ASTERISK-24502 - Build fails when dev-mode, dont optimize and - coverage are enabled (Reported by Corey Farrell) - * ASTERISK-24444 - PBX: Crash when generating extension for - pattern matching hint (Reported by Leandro Dardini) - * ASTERISK-24489 - Crash: Asterisk crashes when converting RTCP - packet to JSON for res_hep_rtcp and report blocks are greater - than 1 (Reported by Gregory Malsack) - * ASTERISK-24498 - Segmentation fault in res_hep_rtcp on attended - transfer (Reported by Beppo Mazzucato) - * ASTERISK-24501 - ARI: Moving a channel between bridges followed - by a hangup can cause an ARI client to not receive an expected - ChannelLeftBridge event before StasisEnd (Reported by Matt - Jordan) - * ASTERISK-24336 - PJSIP timer_min_se value under 90 causes crash - (Reported by Leon Rowland) - * ASTERISK-23651 - Reloading some modules that are loaded already, - results in 'No such module' before a successful reload (Reported - by Rusty Newton) - * ASTERISK-24522 - ConfBridge: delay occurs between kicking all - endmarked users when last marked user leaves (Reported by Matt - Jordan) - * ASTERISK-15242 - transmit_refer leaks sip_refer structures - (Reported by David Woolley) - * ASTERISK-24508 - pjsip - REFER request from SNOM is rejected - with "400 bad request" - DEBUG shows "Received a REFER without a - parseable Refer-To" (Reported by Beppo Mazzucato) - * ASTERISK-24535 - stringfields: Fix regression from fix for - unintentional memory retention and another issue exposed by the - fix (Reported by Corey Farrell) - * ASTERISK-24471 - Crash - assert_fail in libc in - pjmedia_sdp_neg_negotiate from /usr/local/lib/libpjmedia.so.2 - (Reported by yaron nahum) - * ASTERISK-24528 - res_pjsip_refer: Sending INVITE with Replaces - in-dialog with invalid target causes crash (Reported by Joshua - Colp) - * ASTERISK-24531 - res_pjsip_acl: ACLs not applied on initial - module load (Reported by Matt Jordan) - * ASTERISK-24469 - Security Vulnerability: Mixed IPv4/IPv6 ACLs - allow blocked addresses through (Reported by Matt Jordan) - * ASTERISK-24542 - [patch]Failure showing codecs via 'core show - channeltype ' (Reported by snuffy) - * ASTERISK-24533 - 2 threads created per chan_sip entry (Reported - by xrobau) - * ASTERISK-24516 - [patch]Asterisk segfaults when playing back - voicemail under high concurrency with an IMAP backend (Reported - by David Duncan Ross Palmer) - * ASTERISK-24572 - [patch]App_meetme is loaded without its - defaults when the configuration file is missing (Reported by - Nuno Borges) - * ASTERISK-24573 - [patch]Out of sync conversation recording when - divided in multiple recordings (Reported by Nuno Borges) - * ASTERISK-24537 - Stasis: StasisStart/StasisEnd events are not - reliably transmitted during transfers (Reported by Matt Jordan) - * ASTERISK-24556 - Asterisk 13 core dumps when calling from pjsip - extension to another pjsip extension (Reported by Abhay Gupta) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24279 - Documentation: Clarify the behaviour of the CDR - property 'unanswered' (Reported by Matt Jordan) - * ASTERISK-24283 - [patch]Microseconds precision in the eventtime - column in the cel_odbc module (Reported by Etienne Lessard) - * ASTERISK-24530 - [patch] app_record stripping 1/4 second from - recordings (Reported by Ben Smithurst) - * ASTERISK-24577 - Speed up loopback switches by avoiding unneeded - lookups (Reported by Birger "WIMPy" Harzenetter) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.1.0- Add speexdsp as build dep as speex_echo.h has moved - rhbz 1181021- update for lua 5.3- The Asterisk Development Team has announced security releases for Certified - Asterisk 11.6 and Asterisk 11, 12, and 13. The available security releases are - released as versions 11.6-cert9, 11.14.2, 12.7.2, and 13.0.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerability: - - * AST-2014-019: Remote Crash Vulnerability in WebSocket Server - - When handling a WebSocket frame the res_http_websocket module dynamically - changes the size of the memory used to allow the provided payload to fit. If a - payload length of zero was received the code would incorrectly attempt to - resize to zero. This operation would succeed and end up freeing the memory but - be treated as a failure. When the session was subsequently torn down this - memory would get freed yet again causing a crash. - - For more information about the details of this vulnerability, please read - security advisory AST-2014-019, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert9 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.14.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.7.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.2 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-019.pdf- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28 and 11.6 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28-cert3, 11.6-cert8, 1.8.32.1, - 11.14.1, 12.7.1, and 13.0.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerabilities: - - * AST-2014-012: Unauthorized access in the presence of ACLs with mixed IP - address families - - Many modules in Asterisk that service incoming IP traffic have ACL options - ("permit" and "deny") that can be used to whitelist or blacklist address - ranges. A bug has been discovered where the address family of incoming - packets is only compared to the IP address family of the first entry in the - list of access control rules. If the source IP address for an incoming - packet is not of the same address as the first ACL entry, that packet - bypasses all ACL rules. - - * AST-2014-018: Permission Escalation through DB dialplan function - - The DB dialplan function when executed from an external protocol, such as AMI, - could result in a privilege escalation. Users with a lower class authorization - in AMI can access the internal Asterisk database without the required SYSTEM - class authorization. - - In addition, the release of 11.6-cert8 and 11.14.1 resolves the following - security vulnerability: - - * AST-2014-014: High call load with ConfBridge can result in resource exhaustion - - The ConfBridge application uses an internal bridging API to implement - conference bridges. This internal API uses a state model for channels within - the conference bridge and transitions between states as different things - occur. Unload load it is possible for some state transitions to be delayed - causing the channel to transition from being hung up to waiting for media. As - the channel has been hung up remotely no further media will arrive and the - channel will stay within ConfBridge indefinitely. - - In addition, the release of 11.6-cert8, 11.14.1, 12.7.1, and 13.0.1 resolves - the following security vulnerability: - - * AST-2014-017: Permission Escalation via ConfBridge dialplan function and - AMI ConfbridgeStartRecord Action - - The CONFBRIDGE dialplan function when executed from an external protocol (such - as AMI) can result in a privilege escalation as certain options within that - function can affect the underlying system. Additionally, the AMI - ConfbridgeStartRecord action has options that would allow modification of the - underlying system, and does not require SYSTEM class authorization in AMI. - - Finally, the release of 12.7.1 and 13.0.1 resolves the following security - vulnerabilities: - - * AST-2014-013: Unauthorized access in the presence of ACLs in the PJSIP stack - - The Asterisk module res_pjsip provides the ability to configure ACLs that may - be used to reject SIP requests from various hosts. However, the module - currently fails to create and apply the ACLs defined in its configuration - file on initial module load. - - * AST-2014-015: Remote crash vulnerability in PJSIP channel driver - - The chan_pjsip channel driver uses a queue approach for relating to SIP - sessions. There exists a race condition where actions may be queued to answer - a session or send ringing after a SIP session has been terminated using a - CANCEL request. The code will incorrectly assume that the SIP session is still - active and attempt to send the SIP response. The PJSIP library does not - expect the SIP session to be in the disconnected state when sending the - response and asserts. - - * AST-2014-016: Remote crash vulnerability in PJSIP channel driver - - When handling an INVITE with Replaces message the res_pjsip_refer module - incorrectly assumes that it will be operating on a channel that has just been - created. If the INVITE with Replaces message is sent in-dialog after a session - has been established this assumption will be incorrect. The res_pjsip_refer - module will then hang up a channel that is actually owned by another thread. - When this other thread attempts to use the just hung up channel it will end up - using a freed channel which will likely result in a crash. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-012, AST-2014-013, AST-2014-014, AST-2014-015, - AST-2014-016, AST-2014-017, and AST-2014-018, which were released at the same - time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert3 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert8 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.32.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.14.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.7.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-012.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-013.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-014.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-015.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-016.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-017.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-018.pdf- The Asterisk Development Team is pleased to announce the release of - Asterisk 13.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - Asterisk 13 is the next major release series of Asterisk. It is a Long Term - Support (LTS) release, similar to Asterisk 11. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 13, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+13 - - A short list of new features includes: - - * Asterisk security events are now provided via AMI, allowing end users to - monitor their Asterisk system in real time for security related issues. - - * Both AMI and ARI now allow external systems to control the state of a mailbox. - Using AMI actions or ARI resources, external systems can programmatically - trigger Message Waiting Indicators (MWI) on subscribed phones. This is of - particular use to those who want to build their own VoiceMail application - using ARI. - - * ARI now supports the reception/transmission of out of call text messages using - any supported channel driver/protocol stack through ARI. Users receive out of - call text messages as JSON events over the ARI websocket connection, and can - send out of call text messages using HTTP requests. - - * The PJSIP stack now supports RFC 4662 Resource Lists, allowing Asterisk to act - as a Resource List Server. This includes defining lists of presence state, - mailbox state, or lists of presence state/mailbox state; managing - subscriptions to lists; and batched delivery of NOTIFY requests to - subscribers. - - * The PJSIP stack can now be used as a means of distributing device state or - mailbox state via PUBLISH requests to other Asterisk instances. This is - analogous to Asterisk's clustering support using XMPP or Corosync; unlike - existing clustering mechanisms, using the PJSIP stack to perform the - distribution of state does not rely on another daemon or server to perform the - work. - - And much more! - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+13+Documentation - - A full list of all new features can also be found in the CHANGES file: - - http://svnview.digium.com/svn/asterisk/branches/13/CHANGES - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.0- rebuild for new libsrtp- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28 and 11.6 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28-cert2, 11.6-cert7, 1.8.31.1, - 11.13.1, 12.6.1, and 13.0.0-beta3. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerability: - - * AST-2014-011: Asterisk Susceptibility to POODLE Vulnerability - - Asterisk is susceptible to the POODLE vulnerability in two ways: - 1) The res_jabber and res_xmpp module both use SSLv3 exclusively for their - encrypted connections. - 2) The core TLS handling in Asterisk, which is used by the chan_sip channel - driver, Asterisk Manager Interface (AMI), and Asterisk HTTP Server, by - default allow a TLS connection to fallback to SSLv3. This allows for a - MITM to potentially force a connection to fallback to SSLv3, exposing it - to the POODLE vulnerability. - - These issues have been resolved in the versions released in conjunction with - this security advisory. - - For more information about the details of this vulnerability, please read - security advisory AST-2014-011, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert7 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.31.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.13.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.6.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.0-beta3 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-011.pdf- The Asterisk Development Team has announced the release of Asterisk 11.13.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.13.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24032 - Gentoo compilation emits warning: - "_FORTIFY_SOURCE" redefined (Reported by Kilburn) - * ASTERISK-24225 - Dial option z is broken (Reported by - dimitripietro) - * ASTERISK-24178 - [patch]fromdomainport used even if not set - (Reported by Elazar Broad) - * ASTERISK-22252 - res_musiconhold cleanup - REF_DEBUG reload - warnings and ref leaks (Reported by Walter Doekes) - * ASTERISK-23997 - chan_sip: port incorrectly incremented for RTCP - ICE candidates in SDP answer (Reported by Badalian Vyacheslav) - * ASTERISK-24019 - When a Music On Hold stream starts it restarts - at beginning of file. (Reported by Jason Richards) - * ASTERISK-23767 - [patch] Dynamic IAX2 registration stops trying - if ever not able to resolve (Reported by David Herselman) - * ASTERISK-24211 - testsuite: Fix the dial_LS_options test - (Reported by Matt Jordan) - * ASTERISK-24249 - SIP debugs do not stop (Reported by Avinash - Mohod) - * ASTERISK-23577 - res_rtp_asterisk: Crash in - ast_rtp_on_turn_rtp_state when RTP instance is NULL (Reported by - Jay Jideliov) - * ASTERISK-23634 - With TURN Asterisk crashes on multiple (7-10) - concurrent WebRTC (avpg/encryption/icesupport) calls (Reported - by Roman Skvirsky) - * ASTERISK-24301 - Security: Out of call MESSAGE requests - processed via Message channel driver can crash Asterisk - (Reported by Matt Jordan) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24171 - [patch] Provide a manpage for the aelparse - utility (Reported by Jeremy Lainé) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.13.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 11.6 and Asterisk 11 and 12. The available security releases are - released as versions 11.6-cert6, 11.12.1, and 12.5.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - Please note that the release of these versions resolves the following security - vulnerability: - - * AST-2014-010: Remote Crash when Handling Out of Call Message in Certain - Dialplan Configurations - - Additionally, the release of Asterisk 12.5.1 resolves the following security - vulnerability: - - * AST-2014-009: Remote Crash Based on Malformed SIP Subscription Requests - - Note that the crash described in AST-2014-010 can be worked around through - dialplan configuration. Given the likelihood of the issue, an advisory was - deemed to be warranted. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-009 and AST-2014-010, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert6 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.12.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.5.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-009.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-010.pdf- The Asterisk Development Team has announced the release of Asterisk 11.12.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.12.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-23911 - URIENCODE/URIDECODE: WARNING about passing an - empty string is a bit over zealous (Reported by Matt Jordan) - * ASTERISK-23985 - PresenceState Action response does not contain - ActionID; duplicates Message Header (Reported by Matt Jordan) - * ASTERISK-23814 - No call started after peer dialed (Reported by - Igor Goncharovsky) - * ASTERISK-24087 - [patch]chan_sip: sip_subscribe_mwi_destroy - should not call sip_destroy (Reported by Corey Farrell) - * ASTERISK-23818 - PBX_Lua: after asterisk startup module is - loaded, but dialplan not available (Reported by Dennis Guse) - * ASTERISK-18345 - [patch] sips connection dropped by asterisk - with a large INVITE (Reported by Stephane Chazelas) - * ASTERISK-23508 - Memory Corruption in - __ast_string_field_ptr_build_va (Reported by Arnd Schmitter) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-21178 - Improve documentation for manager command - Getvar, Setvar (Reported by Rusty Newton) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.12.0- The Asterisk Development Team has announced the release of Asterisk 11.11.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.11.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-22551 - Session timer : UAS (Asterisk) starts counting - at Invite, UAC starts counting at 200 OK. (Reported by i2045) - * ASTERISK-23792 - Mutex left locked in chan_unistim.c (Reported - by Peter Whisker) - * ASTERISK-23582 - [patch]Inconsistent column length in *odbc - (Reported by Walter Doekes) - * ASTERISK-23803 - AMI action UpdateConfig EmptyCat clears all - categories but the requested one (Reported by zvision) - * ASTERISK-23035 - ConfBridge with name longer than max (32 chars) - results in several bridges with same conf_name (Reported by - Iñaki Cívico) - * ASTERISK-23824 - ConfBridge: Users cannot be muted via CLI or - AMI when waiting to enter a conference (Reported by Matt Jordan) - * ASTERISK-23683 - #includes - wildcard character in a path more - than one directory deep - results in no config parsing on module - reload (Reported by tootai) - * ASTERISK-23827 - autoservice thread doesn't exit at shutdown - (Reported by Corey Farrell) - * ASTERISK-23609 - Security: AMI action MixMonitor allows - arbitrary programs to be run (Reported by Corey Farrell) - * ASTERISK-23673 - Security: DOS by consuming the number of - allowed HTTP connections. (Reported by Richard Mudgett) - * ASTERISK-23246 - DEBUG messages in sdp_crypto.c display despite - a DEBUG level of zero (Reported by Rusty Newton) - * ASTERISK-23766 - [patch] Specify timeout for database write in - SQLite (Reported by Igor Goncharovsky) - * ASTERISK-23844 - Load of pbx_lua fails on sample extensions.lua - with Lua 5.2 or greater due to addition of goto statement - (Reported by Rusty Newton) - * ASTERISK-23818 - PBX_Lua: after asterisk startup module is - loaded, but dialplan not available (Reported by Dennis Guse) - * ASTERISK-23834 - res_rtp_asterisk debug message gives wrong - length if ICE (Reported by Richard Kenner) - * ASTERISK-23790 - [patch] - SIP From headers longer than 256 - characters result in dropped call and 'No closing bracket' - warnings. (Reported by uniken1) - * ASTERISK-23917 - res_http_websocket: Delay in client processing - large streams of data causes disconnect and stuck socket - (Reported by Matt Jordan) - * ASTERISK-23908 - [patch]When using FEC error correction, - asterisk tries considers negative sequence numbers as missing - (Reported by Torrey Searle) - * ASTERISK-23921 - refcounter.py uses excessive ram for large refs - files (Reported by Corey Farrell) - * ASTERISK-23948 - REF_DEBUG fails to record ao2_ref against - objects that were already freed (Reported by Corey Farrell) - * ASTERISK-23916 - [patch]SIP/SDP fmtp line may include whitespace - between attributes (Reported by Alexander Traud) - * ASTERISK-23984 - Infinite loop possible in ast_careful_fwrite() - (Reported by Steve Davies) - * ASTERISK-23897 - [patch]Change in SETUP ACK handling (checking - PI) in revision 413765 breaks working environments (Reported by - Pavel Troller) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-23492 - Add option to safe_asterisk to disable - backgrounding (Reported by Walter Doekes) - * ASTERISK-22961 - [patch] DTLS-SRTP not working with SHA-256 - (Reported by Jay Jideliov) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.11.0- Perl 5.20 rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Drop the 389 directory server schema (1061414)- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.6, and Asterisk 1.8, 11, and 12. The available security - releases are released as versions 1.8.15-cert7, 11.6-cert4, 1.8.28.2, 11.10.2, - and 12.3.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - These releases resolve security vulnerabilities that were previously fixed in - 1.8.15-cert6, 11.6-cert3, 1.8.28.1, 11.10.1, and 12.3.1. Unfortunately, the fix - for AST-2014-007 inadvertently introduced a regression in Asterisk's TCP and TLS - handling that prevented Asterisk from sending data over these transports. This - regression and the security vulnerabilities have been fixed in the versions - specified in this release announcement. - - The security patches for AST-2014-007 have been updated with the fix for the - regression, and are available at http://downloads.asterisk.org/pub/security - - Please note that the release of these versions resolves the following security - vulnerabilities: - - * AST-2014-005: Remote Crash in PJSIP Channel Driver's Publish/Subscribe - Framework - - * AST-2014-006: Permission Escalation via Asterisk Manager User Unauthorized - Shell Access - - * AST-2014-007: Denial of Service via Exhaustion of Allowed Concurrent HTTP - Connections - - * AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-005, AST-2014-006, AST-2014-007, and AST-2014-008, - which were released with the previous versions that addressed these - vulnerabilities. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert7 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.28.2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.10.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.3.2 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-005.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-006.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-007.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-008.pdf- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.6, and Asterisk 1.8, 11, and 12. The available security - releases are released as versions 1.8.15-cert6, 11.6-cert3, 1.8.28.1, 11.10.1, - and 12.3.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following issue: - - * AST-2014-007: Denial of Service via Exhaustion of Allowed Concurrent HTTP - Connections - - Establishing a TCP or TLS connection to the configured HTTP or HTTPS port - respectively in http.conf and then not sending or completing a HTTP request - will tie up a HTTP session. By doing this repeatedly until the maximum number - of open HTTP sessions is reached, legitimate requests are blocked. - - Additionally, the release of 11.6-cert3, 11.10.1, and 12.3.1 resolves the - following issue: - - * AST-2014-006: Permission Escalation via Asterisk Manager User Unauthorized - Shell Access - - Manager users can execute arbitrary shell commands with the MixMonitor manager - action. Asterisk does not require system class authorization for a manager - user to use the MixMonitor action, so any manager user who is permitted to use - manager commands can potentially execute shell commands as the user executing - the Asterisk process. - - Additionally, the release of 12.3.1 resolves the following issues: - - * AST-2014-005: Remote Crash in PJSIP Channel Driver's Publish/Subscribe - Framework - - A remotely exploitable crash vulnerability exists in the PJSIP channel - driver's pub/sub framework. If an attempt is made to unsubscribe when not - currently subscribed and the endpoint's “sub_min_expiry” is set to zero, - Asterisk tries to create an expiration timer with zero seconds, which is not - allowed, so an assertion raised. - - * AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions - - When a SIP transaction timeout caused a subscription to be terminated, the - action taken by Asterisk was guaranteed to deadlock the thread on which SIP - requests are serviced. Note that this behavior could only happen on - established subscriptions, meaning that this could only be exploited if an - attacker bypassed authentication and successfully subscribed to a real - resource on the Asterisk server. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-005, AST-2014-006, AST-2014-007, and AST-2014-008, - which were released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert6 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.28.1 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.10.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.3.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-005.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-006.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-007.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-008.pdf- The Asterisk Development Team has announced the release of Asterisk 11.10.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.10.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-23547 - [patch] app_queue removing callers from queue - when reloading (Reported by Italo Rossi) - * ASTERISK-23559 - app_voicemail fails to load after fix to - dialplan functions (Reported by Corey Farrell) - * ASTERISK-22846 - testsuite: masquerade super test fails on all - branches (still) (Reported by Matt Jordan) - * ASTERISK-23545 - Confbridge talker detection settings - configuration load bug (Reported by John Knott) - * ASTERISK-23546 - CB_ADD_LEN does not do what you'd think - (Reported by Walter Doekes) - * ASTERISK-23620 - Code path in app_stack fails to unlock list - (Reported by Bradley Watkins) - * ASTERISK-23616 - Big memory leak in logger.c (Reported by - ibercom) - * ASTERISK-23576 - Build failure on SmartOS / Illumos / SunOS - (Reported by Sebastian Wiedenroth) - * ASTERISK-23550 - Newer sound sets don't show up in menuselect - (Reported by Rusty Newton) - * ASTERISK-18331 - app_sms failure (Reported by David Woodhouse) - * ASTERISK-19465 - P-Asserted-Identity Privacy (Reported by - Krzysztof Chmielewski) - * ASTERISK-23605 - res_http_websocket: Race condition in shutting - down websocket causes crash (Reported by Matt Jordan) - * ASTERISK-23707 - Realtime Contacts: Apparent mismatch between - PGSQL database state and Asterisk state (Reported by Mark - Michelson) - * ASTERISK-23381 - [patch]ChanSpy- Barge only works on the initial - 'spy', if the spied-on channel makes a new call, unable to - barge. (Reported by Robert Moss) - * ASTERISK-23665 - Wrong mime type for codec H263-1998 (h263+) - (Reported by Guillaume Maudoux) - * ASTERISK-23664 - Incorrect H264 specification in SDP. (Reported - by Guillaume Maudoux) - * ASTERISK-22977 - chan_sip+CEL: missing ANSWER and PICKUP event - for INVITE/w/replaces pickup (Reported by Walter Doekes) - * ASTERISK-23709 - Regression in Dahdi/Analog/waitfordialtone - (Reported by Steve Davies) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-23649 - [patch]Support for DTLS retransmission - (Reported by NITESH BANSAL) - * ASTERISK-23564 - [patch]TLS/SRTP status of channel not currently - available in a CLI command (Reported by Patrick Laimbock) - * ASTERISK-23754 - [patch] Use var/lib directory for log file - configured in asterisk.conf (Reported by Igor Goncharovsky) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.10.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- build against gmime-devel not gmime22-devel - do not use -m64 on aarch64- The Asterisk Development Team has announced the release of Asterisk 11.9.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.9.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-22790 - check_modem_rate() may return incorrect rate - for V.27 (Reported by Paolo Compagnini) - * ASTERISK-23034 - [patch] manager Originate doesn't abort on - failed format_cap allocation (Reported by Corey Farrell) - * ASTERISK-23061 - [Patch] 'textsupport' setting not mentioned in - sip.conf.sample (Reported by Eugene) - * ASTERISK-23028 - [patch] Asterisk man pages contains unquoted - minus signs (Reported by Jeremy Lainé) - * ASTERISK-23046 - Custom CDR fields set during a GoSUB called - from app_queue are not inserted (Reported by Denis Pantsyrev) - * ASTERISK-23027 - [patch] Spelling typo "transfered" instead of - "transferred" (Reported by Jeremy Lainé) - * ASTERISK-23008 - Local channels loose CALLERID name when DAHDI - channel connects (Reported by Michael Cargile) - * ASTERISK-23100 - [patch] In chan_mgcp the ident in transmitted - request and request queue may differ - fix for locking (Reported - by adomjan) - * ASTERISK-22988 - [patch]T38 , SIP 488 after Rejecting image - media offer due to invalid or unsupported syntax (Reported by - adomjan) - * ASTERISK-22861 - [patch]Specifying a null time as parameter to - GotoIfTime or ExecIfTime causes segmentation fault (Reported by - Sebastian Murray-Roberts) - * ASTERISK-17837 - extconfig.conf - Maximum Include level (1) - exceeded (Reported by pz) - * ASTERISK-22662 - Documentation fix? - queues.conf says - persistentmembers defaults to yes, it appears to lie (Reported - by Rusty Newton) - * ASTERISK-23134 - [patch] res_rtp_asterisk port selection cannot - handle selinux port restrictions (Reported by Corey Farrell) - * ASTERISK-23220 - STACK_PEEK function with no arguments causes - crash/core dump (Reported by James Sharp) - * ASTERISK-19773 - Asterisk crash on issuing Asterisk-CLI 'reload' - command multiple times on cli_aliases (Reported by Joel Vandal) - * ASTERISK-22757 - segfault in res_clialiases.so on reload when - mapping "module reload" command (Reported by Gareth Blades) - * ASTERISK-17727 - [patch] TLS doesn't get all certificate chain - (Reported by LN) - * ASTERISK-23178 - devicestate.h: device state setting functions - are documented with the wrong return values (Reported by - Jonathan Rose) - * ASTERISK-23232 - LocalBridge AMI Event LocalOptimization value - is opposite to what's expected (Reported by Leon Roy) - * ASTERISK-23098 - [patch]possible null pointer dereference in - format.c (Reported by Marcello Ceschia) - * ASTERISK-23297 - Asterisk 12, pbx_config.so segfaults if - res_parking.so is not loaded, or if res_parking.conf has no - configuration (Reported by CJ Oster) - * ASTERISK-23069 - Custom CDR variable not recorded when set in - macro called from app_queue (Reported by Bryan Anderson) - * ASTERISK-19499 - ConfBridge MOH is not working for transferee - after attended transfer (Reported by Timo Teräs) - * ASTERISK-23261 - [patch]Output mixup in - ${CHANNEL(rtpqos,audio,all)} (Reported by rsw686) - * ASTERISK-23279 - [patch]Asterisk doesn't support the dynamic - payload change in rtp mapping in the 200 OK response (Reported - by NITESH BANSAL) - * ASTERISK-23255 - UUID included for Redhat, but missing for - Debian distros in install_prereq script (Reported by Rusty - Newton) - * ASTERISK-23260 - [patch]ForkCDR v option does not keep CDR - variables for subsequent records (Reported by zvision) - * ASTERISK-23141 - Asterisk crashes on Dial(), in - pbx_find_extension at pbx.c (Reported by Maxim) - * ASTERISK-23336 - Asterisk warning "Don't know how to indicate - condition 33 on ooh323c" on outgoing calls from H323 to SIP peer - (Reported by Alexander Semych) - * ASTERISK-23231 - Since 405693 If we have res_fax.conf file set - to minrate=2400, then res_fax refuse to load (Reported by David - Brillert) - * ASTERISK-23135 - Crash - segfault in ast_channel_hangupcause_set - - probably introduced in 11.7.0 (Reported by OK) - * ASTERISK-23323 - [patch]chan_sip: missing p->owner checks in - handle_response_invite (Reported by Walter Doekes) - * ASTERISK-23406 - [patch]Fix typo in "sip show peer" (Reported by - ibercom) - * ASTERISK-23310 - bridged channel crashes in bridge_p2p_rtp_write - (Reported by Jeremy Lainé) - * ASTERISK-22911 - [patch]Asterisk fails to resume WebRTC call - from hold (Reported by Vytis Valentinavičius) - * ASTERISK-23104 - Specifying the SetVar AMI without a Channel - cause Asterisk to crash (Reported by Joel Vandal) - * ASTERISK-21930 - [patch]WebRTC over WSS is not working. - (Reported by John) - * ASTERISK-23383 - Wrong sense test on stat return code causes - unchanged config check to break with include files. (Reported by - David Woolley) - * ASTERISK-20149 - Crash when faxing SIP to SIP with strictrtp set - to yes (Reported by Alexandr Gordeev) - * ASTERISK-17523 - Qualify for static realtime peers does not work - (Reported by Maciej Krajewski) - * ASTERISK-21406 - [patch] chan_sip deadlock on monlock between - unload_module and do_monitor (Reported by Corey Farrell) - * ASTERISK-23373 - [patch]Security: Open FD exhaustion with - chan_sip Session-Timers (Reported by Corey Farrell) - * ASTERISK-23340 - Security Vulnerability: stack allocation of - cookie headers in loop allows for unauthenticated remote denial - of service attack (Reported by Matt Jordan) - * ASTERISK-23311 - Manager - MoH Stop Event fails to show up when - leaving Conference (Reported by Benjamin Keith Ford) - * ASTERISK-23420 - [patch]Memory leak in manager_add_filter - function in manager.c (Reported by Etienne Lessard) - * ASTERISK-23488 - Logic error in callerid checksum processing - (Reported by Russ Meyerriecks) - * ASTERISK-23461 - Only first user is muted when joining - confbridge with 'startmuted=yes' (Reported by Chico Manobela) - * ASTERISK-20841 - fromdomain not honored on outbound INVITE - request (Reported by Kelly Goedert) - * ASTERISK-22079 - Segfault: INTERNAL_OBJ (user_data=0x6374652f) - at astobj2.c:120 (Reported by Jamuel Starkey) - * ASTERISK-23509 - [patch]SayNumber for Polish language tries to - play empty files for numbers divisible by 100 (Reported by - zvision) - * ASTERISK-23103 - [patch]Crash in ast_format_cmp, in ao2_find - (Reported by JoshE) - * ASTERISK-23391 - Audit dialplan function usage of channel - variable (Reported by Corey Farrell) - * ASTERISK-23548 - POST to ARI sometimes returns no body on - success (Reported by Scott Griepentrog) - * ASTERISK-23460 - ooh323 channel stuck if call is placed directly - and gatekeeper is not available (Reported by Dmitry Melekhov) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-22980 - [patch]Allow building cdr_radius and cel_radius - against libfreeradius-client (Reported by Jeremy Lainé) - * ASTERISK-22661 - Unable to exit ChanSpy if spied channel does - not have a call in progress (Reported by Chris Hillman) - * ASTERISK-23099 - [patch] WSS: enable ast_websocket_read() - function to read the whole available data at first and then wait - for any fragmented packets (Reported by Thava Iyer)- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.6, and Asterisk 1.8, 11, and 12. The available security - releases are released as versions 1.8.15-cert5, 11.6-cert2, 1.8.26.1, 11.8.1, - and 12.1.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * AST-2014-001: Stack overflow in HTTP processing of Cookie headers. - - Sending a HTTP request that is handled by Asterisk with a large number of - Cookie headers could overflow the stack. - - Another vulnerability along similar lines is any HTTP request with a - ridiculous number of headers in the request could exhaust system memory. - - * AST-2014-002: chan_sip: Exit early on bad session timers request - - This change allows chan_sip to avoid creation of the channel and - consumption of associated file descriptors altogether if the inbound - request is going to be rejected anyway. - - Additionally, the release of 12.1.1 resolves the following issue: - - * AST-2014-003: res_pjsip: When handling 401/407 responses don't assume a - request will have an endpoint. - - This change removes the assumption that an outgoing request will always - have an endpoint and makes the authenticate_qualify option work once again. - - Finally, a security advisory, AST-2014-004, was released for a vulnerability - fixed in Asterisk 12.1.0. Users of Asterisk 12.0.0 are encouraged to upgrade to - 12.1.1 to resolve both vulnerabilities. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-001, AST-2014-002, AST-2014-003, and AST-2014-004, - which were released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert5 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.26.1 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.8.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.1.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-001.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-002.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-003.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-004.pdf- The Asterisk Development Team has announced the release of Asterisk 11.8.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.8.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-22544 - Italian prompt vm-options has advertisement in - it (Reported by Rusty Newton) - * ASTERISK-21383 - STUN Binding Requests Not Being Sent Back from - Asterisk to Chrome (Reported by Shaun Clark) - * ASTERISK-22478 - [patch]Can't use pound(hash) symbol for custom - DTMF menus in ConfBridge (processed as directive) (Reported by - Nicolas Tanski) - * ASTERISK-12117 - chan_sip creates a new local tag (from-tag) for - every register message (Reported by Pawel Pierscionek) - * ASTERISK-20862 - Asterisk min and max member penalties not - honored when set with 0 (Reported by Schmooze Com) - * ASTERISK-22746 - [patch]Crash in chan_dahdi during caller id - read (Reported by Michael Walton) - * ASTERISK-22788 - [patch] main/translate.c: access to variable f - after free in ast_translate() (Reported by Corey Farrell) - * ASTERISK-21242 - Segfault when T.38 re-invite retransmission - receives 200 OK (Reported by Ashley Winters) - * ASTERISK-22590 - BufferOverflow in unpacksms16() when receiving - 16 bit multipart SMS with app_sms (Reported by Jan Juergens) - * ASTERISK-22905 - Prevent Asterisk functions that are 'dangerous' - from being executed from external interfaces (Reported by Matt - Jordan) - * ASTERISK-23021 - Typos in code : "avaliable" instead of - "available" (Reported by Jeremy Lainé) - * ASTERISK-22970 - [patch]Documentation fix for QUOTE() (Reported - by Gareth Palmer) - * ASTERISK-21960 - ooh323 channels stuck (Reported by Dmitry - Melekhov) - * ASTERISK-22350 - DUNDI - core dump on shutdown - segfault in - sqlite3_reset from /usr/lib/libsqlite3.so.0 (Reported by Birger - "WIMPy" Harzenetter) - * ASTERISK-22942 - [patch] - Asterisk crashed after - Set(FAXOPT(faxdetect)=t38) (Reported by adomjan) - * ASTERISK-22856 - [patch]SayUnixTime in polish reads minutes - instead of seconds (Reported by Robert Mordec) - * ASTERISK-22854 - [patch] - Deadlock between cel_pgsql unload and - core_event_dispatcher taskprocessor thread (Reported by Etienne - Lessard) - * ASTERISK-22910 - [patch] - REPLACE() calls strcpy on overlapping - memory when is empty (Reported by Gareth Palmer) - * ASTERISK-22871 - cel_pgsql module not loading after "reload" or - "reload cel_pgsql.so" command (Reported by Matteo) - * ASTERISK-23084 - [patch]rasterisk needlessly prints the - AST-2013-007 warning (Reported by Tzafrir Cohen) - * ASTERISK-17138 - [patch] Asterisk not re-registering after it - receives "Forbidden - wrong password on authentication" - (Reported by Rudi) - * ASTERISK-23011 - [patch]configure.ac and pbx_lua don't support - lua 5.2 (Reported by George Joseph) - * ASTERISK-22834 - Parking by blind transfer when lot full orphans - channels (Reported by rsw686) - * ASTERISK-23047 - Orphaned (stuck) channel occurs during a failed - SIP transfer to parking space (Reported by Tommy Thompson) - * ASTERISK-22946 - Local From tag regression with sipgate.de - (Reported by Stephan Eisvogel) - * ASTERISK-23010 - No BYE message sent when sip INVITE is received - (Reported by Ryan Tilton) - * ASTERISK-23135 - Crash - segfault in ast_channel_hangupcause_set - - probably introduced in 11.7.0 (Reported by OK) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-22728 - [patch] Improve Understanding Of 'Forcerport' - When Running "sip show peers" (Reported by Michael L. Young) - * ASTERISK-22659 - Make a new core and extra sounds release - (Reported by Rusty Newton) - * ASTERISK-22919 - core show channeltypes slicing (Reported by - outtolunc) - * ASTERISK-22918 - dahdi show channels slices PRI channel dnid on - output (Reported by outtolunc) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.8.0- The Asterisk Development Team has announced the release of Asterisk 11.7.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.7.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- app_confbridge: Can now set the language used for announcements - to the conference. - (Closes issue ASTERISK-19983. Reported by Jonathan White) - - * --- app_queue: Fix CLI "queue remove member" queue_log entry. - (Closes issue ASTERISK-21826. Reported by Oscar Esteve) - - * --- chan_sip: Do not increment the SDP version between 183 and 200 - responses. - (Closes issue ASTERISK-21204. Reported by NITESH BANSAL) - - * --- chan_sip: Allow a sip peer to accept both AVP and AVPF calls - (Closes issue ASTERISK-22005. Reported by Torrey Searle) - - * --- chan_sip: Fix Realtime Peer Update Problem When Un-registering - And Expires Header In 200ok - (Closes issue ASTERISK-22428. Reported by Ben Smithurst) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.7.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.2, and Asterisk 1.8, 10, and 11. The available security - releases are released as versions 1.8.15-cert4, 11.2-cert3, 1.8.24.1, 10.12.4, - 10.12.4-digiumphones, and 11.6.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * A buffer overflow when receiving odd length 16 bit messages in app_sms. An - infinite loop could occur which would overwrite memory when a message is - received into the unpacksms16() function and the length of the message is an - odd number of bytes. - - * Prevent permissions escalation in the Asterisk Manager Interface. Asterisk - now marks certain individual dialplan functions as 'dangerous', which will - inhibit their execution from external sources. - - A 'dangerous' function is one which results in a privilege escalation. For - example, if one were to read the channel variable SHELL(rm -rf /) Bad - Things(TM) could happen; even if the external source has only read - permissions. - - Execution from external sources may be enabled by setting 'live_dangerously' - to 'yes' in the [options] section of asterisk.conf. Although doing so is not - recommended. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2013-006 and AST-2013-007, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert4 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.2-cert3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.24.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.4-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.6.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2013-006.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-007.pdf- The Asterisk Development Team has announced the release of Asterisk 11.6.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.6.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Confbridge: empty conference not being torn down - (Closes issue ASTERISK-21859. Reported by Chris Gentle) - - * --- Let Queue wrap up time influence member availability - (Closes issue ASTERISK-22189. Reported by Tony Lewis) - - * --- Fix a longstanding issue with MFC-R2 configuration that - prevented users - (Closes issue ASTERISK-21117. Reported by Rafael Angulo) - - * --- chan_iax2: Fix saving the wrong expiry time in astdb. - (Closes issue ASTERISK-22504. Reported by Stefan Wachtler) - - * --- Fix segfault for certain invalid WebSocket input. - (Closes issue ASTERISK-21825. Reported by Alfred Farrugia) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.6.0- Disable hardened build, as it's apparently causing problems loading modules.- Enable hardened build BZ#954338 - Significant clean ups- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.2, and Asterisk 1.8, 10, and 11. The available security releases - are released as versions 1.8.15-cert2, 11.2-cert2, 1.8.23.1, 10.12.3, 10.12.3-digiumphones, - and 11.5.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * A remotely exploitable crash vulnerability exists in the SIP channel driver if - an ACK with SDP is received after the channel has been terminated. The - handling code incorrectly assumes that the channel will always be present. - - * A remotely exploitable crash vulnerability exists in the SIP channel driver if - an invalid SDP is sent in a SIP request that defines media descriptions before - connection information. The handling code incorrectly attempts to reference - the socket address information even though that information has not yet been - set. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2013-004 and AST-2013-005, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert3 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.2-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.23.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.3-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.5.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2013-004.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-005.pdf - - The Asterisk Development Team has announced the release of Asterisk 11.5.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.5.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix Segfault In app_queue When "persistentmembers" Is Enabled - And Using Realtime - (Closes issue ASTERISK-21738. Reported by JoshE) - - * --- IAX2: fix race condition with nativebridge transfers. - (Closes issue ASTERISK-21409. Reported by alecdavis) - - * --- Fix The Payload Being Set On CN Packets And Do Not Set Marker - Bit - (Closes issue ASTERISK-21246. Reported by Peter Katzmann) - - * --- Fix One-Way Audio With auto_* NAT Settings When SIP Calls - Initiated By PBX - (Closes issue ASTERISK-21374. Reported by Michael L. Young) - - * --- chan_sip: NOTIFYs for BLF start queuing up and fail to be sent - out after retries fail - (Closes issue ASTERISK-21677. Reported by Dan Martens) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.5.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild- Perl 5.18 rebuild- rebuild (libical)- The Asterisk Development Team has announced the release of Asterisk 11.4.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.4.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix Sorting Order For Parking Lots Stored In Static Realtime - (Closes issue ASTERISK-21035. Reported by Alex Epshteyn) - - * --- Fix StopMixMonitor Hanging Up When Unable To Stop MixMonitor On - A Channel - (Closes issue ASTERISK-21294. Reported by daroz) - - * --- When a session timer expires during a T.38 call, re-invite with - correct SDP - (Closes issue ASTERISK-21232. Reported by Nitesh Bansal) - - * --- Fix white noise on SRTP decryption - (Closes issue ASTERISK-21323. Reported by andrea) - - * --- Fix reload skinny with active devices. - (Closes issue ASTERISK-16610. Reported by wedhorn) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.4.0- fix build with lua 5.2- The Asterisk Development Team has announced the release of Asterisk 11.3.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.3.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix issue where chan_mobile fails to bind to first available - port - (Closes issue ASTERISK-16357. Reported by challado) - - * --- Fix Queue Log Reporting Every Call COMPLETECALLER With "h" - Extension Present - (Closes issue ASTERISK-20743. Reported by call) - - * --- Retain XMPP filters across reconnections so external modules - continue to function as expected. - (Closes issue ASTERISK-20916. Reported by kuj) - - * --- Ensure that a declined media stream is terminated with a '\r\n' - (Closes issue ASTERISK-20908. Reported by Dennis DeDonatis) - - * --- Fix pjproject compilation in certain circumstances - (Closes issue ASTERISK-20681. Reported by Dinesh Ramjuttun) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.3.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15 and Asterisk 1.8, 10, and 11. The available security releases - are released as versions 1.8.15-cert2, 1.8.20.2, 10.12.2, 10.12.2-digiumphones, - and 11.2.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * A possible buffer overflow during H.264 format negotiation. The format - attribute resource for H.264 video performs an unsafe read against a media - attribute when parsing the SDP. - - This vulnerability only affected Asterisk 11. - - * A denial of service exists in Asterisk's HTTP server. AST-2012-014, fixed - in January of this year, contained a fix for Asterisk's HTTP server for a - remotely-triggered crash. While the fix prevented the crash from being - triggered, a denial of service vector still exists with that solution if an - attacker sends one or more HTTP POST requests with very large Content-Length - values. - - This vulnerability affects Certified Asterisk 1.8.15, Asterisk 1.8, 10, and 11 - - * A potential username disclosure exists in the SIP channel driver. When - authenticating a SIP request with alwaysauthreject enabled, allowguest - disabled, and autocreatepeer disabled, Asterisk discloses whether a user - exists for INVITE, SUBSCRIBE, and REGISTER transactions in multiple ways. - - This vulnerability affects Certified Asterisk 1.8.15, Asterisk 1.8, 10, and 11 - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2013-001, AST-2013-002, and AST-2013-003, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.20.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.2-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.2.2 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2013-001.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-002.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-003.pdf- The Asterisk Development Team has announced the release of Asterisk 11.2.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.2.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Fix astcanary startup problem due to wrong pid value from before - daemon call - (Closes issue ASTERISK-20947. Reported by Jakob Hirsch) - - * --- Update init.d scripts to handle stderr; readd splash screen for - remote consoles - (Closes issue ASTERISK-20945. Reported by Warren Selby) - - * --- Reset RTP timestamp; sequence number on SSRC change - (Closes issue ASTERISK-20906. Reported by Eelco Brolman) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.2.1- The Asterisk Development Team has announced the release of Asterisk 11.2.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.2.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- app_meetme: Fix channels lingering when hung up under certain - conditions - (Closes issue ASTERISK-20486. Reported by Michael Cargile) - - * --- Fix stuck DTMF when bridge is broken. - (Closes issue ASTERISK-20492. Reported by Jeremiah Gowdy) - - * --- Add missing support for "who hung up" to chan_motif. - (Closes issue ASTERISK-20671. Reported by Matt Jordan) - - * --- Remove a fixed size limitation for producing SDP and change how - ICE support is disabled by default. - (Closes issue ASTERISK-20643. Reported by coopvr) - - * --- Fix chan_sip websocket payload handling - (Closes issue ASTERISK-20745. Reported by Iñaki Baz Castillo) - - * --- Fix pjproject compilation in certain circumstances - (Closes issue ASTERISK-20681. Reported by Dinesh Ramjuttun) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.2.0- The Asterisk Development Team has announced a security release for Asterisk 11, - Asterisk 11.1.2. This release addresses the security vulnerabilities reported in - AST-2012-014 and AST-2012-015, and replaces the previous version of Asterisk 11 - released for these security vulnerabilities. The prior release left open a - vulnerability in res_xmpp that exists only in Asterisk 11; as such, other - versions of Asterisk were resolved correctly by the previous releases. - - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following two issues: - - * Stack overflows that occur in some portions of Asterisk that manage a TCP - connection. In SIP, this is exploitable via a remote unauthenticated session; - in XMPP and HTTP connections, this is exploitable via remote authenticated - sessions. The vulnerabilities in SIP and HTTP were corrected in a prior - release of Asterisk; the vulnerability in XMPP is resolved in this release. - - * A denial of service vulnerability through exploitation of the device state - cache. Anonymous calls had the capability to create devices in Asterisk that - would never be disposed of. Handling the cachability of device states - aggregated via XMPP is handled in this release. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-014 and AST-2012-015. - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.1.2 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-014.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-015.pdf - - Thank you for your continued support of Asterisk - and we apologize for having - to do this twice!- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8, 10, and 11. The available security releases - are released as versions 1.8.11-cert10, 1.8.19.1, 10.11.1, 10.11.1-digiumphones, - and 11.1.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following two issues: - - * Stack overflows that occur in some portions of Asterisk that manage a TCP - connection. In SIP, this is exploitable via a remote unauthenticated session; - in XMPP and HTTP connections, this is exploitable via remote authenticated - sessions. - - * A denial of service vulnerability through exploitation of the device state - cache. Anonymous calls had the capability to create devices in Asterisk that - would never be disposed of. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-014 and AST-2012-015, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert10 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.19.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.11.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.11.1-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.1.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-014.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-015.pdf- The Asterisk Development Team has announced the release of Asterisk 11.1.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.1.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix execution of 'i' extension due to uninitialized variable. - (Closes issue ASTERISK-20455. Reported by Richard Miller) - - * --- Prevent resetting of NATted realtime peer address on reload. - (Closes issue ASTERISK-18203. Reported by daren ferreira) - - * --- Fix ConfBridge crash if no timing module loaded. - (Closes issue ASTERISK-19448. Reported by feyfre) - - * --- Fix the Park 'r' option when a channel parks itself. - (Closes issue ASTERISK-19382. Reported by James Stocks) - - * --- Fix an issue where outgoing calls would fail to establish audio - due to ICE negotiation failures. - (Closes issue ASTERISK-20554. Reported by mmichelson) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.1.0- The Asterisk Development Team has announced the release of Asterisk 11.0.2. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.0.2 resolves an issue reported by the - community and would have not been possible without your participation. - Thank you! - - The following is the issue resolved in this release: - - * --- chan_local: Fix local_pvt ref leak in local_devicestate(). - (Closes issue ASTERISK-20769. Reported by rmudgett) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.0.2- simplify LDFLAGS setting- clean up things to allow building on arm arches- The Asterisk Development Team has announced the release of Asterisk 11.0.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.0.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- chan_sip: Fix a bug causing SIP reloads to remove all entries - from the registry - (Closes issue ASTERISK-20611. Reported by Alisher) - - * --- confbridge: Fix a bug which made conferences not record with - AMI/CLI commands - (Closes issue ASTERISK-20601. Reported by Vilius) - - * --- Fix an issue with res_http_websocket where the chan_sip - WebSocket handler could not be registered. - (Closes issue ASTERISK-20631. Reported by danjenkins) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.0.1- The Asterisk Development Team is pleased to announce the release of - Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - Asterisk 11 is the next major release series of Asterisk. It is a Long Term - Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for DTLS-SRTP in chan_sip. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0- The Asterisk Development Team has announced the second release candidate of - Asterisk 11.0.0. This release candidate is available for immediate - download at http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.0.0-rc2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release candidate: - - * --- Fix an issue where outgoing calls would fail to establish audio - due to ICE negotiation failures. - (Closes issue ASTERISK-20554. Reported by mmichelson) - - * --- Ensure Asterisk fails TCP/TLS SIP calls when certificate - checking fails - (Closes issue ASTERISK-20559. Reported by kmoore) - - * --- Don't make chan_sip export global symbols. - (Closes issue ASTERISK-20545. Reported by kmoore) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.0.0-rc2- The Asterisk Development Team is pleased to announce the first release candidate - of Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - All interested users of Asterisk are encouraged to participate in the - Asterisk 11 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - All Asterisk users are invited to participate in the #asterisk-testing channel - on IRC to work together in testing the many parts of Asterisk. - - Asterisk 11 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for DTLS-SRTP in chan_sip. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0-rc1- Don't forget format_ilbc module- The Asterisk Development Team is pleased to announce the second beta release of - Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - All interested users of Asterisk are encouraged to participate in the - Asterisk 11 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - All Asterisk users are invited to participate in the #asterisk-testing channel - on IRC to work together in testing the many parts of Asterisk. - - Asterisk 11 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for DTLS-SRTP in chan_sip. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0-beta2- The Asterisk Development Team has announced the release of Asterisk 10.8.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.8.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- AST-2012-012: Resolve AMI User Unauthorized Shell Access through - ExternalIVR - (Closes issue ASTERISK-20132. Reported by Zubair Ashraf of IBM X-Force Research) - - * --- AST-2012-013: Resolve ACL rules being ignored during calls by - some IAX2 peers - (Closes issue ASTERISK-20186. Reported by Alan Frisch) - - * --- Handle extremely out of order RFC 2833 DTMF - (Closes issue ASTERISK-18404. Reported by Stephane Chazelas) - - * --- Resolve severe memory leak in CEL logging modules. - (Closes issue AST-916. Reported by Thomas Arimont) - - * --- Only re-create an SRTP session when needed - (Issue ASTERISK-20194. Reported by Nicolo Mazzon) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.8.0- fix build on s390- fix build on s390- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are - released as versions 1.8.11-cert7, 1.8.15.1, 10.7.1, and 10.7.1-digiumphones. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.11-cert7, 1.8.15.1, 10.7.1, and 10.7.1-digiumphones - resolve the following two issues: - - * A permission escalation vulnerability in Asterisk Manager Interface. This - would potentially allow remote authenticated users the ability to execute - commands on the system shell with the privileges of the user running the - Asterisk application. Please note that the README-SERIOUSLY.bestpractices.txt - file delivered with Asterisk has been updated due to this and other related - vulnerabilities fixed in previous versions of Asterisk. - - * When an IAX2 call is made using the credentials of a peer defined in a - dynamic Asterisk Realtime Architecture (ARA) backend, the ACL rules for that - peer are not applied to the call attempt. This allows for a remote attacker - who is aware of a peer's credentials to bypass the ACL rules set for that - peer. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-012 and AST-2012-013, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert7 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.15.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.7.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.7.1-digiumphones - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-012.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-013.pdf- The Asterisk Development Team has announced the release of Asterisk 10.7.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.7.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix deadlock potential with ast_set_hangupsource() calls. - (Closes issue ASTERISK-19801. Reported by Alec Davis) - - * --- Fix request routing issue when outboundproxy is used. - (Closes issue ASTERISK-20008. Reported by Marcus Hunger) - - * --- Set the Caller ID "tag" on peers even if remote party - information is present. - (Closes issue ASTERISK-19859. Reported by Thomas Arimont) - - * --- Fix NULL pointer segfault in ast_sockaddr_parse() - (Closes issue ASTERISK-20006. Reported by Michael L. Young) - - * --- Do not perform install on existing directories - (Closes issue ASTERISK-19492. Reported by Karl Fife) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.7.0- The Asterisk Development Team has announced the release of Asterisk 10.6.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.6.1 resolves an issue reported by the - community and would have not been possible without your participation. - Thank you! - - The following is the issue resolved in this release: - - * --- Remove a superfluous and dangerous freeing of an SSL_CTX. - (Closes issue ASTERISK-20074. Reported by Trevor Helmsley) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.6.1- The Asterisk Development Team has announced the release of Asterisk 10.6.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.6.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- format_mp3: Fix a possible crash in mp3_read(). - (Closes issue ASTERISK-19761. Reported by Chris Maciejewsk) - - * --- Fix local channel chains optimizing themselves out of a call. - (Closes issue ASTERISK-16711. Reported by Alec Davis) - - * --- Re-add LastMsgsSent value for SIP peers - (Closes issue ASTERISK-17866. Reported by Steve Davies) - - * --- Prevent sip_pvt refleak when an ast_channel outlasts its - corresponding sip_pvt. - (Closes issue ASTERISK-19425. Reported by David Cunningham) - - * --- Send more accurate identification information in dialog-info SIP - NOTIFYs. - (Closes issue ASTERISK-16735. Reported by Maciej Krajewski) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.6.0- The Asterisk Development Team is pleased to announce the first beta release of - Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - All interested users of Asterisk are encouraged to participate in the - Asterisk 11 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - All Asterisk users are invited to participate in the #asterisk-testing channel - on IRC to work together in testing the many parts of Asterisk. - - Asterisk 11 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the caller/callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0-beta1- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Perl 5.16 rebuild- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are - released as versions 1.8.11-cert4, 1.8.13.1, 10.5.2, and 10.5.2-digiumphones. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.11-cert4, 1.8.13.1, 10.5.2, and 10.5.2-digiumphones - resolve the following two issues: - - * If Asterisk sends a re-invite and an endpoint responds to the re-invite with - a provisional response but never sends a final response, then the SIP dialog - structure is never freed and the RTP ports for the call are never released. If - an attacker has the ability to place a call, they could create a denial of - service by using all available RTP ports. - - * If a single voicemail account is manipulated by two parties simultaneously, - a condition can occur where memory is freed twice causing a crash. - - These issues and their resolution are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-010 and AST-2012-011, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.13.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.5.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.5.2-digiumphones - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-010.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-011.pdf- Perl 5.16 rebuild- The Asterisk Development Team has announced a security release for Asterisk 10. - This security release is released as version 10.5.1. - - The release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 10.5.1 resolves the following issue: - - * A remotely exploitable crash vulnerability was found in the Skinny (SCCP) - Channel driver. When an SCCP client sends an Off Hook message, followed by - a Key Pad Button Message, a structure that was previously set to NULL is - dereferenced. This allows remote authenticated connections the ability to - cause a crash in the server, denying services to legitimate users. - - This issue and its resolution is described in the security advisory. - - For more information about the details of this vulnerability, please read - security advisory AST-2012-009, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.5.1 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-009.pdf- The Asterisk Development Team has announced the release of Asterisk 10.5.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.5.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Turn off warning message when bind address is set to any. - (Closes issue ASTERISK-19456. Reported by Michael L. Young) - - * --- Prevent overflow in calculation in ast_tvdiff_ms on 32-bit - machines - (Closes issue ASTERISK-19727. Reported by Ben Klang) - - * --- Make DAHDISendCallreroutingFacility wait 5 seconds for a reply - before disconnecting the call. - (Closes issue ASTERISK-19708. Reported by mehdi Shirazi) - - * --- Fix recalled party B feature flags for a failed DTMF atxfer. - (Closes issue ASTERISK-19383. Reported by lgfsantos) - - * --- Fix DTMF atxfer running h exten after the wrong bridge ends. - (Closes issue ASTERISK-19717. Reported by Mario) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.5.0- Perl 5.16 rebuild- The Asterisk Development Team has announced the release of Asterisk 10.4.2. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.4.2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Resolve crash in subscribing for MWI notifications - (Closes issue ASTERISK-19827. Reported by B. R) - - * --- Fix crash in ConfBridge when user announcement is played for - more than 2 users - (Closes issue ASTERISK-19899. Reported by Florian Gilcher) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.4.2- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are - released as versions 1.8.11-cert2, 1.8.12.1, and 10.4.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.11-cert2, 1.8.12.1, and 10.4.1 resolve the following - two issues: - - * A remotely exploitable crash vulnerability exists in the IAX2 channel - driver if an established call is placed on hold without a suggested music - class. Asterisk will attempt to use an invalid pointer to the music - on hold class name, potentially causing a crash. - - * A remotely exploitable crash vulnerability was found in the Skinny (SCCP) - Channel driver. When an SCCP client closes its connection to the server, - a pointer in a structure is set to NULL. If the client was not in the - on-hook state at the time the connection was closed, this pointer is later - dereferenced. This allows remote authenticated connections the ability to - cause a crash in the server, denying services to legitimate users. - - These issues and their resolution are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-007 and AST-2012-008, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.12.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.4.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-007.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-008.pdf- The Asterisk Development Team has announced the release of Asterisk 10.4.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.4.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Prevent chanspy from binding to zombie channels - (Closes issue ASTERISK-19493. Reported by lvl) - - * --- Fix Dial m and r options and forked calls generating warnings - for voice frames. - (Closes issue ASTERISK-16901. Reported by Chris Gentle) - - * --- Remove ISDN hold restriction for non-bridged calls. - (Closes issue ASTERISK-19388. Reported by Birger Harzenetter) - - * --- Fix copying of CDR(accountcode) to local channels. - (Closes issue ASTERISK-19384. Reported by jamicque) - - * --- Ensure Asterisk acknowledges ACKs to 4xx on Replaces errors - (Closes issue ASTERISK-19303. Reported by Jon Tsiros) - - * --- Eliminate double close of file descriptor in manager.c - (Closes issue ASTERISK-18453. Reported by Jaco Kroon) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.4.0- The Asterisk Development Team has announced security releases for Asterisk 1.6.2, - 1.8, and 10. The available security releases are released as versions 1.6.2.24, - 1.8.11.1, and 10.3.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.6.2.24, 1.8.11.1, and 10.3.1 resolve the following two - issues: - - * A permission escalation vulnerability in Asterisk Manager Interface. This - would potentially allow remote authenticated users the ability to execute - commands on the system shell with the privileges of the user running the - Asterisk application. - - * A heap overflow vulnerability in the Skinny Channel driver. The keypad - button message event failed to check the length of a fixed length buffer - before appending a received digit to the end of that buffer. A remote - authenticated user could send sufficient keypad button message events that the - buffer would be overrun. - - In addition, the release of Asterisk 1.8.11.1 and 10.3.1 resolve the following - issue: - - * A remote crash vulnerability in the SIP channel driver when processing UPDATE - requests. If a SIP UPDATE request was received indicating a connected line - update after a channel was terminated but before the final destruction of the - associated SIP dialog, Asterisk would attempt a connected line update on a - non-existing channel, causing a crash. - - These issues and their resolution are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-004, AST-2012-005, and AST-2012-006, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.24 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.11.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.3.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-004.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-005.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-006.pdf- Update to 10.3.0- Update to 10.2.1 from upstream. - Fix remote stack overflow in app_milliwatt. - Fix remote stack overflow, including possible code injection, in HTTP digest authentication handling. - Disable asterisk-corosync package, as it doesn't build right now. - Resolves: rhbz#804045, rhbz#804038, rhbz#804042- * Add patch extracted from upstream to build with Corosync since - OpenAIS is no longer available. - * Add PrivateTmp=true to systemd service file (#782478) - * Add some macros to make it easier to build with fewer dependencies - (with corresponding less functionality) (#787389) - * Add isa macros in a few places plus a few other changes to make it - easier to cross-compile. (#787779)- The Asterisk Development Team has announced the release of Asterisk 10.1.2. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.1.2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Fix SIP INFO DTMF handling for non-numeric codes --- - (Closes issue ASTERISK-19290. Reported by: Ira Emus) - - * --- Fix crash in ParkAndAnnounce --- - (Closes issue ASTERISK-19311. Reported-by: tootai) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.1.2- The Asterisk Development Team has announced the release of Asterisk 10.1.1. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.1.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fixes deadlocks occuring in chan_agent --- - (Closes issue ASTERISK-19285. Reported by: Alex Villacis Lasso) - - * --- Ensure entering T.38 passthrough does not cause an infinite loop --- - (Closes issue ASTERISK-18951. Reported-by: Kristijan Vrban) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.1.1- The Asterisk Development Team is pleased to announce the release of - Asterisk 10.1.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.1.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * AST-2012-001: prevent crash when an SDP offer - is received with an encrypted video stream when support for video - is disabled and res_srtp is loaded. (closes issue ASTERISK-19202) - Reported by: Catalin Sanda - - * Allow playback of formats that don't support seeking. ast_streamfile - previously did unconditional seeking on files that broke playback of - formats that don't support that functionality. This patch avoids the - seek that was causing the problem. - (closes issue ASTERISK-18994) Patched by: Timo Teras - - * Add pjmedia probation concepts to res_rtp_asterisk's learning mode. In - order to better handle RTP sources with strictrtp enabled (which is the - default setting in 10) using the learning mode to figure out new sources - when they change is handled by checking for a number of consecutive (by - sequence number) packets received to an rtp struct based on a new - configurable value called 'probation'. Also, during learning mode instead - of liberally accepting all packets received, we now reject packets until a - clear source has been determined. - - * Handle AST_CONTROL_UPDATE_RTP_PEER frames in local bridge loop. Failing - to handle AST_CONTROL_UPDATE_RTP_PEER frames in the local bridge loop - causes the loop to exit prematurely. This causes a variety of negative side - effects, depending on when the loop exits. This patch handles the frame by - essentially swallowing the frame in the local loop, as the current channel - drivers expect the RTP bridge to handle the frame, and, in the case of the - local bridge loop, no additional action is necessary. - (closes issue ASTERISK-19095) Reported by: Stefan Schmidt Tested - by: Matt Jordan - - * Fix timing source dependency issues with MOH. Prior to this patch, - res_musiconhold existed at the same module priority level as the timing - sources that it depends on. This would cause a problem when music on - hold was reloaded, as the timing source could be changed after - res_musiconhold was processed. This patch adds a new module priority - level, AST_MODPRI_TIMING, that the various timing modules are now loaded - at. This now occurs before loading other resource modules, such - that the timing source is guaranteed to be set prior to resolving - the timing source dependencies. - (closes issue ASTERISK-17474) Reporter: Luke H Tested by: Luke H, - Vladimir Mikhelson, zzsurf, Wes Van Tlghem, elguero, Thomas Arimont - Patched by elguero - - * Fix RTP reference leak. If a blind transfer were initiated using a - REFER without a prior reINVITE to place the call on hold, AND if Asterisk - were sending RTCP reports, then there was a reference leak for the - RTP instance of the transferrer. - (closes issue ASTERISK-19192) Reported by: Tyuta Vitali - - * Fix blind transfers from failing if an 'h' extension - is present. This prevents the 'h' extension from being run on the - transferee channel when it is transferred via a native transfer - mechanism such as SIP REFER. (closes issue ASTERISK-19173) Reported - by: Ross Beer Tested by: Kristjan Vrban Patches: ASTERISK-19173 by - Mark Michelson (license 5049) - - * Restore call progress code for analog ports. Extracting sig_analog - from chan_dahdi lost call progress detection functionality. Fix - analog ports from considering a call answered immediately after - dialing has completed if the callprogress option is enabled. - (closes issue ASTERISK-18841) - Reported by: Richard Miller Patched by Richard Miller - - * Fix regression that 'rtp/rtcp set debup ip' only works when a port - was also specified. - (closes issue ASTERISK-18693) Reported by: Davide Dal Reviewed by: - Walter Doekes - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.1.0- Remove asterisk-ais. OpenAIS was removed from Fedora.- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Don't build API docs as the build never finishes- The Asterisk Development Team is proud to announce the release of - Asterisk 10.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - With the release of the Asterisk 10 branch, the preceding '1.' has been removed - from the version number per the blog post available at - - - http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-arrived-at-asterisk-10/ - - The release of Asterisk 10 would not have been possible without the support and - contributions of the community. - - You can find an overview of the work involved with the 10.0.0 release in the - summary: - - http://svn.asterisk.org/svn/asterisk/tags/10.0.0/asterisk-10.0.0-summary.txt - - A short list of available features includes: - - * T.38 gateway functionality has been added to res_fax. - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - * Support for defining hints has been added to pbx_lua. - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.asterisk.org/svn/asterisk/branches/10/CHANGES - - Also, when upgrading a system between major versions, it is imperative that you - read and understand the contents of the UPGRADE.txt file, which is located at: - - http://svn.asterisk.org/svn/asterisk/branches/10/UPGRADE.txt- The Asterisk Development Team has announced the third release candidate of - Asterisk 10.0.0. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.0.0-rc3 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Add ASTSBINDIR to the list of configurable paths - - This patch also makes astdb2sqlite3 and astcanary use the configured - directory instead of relying on $PATH. - - * Don't crash on INFO automon request with no channel - - AST-2011-014. When automon was enabled in features.conf, it was possible - to crash Asterisk by sending an INFO request if no channel had been - created yet. - - * Fixed crash from orphaned MWI subscriptions in chan_sip - - This patch resolves the issue where MWI subscriptions are orphaned - by subsequent SIP SUBSCRIBE messages. - - * Fix a change in behavior in 'database show' from 1.8. - - In 1.8 and previous versions, one could use any fullword portion of - the key name, including the full key, to obtain the record. Until this - patch, this did not work for the full key. - - * Default to nat=yes; warn when nat in general and peer differ - - AST-2011-013. It is possible to enumerate SIP usernames when the general and - user/peer nat settings differ in whether to respond to the port a request is - sent from or the port listed for responses in the Via header. In 1.4 and - 1.6.2, this would mean if one setting was nat=yes or nat=route and the other - was either nat=no or nat=never. In 1.8 and 10, this would mean when one - was nat=force_rport and the other was nat=no. - - In order to address this problem, it was decided to switch the default - behavior to nat=yes/force_rport as it is the most commonly used option - and to strongly discourage setting nat per-peer/user when at all - possible. - - * Fixed SendMessage stripping extension from To: header in SIP MESSAGE - - When using the MessageSend application to send a SIP MESSAGE to a - non-peer, chan_sip stripped off the extension and failed to add it back - to the sip_pvt structure before transmitting. This patch adds the full - URI passed in from the message core to the sip_pvt structure. - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.0.0-rc3- The Asterisk Development Team has announced the second release candidate of - Asterisk 10.0.0. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.0.0-rc2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Ensure that a null vmexten does not cause a segfault - - * Fix issue with ConfBridge participants hanging up during DTMF feature - menu usage getting stuck in conference forever - (closes issue ASTERISK-18829) - Reported by: zvision - - * Fix app_macro.c MODULEINFO section termination - (closes issue ASTERISK-18848) - Reported by: Tony Mountifield - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.0.0-rc2- The Asterisk Development Team is pleased to announce the first release candidate - of Asterisk 10.0.0. This release candidate is available for immediate download - at http://downloads.asterisk.org/pub/telephony/asterisk/ - - All Asterisk users are encouraged to participate in the Asterisk 10 testing - process. Please report any issues found to the issue tracker, - https://issues.asterisk.org/jira. It is also very useful to see successful test - reports. Please post those to the asterisk-dev mailing list. - - All Asterisk users are invited to participate in the #asterisk-testing - channel on IRC to work together in testing the many parts of Asterisk. - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more - information about support time lines for Asterisk releases, see the Asterisk - versions page: https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - A short list of features includes: - - * T.38 gateway functionality has been added to res_fax. - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - (More information available at - https://wiki.asterisk.org/wiki/display/AST/ConfBridge+10 ) - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - * Support for defining hints has been added to pbx_lua. - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/10/CHANGES - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.0-rc1- Add patch from upstream SVN to fix AST-2011-012- Patch cleanup day- The Asterisk Development Team is pleased to announce the second beta release of - Asterisk 10.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - With the release of the Asterisk 10 branch, the preceding '1.' has been removed - from the version number per the blog post available at - http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-arrived-at-asterisk-10/ - - All interested users of Asterisk are encouraged to participate in the - Asterisk 10 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - - All Asterisk users are invited to participate in the #asterisk-testing - channel on IRC to work together in testing the many parts of Asterisk. - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more - information about support time lines for Asterisk releases, see the Asterisk - versions page: https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - A short list of features includes: - - * T.38 gateway functionality has been added to res_fax. - - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - - * Support for defining hints has been added to pbx_lua. - - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/10/CHANGES - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.0-beta2- - The Asterisk Development Team is pleased to announce the first beta release of - Asterisk 10.0.0-beta1. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - With the release of the Asterisk 10 branch, the preceding '1.' has been removed - from the version number per the blog post available at - http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-arrived-at-asterisk-10/ - - All interested users of Asterisk are encouraged to participate in the - Asterisk 10 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - - All Asterisk users are invited to participate in the #asterisk-testing - channel on IRC to work together in testing the many parts of Asterisk. - Additionally users can make use of the RPM and DEB packages now being built for - all Asterisk releases. More information available at - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Packages - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more - information about support time lines for Asterisk releases, see the Asterisk - versions page: https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - A short list of included features includes: - - * T.38 gateway functionality has been added to res_fax. - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - * Support for defining hints has been added to pbx_lua. - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/10/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.0-beta1- Perl mass rebuild- Perl mass rebuild- The Asterisk Development Team announces the release of Asterisk 1.8.5.0. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.5.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * Fix Deadlock with attended transfer of SIP call - (Closes issue #18837. Reported, patched by alecdavis. Tested by Irontec, ZX81, - cmaj) - - * Fixes thread blocking issue in the sip TCP/TLS implementation. - (Closes issue #18497. Reported by vois. Patched by dvossel. Tested by vois, - rossbeer, kowalma, Freddi_Fonet) - - * Be more tolerant of what URI we accept for call completion PUBLISH requests. - (Closes issue #18946. Reported by GeorgeKonopacki. Patched by mmichelson) - - * Fix a nasty chanspy bug which was causing a channel leak every time a spied on - channel made a call. - (Closes issue #18742. Reported by jkister. Tested by jcovert, jrose) - - * This patch fixes a bug with MeetMe behavior where the 'P' option for always - prompting for a pin is ignored for the first caller. - (Closes issue #18070. Reported by mav3rick. Patched by bbryant) - - * Fix issue where Asterisk does not hangup a channel after endpoint hangs up. If - the call that the dialplan started an AGI script for is hungup while the AGI - script is in the middle of a command then the AGI script is not notified of - the hangup. - (Closes issue #17954, #18492. Reported by mn3250, devmod. Patched by rmudgett) - - * Resolve issue where leaving a voicemail, the MWI message is never sent. The - same thing happens when checking a voicemail and marking it as read. - (Closes issue ASTERISK-18002. Reported by Leif Madsen. Resolved by Richard - Mudgett) - - * Resolve issue where wait for leader with Music On Hold allows crosstalk - between participants. Parenthesis in the wrong position. Regression from issue - #14365 when expanding conference flags to use 64 bits. - (Closes issue #18418. Reported by MrHanMan. Patched by rmudgett) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.5.0- Rebuild for net-snmp 5.7- Fix systemd dependencies in EL6 and F15- The Asterisk Development Team has announced the first release candidate of - Asterisk 1.8.5. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.5-rc1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Fix Deadlock with attended transfer of SIP call - (Closes issue #18837. Reported, patched by alecdavis. Tested by Irontec, ZX81, - cmaj) - - * Fixes thread blocking issue in the sip TCP/TLS implementation. - (Closes issue #18497. Reported by vois. Patched by dvossel. Tested by vois, - rossbeer, kowalma, Freddi_Fonet) - - * Be more tolerant of what URI we accept for call completion PUBLISH requests. - (Closes issue #18946. Reported by GeorgeKonopacki. Patched by mmichelson) - - * Fix a nasty chanspy bug which was causing a channel leak every time a spied on - channel made a call. - (Closes issue #18742. Reported by jkister. Tested by jcovert, jrose) - - * This patch fixes a bug with MeetMe behavior where the 'P' option for always - prompting for a pin is ignored for the first caller. - (Closes issue #18070. Reported by mav3rick. Patched by bbryant) - - * Fix issue where Asterisk does not hangup a channel after endpoint hangs up. If - the call that the dialplan started an AGI script for is hungup while the AGI - script is in the middle of a command then the AGI script is not notified of - the hangup. - (Closes issue #17954, #18492. Reported by mn3250, devmod. Patched by rmudgett) - - * Resolve issue where leaving a voicemail, the MWI message is never sent. The - same thing happens when checking a voicemail and marking it as read. - (Closes issue ASTERISK-18002. Reported by Leif Madsen. Resolved by Richard - Mudgett) - - * Resolve issue where wait for leader with Music On Hold allows crosstalk - between participants. Parenthesis in the wrong position. Regression from issue - #14365 when expanding conference flags to use 64 bits. - (Closes issue #18418. Reported by MrHanMan. Patched by rmudgett) - - * Fix timerfd locking issue. - (Closes ASTERISK-17867, ASTERISK-17415. Patched by kobaz) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.5-rc1- Fedora Directory Server -> 389 Directory Server- The Asterisk Development Team has announced the release of Asterisk - versions 1.4.41.2, 1.6.2.18.2, and 1.8.4.4, which are security - releases. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.4.41.2, 1.6.2.18.2, and 1.8.4.4 resolves the - following issue: - - AST-2011-011: Asterisk may respond differently to SIP requests from an - invalid SIP user than it does to a user configured on the system, even - when the alwaysauthreject option is set in the configuration. This can - leak information about what SIP users are valid on the Asterisk - system. - - For more information about the details of this vulnerability, please - read the security advisory AST-2011-011, which was released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.4 - - Security advisory AST-2011-011 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-011.pdf- Don't forget stereorize- Move /var/run/asterisk to /run/asterisk - Add comments to systemd service file on how to mimic safe_asterisk functionality - Build more of the optional binaries - Install the tmpfiles.d configuration on Fedora 15- The Asterisk Development Team has announced the release of Asterisk versions - 1.4.41.1, 1.6.2.18.1, and 1.8.4.3, which are security releases. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.4.41.1, 1.6.2.18, and 1.8.4.3 resolves several issues - as outlined below: - - * AST-2011-008: If a remote user sends a SIP packet containing a null, - Asterisk assumes available data extends past the null to the - end of the packet when the buffer is actually truncated when - copied. This causes SIP header parsing to modify data past - the end of the buffer altering unrelated memory structures. - This vulnerability does not affect TCP/TLS connections. - -- Resolved in 1.6.2.18.1 and 1.8.4.3 - - * AST-2011-009: A remote user sending a SIP packet containing a Contact header - with a missing left angle bracket (<) causes Asterisk to - access a null pointer. - -- Resolved in 1.8.4.3 - - * AST-2011-010: A memory address was inadvertently transmitted over the - network via IAX2 via an option control frame and the remote party would try - to access it. - -- Resolved in 1.4.41.1, 1.6.2.18.1, and 1.8.4.3 - - The issues and resolutions are described in the AST-2011-008, AST-2011-009, and - AST-2011-010 security advisories. - - For more information about the details of these vulnerabilities, please read - the security advisories AST-2011-008, AST-2011-009, and AST-2011-010, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.3 - - Security advisories AST-2011-008, AST-2011-009, and AST-2011-010 are available - at: - - http://downloads.asterisk.org/pub/security/AST-2011-008.pdf - http://downloads.asterisk.org/pub/security/AST-2011-009.pdf - http://downloads.asterisk.org/pub/security/AST-2011-010.pdf- Convert to systemd- Perl mass rebuild- Perl 5.14 mass rebuild- - The Asterisk Development Team has announced the release of Asterisk - version 1.8.4.2, which is a security release for Asterisk 1.8. - - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.4.2 resolves an issue with SIP URI - parsing which can lead to a remotely exploitable crash: - - Remote Crash Vulnerability in SIP channel driver (AST-2011-007) - - The issue and resolution is described in the AST-2011-007 security - advisory. - - For more information about the details of this vulnerability, please - read the security advisory AST-2011-007, which was released at the - same time as this announcement. - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.2 - - Security advisory AST-2011-007 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-007.pdf - - The Asterisk Development Team has announced the release of Asterisk 1.8.4.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.4.1 resolves several issues reported by the - community. Without your help this release would not have been possible. - Thank you! - - Below is a list of issues resolved in this release: - - * Fix our compliance with RFC 3261 section 18.2.2. (aka Cisco phone fix) - (Closes issue #18951. Reported by jmls. Patched by wdoekes) - - * Resolve a change in IPv6 header parsing due to the Cisco phone fix issue. - This issue was found and reported by the Asterisk test suite. - (Closes issue #18951. Patched by mnicholson) - - * Resolve potential crash when using SIP TLS support. - (Closes issue #19192. Reported by stknob. Patched by Chainsaw. Tested by - vois, Chainsaw) - - * Improve reliability when using SIP TLS. - (Closes issue #19182. Reported by st. Patched by mnicholson) - - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4.1 - The Asterisk Development Team has announced the release of Asterisk 1.8.4. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.4 resolves several issues reported by the community. - Without your help this release would not have been possible. Thank you! - - Below is a sample of the issues resolved in this release: - - * Use SSLv23_client_method instead of old SSLv2 only. - (Closes issue #19095, #19138. Reported, patched by tzafrir. Tested by russell - and chazzam. - - * Resolve crash in ast_mutex_init() - (Patched by twilson) - - * Resolution of several DTMF based attended transfer issues. - (Closes issue #17999, #17096, #18395, #17273. Reported by iskatel, gelo, - shihchuan, grecco. Patched by rmudgett) - - NOTE: Be sure to read the ChangeLog for more information about these changes. - - * Resolve deadlocks related to device states in chan_sip - (Closes issue #18310. Reported, patched by one47. Patched by jpeeler) - - * Resolve an issue with the Asterisk manager interface leaking memory when - disabled. - (Reported internally by kmorgan. Patched by russellb) - - * Support greetingsfolder as documented in voicemail.conf.sample. - (Closes issue #17870. Reported by edhorton. Patched by seanbright) - - * Fix channel redirect out of MeetMe() and other issues with channel softhangup - (Closes issue #18585. Reported by oej. Tested by oej, wedhorn, russellb. - Patched by russellb) - - * Fix voicemail sequencing for file based storage. - (Closes issue #18498, #18486. Reported by JJCinAZ, bluefox. Patched by - jpeeler) - - * Set hangup cause in local_hangup so the proper return code of 486 instead of - 503 when using Local channels when the far sides returns a busy. Also affects - CCSS in Asterisk 1.8+. - (Patched by twilson) - - * Fix issues with verbose messages not being output to the console. - (Closes issue #18580. Reported by pabelanger. Patched by qwell) - - * Fix Deadlock with attended transfer of SIP call - (Closes issue #18837. Reported, patched by alecdavis. Tested by - alecdavid, Irontec, ZX81, cmaj) - - Includes changes per AST-2011-005 and AST-2011-006 - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4 - - Information about the security releases are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-005.pdf - http://downloads.asterisk.org/pub/security/AST-2011-006.pdf- The Asterisk Development Team has announced security releases for Asterisk - branches 1.4, 1.6.1, 1.6.2, and 1.8. The available security releases are - released as versions 1.4.40.1, 1.6.1.25, 1.6.2.17.3, and 1.8.3.3. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.4.40.1, 1.6.1.25, 1.6.2.17.3, and 1.8.3.3 resolve two - issues: - - * File Descriptor Resource Exhaustion (AST-2011-005) - * Asterisk Manager User Shell Access (AST-2011-006) - - The issues and resolutions are described in the AST-2011-005 and AST-2011-006 - security advisories. - - For more information about the details of these vulnerabilities, please read the - security advisories AST-2011-005 and AST-2011-006, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.40.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.25 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.3 - - Security advisory AST-2011-005 and AST-2011-006 are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-005.pdf - http://downloads.asterisk.org/pub/security/AST-2011-006.pdf- Bump release and rebuild for mysql 5.5.10 soname change.- The Asterisk Development Team has announced security releases for Asterisk - branches 1.6.1, 1.6.2, and 1.8. The available security releases are - released as versions 1.6.1.24, 1.6.2.17.2, and 1.8.3.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - ** This is a re-release of Asterisk 1.6.1.23, 1.6.2.17.1 and 1.8.3.1 which - contained a bug which caused duplicate manager entries (issue #18987). - - The releases of Asterisk 1.6.1.24, 1.6.2.17.2, and 1.8.3.2 resolve two issues: - - * Resource exhaustion in Asterisk Manager Interface (AST-2011-003) - * Remote crash vulnerability in TCP/TLS server (AST-2011-004) - - The issues and resolutions are described in the AST-2011-003 and AST-2011-004 - security advisories. - - For more information about the details of these vulnerabilities, please read the - security advisories AST-2011-003 and AST-2011-004, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.24 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.2 - - Security advisory AST-2011-003 and AST-2011-004 are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-003.pdf - http://downloads.asterisk.org/pub/security/AST-2011-004.pdf- The Asterisk Development Team has announced security releases for Asterisk - branches 1.6.1, 1.6.2, and 1.8. The available security releases are - released as versions 1.6.1.23, 1.6.2.17.1, and 1.8.3.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.6.1.23, 1.6.2.17.1, and 1.8.3.1 resolve two issues: - - * Resource exhaustion in Asterisk Manager Interface (AST-2011-003) - * Remote crash vulnerability in TCP/TLS server (AST-2011-004) - - The issues and resolutions are described in the AST-2011-003 and AST-2011-004 - security advisories. - - For more information about the details of these vulnerabilities, please read the - security advisories AST-2011-003 and AST-2011-004, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.23 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.1 - - Security advisory AST-2011-003 and AST-2011-004 are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-003.pdf - http://downloads.asterisk.org/pub/security/AST-2011-004.pdf- The Asterisk Development Team has announced the release of Asterisk 1.8.3. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.3 resolves several issues reported by the community - and would have not been possible without your participation. Thank you! - - The following is a sample of the issues resolved in this release: - - * Resolve duplicated data in the AstDB when using DIALGROUP() - (Closes issue #18091. Reported by bunny. Patched by tilghman) - - * Ensure the ipaddr field in realtime is large enough to handle IPv6 addresses. - (Closes issue #18464. Reported, patched by IgorG) - - * Reworking parsing of mwi => lines to resolve a segfault. Also add a set of - unit tests for the function that does the parsing. - (Closes issue #18350. Reported by gbour. Patched by Marquis) - - * When using cdr_pgsql the billsec field was not populated correctly on - unanswered calls. - (Closes issue #18406. Reported by joscas. Patched by tilghman) - - * Resolve memory leak in iCalendar and Exchange calendaring modules. - (Closes issue #18521. Reported, patched by pitel. Tested by cervajs) - - * This version of Asterisk includes the new Compiler Flags option - BETTER_BACKTRACES which uses libbfd to search for better symbol information - within both the Asterisk binary, as well as loaded modules, to assist when - using inline backtraces to track down problems. - (Patched by tilghman) - - * Resolve issue where no Music On Hold may be triggered when using - res_timing_dahdi. - (Closes issues #18262. Reported by francesco_r. Patched by cjacobson. Tested - by francesco_r, rfrantik, one47) - - * Resolve a memory leak when the Asterisk Manager Interface is disabled. - (Reported internally by kmorgan. Patched by russellb) - - * Reimplemented fax session reservation to reverse the ABI breakage introduced - in r297486. - (Reported internally. Patched by mnicholson) - - * Fix regression that changed behavior of queues when ringing a queue member. - (Closes issue #18747, #18733. Reported by vrban. Patched by qwell.) - - * Resolve deadlock involving REFER. - (Closes issue #18403. Reported, tested by jthurman. Patched by jpeeler.) - - Additionally, this release has the changes related to security bulletin - AST-2011-002 which can be found at - http://downloads.asterisk.org/pub/security/AST-2011-002.pdf - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.3- - The Asterisk Development Team has announced the third release candidate of - Asterisk 1.8.3. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.3-rc3 resolves the following issues in addition to - those included in 1.8.3-rc1 and 1.8.3-rc2: - - * Fix regression that changed behavior of queues when ringing a queue member. - (Closes issue #18747, #18733. Reported by vrban. Patched by qwell.) - - * Resolve deadlock involving REFER. - (Closes issue #18403. Reported, tested by jthurman. Patched by jpeeler.) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.3-rc3- Bump release to build for F15- Remove isa macros- Make library dependencies architecture specific- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_RebuildThe Asterisk Development Team has announced the second release candidate of Asterisk 1.8.3. This release candidate is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/ The release of Asterisk 1.8.3-rc2 resolves the following issues in addition to those included in 1.8.3-rc1: * Resolve issue where no Music On Hold may be triggered when using res_timing_dahdi. (Closes issues #18262. Reported by francesco_r. Patched by cjacobson. Tested by francesco_r, rfrantik, one47) * Resolve a memory leak when the Asterisk Manager Interface is disabled. (Reported internally by kmorgan. Patched by russellb) * Reimplemented fax session reservation to reverse the ABI breakage introduced in r297486. (Reported internally. Patched by mnicholson) For a full list of changes in this release candidate, please see the ChangeLog: http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.3-rc2- - The Asterisk Development Team has announced the first release candidate of - Asterisk 1.8.3. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.3-rc1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Resolve duplicated data in the AstDB when using DIALGROUP() - (Closes issue #18091. Reported by bunny. Patched by tilghman) - - * Ensure the ipaddr field in realtime is large enough to handle IPv6 addresses. - (Closes issue #18464. Reported, patched by IgorG) - - * Reworking parsing of mwi => lines to resolve a segfault. Also add a set of - unit tests for the function that does the parsing. - (Closes issue #18350. Reported by gbour. Patched by Marquis) - - * When using cdr_pgsql the billsec field was not populated correctly on - unanswered calls. - (Closes issue #18406. Reported by joscas. Patched by tilghman) - - * Resolve memory leak in iCalendar and Exchange calendaring modules. - (Closes issue #18521. Reported, patched by pitel. Tested by cervajs) - - * This version of Asterisk includes the new Compiler Flags option - BETTER_BACKTRACES which uses libbfd to search for better symbol information - within both the Asterisk binary, as well as loaded modules, to assist when - using inline backtraces to track down problems. - (Patched by tilghman)- - The Asterisk Development Team has announced the release of Asterisk 1.8.2.3. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.2.3 resolves the following issue: - - * Reimplemented fax session reservation to reverse the ABI breakage introduced - in r297486. - (Reported by Jeremy Kister on the asterisk-users mailing list. Patched by - mnicholson) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.2.3- Build with SRTP support- - The Asterisk Development Team has announced a release for the security issue - described in AST-2011-001. - - Due to a failed merge, Asterisk 1.8.2.1 which should have included the security - fix did not. Asterisk 1.8.2.2 contains the the changes which should have been - included in Asterisk 1.8.2.1. - - This releases is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.2, - 1.8.1.2, and 1.8.2.2 resolve an issue when forming an outgoing SIP request while - in pedantic mode, which can cause a stack buffer to be made to overflow if - supplied with carefully crafted caller ID information. The issue and resolution - are described in the AST-2011-001 security advisory. - - For more information about the details of this vulnerability, please read the - security advisory AST-2011-001, which was released at the same time as this - announcement. - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.2.2 - - Security advisory AST-2011-001 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-001.pdf- - The Asterisk Development Team has announced security releases for the following - versions of Asterisk: - - * 1.4.38.1 - * 1.4.39.1 - * 1.6.1.21 - * 1.6.2.15.1 - * 1.6.2.16.1 - * 1.8.1.2 - * 1.8.2.1 - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.2, - 1.8.1.2, and 1.8.2.1 resolve an issue when forming an outgoing SIP request while - in pedantic mode, which can cause a stack buffer to be made to overflow if - supplied with carefully crafted caller ID information. The issue and resolution - are described in the AST-2011-001 security advisory. - - For more information about the details of this vulnerability, please read the - security advisory AST-2011-001, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.38.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.39.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.21 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.15.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.16.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.1.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.2.1 - - Security advisory AST-2011-001 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-001.pdf- - The Asterisk Development Team has announced the release of Asterisk 1.8.2. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * 'sip notify clear-mwi' needs terminating CRLF. - (Closes issue #18275. Reported, patched by klaus3000) - - * Patch for deadlock from ordering issue between channel/queue locks in - app_queue (set_queue_variables). - (Closes issue #18031. Reported by rain. Patched by bbryant) - - * Fix cache of device state changes for multiple servers. - (Closes issue #18284, #18280. Reported, tested by klaus3000. Patched, tested - by russellb) - - * Resolve issue where channel redirect function (CLI or AMI) hangs up the call - instead of redirecting the call. - (Closes issue #18171. Reported by: SantaFox) - (Closes issue #18185. Reported by: kwemheuer) - (Closes issue #18211. Reported by: zahir_koradia) - (Closes issue #18230. Reported by: vmarrone) - (Closes issue #18299. Reported by: mbrevda) - (Closes issue #18322. Reported by: nerbos) - - * Fix reloading of peer when a user is requested. Prevent peer reloading from - causing multiple MWI subscriptions to be created when using realtime. - (Closes issue #18342. Reported, patched by nivek.) - - * Fix XMPP PubSub-based distributed device state. Initialize pubsubflags to 0 - so res_jabber doesn't think there is already an XMPP connection sending - device state. Also clean up CLI commands a bit. - (Closes issue #18272. Reported by klaus3000. Patched by Marquis42) - - * Don't crash after Set(CDR(userfield)=...) in ast_bridge_call. Instead of - setting peer->cdr = NULL, set it to not post. - (Closes issue #18415. Reported by macbrody. Patched, tested by jsolares) - - * Fixes issue with outbound google voice calls not working. Thanks to az1234 - and nevermind_quack for their input in helping debug the issue. - (Closes issue #18412. Reported by nevermind_quack. Patched by dvossel) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.2- - The Asterisk Development Team has announced the release of Asterisk 1.8.1.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.1.1 resolves two issues reported by the community - since the release of Asterisk 1.8.1. - - * Don't crash after Set(CDR(userfield)=...) in ast_bridge_call. Instead of - setting peer->cdr = NULL, set it to not post. - (Closes issue #18415. Reported by macbrody. Patched, tested by jsolares) - - * Fixes issue with outbound google voice calls not working. Thanks to az1234 - and nevermind_quack for their input in helping debug the issue. - (Closes issue #18412. Reported by nevermind_quack. Patched by dvossel) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.1.1- - The Asterisk Development Team has announced the release of Asterisk 1.8.1. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * Fix issue when using directmedia. Asterisk needs to limit the codecs offered - to just the ones that both sides recognize, otherwise they may end up sending - audio that the other side doesn't understand. - (Closes issue #17403. Reported, patched by one47. Tested by one47, falves11) - - * Resolve issue where Party A in an analog 3-way call would continue to hear - ringback after party C answers. - (Patched by rmudgett) - - * Fix playback failure when using IAX with the timerfd module. - (Closes issue #18110. Reported, tested by tpanton. Patched by jpeeler) - - * Fix problem with qualify option packets for realtime peers never stopping. - The option packets not only never stopped, but if a realtime peer was not in - the peer list multiple options dialogs could accumulate over time. - (Closes issue #16382. Reported by lftsy. Tested by zerohalo. Patched by - jpeeler) - - * Fix issue where it is possible to crash Asterisk by feeding the curl engine - invalid data. - (Closes issue #18161. Reported by wdoekes. Patched by tilghman) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.1- dont package up the ices bits on el the client doesnt exist for us- dont build the 389 directory server package its not available on rhel6- dont always build AIS modules we dont have the BuildRequires on epel- Rebuild for new net-snmp.- Always build AIS modules- The Asterisk Development Team is proud to announce the release of Asterisk - 1.8.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - Asterisk 1.8 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.4. For more information about - support time lines for Asterisk releases, see the Asterisk versions page. - - http://www.asterisk.org/asterisk-versions - - The release of Asterisk 1.8.0 would not have been possible without the support - and contributions of the community. Since Asterisk 1.6.2, we've had over 500 - reporters, more than 300 testers and greater than 200 developers contributed to - this release. - - You can find a summary of the work involved with the 1.8.0 release in the - sumary: - - http://svn.asterisk.org/svn/asterisk/tags/1.8.0/asterisk-1.8.0-summary.txt - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=markup - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0 - - Thank you for your continued support of Asterisk!- - The release of Asterisk 1.8.0-rc5 was triggered by some last minute platform - compatibility IPv6 changes. In addition, the availability of the English sound - prompts with Australian accents has been added. - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=markup - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc5 - - This release candidate contains fixes since the last release candidate as - reported by the community. A sampling of the changes in this release candidate - include: - - * Additional fixups in chan_gtalk that allow outbound calls to both Google - Talk and Google Voice recipients. Adds new chan_gtalk enhancements externip - and stunaddr. - (Closes issue #13971. Patched by dvossel) - - * Resolve manager crash issue. - (Closes issue #17994. Reported by vrban. Patchd by dvossel) - - * Documentation updates for sample configuration files. - (Closes issues #18107, #18101. Reported, patched by lathama, lmadsen) - - * Resolve issue where faxdetect would only detect the first fax call in - chan_dahdi. - (Closes issue #18116. Reported by seandarcy. Patched by rmudgett) - - * Resolve issue where a channel that is setup and torn down *very* quickly may - not have the right call disposition or ${DIALSTATUS}. - (Closes issue #16946. Reported by davidw. Review - https://reviewboard.asterisk.org/r/740/) - - * Set TCLASS field of IPv6 header when SIP QoS options are set. - (Closes issue #18099. Reported by jamesnet. Patched by dvossel) - - * Resolve issue where Asterisk could crash on shutdown when using SRTP. - (Closes issue #18085. Reported by st. Patched by twilson) - - * Fix issue where peers host port would be lost on a SIP reload. - (Closes issue #18135. Reported, tested by lmadsen. Patched by dvossel) - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=markup - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc4- This release candidate contains fixes since the release candidate as reported by - the community. A sampling of the changes in this release candidate include: - - * Still build chan_sip even if res_crypto cannot be built (use, but not depend) - (Reported by a user on the mailing list. Patched by tilghman) - - * Get notifications for call files only when a file is closed, not when created - (Closes issue #17924. Reported by mkeuter. Patched by abeldeck) - - * Fixes to chan_gtalk to allow outbound DTMF support to work correctly. Gtalk - expects the DTMF to arrive on the RTP stream and not via jingle DTMF - signalling. - (Patched by dvossel. Tested by malcolmd) - - * Fixes to allow chan_gtalk to communicate with the Gmail web client. - (Patched by phsultan and dvossel) - - * Fix to GET DATA to allow audio to be streamed via an AGI. - (Closes issue #18001. Reported by jamicque. Patched by tilghman) - - * Resolve dnsmgr memory corruption in chan_iax2. - (Closes issue #17902. Reported by afried. Patched by russell, dvossel) - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc3- This release candidate contains fixes since the last beta release as reported by - the community. A sampling of the changes in this release candidate include: - - * Add slin16 support for format_wav (new wav16 file extension) - (Closes issue #15029. Reported, patched by andrew. Tested by Qwell) - - * Fixes a bug in manager.c where the default configuration values weren't reset - when the manager configuration was reloaded. - (Closes issue #17917. Reported by lmadsen. Patched by bbryant) - - * Various fixes for the calendar modules. - (Patched by Jan Kalab. - Reviewboard: https://reviewboard.asterisk.org/r/880/ - Closes issue #17877. Review: https://reviewboard.asterisk.org/r/916/ - Closes issue #17776. Review: https://reviewboard.asterisk.org/r/921/) - - * Add CHANNEL(checkhangup) to check whether a channel is in the process of - being hung up. - (Closes issue #17652. Reported, patched by kobaz) - - * Fix a bug with MeetMe where after announcing the amount of time left in a - conference, if music on hold was playing, it doesn't restart. - (Closes issue #17408, Reported, patched by sysreq) - - * Fix interoperability problems with session timer behavior in Asterisk. - (Closes issue #17005. Reported by alexcarey. Patched by dvossel) - - * Rate limit calls to fsync() to 1 per second after astdb updates. Astdb was - determined to be one of the most significant bottlenecks in SIP registration - processing. This patch improved the speed of an astdb load test by 50000% - (yes, Fifty-Thousand Percent). On this particular load test setup, this - doubled the number of SIP registrations the server could handle. - (Review: https://reviewboard.asterisk.org/r/825/) - - * Don't clear the username from a realtime database when a registration - expires. Non-realtime chan_sip does not clear the username from memory when a - registration expiries so realtime probably shouldn't either. - (Closes issue #17551. Reported, patched by: ricardolandim. Patched by - mnicholson) - - * Don't hang up a call on an SRTP unprotect failure. Also make it more obvious - when there is an issue en/decrypting. - (Closes issue #17563. Reported by Alexcr. Patched by sfritsch. Tested by - twilson) - - * Many more issues. This is a significant upgrade over Asterisk 1.8.0 beta 5! - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc2- This release contains fixes since the last beta release as reported by the - community. A sampling of the changes in this release include: - - * Fix issue where TOS is no longer set on RTP packets. - (Closes issue #17890. Reported, patched by elguero) - - * Change pedantic default value in chan_sip from 'no' to 'yes' - - * Asterisk now dynamically builds the "Supported" header depending on what is - enabled/disabled in sip.conf. Session timers used to always be advertised as - being supported even when they were disabled in the configuration. - (Related to issue #17005. Patched by dvossel) - - * Convert MOH to use generic timers. - (Closes issue #17726. Reported by lmadsen. Patched by tilghman) - - * Fix SRTP for changing SSRC and multiple a=crypto SDP lines. Adding code to - Asterisk that changed the SSRC during bridges and masquerades broke SRTP - functionality. Also broken was handling the situation where an incoming - INVITE had more than one crypto offer. - (Closes issue #17563. Reported by Alexcr. Patched by twilson) - - Asterisk 1.8 contains many new features over previous releases of Asterisk. - A short list of included features includes: - - * Secure RTP - * IPv6 Support in the SIP Channel - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-beta5- This release contains fixes since the last beta release as reported by the - community. A sampling of the changes in this release include: - - * Fix parsing of IPv6 address literals in outboundproxy - (Closes issue #17757. Reported by oej. Patched by sperreault) - - * Change the default value for alwaysauthreject in sip.conf to "yes". - (Closes issue #17756. Reported by oej) - - * Remove current STUN support from chan_sip.c. This change removes the current - broken/useless STUN support from chan_sip. - (Closes issue #17622. Reported by philipp2. - Review: https://reviewboard.asterisk.org/r/855/) - - * PRI CCSS may use a stale dial string for the recall dial string. If an - outgoing call negotiates a different B channel than initially requested, the - saved original dial string was not transferred to the new B channel. CCSS - uses that dial string to generate the recall dial string. - (Patched by rmudgett) - - * Split _all_ arguments before parsing them. This fixes multicast RTP paging - using linksys mode. - (Patched by russellb) - - * Expand cel_custom.conf.sample. Include the usage of CSV_QUOTE() to ensure - data has valid CSV formatting. Also list the special CEL variables that are - available for use in the mapping. There are also several other CEL fixes in - this release. - (Patched by russellb) - - Asterisk 1.8 contains many new features over previous releases of Asterisk. - A short list of included features includes: - - * Secure RTP - * IPv6 Support in the SIP Channel - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-beta4- - This release contains fixes since the last beta release as reported by the - community. A sampling of the changes in this release include: - - * Fix a regression where HTTP would always be enabled regardless of setting. - (Closes issue #17708. Reported, patched by pabelanger) - - * ACL errors displayed on screen when using dynamic_exclude_static in sip.conf - (Closes issue #17717. Reported by Dennis DeDonatis. Patched by mmichelson) - - * Support "channels" in addition to "channel" in chan_dahdi.conf. - (https://reviewboard.asterisk.org/r/804) - - * Fix parsing error in sip_sipredirect(). The code was written in a way that - did a bad job of parsing the port out of a URI. Specifically, it would do - badly when dealing with an IPv6 address. - (Closes issue #17661. Reported by oej. Patched by mmichelson) - - * Fix inband DTMF detection on outgoing ISDN calls. - (Patched by russellb and rmudgett) - - * Fixes issue with translator frame not getting freed. This issue prevented - g729 licenses from being freed up. - (Closes issue #17630. Reported by manvirr. Patched by dvossel) - - * Fixed IPv6-related SIP parsing bugs and updated documention. - (Reported by oej. Patched by sperreault) - - * Add new, self-contained feature FIELDNUM(). Returns a 1-based index into a - list of a specified item. Matches up with FIELDQTY() and CUT(). - (Closes #17713. Reported, patched by gareth. Tested by tilghman) - - Asterisk 1.8 contains many new features over previous releases of Asterisk. - A short list of included features includes: - - * Secure RTP - * IPv6 Support - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-beta3- Rebuild against libpri 1.4.12- Update to 1.8.0-beta2 - Disable building chan_misdn until compilation errors are figured out (https://issues.asterisk.org/view.php?id=14333) - Start stripping tarballs again because Digium added MP3 code :(- - The following are a few of the issues resolved by community developers: - - * Allow users to specify a port for DUNDI peers. - (Closes issue #17056. Reported, patched by klaus3000) - - * Decrease the module ref count in sip_hangup when SIP_DEFER_BYE_ON_TRANSFER is - set. - (Closes issue #16815. Reported, patched by rain) - - * If there is realtime configuration, it does not get re-read on reload unless - the config file also changes. - (Closes issue #16982. Reported, patched by dmitri) - - * Send AgentComplete manager event for attended transfers. - (Closes issue #16819. Reported, patched by elbriga) - - * Correct manager variable 'EventList' case. - (Closes issue #17520. Reported, patched by kobaz) - - In addition, changes to res_timing_pthread that should make it more stable have - also been implemented. - - For a full list of changes in the current release, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.2.10- Add patch to remove requirement on latex2html- Mass rebuild with perl-5.12.0- * Fix building CDR and CEL SQLite3 modules. - (Closes issue #17017. Reported by alephlg. Patched by seanbright) - - * Resolve crash in SLAtrunk when the specified trunk doesn't exist. - (Reported in #asterisk-dev by philipp64. Patched by seanbright) - - * Include an extra newline after "Aliased CLI command" to get back the prompt. - (Issue #16978. Reported by jw-asterisk. Tested, patched by seanbright) - - * Prevent segfault if bad magic number is encountered. - (Issue #17037. Reported, patched by alecdavis) - - * Update code to reflect that handle_speechset has 4 arguments. - (Closes issue #17093. Reported, patched by gpatri. Tested by pabelanger, - mmichelson) - - * Resolve a deadlock in chan_local. - (Closes issue #16840. Reported, patched by bzing2, russell. Tested by bzing2)- Update to 1.6.2.7-rc3- Update to 1.6.2.7-rc2- Update to final 1.6.2.6 - - The following are a few of the issues resolved by community developers: - - * Make sure to clear red alarm after polarity reversal. - (Closes issue #14163. Reported, patched by jedi98. Tested by mattbrown, - Chainsaw, mikeeccleston) - - * Fix problem with duplicate TXREQ packets in chan_iax2 - (Closes issue #16904. Reported, patched by rain. Tested by rain, dvossel) - - * Fix crash in app_voicemail related to message counting. - (Closes issue #16921. Reported, tested by whardier. Patched by seanbright) - - * Overlap receiving: Automatically send CALL PROCEEDING when dialplan starts - (Reported, Patched, and Tested by alecdavis) - - * For T.38 reINVITEs treat a 606 the same as a 488. - (Closes issue #16792. Reported, patched by vrban) - - * Fix ConfBridge crash when no timing module is loaded. - (Closes issue #16471. Reported, tested by kjotte. Patched, tested by junky) - - For a full list of changes in this releases, please see the ChangeLog: - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.2.6- Update to 1.6.2.6-rc2- Add a patch that fixes CLI history when linking against external libedit.- Update to 1.6.2.5 - - * AST-2010-002: Invalid parsing of ACL rules can compromise security- Update to 1.6.2.4 - - * AST-2010-002: This security release is intended to raise awareness - of how it is possible to insert malicious strings into dialplans, - and to advise developers to read the best practices documents so - that they may easily avoid these dangers.- Update to 1.6.2.2 - - * AST-2010-001: An attacker attempting to negotiate T.38 over SIP can - remotely crash Asterisk by modifying the FaxMaxDatagram field of - the SDP to contain either a negative or exceptionally large value. - The same crash occurs when the FaxMaxDatagram field is omitted from - the SDP as well.- Update to 1.6.2.1 final: - - * CLI 'queue show' formatting fix. - (Closes issue #16078. Reported by RoadKill. Tested by dvossel. Patched by - ppyy.) - - * Fix misreverting from 177158. - (Closes issue #15725. Reported, Tested by shanermn. Patched by dimas.) - - * Fixes subscriptions being lost after 'module reload'. - (Closes issue #16093. Reported by jlaroff. Patched by dvossel.) - - * app_queue segfaults if realtime field uniqueid is NULL - (Closes issue #16385. Reported, Tested, Patched by haakon.) - - * Fix to Monitor which previously assumed the file to write to did not contain - pathing. - (Closes issue #16377, #16376. Reported by bcnit. Patched by dant.- Update to 1.6.2.1-rc1- Released version of 1.6.2.0- Update to 1.6.2.0-rc8- Update to 1.6.2.0-rc7- Change the logrotate and the init scripts so that Asterisk doesn't try and write to / or /root- Make dependency on uw-imap conditional and some other changes to make building on RHEL5 easier.- Update to 1.6.2.0-rc6- Update to 1.6.2.0-rc5- Update to 1.6.2.0-rc4- Add patch from upstream to fix how res_http_post forms paths.- Add an AST_EXTRA_ARGS option to the init script - have the init script to cd to /var/spool/asterisk to prevent annoying message- Compile against gmime 2.2 instead of gmime 2.4 because the patch to convert the API calls from 2.2 to 2.4 caused crashes.- Require latex2html used in static-http documents- Change ownership and permissions on config files to protect them.- Update to 1.6.2.0-rc3- Merge firmware subpackage back into the main package.- Package internal help. - Fix up some more paths in the configs so that everything ends up where we want them.- Update to 1.6.2.0-rc2 - We no longer need to strip the tarball as it no longer includes non-free items.- Enable building of API docs. - Depend on version 1.2 or newer of speex- Update to 1.6.1.6 - Drop patches that are too troublesome to maintain anymore or have been integrated upstream.- Add a patch from Quentin Armitage and rebuld.- rebuilt with new openssl- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- Rebuild to pick up new AIS and ODBC deps. - Update script that strips out bad content from tarball to do the download and to check the GPG signature.- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- Update to 1.6.1-rc1 - Add backport of conference bridging that is slated for 1.6.2 - Add patches to conference bridging that implement CLI apps- rebuild with new openssl- Fedora Directory Server compatibility patch/subpackage.- Fix up paths. BZ#477238- Update patches- Update to 1.6.1-beta4- Update to 1.6.1-beta3- Rebuild for new gmime- Add patch to fix missing variable on PPC.- Update PPC systems don't have sys/io.h patch.- PPC systems don't have sys/io.h- Update to 1.6.1 beta 2- Fix issue with init script giving wrong path to config file.- Explicitly require dahdi-tools-libs to see if we can get this to build.- Update to final release.- Rebuild- Replace app_rxfax/app_txfax with app_fax taken from upstream SVN.- Bump release and rebuild with new libpri and zaptel.- Add patch pulled from upstream SVN that fixes AST-2008-010 and AST-2008-011.- Add patch for LDAP extracted from upstream SVN (#442011)- Add patch that unbreaks cdr_tds with FreeTDS 0.82. - Properly obsolete conference subpackage.- Disable building cdr_tds since new FreeTDS in rawhide no longer provides needed library.- Bump release and rebuild to fix libtds breakage.- Update to 1.6.0-beta9. - Update patches so that they apply cleanly. - Temporarily disable app_conference patch as it doesn't compile - config/scripts/postgres_cdr.sql has been merged into realtime_pgsql.sql - Re-add the asterisk-strip.sh script as a source file.- Update to 1.6.0-beta8 - Contains fixes for AST-2008-006 / CVE-2008-1897- Return to stripped tarballs since there's more non-free content in the Asterisk tarballs than I thought.- Update to 1.6.0-beta7.1 - Update patches - Back out some changes that were made because beta7 was tagged from the wrong branch.- Update to 1.6.0-beta7 - The Asterisk tarball no longer contains the iLBC code, so we can directly use the upstream tarball without having to modify it. - Get rid of the asterisk-strip.sh script since it's no longer needed. - Diable build of codec_ilbc and format_ilbc (these do not contain any legally suspect code so they can be included in the tarball but it's pointless building them). - Update chan_mobile patch to fix API breakages. - Add a patch to chan_usbradio to fix API breakages.- Add Postgresql schemas from contrib as documentation to the Postgresql subpackage.- Update patches. - Add patch to compile against external libedit rather than using the in-tree version. - Add -Werror-implicit-function-declaration to optflags. - Get rid of hashtest and hashtest2 binaries that link to unfortified versions of *printf functions. They are compiled with -O0 which somehow pulls in the wrong versions. These programs aren't necessary to the operation of the package anyway.- Update to 1.6.0-beta6 to fix some security issues. - - AST-2008-002 details two buffer overflows that were discovered in - RTP codec payload type handling. - * http://downloads.digium.com/pub/security/AST-2008-002.pdf - * All users of SIP in Asterisk 1.4 and 1.6 are affected. - - AST-2008-003 details a vulnerability which allows an attacker to - bypass SIP authentication and to make a call into the context - specified in the general section of sip.conf. - * http://downloads.digium.com/pub/security/AST-2008-003.pdf - * All users of SIP in Asterisk 1.0, 1.2, 1.4, or 1.6 are affected. - - AST-2008-004 Logging messages displayed using the ast_verbose - logging API call are not displayed as a character string, they are - displayed as a format string. - * http://downloads.digium.com/pub/security/AST-2008-004.pdf - - AST-2008-005 details a problem in the way manager IDs are caculated. - * http://downloads.digium.com/pub/security/AST-2008-005.pdf- add Requires for versioned perl (libperl.so)- Update to 1.6.0-beta5 - Remove upstreamed patches.- Package the directory used to store monitor recordings.- Add patch from David Woodhouse that fixes building on PPC64.- Update to 1.6.0 beta 4- Update to 1.4.18. - Use -march=i486 on i386 builds for atomic operations (GCC 4.3 compatibility). - Use "logger reload" instead of "logger rotate" in logrotate file (#432197). - Don't explicitly specify a group in in the init script to prevent Zaptel breakage (#426629). - Split app_ices out to a separate package so that the ices package can be required. - pbx_kdeconsole has been dropped, don't specifically exclude it from the build anymore. - Update app_conference patch. - Drop upstreamed libcap patch.- Update to 1.4.17 to fix AST-2008-001.- Update to 1.4.16.2- Bump release and rebuild to fix broken dep on uw-imap.- Update to the real 1.4.16.1.- Add patch to bring source up to version 1.4.16.1 which will be released shortly to fix some crasher bugs introduced by 1.4.16.- Update to 1.4.16 to fix security bug.- Really, really fix the build problems on devel.- Tweaks to get to build on x86_64- Exclude PPC64- Don't build apidocs by default since there's a problem building on x86_64.- Really get rid of zero length map files.- Get rid of zero length map files. - Shorten descriptions of voicemail subpackages- Update to 1.4.15- Fix license and other rpmlint warnings.- Update to 1.4.14- Add chan_mobile- Don't build cdr_sqlite because sqlite2 has been orphaned. - Rebase local patches to latest upstream SVN - Update app_conference patch to latest from upstream SVN - Apply post-1.4.13 patches from upstream SVN- Update to 1.4.13- Update to 1.4.12.1- Update to 1.4.11- Update to 1.4.10.1.- Update to 1.4.10 (security update).- Add a patch that allows alternate extensions to be defined in users.conf- Update app_conference patch. Enter/leave sounds are now possible.- Update patches so we don't need to run auto* tools, because autoconf 2.60 is required and FC-6 and RHEL5 only have autoconf 2.59.- Don't build app_mp3- Add app_conference- Use plain useradd/groupadd rather than the fedora-usermgmt - Clean up requirements - Clean up build requirements by moving them to package sections- Update to 1.4.9- Update to 1.4.8 - Drop ixjuser patch.- Update to 1.4.7.1- Update to 1.4.7 - RxFAX/TxFAX applications- It's "sbin", not "bin" silly.- Add patch that lets us change TOS bits even when running non-root- voicemail needs to require /usr/bin/sox and /usr/bin/sendmail- Update to 1.4.6 - Remove upstreamed patch.- Build the IMAP and ODBC storage options of voicemail and split voicemail out into subpackages. - Apply patch so that the system UW IMAP libray can be linked against. - Patch modules.conf.sample so that alternal voicemail modules don't get loaded simultaneously. - Link against system GSM library rather than internal copy. - Patch the Makefile so that it doesn't add redundant/wrong compiler options. - Force building with the standard RPM optimization flags. - Install the Asterisk MIB in a location that net-snmp can find it. - Only package docs in the main package that are relevant and that haven't been packaged by a subpackage. - Other minor cleanups.- Move sounds- Update some more ownership/permissions- Fix some permissions.- Update init script patch - Move pid file to subdir of /var/run- Update init script patch to run as non-root- Build modules that depend on FreeTDS. - Don't build voicemail with ODBC storage.- Have the build output the commands executing, rather than covering them up.- Update to 1.4.5 - Remove upstreamed patch.- Add a patch to fix CVE-2007-2488/ASA-2007-013- Update to 1.4.4- Update to 1.4.2- Package the IAXy firmware - Minor clean-ups in files- Update to 1.4.1 - Don't build/package codec_zap (zaptel 1.4.0 doesn't support it)- Update to 1.4.0-beta4 - Various cleanups.- Don't package IAXy firmware because of license - Don't build app_rpt - Don't BR lm_sensors on PPC - Better way to prevent download/installation of sound archives - Redo tarball to eliminate non-free items- Remove explicit dependency on glibc-kernheaders. - Build jabber modules on PPC- *Really* update to beta3 - chan_jingle has been taken out of 1.4 - Move misplaced binaries to where they should be- Remove requirement on asterisk-sounds-core until licensing can be figured out.- Update to 1.4.0-beta3- Update to 1.4.0-beta2- Update to 1.2.10.- Update to 1.2.9.1- Update to 1.2.8 - Add misdn.conf to list of configs. - Drop chan_bluetooth patch for now...- Zaptel subpackage shouldn't obsolete the sqlite subpackage. - Remove mISDN until build issues can be figured out.- Build mISDN channel drivers, modelled after spec file from David Woodhouse- Update chan_bluetooth patch with some additional information as to it's source and comment out more in the configuration file.- Add chan_bluetooth- Split off more stuff into subpackages.- Update to 1.2.7- Fix detection of libpri on 64 bit arches (taken from Matthias Saou's rpmforge package) - Change sqlite subpackage name to sqlite2 (there are sqlite3 modules in development).- Don't build GTK 1.X console since GTK 1.X is being moved out of core...- Update to 1.2.6- Update to 1.2.5. - Removed upstreamed MOH patch. - Add full urls to the app_(r|t)xfax.c sources. - Update spandsp patch.- Actually apply the patch.- Add patch to keep Asterisk from crashing when using MOH inside a MeetMe conference.- BR sqlite2-devel- Update to 1.2.4.- Took some tricks from Asterisk packages by Roy-Magne Mo. - Enable gtk console module. - BR gtk+-devel. - Add logrotate script. - BR sqlite2-devel and new sqlite subpackage. - BR doxygen and graphviz for building duxygen documentation. (But don't build it yet.)- Completely eliminate the "asterisk" user from the spec file. - Move more config files to subpackages. - Consolidate two patches that patch the init script. - BR curl-devel - BR alsa-lib-devel - alsa, curl, oss subpackages- Do not run as user "asterisk" as that prevents setting of IP TOS (which is bad for quality of service). - Add patch for setting TOS separately for SIP and RTP packets.- First version for Fedora Extras./bin/shasterisk-zaptel 13.7.1-1.fc2213.7.1-1.fc2213.7.1-1.fc2213.7.1-1.fc22 1.6.0-0.22.beta9chan_dahdi.confmeetme.confss7.timersapp_dahdiras.soapp_flash.soapp_meetme.soapp_page.sochan_dahdi.socodec_dahdi.sores_timing_dahdi.so40-asterisk/etc/asterisk//usr/lib/asterisk/modules//usr/share/dahdi/span_config.d/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m32 -march=i686 -mtune=atom -fasynchronous-unwind-tables -Werror-implicit-function-declaration -DLUA_COMPAT_MODULEdrpmxz2i686-redhat-linux-gnuASCII textELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=ad41ebcb186d199917ec5c9e49a8d567652eadfe, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=a837370f98e2766d142b6ce718c7dbd8a7b3a83b, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=f6355e63b1d2ce1fad4042ed3426be98eb75a940, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=701b5ce31180405252da30dab8d8709313bf2158, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=65cb27ba6453ded695f9086ca6044013610055c6, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=f76ccda904e5b5ed5b877824cc87009b4911bf28, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=96d82b8798ac28189f32d9e2305c59b1b25b88c4, strippedPOSIX shell script, ASCII text executable#6? RRR RRRRRRRR RRRRRRRR RRR RR RRRRRR RR RRRRRRRRR RRR R RR R RRRRRRRRRR RR RRRRRRR RRRR? 7zXZ !#,?]"k%x1dVg1Dnz 5S^EkqEY wuz6e?@ՃoI/tyѲP{2vťd d׀X ivDmyFyXz@$l\/qFa|FOEaN8̽Z2ގtFV٧<'k3auHȓO8_5&P\Z29B.vn;ԌԎI ЕoAG<0:-S%Laȵdye`teH^j]]*R!x_j tw8],6'lăp2ՠXҮjmY$:QٜιP1"[ALn/c %ưϣ]hV{*yމDULT78$:o]f.1#{5קΕY3b`qo2'`sA&;37\4&É&$)|MNl"$xEom OX[,ֶy+!blj@9O"7Ka/+a};/\]esL$^;&l'MM XIq 3 4IH_ȘcWCd|7! YpP9A.׳)ɔǁpהG͙ƅ_so"vAAF RA,T_R 8H:4ݼq񭋫0T0dv9vII3^UC%Bnq'ވ4 J6X6uD-!grյĄR94VF ~vg—Ћ`tp_.,2wĈj9ZmO&h/krIȃ Z-3ċ#sZH 5}2K%d9AaZb=pp¯6m+DD-HPD1}\pӓ{NB :CY[DR}?|~Zˊd;} G|usISl%رHh^({?Uk3P/訠빳5ks2a+en6I\~n2ᶅ[x蓤c*VAq}?沬(WAxg qxIf 1`}L$ BSt#sW`:κ9MmXM7feŠ:l1ogC9¼ϓ"x8Fga\%X+O+HQ]WO.+Oj ̑0նp i=N%Czo"0vD#BGz˾eb:h}6$r*OdFZ)~vU9/ h4&:=[zC"Y =-ll+GH]-@"4 <*qg)F; <-w7ߦ`8G^C(Xz:'[p t](haY+.?Qg-JWOod9 *?}h? Iv7dSd};]~?nYO =$;}d^}6E}Z"V4>MHa5Of'ytm!wQ!'։\{YD|  /{"8~E{Bt6#zʧNͳP<;uH.Fn* drz OF+TUQ%'mfӛ?[[e엒7 ZX]nm-v$A,Fy{.5?zUb踮[虘~M{QFI'ϔ!Ktexp- .|BԊBɮR:3) nMYTL:Dqdppnm:٨xQY5#~h(9FH-4("^_Zv>Vu m-4*tOk"ڄ7)!fN|o1@82,.s* #Ğ2կH'L:&b)( ChvjBt!:ʂ9Ky%41HG59#ט'i?"/E+Z*}HN$ߗK0 WP̀텯vdBKg#qIHIj݂sIi"zȱqe`yLMިZ" g,Ot3\nor!ʲo3A#6أdVB!l9mn0\rfF`ZxbZѠ I~KCI#Ԛײq2VUACKD F _Vr|N:&͔R:^\MH?A;_Z?u1(Km˰p%L|wlfk{AYϪ isFO$%oIуLAZقpzjhHXH7:ҧ&ΦSi Ҋ2Iz1\СPCC:Է'\(l芬 3#'My'ewŠ u`~cD/غ#2$>2/9@b.ѵ|;Q .$[_Ĝ9zd1pFu_d0>gڏ_秿GJQ'Ux x"09uY?ZM#欖PGĻJm@[9b)QvCe cK>_$&A9PJ )I C9)h! >vi1 My ldSYlyS{;`1_E?bcCS 7H k)fD_4o;ХM,{q7"}< tZWAhV\@'pC%>کؒGi jgzl: `ިZ^}˶$+)TF4Nָ@ήYiL h(=Wp Tϗ>&쬝{ 8E3lI~57fpm"dXW{\9?YiTQ%ӷ[ŋD[2vF)ziXm2D?QAT] 㠷KBy{^aә&rS\̫TՒ#: ]dqӰ=240T%N/Q#Y!OsW67(9:5S` c/\Bdxp$`78< ß% 1r/S< KJ!Y5IW^C-8&P K!_|e0:%[*A곝Y04V4*r3 Mou}i/V5hS5VnK8t Lpe؃tb.#vw~u5=NY{g^ Z/o0ܤSU9uaygy7DŽw\n-$KNtT~fB:̂쓙Zp{y}dŋMD$]uG0TY@ ,A&tlrfnwא GaR8ުNxdxAo!u7xCL# [Է +@V@|)C w*#8ڟu% ܿ)@!}@[Ul2J(`>Qerzn8 IVC^ւF#a}h5%-J_Ű%vmK/'-o2Ctu]m'wZ \0Q 8 /|6^񖧂!|$_LIXB,ڃxuBXF>L;WWj˪iwTXlY Y""nLXQ r=x ^CO5=)9"7?br #H>@OLoz R2[>;UQvl- /$A U(~H$g= h/4"[H<׉?X-.$TAYdߑŖW\OܢI(SXyk*t6oڗ11SÅ[T+}hP6&ݥ3idY?[zE6nK9g|'4n.76mI02H^pVކ]>-b,F#G/7B `!LZw':ʷNvvfH N1s Oe`f=%7Oe=0/E<}1 eZwQ(s"Lk:Ss-Yޑסa|~qfciծm9Xx 4>=17 £<ոlga Jӓ`S>04IXhuMaGܑ&"#8A $]zwv0Rdeg|%n':=yirIg!k '{O FU3ob%˳t.cN\fQhnG2Z Aa!ӣx"?k̥!dj wV8 ޭM ogUgX̱g,yTyL/zb^sKi)b[nͰ\%&Vl^,`⾆g ӽVLJXtl7@Ky>n'sd47a뤭ݰUxTW`=[7k|}n'B=.07ErWDuw8c 4D >4֋E hjLvkera/ۍO% t86KCn2Lt0ZOpeuo]Ltڟq[ߔiXl>y"`vONۤ/0O}vm 2 k} dQi(L>ڽBD1f8+ D<~8!/^uı<6x8~D UaX;%©FW ZkiRrC}A'.iHW6/J8dW=]_%:/ywM ]a˥C]ghuȉs 1T^E~S;#ym`/m$j7]}`JZJR֫͠MXLSeU~/j%?~R.is-z얹4e*VOY h$w|ܲkuk/l*c#M fBAV;@GѨy* P ճY E+iJp{7HCq{ ^6Z gιl"+±hՇ"Zf9}2tRآ9FSJV:pAWP,9Aհ%Z~iv澂b O*gfD V>6J_'7NpE"Qջ1_\_Db,Gã@&JbZƙUѳvKBemlF?] YZ%5Jnxv!O=J|3V!QR3zKߵU]9nArwcѱM߻I׮_a`6"TZR9rmz4f ?hC,}fňb$CV^1dVr^(2Fu<7Z'&{y_6u>Gi#?#'15~[ &@>UD"kZtBR%E2pSe[V_G'p7pCyGHJUg}Ր]b "[9+uБZ6nGl wն>;Ze mԲ~A)l\!t#9T<%e-t4fo ?2@޵>µoR '࿦УD55\M#э$ڿQ!IlT`qx\F6Czqawk8Ju0l$#?h {"a_7e7wp,ᯙBJF8iį)&:ֆQ5Վ"_+lb4 7ćü3CҁmUEUFTqywc!HͿc39tJ&K{F|ݟ#%eB?x B¨Ua%K,pа!>Mȝh'\_:UR!DOq,rlĹoݿ ƦwVb LV_FEYVvEe1ھyVg R3'ڶgmtèm ZBj=.lxd Gv}gٵUUעjZ*9jgy% 78 ,`-b뒿 1eR/$w45(s̲>0y<Ǎpl) \VG,qE:]0ST7헒y5}f뺺 U] yon.g(t5'~-/XVq8 ˿Igx`+fB7x' +='O{Ep;6 äW9қT&1y^M&(xsHdINXGOp\ Hтhs{A;IK+U$F3)@ЅQnk0Xqeux* ZMl#)rsO/K;%TvSl3ʖf'?$4Lb[NV!tie-q ̩Ŵ8x4F#qjp\` ճ 0eТ=@%آ2z=ᄌE;=Hʰu *F0`~?#|Z9m-F+i]_ Yv[#S¡wDتXOX` Z4Z5GZ7pqT4zޘ n4485辱<}jH,$ը=8|{Qx\zPs0A,hA6{tn.0Қ_kr7JUot`6N>E5;px^h`(0Q`x\G0o_L_3T5ic"v|1am.u*\ Ȏ8XE  y uߝxH,b8.i ŏx;{S`[vy9h~8X @'IжoK<]0B=jjqxB njSgc W% =T*+=Arw1r{#1a} ӵcQVd֑ t;{ H{jԒV.__̗":\ Me" Gj6!0@ُzʕqQz{!yTڒHMVfSrIP8B^}PH&ɏ$:,Z"ŴY $bT*>'ygˏ?C~ڐ?ryX _e ud+Hd"-Hj靛GpوRZ@?`Lcx-2wA!6QͽavP|?HeCr4fX؟,gʿ6[>sI0c?:bMo~~cUJ8K-pd&Wnxi hwDzVp;wtHsg`yピ}aAᨍ ݓނicf׶njrrH2sLp&75du"._FxI Xv# 34bv`InEuޑȴ{Y*NtANUt u6#,j1w]HmbTx l?)i$. R"2ApYOqQFD{拿u1"m=]LiyPlI)!oN >SY\ PDcO9ŞKOE~#Ͱ`xz>B20 ΰB%QCd ]t#.b n(m>cSLE T"Znƶbi܁ =:w/܀f代NщhOhAU x:mg` !^!wDݻ+*gwK6l+ >I T sJg#~5(9E (-4ľ7fgz:u2P% x,+ww㻜lm|P5iMn y'T\m;InDTt Is(ܨE J\hi Bt 4jT rȈ[s`oh 98;F̊gϚ+ZǟzMћjbˠL1SL2=4伖W-r*s[yJbM෽,/flM&Ҧ᳛yaWI΅$z+h ~q_o Fv1t~i?SBJCX'R@;9kK O"|z>۝T.PNJ%kHOU&nQ'ɽW&}R!0'Jo2Vjbm+WFJ֙uHנqw:ZCQfD#qqWY_^~TQ斞O|B@G+%0.M1bUCEOW xNvp]9$?T|>{uT%}ecd OѕBve:;ՁhTF'l d7!foO^ƁY1:R^t,/lltFX1J3C1[($4aL-Mr%\E1gcmb|pWr夹بe!ҺC(x}mnم^^x<$Wog-ASi Nꁻ 4*3%xbyd|# K2Ki֣I,eɗ RuWwj3Aޝ568V 0A%QPh"1w!ϣ/<1N3tBƩ_R  ^Z }iON.NNg2?ffhI1lQ_ uh )(i0@ŰO Zwqht: FiĘ *);tbC)E 6@ܢfV v2E:T7"dO,,`~V-DcI{Sysi _)[ܦ_otڹ`4&gTkiݴ;Tsa*wlEA$<5*[ OG}Htkԗ7N^G=̆ުC&϶?_u]_D}(\v+ȧ粋xGo>nM co?g!xɡd:}d3YiQ$Uπxv" {r)1Y|ay½׵Sy4ݹnt4Zn!λVci@)}0MIL`G[.4* a4RVkA;̩ozҕ%HIݲnޣVm՝hRu# #NzՏ=Ag8DoUPVz,i5.Fh`6] 6P Kx '`K$k弬h+525 b:V.r3Kp 2n}$aوP?e/Rdc,ף߇Dv";) e|!F >Q|GT0[`_jA \P &@^a]'ja' Sц<[= 7bV!X6u䯙氋XjI;0~mq*_۠*=lӵFZD"ۍTTVaˀ2+S&5Gl`'J!!R([.pEY>k?!iW0?D pGbM& (9tQ 4gsTt$vJ~TqTm]} fM',Q:~gV.Of-]sl Tp Z( HRC_ SӂClmG.#Jޞ-2)7\gOLghYZG*3щ'; ɪ1Ԁ NKdч xTZN6`zA5h=^0=3;-xe \C2nʑFE͆n']]FOnClk;F2ݦ\CŽ ƈ(s$81 ]~IruAN! u3uR(C MK 5ޝUgrXqxuM}<)"roC牅vJ0ϴ%3T04"pUGx)˕j5O׾KH,oi#OZ])D۰߀dHL@5g;.Nt UM5Gəؘ?Tt;DU'o['t2%爅rrs n:AqוnJ/z2C 'xm Fhhœ {0okȨv3Wөә,S!C֮u0}Jjd,87|%}dvgW[ iEGB[j8T%?>Υ+T&%17ܺ%FCwX@I*Eq;*ƚ'D+ '͌_Os`1U 9_{>'kڙi!V-qtM n2ǥsO*󶀗|'sR8pܑZU0KׂQg`.u UqtusXW'NPS4)莶ſCYc:r*+ ҫet(mos o&73g X@D) 6.FZڲ9S [Ʊ_;AKe'ԸWx36^-ީKBc]FH񨉫%J2AmTۇkg% u#:Aުa?W`KVτ ]P.1I=-StP/`mjL`SƋV5OiV_?c<{օEHs6r+SC qlw qT JD=OδsEOɪkB[e3z" I+C?]W7Y%WWg^VdtǤv?Yo /GW6ck9mJH KQKS]"LVlz!r!DbG8JO G ,wd̘Gڽ㚱:pFe. u0gk(s=|E Z|l+jO ; ]1ܐ~i։rF!bp@ y}84mCI !JKjqJRҋrB#>Y~6EPK ]kTJ@ \Dowkw+S!^>'B&Jya :MWJ]P$)h\] tᙻ&}Pd|RiV)X:<ؽ#̨.]6kc K XR'c}}ͯo]WdHm܈9 W|hEHilʛzϨ(o?fqˤ ,Ԟ:j9y};JyG'w;w < m$jOEwA^onkKdӘCd}z"ItPiU\ѹiԱI [-VbBX\YFSl4o1؍2oUA*a$˺KoL?j|#B?.GB,w\_:B Occ{ }eGaF\\IuuD ~Q0'hf@|:t9_.fw)HUV<_!-^$I4XE'=:BOaI\3_Em4mtǠ XVx[|@I(+-UTOٰ\"F:4/r|l;x;V 2]&g <1]/蚯*,-}9#ҵCY}Yg=z*3 xyO%Eo(,Ԙ$}EUNX9 Y9st~%_/Nǵj6t. Coob| _//2Pe7HFYupK{"o7DA(Up>پ+~zN Г֦=;u"k2!u8pCA ϦwԿG|Y8/>]ԍުŸF]yKDlqi}լ\Ds0Ǖb,tMEyPSE1r%#q\&GD ۱֖SCH%5!M|ْ'`сǯM;omMOD90QƲ6Y5b}>fQ4$a.6k"# u 1>4GP>0RՃWL6OÌHWb\} =ܶZW0#}B5eD `rzzb_ț)Y69 nceyk\(;jy7D\q5OW`ˏ%ȷkԹth{3>2^ Sslut?AP67^xЩЅ]C?18KLכW3<8`<9[DJ斘잺 %E~ÄK\ F;92#d$Ҩ{f[(y(;cO&fT`vTë7o!9o o 2@~FGX#Ul)iW~ri%u..$@ۈG2NPWѮlΚ3kTI[tl&7/jԌs}FrLf)KxdpD"=h2H>XpSt6I ZÅc hrp2xઙ-K:Yp~ҷ !c&TֻqBVb!j55`GΙ yD=HQVb{Rdj $/l~ml? 0vGGV4g 1zc@'jIWj21B|vE+Ŗw^{ӜJW*rl<Qsd'gf~ E^]nQ&FƤ:A|Nۥ`|:Zh!;[c sEGsnGUMVف)" 9dٺf  &ʛV?(FSО7tq=8 UG{Fx][ nTKGRg(e ! 9%\&9)3u}A(oDVc ㎠ ]c& DpPAGUMzJV`D['؁苢DR]cְ{Ю֘§(lɂG9@|>Z36aj^Nl n/fabKYhhTXQ]k * 4P\x4 VT+[J7M&":/ʺ\Ŧ~um܅o,QyKtkq!|k69OG alGzY-B=Q|im KpAEQ#C@Vޛ-jIL!iLTpDsnse`?wG;6iW\PE,k`H)HY;oXèIyCb1rH->֪=}ӌ*7פ/@0(a^;0֑=>]_V}-=sl3xh EIJ&!s5"ʳ;y&1-~< &Q:.L)/l:q$­p5sb8Vp'ɇS1R* ,IQL!sV ?6wK:UZa" Q'_:W[ CW%?zZf;MO>R&~vp#(36~v0U"'Q2=nk_Z<9π lqs2rX!+W|E~r3! VjpQ:On& vp6Hq}1jʹ\Z!j-mwk-`#%} y=):yYhSɅj=]4t++A3rkOOtW#A,dȨJh%r-nbZx,lpg:T_`TwtWX 0l: ̘.h`čp:# t&z>X$p7fo}6u[m#Q:'ߗ4wȢY^QΛFW/H$5BwɿX815jr󇋸GdDdʘLͭDOyX_CI;T̬O J*|Cod7VW\ef}ݳ#}喖 ܬedf\,嗻$0aq(2fbhZw$ٵJka]ϡp.Y_h; 6Vڿd.3t )kzݘ?Rtt /5yk'4nHύÉ ?m8#~uM\W7,N F&ѲAAmb+l%P&Xj`ޞ٦]T"ڸ{хF݈ҲTc\(]2gHhgma6E ˈV2ncxӬu-/`(9d&ElkGM8?|Sk 4+'6o-mm&'Qc%CZ;& 񗐘OoX-[cY#"▲󑡸@`0^bC-^ zoQ⠚}yd j#j3BesSRs.A-Yk7+ ^{0f. n Rӫ }[n3@a =u la]+T-iyWڭs?Ŷh+BsΒZ*F<7"~+i<TDvkϊz8A-#BJ(aApq#]0z`Il"I"P2_1|^ <[kޙIZةY33㩄9:s@OjzAGni\#)Wn,Aڥw2rkhjV TM~x7jciv"r"B7_G:STDs݆u1$,T[ lh%uѳi<d%C@錣PᏈ> JYi6䝨0T=|uYGQQ@0-/ JTZNgB-aA'@CM,d'a8ШHZ= 4Yw6Uk Oof)JȚp%0I*F2h$|8`k [Bb}y!G5+̶64ϩkk/k:4I ఏ)zWeAgCHJ捫p|{ 􁋴FN1vډVج_DqA[)},Ү[%R VDrD"D> ??׼#Cfʈa?i R.;R)ħ+b:uC2ƒ4|J._eˠ[B 8R+o'HЬXE ׏sv˃ r<d~+ڶII"粮x{Jb}6kDaE+3_S7w HxsW ݗ"=)7 yL%%)T{jm7& otynھhxTp6A60oU@}cdLQeOR.4Lg,'(핍1sk%wR8%Ê/ ~XnN挠)0ɇywASeDHS8W3Z5P ^{T+9VYF-ok[K3KKI0gBI%;i6+Ȋ 7i Qy7#/~ Y0קEgmr̈́jWPv t<¿zal>$mmKoދXu jBD JI$ KEObz:b2fk=:/N +M;c}qsksoD,1)(?aY,俄mF"mT\h K$`Tnș//ls-^i\osFR:,J8DPuC _dGX Kں XASU9j{F35 UYXnY 7?>džoY`p()ҮdrXTp6D3j\i];+yȉSń_aZ3GКF)#!E(mלH9`xHXkEkDyC+Qd6-tֆ-MmTQϨYSjӄ3|uֽ4컴j7_ Y>W@'yw^Z5A0^$z tʀ. iC׆af":Ps֨ źmbݖtMVWy+LPq7o(,7HH 9V,]Xra@>+$~{܃rC(PMh /XpϽzƞA8$1蔒C$Rwȓ=HFJ v+dDTA%TUmXKuN>@ Ą?HTN [2;O0GJQ<]&e_7e[YbD7B[~ &1&O,R]Yfa:ecq 55|og,Xq"lBF64XλVb"+& hub4,YgOcs]#j!_S'r89P&~?.Ρ*VXT)dG,jL ?{ؓ; 7f=V|/rFDrPBij.Rsx " S2nK4&)`V8*BiLJ7޲dpb̿B[gU2kk>UD' ?\!6MBp(w*[3yEYf>5!2Pj׸[@Oj2 Y Q_ѧ|DIV)ZbYZxCX'٢~UwR <%9E6⥢3iBb"p'؍hX&e!7H;cf(>Rz{)PʙzrW4FbȓWi$<;U&pb.c e &g ͟XKȇ"~W7%"z0o QlK,Qv9|i&(-H'GIWcd<[ YبY;mr">TvXz*GVdu?QHS9YUȻ]!UV =T!z}egQjj ӋE/NL U8Z_ Ui': .~(^ZF+4&VFxkIDD&zJ{|+6gO?UC 5V{ia 9zAA`QݲpGqDFh{=c"f{!թM!2@jyURht*7hoFkӈ3BݧoLYmˏ.0Y P3T"hPk CBP4L WD{w(<Ѣ V0θabz! לS"A7)utR2 R\]U^Xsmu^Ka%*{t0r N9t:!;hzX(PiwmC./`9%sO2U$AZ:ɉ/_JKذ`b@EuanB4H.Z號ؾw8&Q0~SΗ%8xgޔKt&w@qGX:jY_qGˆ!XmR)xӚx;A S3-}$ gm3 Ԏzd"ˁptcn}ۖ"5F//;aa5/\yLQ}t-S"Դ5`=SuwLG[G 듔GxClvOڡ-VS6 XS0# V\ E_,Jn0c.W-;KV (O fb!i/ZH^̢W̝X^DDkaDrNKFJ,y@oRҝc=tUj,6 5†":VU7ܕ%-~+~{RgF@S ~krQHkJB&~O>pQR*curT6ΐzc̀Ax .fm]e9;{Ԍe"ms:,wyyapS=STU|c+3--YQ?u騩I?w3qrX+u0 eӺoeqȏGT*OD,cxA3L `U9~Zň VV`g\HTzLӥ$zpxxO F r!fLThsbu=X=SVo'D ~F 0V$0E) ߁JQ!(GߵT>Zr&(jet )&W\|ߔt ؔcL *i9 BmbKgY 0]*Sv/ ]W*u*}6?Q@NAd|*5cXll}l8 E 'V;2'`x1WGr3[̭M e3X,Qwg NTh)k5-kgꆆ ~Mw^!n="ޏK6JX1It*|@ Uzt$q:l%(Q=T_R@NfMSc#&AjH JxҢ}>$wނ0'"a)C!lꌎzW,EDžmhZ};M\<=7#?6$߷*-gndo:hUcSway?-9U+gD2]CASѼZ1M)ծi"oՠ8e >Ase^f@iM$ғ-gش~ IPj0%Sϋ|Xe4rRU@<^CRA#ҾUq'2ߝ]^v ޾%v׸9x K 76@4;mF]ZgUZ4*P.MZ8xk u$`/O@.p?rU=LHEX}FXee{b({p.MaIx p ,d?IU}c7V@6[g{iMAҟ3b$ _8罆e(-_³LGIBɩNAMZcR,6:]dAWCIAk ;~ZTHncg /SWWV=Kw=fedg"k`K J)[#5ӊaߝ C=[ސ>.]R wi\C9R߼jڊ*IpARX{3N#>,2'ß7-MKOEdKu\ #k=y„2y?77`5ĭ˒M?e6t<8i!IS4Ȼcy=INs~pP}X1h!ܾlW "\t-=I2;:/%i oa>Jz,Nwa))R(fU孿;G}ixk"eeZ6Qu c KUbV.!Qi]7:שZa(`$WW|7?EޏP2Z(]XpS)UgW>D17O(qP;HQV HNv;qBu8 4]5ϽA: x%RgީhQσ ypRK/hQUcZ~s9ϓQvwQ1Wס(_m e0~.V 9/m䉔;Zw,&~<^yܳ,` hwk{ϫE[8Xz2F7O8 Ea}' >'IGK^3/+lZxÅ!yK%G|c>=6UUzFf:$a?桦&@S zaP> pIv_#=N6gRNIhc%Zqsq gglr2T :q9b?9~NoxhgivqʲعȾ D eŊF7]P_;MtzT^ ^DEC_&a{W:;^sHktHW,&Ac]s\}xBCi6u׸k[jkpO`cRఴeL C tҁPYwwWR`QT L=1Ҭ@JhL+e^ )Ӫ P<;1?i*j0Bc;;D)9vB_3s ܯxHoW/uCڼߒ]VKVhRGkcqG%c_]]sX/ S iM4TioTFaYI1Sp Χ4C- K aGp=cOPn6o>9^2,*T& m*w,m#kBL%BL~N7a[WvB˖7~Ýnq]ESB(cߑPoxPwgb~-d<1MٓΛ;><;Alu&/ .%e0ck}i7LȔ..eH @7UQpNżr|D3ZeM\{,H&V6"zX:N7&P* 1KT*q#J"h֖g`Uf3a,^ #C$@b0лggcj1QUhn"-l{?teЭՔa"H 6LV|i{dݫB?I. Fy).܂/ebw>ϡO>5]FmP# f 2.Iok_l нqea; ̽~+v!WajXRȞ/|u  Ј!UMvoka+(UȖ%ӵYkԠ?vlPa:RCz?sS=bu<LnQJOrʯLLr.y U AM.4c؎"%˻J{ ¦MoSBc Md{2|Y1I31Gb&0M)obl"`m[Z, vr$RmqD5uJ$YHG % dT}@D{  zza4 7nLjs.H wbߪ_V)qj c$Z-tp\;M[d6 np\L/N{͠|'ۋ:8|S\Hy?Ǭr9\t XԁJO$m!$*_"C*}F'I ?U/!e$y0;P3G>/ru} ̆h+ޢ ۑk{U \JzwRHu1ަ}OW]mnAW>yA TA6}r9DSƛ4n5vv:sYamѫe\Qd7*'}^#ha6$ c"KT(iiKYVMH]I&O[}RAH݁EQ0_CWm,O.4+UbzN#,^"7ۜo:% QL(ڮm.{EQn.$V]pGYD_#RLPpQ!iz) lj$)u`rR~2u1ŵOW&tY T4M؇jeH8K<b+:Ki6Ir\2l2JO_JKWe8o&3!n?xM\ypgM,jUT[x m䥮û@Mvkǟ4A o dž&/9.V7|ⶍU睺b)\N*Ri4_QB)^jօIDَklrZqXt &|#Hz5d% %[`7o0NӞZ,je!PYSH 8-ؕ/e(hG*Ҁ#;%:3eZY,$qKX􏸡iC: io{X*?y1wx~pv.~0.[ X$h/:#8F*8FĉxhnϾ POi¶.ZCBdßId:Ȯ/Sz"u_SPШ5U?2Jtּ^ݲv+`MՋX8Bag0柮V Fm]gR :/;C@)pr)g(^ K0g !z)t TgpBk M&CAy@32Bt1 s5RRDLj gU~IX; ] @#d O ⺄{QL \X`\Jy2POn]=כ b#oVV6Q<鎌Bc>ph9+8  9\0IEfmJBb3ׁS؛kߍ硋CyLg5T Qj ,=v63^ CeQuLM!ly՞4~a\=wr*CʯK^"/]$4hSF]rtQ3)A-c0}o"]J,_AxgȬ*Ak j,BRP*lP 7pY@sg OD&POޗ4,":f#^Ş> q)ItkN7I}<߂6g|RIypJ46&:qGht`l_t)&YSATD#f,vaa0Dn8T >.)N.W$Y ^ђ ՟I43y(@Ah©U K@]X)T}|V,@/Նg@2,&$KF ;twmj[:aCP<[\\[X07'=;3rZ@zD$uZ"E%LZ.D-geoÛaL+"U=w aqa(ӽ6yY9y;D?ߤiXu6Ova;n?@ۊ `hcJa1a @KLK.TT1t =k6ANq#͊ԯaeqrPҞF<P#}wS?\A0ՄtjnK X+Į]wD4P5|)6s(CT)[81z#@+ %EiNj[jNI0QIKB{x%1:\@2 Kc?Ar `˦dE/2D;ʪggn#Xf33[w!P.KrhGfVME,@["9Wt?ů~J}1SX3Uuin4#+{< PToWKm3E[&Α*2{F?rU0< h'|>8ק>pjB\̚ v'. 7 #ޣ#”"WCRK8H^(0bbt$qljn3$نΊpvHYO͜Luɖt3EC'b"y33EL”b%hECzN>'tP.CW|RCLn#,I FlʥlX)ˇʠBׁآ<>Sq P}3fRH/J+; _g_ӟPW˗s˖e] pF8줅~[YT9GwXp|\F!^(Bbl9B2k9?74&_?qԃ$IǀW4ph<}(-I]ytdtoh(ql2ꌽv~eʄ  y(Ug}_ULw45cu>txgYfdMK=vm[={;8>'F@B!ԏ狼ץ-Q\WI#B>!E +(p]-[4:ek0#m)Yͽ F'P0@lHγou3)w_Lx] t̓HY5tL@ԉR6ea^}cH!%V2z(1'wAGŢc@{p3mGי%o*+Xg`OW9\y,{DچV\ TV;-.JCEeP ƳYj䄧'3W䜖!jqPT3z29?C]Y"%}&5@ćl@jC,x̡B3][eCJ3hl.KE?beyU.nc'"Wu/ wY_=!F'eo޽䆿N8}kRBIU߇)TMJa$(u()m@p 7cXWg؇~Z2t.EcyU [ 5EvfEM#e`f7U|ʼG^L>b),N(LZVMAʳe6`["<AJa0TpsSu1;&OE<\MvFEr u rD y>z89 LVQ@*#YMB0x0|P ~.$ \s۹wu)4"*%X5z5QS 生$.Aeəg]}r"iJ^< D[PKϯro5]m'X&ŭ %bxg̤0柟d`X4\7Yw Lۻ *;W" JpCv_$c.͙cjURfMXTPGk %@B< bJA1{CZ"W6cJ:g ]vS8&4"pt[m>:2\$6e5lw˥5 s&MQb>J^K[ q6l߈~Eവ{/kc7n( I敫ꌹz8$;I-ֳ bR󷯝kRan~HƏpH/o`fF2u{Jgs>1J/S%btPSӞ/vm>{uHv.0B4=B2HFdd#"cuim>45@AS XGJGTUm{r^D)_ŵ(K,U"*0&9WяdpDXXC|O{nVT ){K_ RĻY:7w^Z7EB`.+{f]O]$lQ8M :C|Osݟ_Gx#Oaջ&a=&+[KWrplnV6V襊A\]Oi o#zq$w3Aw2UEG6cj~}~O`3Ix5Ab??R|Ԋ& X:RsQ4x5R&w-) 5ʇ.:+7ܼz,2UUp&5Fؔo=;3@.h{!bxB\`Կ*>t%:N@5 ݊:ءIp"} ޖ6TG}*_ZWYI#>i#vcjn}꼀a3F1۟ jTFJ~ڶڵ^fANUw5Mf)C'!:ZG~ \#3ff F7]ީhҔ,q Ljss-_ vʸq~b-H)s㕛|,lKE|iK'%ܐ2/3r@1AaPco¨›o쎇/jVa W Nݶ+yM c8yMwfYMI:4TfV9Ad4֢p9u53u;Qoy7:/)RHi9F7^P2â 0`#m df"ްw5j7%W^V!A^=\N@_^]58f_FHoȋ~#rSJ1-?N+^8P#!gT!<6cn5{ @ Ċ؍ovAP7~߶xf_P% ed7N-R !HX` RTuq:qӷ?dErV7O?{ >~ 'v}owA-OdhKADQn#7U1t]Ltҋ\ɐxӴfˌe>$5׏ⶢכws봴Ncʬn5 +D夤f^~b/90O~+M['D<ⵋKRoFr@y9=/UJ[WhL YƊԜbeI6Ug(yV X̥ќ^0 ^Px"K-U4}mFn;3Yql 0V `1tnZ= %T6Xwb\P}IFQvNk6=%Z53F Z$ ٠3uؔ~ӱlK[AEzW=g#Ό;,;X2F`"}*ky[N^`T8ӆa&gӾdm"S56& K b)9j ci|IJM$[zu԰(2bzj[d +shr)Dt/Tnpj=588hv;) W0d$?g|L-2+ c`9`B8XmM)PwP a {-Omk\XkaC:"ש[yਙڱ^h!~ʋ{aݟExQ0xF#/)V!Y-¯F.}'?O̦`p"F>tH>,&N+t76&~εN i6!xg\E̺Y4!#v^c<~&J`!_OSąVG 3, D'(cs lڱdU[HZFF LSשVLYaztO?#|vm:?{Qgp"'\upy0Бc3NDM/j\rhΨxH9ԋXuMߙҮ!M+چv%jAilqW3z#iSoE![H<gJaESA|N/3'o w).`|q @ɫÄ"U,`:UO_jrx5B墯FCeQD'(e<[@ `,t{ӡ$П.q[Cw|G׶,DQJ#Omib{q-$L H Tmg`+G,OfAJ{uTd VSʸ":8Ds R(M Ct}1"HCy|~ʠpfB nk*MQ,`5[]QJʩwC’k52F6)XbWg gOwS[K0(o.$ۆZmQ!l"gMu5*ꜫ^'JTGC>K 8߲8vKVM *`g(OHss;Ƭ^wZ2.T]y友}Lrϰ (%`S!޺}v=Rґ/xvIT\ol}a-ɨWl r1+H~Ĵg7+Q(/U_RhkR<|Cfwd-LA/\+%o)I4Y4t#F|ػ aDn*Q97p+-;'=ũM㑿Qh>IxAZyfey[ J!jR{ "-ZAHJD53BdCh;Xq!Jؗ{g.g3\M1 0i"0ΌTؽ"SQơ7ӊ쨜N&h|U8 lnKj&^t0xA^;IؒͅV"w5,Ku8/h_;&KĤ*T~gs`#@ۯg~~%9Ƥg3j*IT\ŏl HYmws R_J \Atf}nթCK-Ѐ$&'pFˬ+<: zI"O_I1B0%K$HxCI8L@3[y7 o"ʻzP T/i 'w#μiڎ)2O|HY/-DB,e^hs8ajP,P _} S$׆,oSWa֔Lma,rKeMW4hy| eOsT 2yơ?-+] b9ǭeeV-Z#g?!V1X@@A+ jDH\7 ֝== .w"q]tZDC~˥΁U^"<J"n<[2)h&z "e@.W U9&\]4J mSV*/f*QZK=JY[9ό5ŔYǸZ$siͤQzU>7QRiK;a0@Va~MYDJfg' w;䃿SZvf3Wj#bϾl)Sr;_'V_4 \FCՓor(,G?{hI+ 0( p NOpAw.>@+ 5]&qg PJ8H|j)oǏMhz~(sφ:*ʹb˲:cl8-o[駝i-2j23k%fQWöutL X-:i1Ԛj>!PC͏uzt_g\&s\#_!mrCFNلimֈ%B 2;`L_E5˜Rd!t,3= b]JO ^N@ ؟ oT&K>%)?zLBmI 1%'qpMvx.Y\V:vVgPҽUisA g} q}V#]5vcH~k¨!`IԤbVRI`aRrfYH*Hvle:G4̙}S 7Ϻ|\=Hj;ceʤNP@ydfSNp,:<ʃ8xVW+58)F] @1rjAXxeʞL FW}Cl$5ѽ낿7q<ဿ=}-1I="W;Su ,,( KlIp&XtT,*j-H9-A d3F B#n0e-ךv,^ɨbeH+5; {|\_PI0ɑ~X{V4FX!VCǜcmŦDQe_[dg'^{5T.tpa)ΔKC=kBSb3h+75?|k٧0s2`,pmƢ-0Mτ`RoB BqBR.V;>3 zW@97[dvOJ6^?1D# 2A[NUӁChI;8ثFݵsX$9eh̋`L8lP7`.@iיMn (c\nP*L˵|0t]~7HFW-Hz)]H7lFAGRt8ߔy̦s53ֶ]!v@6w\FpnK5iT٫|Q%>IwiPE3=(QJ! Pg!U% _@^~BZ z*@ Zd<[uҊO*lX$޼=z\ˏß#W\$py쉼vSqQ'ƈ:E]C0t g1 hP}vaT;XXN>pL'cp:d ,Lzh9Z$E Zbkce=FA=]pz42`Tc A:` 8.MS\8Z-+(`~eU3sVյ󶷢;47dJxEgF 4*5ty:,cHfӂ\ !/6HG]n4F7̣Pp(>_:MŠZfF8^c/Z)]\!۳@L; gf1AN*~Fe>FuP^qLo3lOJdr';TihЄ$/sR׳$oMcCgCv3KhIKːWeN 4@] 9(6:d2[EvQdJH;3eU'r"pHKn cq<7<^ k[9T0wPꌷp>`tx%z`9?4D5ܱ6Lk U#} bt'u@H5<~4|ۤ`,h.jw`#x>+Oh⏘ !CԳT ,y41bNxy i9Z$KvW;AE_@?Q=-N!NJkWk7˻Y.mLdA~"({ 2L$Esh).lA`˹Ƥ5NKn<v@c7Zoɍw2+gNm38]?p|?5wUQN RXWƁkfD~E'(0i]3Z!GkYcQz5= lCVl4uOFT2+R/ш0}].nZvv,2#Dnwu{QR*9򋶨: W?ծW.QcHI jz9Ah:m$Y@F c* ccBHwӚ NL[F`g`cs+6u p2G-WEC:!w QG5iPrKal7): wײ\\9o6rzj}V8l>i0dtJzqtmÓ䑙50tD^E 6Y663LC yEMi=u8Ed6a=1[8CK34+~,k_O1Yѫp cP=O^lq5 m DXpR3vzrM8FB9Ե3:\HjUw|f R;]t!%m|J&Re(C=/h@ ٠ ĉzS>(" sVgЎcDީj +ʂjjM?".W xc<VC*^neC%'=צT'g!EApb^n+F|+{O6 u-/Ԉ&]F &>^o 򒒛{gƎar~fyFiO8rD3ߊTTw|" 69TvmP"M8 F TG]n6S(8T}˞$ 3`j! U{zۃ|7FB"vK `"J5K_T3MHՇ5G2nqޟ8PyD̼Qw׃ Ka~x)rvQNġS}`/ӑpmڒm<ۧ pBwtrO(\!g.LeAR8a2h1g %UQ)S}G^KEpw\A#]pveYul@ [ȯWF?W3!gJ/ q$S@-ŏTZwYnJ}"}lx ={μqS'Ӆ`AOɯr&[MDiL w>dWa2 &ǾuRLB\:㗝<@qwo0K,#7JE~uktHdOם#ob..Z쐋$_!@ڢAp-D]Q6 , SȢ^50`n݁ %^ &^"VHYf|8{uO"3/!:U3{+kc8U=\w0q`؇H6≮Or}R?s NKXM91eK#%F=}x9ה2/iVʠT ީwJ$]gv?rK8햤h&~&^WRwLr=3~!F#=ޕwN|XN`yB\.#AA:Ukw_0>N*P ZaC;7D)2Я = S=ȤґSnu/lƌ;&.p%3fr{8Rς YV{m`$r_]ZğSvoXfF%/BQ84'eS">8EKD>2!0…j,FGIruL\Nz{RZC!؆ *X[ WD av wյCn42q& f_L/oG`(ds+>f &YlSSoJC9]]=LqjT?:d9 @$u3OOwV`>zu4CPE72:i,NzːfS6d+!+os6?;0((Mc;/8?G2o{E1xZ^u|%$\^n[lBEb7R躋\hkBJwSQg<.8.Tt-b:× KB7ؕyu|UJ?/7q9R}O6/@zdJ*+0{]HQndԫI;9NJ!;q1|@Ǧ" .e(Ƒ(Bktjb+IhN9_5.PD ʠT3'#Lra$tqO#1Նeo嚒z|Ah-̝^}imٞ*_|EN?Ajv|}:Xrl1Iơ1% f HT!_M0Ao@/5]V ^ĆH E;ϦR_wGD\>Ѕ@ҔP.EQD\ɐ,a*,ehnr ~z7{v$dˏj ZXe>/茔SRTīrCv@5$at̒"X?RWyuuIOA$c":稲r0XȕNae._axDڏ!+J~MOm 3dLܭ9:H%$Z&TX~܆IP ,It3zkPIG b w? mxڂUiӘ%ǰl美&r·ul7^*seAnEmiM讳5*~VmF䪝#(9h$'nFrn^7¨%zk+H sHU}كoX|HMi"?eIZ6fg$4#oeQF` 1WX@I+-rMOb@"U,~r=N,Lx -@ēo$::MTrBm[.Լ_"5fiJTUENU䀺碒M- XT`ڣ٥\kG "!ywlV1O ߧ;+ tCuu6kCij@/uO~~-s1m3Rz6X>ʔ̹T4L&rjaU ͤ z0"($e<_F$~xU }Re㒎>ڍm1>LfLCք?_G}?@\1iVUurXQkƭ8&0)=qrvFyPQ̂4˦\:/5u?7deNf,*Iآ!U(̗JsAE~qO~s1kLN?f)eE@'{D>a矨>.OO7v:ݦ1wq3bpK\q#PQ " -JոI=<ۈcMA.B7u(OTrR#n.4QXHft `1ѭ0'(M|A06b4xŪb1F4ļeNs [?p%*tYea[gȇd@r}HW3Ę>xMn># o=?(X+7ѧP9  Mٛr > Ϣ ŗǽbtf$zm'TGG:MBgÃ^}6Sˢ1Fuu])f2\~lp .S$ u,Uf[$K4ɗCO:vf=H/V☂(m>Ł^nbkBc }(뛤4/ܫ<1v#|UQ. !x+ZLCG`x4Tr:8hsCSoי֗җ^?>`QBo3J,؈:7 !ˁ(h[ a).\(+EBYޕD׼D,['i:ưޗB8,Fh&P#ǟr7l4S_F>QHbSZ"r}6`՘.,_T13vS$AÒ faAo$)>!G7#CbH!ϳLCI?y}^bQx.g_cq1#6K i ]k.GBNXoK k35Lp :.N0*7rft`\c6)I;H0bb^,]AޱΑ]28X1KzbP獘70I"=G0ˉk$\MgAAFE#BPx7>ˆ`"~cFvO/&]-5ZǕ [D@WT_W|` ͜j;h>xeC}+sEH+@'ɧ9R!iI]B `’thrQV D͚1o[#* *܉.yV"HЉTb!UC2QEcv9>ID9/[H +wc@Gc~0'BE|ko)^ɽ:L@A&rpqUVW rI97R2?:mWFl 6͑棉mKsƵzNw=wH:a,Թn5]6>.z_by6؄i۞FԾP0 İYLoo O{2Q0a0E!FŊ±To.r7sT#m@z%-@%<6]-EC̭B<kHApf: h{ (֋9I5eaY3RyW{ފtw8Tp'Av%?ƝOa|ƒϡF-|nk *8~MӉ@pT*f྘, vUT4a[i_,43|y\f,tʙkj|-/nĕ t "NYSѝF9CXE#3z+lËgiOTMy⨇yB踗YTIwycɝd6$y'd֩/O3HxoxR:EIlR}X'8(͜0žE}Et0=T#&-( gNTHZPdkY@]-]UHP0v|myoLnqȋTk #S_%0=L_r9Ϧ)twۢE9$Ck㓌tٮ)۟a " U9?u馐"-hX3U1eJl+̧J$nwR7h Ǝv"G3rOdKea(Ӆ @`9xԄ( ,uіZ:^vr:J4LEMN3[]b%]$]754.wX&(AAJy  "O4;Ueha(@;A: @hȿoV!ZδKFB)OF߯8$)c@.c_ViFҸߙ_<\FNI!tIK_^d͚^rq2Qo ZfؙM ;!Խw c*Av4.ppҮ:a(->&2dVW7G5Sq\QvD:f׎UCe9_gWO&។yBT$*"b-'['CYĂWvcheEiFr@%cQ@Ͷg=bXgm:ZzT8K#IrMU).s0Z4 M̎5 DZ{pN*iڅ8prwDH' ST2X[1fʶHp GĐCΜ*.bUa?-{܈lQ+\ૺRv3߿AF3h ̸afԋ=wZlW!JPodD!Ok0vV2; 8dWe6a-9 '6$M&xu>sG)6I/X-s_.Mb h,}'\|/z ;WAg ⫢s:&m6}&eCbә>Wм"m1" m*|yu8dk?8K #ea*0# w1LƾnQuEI '&{ O1K fvL2(w-&`%< g A7S* +g ًRMToyJ6oE՘]D=v>syF^ 7߫J*Ĩ8"= A 3XC&=ӫSfK-SxUi+ 'V09kaO)7q9=J`l[ArUpC!q4VA8Xؘ2~J|ċ!)&$^j[0,dwqHG*9%7,q:KIc%7K)TИu ({;Cr!l7 reL)FjJFO~HP]}%'T/ }@k`92S#2[;ϝSbf'лwADPvBJ \뜤FQ`r2ߞXovSDt3ψg KnT%?Okf\h]9et $#S=G4őE"-PN%LܶELR[ ƳC>VYVNƫdy߳!(Wr/>QQ=XW+$%^>C_U?d]TbZ\Hb6dyX0UZlW6ɞ8)P?69ϗUy6o< #qX9셖hVqa)EXr; {U_to}B΃.UCn}0Ϻ2ki:E9i_2BV&@t[&jw+ݢ-Wb`ѣW |nW ̰*~%MCvNEnLJu@D3xwG9fhazS aLk0&Qi1=wS]wчJ ~ƂDߋA4` 6[y;IYoNq%tz$KD`CuJZ8b̛WZrKAfj5 H38}n:hQ@ǻ w+]< 5TZckֽDPpݫ7⼋ȟ\oWY$4ۯ[bWd$FwӪgK-*>TłW̮?bP|vOiL0o]CV: 5}KBM,G[4ٳLBRp F{p #měLӴm1Ym8uŴQ%e,a*l9uu&&jBGau`d3 SƈXf{. 3ݟ_uF4LMRH (K9NSֈ>J>5}KiQ4Ir:*[1DC`D_mRc "eC8W専)]]dt[IixB?T/`9y+>Hp]JFNU: T^,OKu/ׁk.hˊs=B%r%/'Sh` z-4 )O` 3XWvD=ÛGs'_ B40yH_g\U"tOg]tB~c锔C ffƍx<c$6eGg@QSsF2W~LbVhN2.$r!'9^jVDn}͢ Z\HʆL(b%Y^4cZ?ի=ji)r"֒Q}M \iԘE}utүZN͊Ġ{ r@b3 R6k׋)}3( •VȌ@܃O' ٓ6K?*F5LSd ŦtDEV_z{gglFt_ |yvڿ4's1ʪNBo^=N,W0HOm_ PYųzFtӾec_w4#ڐ6RA|t校ȣ {GE`Pl): #2}pHo7lɴ |պ|ZK⸠'>K&FsAmFE=Ɖbݨv9L {;r ;ioU;etZHK󗝈d[6ط\?lQF|!b<o,FyE(YJ# ڊA&7U:fyff:2v&nYIgjqYB)C}z.צ E4lFL#>Ǎr)%zhfzW9T9[lKdF$=͎BS(TI2 z\)Plb `s;y9l鈴˧ԮǐN{IٺÍyT^xd?'>+Z* Y3Z!ṥ(Xwq,SB(a= ӷ1 G!.;MlUq9qw6?7\>퀀Fq׽Lr( F9Ixs_~ژ@/qԚ=A4nx NH= K49a^CZ:ߢa_R1FS׾G$1$W*H N}ͺw{W^ǰŃ 2^!//AJ >.?,wRTѪ0Ŷ04MzV 8T*!.-e?IgC`ND ("Kqe!h⅘fnjoT.w͡J{ :D]xϬɻh Z\<ϟlBT`wFFƠ@0=ʜ ;˯`٥WahI!Oc_VGkJІza+??(XnE-@q:^%gekCuP>c6+>'X?5ƪox=XdCc>7 L?#(/fl0݈$c<Դ%"z"!HBA^8`i7g(4o=(.i[lb(R:[m1i! \??UQ\OR G)|c;`bs'z  N*67N( SH>VRPZ/]J>Z?tc!q%FE9@ |pK ٥ a'vDO[w5c* MY${(X1;Fɯ H*=T}1:A)k e\@?OT^way8h< oQMQ܃/zX&:Qsg@ #3H*U2nIl`M#sͥgw$FԍLB+7{G՘FV@̠>MZ x!{7E4F ĨN\ )]!=- W4ClJ}]2POD+!+vpGF%+ 91Q?e XBLTZ6 GXjh';)/ʉrTv~qLXPh$aue^y;>ϴaZ߃}m`ؓѣ9? xd6O eR pyLh?㋿̨۹";x1 f*#䡮`,܇ plb! DuLb\A}nhr[To'&׏)[0AʈR-34VHX5 X uqvZsA&z+Bpa {bW8͹.O^[P_ڱg .Ls˃/o)o-$E 8Ct-8{1t'!{THӳXmcꍂQRύpx9wv@زmOwA[bP9)&~zSz3FF0M"|S#[LC|{xfMl-)?,Uئ0b[nIV a:ڸŘȼ ,aP=N9l񠽪g=UwANKXN,*~8u6QWQ f cpd%_`˂L$zkXA-(Yߍ.`0Q^Ѕ)x"B"NO8@C\X&GAG  Q?y ȶU}-SQ h"ͧ(j  ]q^ډJwW}K 4JٮguWrxa06S누V%/)Iqr{dFqDOq<d5q-I͒{VdJZ&{~+l~w9B;[/Ttŗ}w'}DGeR D9T{ea-YzH{&l$0{bZV< hUBMMv*gMGs?+OTޝĞ[茼gR["H!{bZ`0L("@:xYvhH,^*EMdgH cr'};eel_a#g7H:LVb8 j4MrgWFa4uEseϗ2҆7Wt_k h+dOL'+S2Dr,w04I<8 T r^0ٮyޯDS_xnmK$JwE{+0LJw%]Hmt*׊;ae~<PSZ{Љ=8'7/F=#=SߗлQ[t" 1yd}WvоB@p"ڨt?'߇XY4-*}ߜ< /_$GArϵϱ_oGoWl.<41Snǣ! Lan E^F )HNi3 Կ[=0VX*4F>66al._·eC~(KWZ̭r ׽CݘP1%~5:;Q,zX*)m%@5-IWϩA`V1gf(lW5/#q{XK~ Wb#=?9C[:47!{7Q<~<|[L?"{|pݙM<#%+BeVrF:ЅH'BRͫ"X[BƠ˒̝ժaw/)fhkuP?ݱURcT&N} ?6J26/" [~'m_g&hZL ޛB- pT&Ѣ7EFnc%lj?ʺ!J1Ѫ5~⼚hziiK` yV-פ*z`r?v;(.JBWtRκ8 owu7|vNU!nHPQýl{ג~2K+1o<_Kg@=j6SZ~H,))/'*趔X[Rb rb'!%Z2a {Bnw%%? t/hGzpUI43q|aD B2#a@%|x7&R(PM== 5Y_ۭ5uv!IYSJUKؕs6hn-9FMчxKrhCdAgA})-tA'32Tf*NnzEy IpZzeMXOMSڧ&۴Q~~A;VM.^$|魁tz\eOg:ʆ:\\~n S$&ӵȺQ#C3tIfL!˚gF1DRcA[>ʬqHzH#ǫ0]te,;E"P͚m ⵻W6=mԕtVKM6~^:=&:v  ctDJC.g['u`Cxp <:_l&6NS#:BG]nZ&3pJMqɞٛ!qCIXn3֞W}0nD!毁b-8Q!>&O.>=?[G8A+W2ؙx"׿n!$ɖa.K .Mk)}A['t$6T fH>gc,o.54F%A$Gq&P{:D-9) (eNaV/Rh wt\HM)ʎ{>vʙ5L,lEauxmz%`BoVƞ~TfV0KBnrלqյ?ǬHɲeQ2| Tx:|PkVG~MMưywdPYY L~gHd+4ʉ$I ߚ Xy{? hT^h1-CfMYG@n}"∠s1DK -iyH o@u"{A-1ּ&$J|DV0Ccu $f#-,pXm'o^`ʩ]m{ v[RZJw/(R+8fxej*s2Wci] E_diVt $ҐʙQn̈L<9+Jغ;0qc1*zʇ|iA@jYjA+j ctз ,WgQ5E /# ?C=ULsDE0s~E^֡_yvM,>^7!26hZ@o%'⫫:(]^K}/"6n5 of27g?&xhڄv{FLCb:K{S 9\Y=D|Gxɷmk'1"}-y*^\ Y8yCZ7$|PʄҎE 9]OBdKkͻmwY@PO,TTDnDsdŋXGd3Oo#6xtmoc1f^=  'Vc7槪beX/p6Nw>1;bX#H6ĺ W^L7WzfN4{c^+m ȐM s9%R\@Xvl/GWK,~~l c',(<ה FyKH\J^z-CZ%3zUȒ2ŝG>,P=ոm: Q:єb$& Y 2g(t^p ^Uy֑MBm)|&]xY/tJzYKB$k,gZQsi„Tr4R;XI35,NHt9ݑÅ.WUSX[lK2l%aɕ*:1a E1a_jdtflXB #{mVD٢ Xf~a+@hEALѡY-+y~Ip!V%Q;B@J`=W&iٷҠP-tG͋l//tjO- 5_=_)-?;{A_褌?)xs!Z;ױ71.ѣL_jKlLM(N:Z?$-l_`ͬ5hfX/RDz&v)dd(%\fZ1 פ^Q"ړlפ|JhŒ~3-T~#w ;$Y@ EIi$J,bHo~0t~xk̥n&`B)Q;{ieXuzduC_ZzRiC`K[Em`ƤZkok9( B*{Ao!d9^;>$؈9D1d9cnEOV&L[km>im&0cfM5V[2@#5P"ڨM&3clK(F`s70L鐗Y)B5f 䢀5du>[ST/ZToBVHOqC %_ Kt+qf[ʪ3s~F?oŔ0B@(pr+$χ֤Yl=o䱮R;Ia{SBEe)/_Jr}?T5n#_C&sm5@$Mq=-G,Rah%BA4kFEwDSfٌ2>$IJ \rep+{/u\Ȭ,!0 X%.ԿIWz`z<"Ew%Tԋ0LXlݦLڶMD_ō wЍG_\ì8> ;> j a؃]#4X(nL,5z7-l;wqs49hв]3^Pb&Yl2|9֙볚VK3Cw -WlqpA;Ƽ "2%oa`t 'w"4RF6_m (D|IT{9~6¿AQ^fe>M&-rw@Pj`a@ʐ s:#3kvGJDܸL'`p6p䓛Č^(6wAĨirVc=¼LbftUBHW ^P'fzy sjOc}TZĿkPo`_DvkrfJXxؙWj<(Nb5֡3h_8SnmqQh/ĩG<_/ʑ`%~gUPh \E }+DGH|"OאWm8("̒: @N\#r\#ֵ(^:츕(y (bJQ\,f}bwvr_*TاH9F2\3dEh'UZvbWe5'I0DJX%# ;9m^B'vךFj\bVɾD.y;h> 8&[xkn5t>rM ָe(lu'e'An%_=yx ,2>5PIOã>SdK{DҶ|cˆɱ+~ƣAěN {eUG`U<>{ ǕkkhA@]-^D~<]am6Ǒy1ץ9N۞WvXe]g3U.9 l(2 ؊0t Eֺޝ^_ >~Tn_5,nKԅ7N2y:b+~#b|p;bEҺ깢ZAP~i8@6gY*>?o̰hEzڮժ=J*tv8mKO 5է}F !Fn6UXbm]\ 03rg-q $;wصL6\4'+#LT] HmW)6)?Y[c[gѻfs#}t=e kOrVzgnBbStY;㈯s8Q%>*klhr%V&׃D kEXORR7!3z<ûvBjDMxyӂ6Ź.!p_^GdDh ,<+,&l>^'Q$2+Ub.%c< X֙g"eH2):/F"WNwINo)(xs\V$qe`نr>+ f:, |̡]|bdI ?`f9i{ȃ3,% 5+amT()bS}j_Rny~wOګl&C ; BG;; Jޚ7rx">GM}GýtAJ[T'ua[8-Y (p=ylKNv^@&6!|JkmR]F_: 5 YE˓x4OH{eS~G2a9 m3,X qQƖ w24I+Ӄ8T >Q{!їBV[ձ{˱26M9>8X3$/DL{EX4iEw[bW /sK]},Xk3g/W:Xb C%V)\־`wY?:qɊ\XP1~PI3F3o[Ao66ӭ8VE־OJ(R :㬌ԗ0muo**Nw$@ZILo3"t(u9Z6}Eʼn܃yҵvīڅRMS_,Ra/.X@f,|Yҷew:ͳN^ a:ꋅVJWiIOM5fӇ(7}n)@ śb(AWH64䈆h?7˰Y9<XQ;v%`?;ݾ{{3FʂEfTa\V*7pSY JYg ZFE1k0T?kV%IC2KNz7#AV' uqc%BXĖVاAc^\j^$}Q c3&fxYe3.ݱgL~\MAgY?:8EwbF.#7|> O7o89K[ĦSZt>.P||jՏڛρp0C:"]$Ѯ99NJ;@ iK[ZhӰԍm<%?ڶovx29}@h+0#c]󈗂qJʒS؃Gwգ +l# ?wj,k&Yq`>O ףwWwΟLn_ ]!*6`{tՍpu+I#x+p5Cf[]&5Zau#sǭs^S 6Z\ZoQ(w#ܘ]B6 Y &%J?"MNF{wZύԇbA-JM:Բn -ǔ ᡒY9$M 91e\S&=[X0RL@*B>-DE_숹RHn KLaǯ\V߉Oi; q;<:b&ƴWbfx3sF|yf(7-%W`B9w]]EiV: 9Ш HؖبM2M[|$Ny [1r? d ?1-$ t9) ۃA#(g<* kQeAn6pM%zSٰ>hX#h߃ɛNۚ /(,mGs?\.Tg<ߒ~1-S)2\_Q"XV8,NE{e$LYKRkķ1U k½JJ,)w{{ޛ+(e(قeؽ2S d<31YoKݟ!<33C+5 >C"ʱ*߸eܞPq֙Ci =F,^%k'ao 4#B_ߔ,cCKvhMI8KꞠKA\#q4b ۨXdzOz[Ww@LF #uK3K<tڄj}S9df/PeL7?cwf,$GJpOV(k_XNȴSItUGIӘ{Duht']4]^w"J.GAV(8O%ݡ_&_ԡ-ȥOӭxTr%0KRӊ8M} w Q65 iS Q3@TvλЎdslu%*0zCLK>?k1Lpz3܉N5"-i%o9u&j3ܕTJHWэ.f,lY׀صg^Y،D+S'Gol&X 7X7͘OLxdظ0$@gz#>H^G4 $+- 0aKX"*P7}!.qr~*^cx3< x3{Zu&!ܾу9VmNgpfH-up&6~Xr%?L܅u9i'ryafv?4Jў0Zw`*ct~~z떕dCI<A\KR:ta.֨7ӧRЭuAe%eD#Ų=R;mT^/!YsFdk*ډ'j8qA=зͿ@tMlǷ#Ckަn!͟<Ғ^IMỴ(~9VɰPAv{nY'Riv#KJZ0wm,ۃ}YHuoA{ĬS&G33h5bFsT$O`Kpd3 HTXRg-L{ΣdBgU &H&e0(aٶ05 Y{N y+Lh)6Ԁ^=cŢ x~DcX D6ެ%N";.M0qb74XcZ"0 X/g9ԘCzmQ|ΊDf)8mZXEE 2 m@3#mϥ0[ڰ/kR-Fc9&T%gYy?eǃ7@$+ qQy^HU+#1=mQL"Pq?*M5]&]3L&G F(L稳!9q8ި 9I@~OGU cI•mIHX&;EPV}, 8`D#'Myh=tҴ3LQ c?_`f|Lb $:ժ\im /Y#*}L=fe㲨Ϟ2Ĭ?ibqk \_xm8v(2,&؜h(m9xީ t )DE(K&#Fx;`[,Č1.a,+Ts1Oz6T;:R<6%Q,՘ Z?9T.~/^{hJtoInӒ>:Sꊑմ!M'i_2Ne q_NJG3z;A=e$EM}l'@qB|Qy҃F/?8F̎nҢ|+%%q# |[A%%ido [V}^)GTb; ȽtPkǮ>ZmU^ H+@;S*3O"R(;}Koz8NyM7h`cqLDruPy^_#% 9 Xu& >S{:Ϛ9M>ido;سjG/j_FFkR{)h[s 9/M^6R Mng=Zw @3~%-!v@$nf")S-g[\vmF f?cy7_~`q-7m1# 6gNONk00-0K^ĪjBth'̒A_ q1Y;LH Q:"*TF & K Tc.- ,,?>ċqg=cL{@O\tʟl+ P07yV ng/؊8w=p2U#PorEZG1H&Jf,CP S>{/̓9o1q%4ki8&c' #HAH-kym?\l7nFӈDDTq%#DA^\Ng5h̫3!{^rj n4{˂04lީ>,)뉱#P.rL_@XLOfV{n m_X~G:Cs:܍I$}%kE~~An ?CVE)仡mڥ;dK-^y89;ҡ=,3(%u=ɏ?ع]jٜۯ2u_Ⱦ+#MC;gѱ4 㳪d'\Qtʡ9_r&dOsH z1q?L3_H*Ό֌NH՝s"%^#8ƟkPd!<!HMdRVk;:nJ\L+9hSpA} Am: KO N4s@TEVA+]"zd/b֋ʽ0 Լ2iVZoE1~Zq.ҫ_!X-_xrJC6}Hw+qw]C0Ql{fqdg[b~ 2HO^JiSB,~|%]q@BUABXu!hx~\r{psÜklk}H gS5sD{&׿/]{'0`U8JIԪcq9G(׏jз%]_tєZUX(D9Su'Z$tܦ$∿h=5>] $aڷ9Fxy{Q@SZa@!!i"81*m rUc '3)jӳĦuZ#a+,e%5 H &`[i; 8LP%x\*r0V:SZ,7}y̗rQ89ecYlr6w|Z‡3s1 ,ဌ; z5<p$˘,'AϪ2OYςO?k9;+7"s鵢_K= PR"d1/_d"n׫GӶWk2.,rR#Pq䲼V\%-Va6Wi0, v&A,7x^[CgCk->ԩÌ MgrtDUOL1uk ề `(7U^fʏƔ :)VR99\lelPxo ^ߦ-׮T:׳SʵW?BzYaFgCјG+1Qu7\mӡZ6 z03L! F!*TaD3czph~%hS$t׋Xߚ GEjNJ+ I-DUVgHe&@mJ[sG6\\Sz7HZ8AVkĠ~%9݀)6cf&qJ^'Y~5Ѡ==@}kq|]}An1(Xyer,St߻Qy7>DǛ'hrǡ ٦lWP+:5_d;o''lQ({Vb']k>8(hУnJr?]ZC DnΈ* ]6?j%j# 37Sk(ދrI]~gMG/]ɿV)zsBU|6$CEa6Q{l3eg[Ntb 1oXEЀ uX3~NIuYb)Q>W#T[&N@xӚ%"]7>R*hefh:ww!^lN:h(Ul_y>ZvGzmdxd%Tӱ+u6C虙xOՆBbeq6;K_:\I(DC,yNMU@|/B&x2I@8P~F;T1F+צdz֨-|'pEWRj@9 ֙—ӂ=.bGE}FUw1U |0Z1p1ȣm5nj 5|L}<8YE%'ȣG"Cm٧o_̪,X!sQ찡Ӓy^GɡbvIAֵԸM>̿$kΥ 6GO2Yo32uV[o8yL Ul浙`ͤbG>fuQquc#~e"WՊdoM\ kc9oz_CO>=XXQo HcK !ҩN{=3$H X^b7'S+P @؛$6t2/DtgZ0@xV2<bH}mVd8EDƴȠVjrڨ6P!-Ց4[T&XBK,gLM~g"aJ}!P! ro*MeBnK3r6å(ٻ$R%C@C=VumtQ?$!l)i<S yadJL4]S!H6#"D}4?6U/^%R r'8|cn7/nKRĺ0oAT4Xj0}X=ÔGuGpC {E/Y$(b|дxͩQzgDP:sO+d*ן2C[-x*YD)؀r\2.Yb udV;h"z#.J)c\hrv8cB4ҍ?z$OxQ 9_DUz&f]`c%@ħ\^%MdmiJJu0Q|/dyjYE|4o(Z9=hS"R"jK.z샠J?➿9)i\dʣM;Y0TUlrGPFۙ [_5wXlaдa"—<+ᘒŵO*بڏH7y|Eb|V_?=(_qSTll,KngNjÍl<D"F?B '} 7~ Q0g2@^s9b6lgŔ#rd͆o%E5}9LM$#Ck0*o>Pym,I|x1Y kR%bH(guYR}vШE(|9hzl9;v;} ko^CRfw#uyPJgm9tP%鬹gdCr.Ѯ7uw&\?Čbrd˗xTI$S%iŁ VK$|~M[D6b^ ݕ,} qM:E^ gg ?ǹBn珋^dp+b0/t؏A Spp,LY@s#Z7@E~VT'DUԮtNco>Zahb0 =fZϔKNFW,} ag Z4*ܕ#/Bg@o7+`jt4+H|貟 ?\'(P̞EB=5jPi!U N\ ޟ@PU!.yŖAվ%0CGi> q)'䅰|C$nҾڢO߆mZs>,HqEn'I)x|Xh{@.?GxA2yr?rRmlS7yqa2l!iBa 2?+89ztlS I9UJUjםdEMR@jx{r"tpmmn-G nۇI,Llߌ:3'@֕sy:%]wC/[`oV_F0`ZTα~2⋾}o ݺ )@؉U o)^\5#ޢב:j 8Eƥm`5bZ!=[M/vߕK(GΤ\J#:Y)Y³Wɴ5,rbV[ZƏy_Mmď&[6ޜd>Z_!)a6864r>ba:,-K? rg.gWDĭoQ)S& F|< M+d.`;zLm8צ!6(%>ƺƄڧ' i/&.a \ao=KvV1n1-]|jfN";ZP3ۜ6)^Igcb=W$cz}OV33Xb)[m(=bGvqUl[G|QRs/זL)MI4Y #~2k*"v[ɠ!? &yc1"RXRGrOR( ]͡B5!m{X&٢ШlXFp tf4:NUȣѴ F&kŌ41%_'EXҪl{¤`DkӾ͑-^I8}Ǥ̧s\ESf2ITdleЇ{Z=OdYIhzJg蜏Jvg Žrs=X?x3[ܺL-DQa*Ğ\c&َju4DU],4ssÞ&ml'|KQ7Bc3JL6)'k4=vc!CT=hy׫isg!n KYd &/6F蝔F1ǖxc%C5 2Ste>:k23@@B.9&_goH|%2:4lJKkHmKQx.#2a$pxzz`.W-yOe,H8|q2NH,3Մ]&2&甞VzXd(_mJOތY2pXlJ(9\!f7|/+*; A? WWZH a] ' Vx8,4w?e z#-=v6 e4&v3yl+@Vt3~ 1S|CHxQɿ,TȤ} }'?Ntpzjh= fG,aMZiɴ6(U ٢J6cp?Uo[yE7E (P`.*T:X{νX|g.XXVp :‰F M?$`)\hCؕ^{B@X\js92KA\Nʥ"-Nrt% 7MH'vF\ɾ :ث+ E5>D I3HX1{d%SnDii/ QC+{rkbUA꣬b&  oaC^0=ۉxE?nCxCYJ,.1ϼ@ eGzd,V)=e\S2IQ,'jlپ&8:Ag/5z'0h剴/aIdI` 87 d@z1EeZy"zn޸r#CшIZt >6Agؙ1S^WndN}3$-"?i9Vbm-MVqT^Uah^kNCR8aUOǐT 浵?e\JU_|ֳ4"| k\6鍩|/%jq uhom ƢХt_4ǗMGĭC걜T(+tZ2 +IJBֵ1y1 eXg}f=%SogXRQ=]ԙJf?1P͸N1V<)i@YHkԦMvbywdÛ'{G2iit \ 9ªjW 1}0 -ЉW)ᦙ]rW~ }2ڻAZw[sttJO0 2幈Β8F, 5~LFY8~>OXK|8Y2 #WJ7oۀ-W8&,1Agҵ"&V sE ;`_|wd0VYމk2}rFuQncjoK\@Gk~]nBeQZ:YJݣ!މC6ш.7T@NMΣ@jdbܙEer#;0yM_v xAEi0d^Ψ.[L @H#6ꇲ,}qwzi1P%ܠ'͏QhӜ,c.X~>`ʆc\ژWf)M` f݌o\zײMZ # ߗKZM9/45`S*-R_]?R7*a6dݼbcj[{˼L1D[@R%.|;f:@"-`ڷMmTjSV= L436sdi +?^ThK$Iy ?ˮ@u-L1߷8 eB'm%Gwo 5ڈq'ޕvAbt%߻piO]WS> M %a/mH@ApOA_r(>"sdHjĚ7wwW@NJ'{Y̭?¸]9/^Ķ=Cxȼ6'7\,!ıG|(3r+ aSeqQSIn0(bcNN>;cRfi:0X͞{N)~aiJWAҘzm'@ǶX_M2'y{TfKoM-RvxjRC,h\*ԡ?58U]#AqѶYk (Xt|,lsSzZ*ت`M3 b&V  "2fL}ιqKq}}U]rC5~|"0xsa71=~ re?-/ p#+X"w솢WUȇ'k%ڎ  `XcpT(Jy8|z…-U(ynn{l(C|vf<2%_D"/ aLݮ u3=6M8*JQ KϪi7U<_ܙuՏCyYjjz sּbgSY[Q6`dI A±so-hݎڐe{~$v^6"y\ 'ɷN^T$X=.OV58G h$9 Kv2&)-^0\VElt+Ф&sǎ#qYi34>C_v.i*#c=WvU>]@.GzJrT&Ahqrrm6~B̆[|F(\* z /#tvoUX3D$p~`,[ڼNpֺ!HSR)w 3bI6rRU1_EׂFEPFOܤ6(l->?\SC-s~SC={$p/f/W?a79vEUf~l6PD!S Ƅv s:Ї4 }$8 R hVRw?-Z`2AUD& U.Rg̛szuɐŝl6[lKCp ՈZ_*MlQ⋩ CQxz]V{_ C[GۉɞA2vPiL^D&Gbۢ|4* : #~aTe{EjC;y9%ڡu#B*]wE G0VIl{0w!i2 ŽSw@4n;^~/:S)gv[YJ,*(J8l`~*si?Oyl:L4Z7|*AN]1RkJǚ'l{c|u,oN.m!v}ﶽ #کp!w._zFoB&X[3ᯫ{#t$.WetÍ\ _x-@tV|隘B1v 1w;["%%2c;,cͩR99:5[)3d6޴.7ә쨉 `(g #Fݏ`Ut"(Er1z z2MFq ?/#Pu}r5p~ g^e͵j!4sN2!Wlu7s/nǟ!06Bsp/Blu'd'h>A;sK}$lܱP_Sa%&:<c϶]#rwe +n Hp*^בvy_jtx}̜aCCr7!S֌w*7=SJT * +<1SFdDv&㤖c2Z_\2NSwZU*'V ܵ25Xl@pt8t\+Uxlx٬&uIClCFqs]r`,*J|f3,ˆS!dp@o|\;uypݦXRo"';&H6K7^CesR&"sV4LU?x֒ & 'G&jhqeB'+8LkCk!mvIc'Jw ފ3_}ΖM[O2.NKa KfimjNT\OlSV&+18m. 74WۮYhCkeOh^+5\mr-w*jKۅ9C'E6-aW;t92y /3s _^*M> !<ցh-] $v9! V{3=뭻YUZ)X(XQyѷ-@QL/d3+x[r*D Tr Ph& i'ꝈEb:0u,sriJV|7.6.W>-*,n &(Ń5У.  ]d$\Dѻ O´=nOaKqu2@a~>Yra" -ќ)赐D1)nff]r o=Ct>emH*&4U ;DcƶOUuu,N2ŖAB-eu]arm[ QQ6&ݤ{A? 3# Bz4R| 5?@ېYU ЕLU_J1/S [X{Vor)1 1U+O*[/0[)}Dؑ >0 靖ϋ+VT1ĝ/ 0$w^F0)m< E7]1?VeaR-eTSD[[(k9znW#ȋC6џh`V4fUP{"[txGeev:Tr8jX5!:x *3'*둯A0ZnzP&(bՓ m~QٿUлk7EEI9׫v'>PqU|SK ScNlƀŵo1524b-^ə⟄Od߃<p|EBmڐaQO`|f9].?q aXJ;o&"a5#͚M7TTNoqD T E4VSud%oq"+2ذ:NJ$% )2 苍e}N j=x'#bG4m+D"w-j)jm2 b?H.UJ m %uŜ}H-qTXFI҂Wͪ6K M3tm%2" f2G4sIdvO[a? }Ea?G+:F.xke-| r<͖D"Y] _Xsǚy7BlEB*>˧ TuvYᥦ !ȔN퓕&6,1PnYjƶ]<߯xWibs_vin4ueX\HO{@I4P8Q6z ݸ/+r:,nP.DBkwFP^ه g9nkA6Sr;)Q3dM*=ӹh3P*>SbO'8\ qZmiZDֳ[]5,rM>yv3*.fUbtru;m|Y œB$\/.{%i/ڈ& tVjR1Y>/xB m4pɀҍ@XbIG*s wx4*ʦ ݩjԢy1.6WS {n'k#~a-t?Cƺ E^/nApkOK;<Epqs|!8gw.R:HRǏ1GkF#hx2PcF%i;=kI;jK Nh'DX̛x&v:1%]29dU a:̍ѱҺ[gr"?Ƣ{o6\>bi f3= B)uuz֜MnUOBaaD`lێK>d2lueOae,!-OCޡ2)awxkϲ.hjچ3X7A#f-]z/mnwM! ?l+r?8$ލf'e\_ QD^jjg9ֽDc";fc,VDw,g]e`.ZIÁUܑUXZL|k]k8HZg: \ {Y3yվi3eŠJq8-ĝabl| \VOD^*+ ; zRp}RN@Q}PڵY> .r_6{݋g+_[P+L+8 A(=9.cwkŒ=6G _Nnnj ;':|L: t+go5]F׋x홵U.ReΜT3C+->Kp 5 ~vIm곛[/)gU^Pgm ^emkSn-3~If 1:=12V9]ˀú yYs*W Mcc4Opr m7~<sbK7;a#ݙjy4I͵m4M.^0,g&驭6 mtoE(QiOh-t1iis]?,+K;SUqË8 ABJl/߂ZsCQF.8/4jONPO o~sS@džT(Kz`3a]/_xS3<,Q<2"mq@v'Y>YKW;MQ_"$t,*cC賐xg;Ή:霤֕>(i'5Æ?X1\7J ' v_jyy3Q-0PB1?t"L]1œbImJD$[4 LRjH*'uNkvl)F bwgR4:r)cS.om K[} P W pk 73OsʮBToL[-ĸϛΘ`UbqhU6ŀYrnYvژ0z>@V_pq|=(Z;7yc+u<5mgCWȨ'|)i";NV>[^zp@(lwS^+xz[:C1_>$~5 U(a8U?( ?iYۤq- ԗ37]Y䌧qM%:#?dMHUiGU}a Z])X]UW*s @qARF &^0q(ta+L6Z|lгhSM-F_B5,=2$_9Lj?)?#HJXOPﱃ'H79S{ yr!ȥ y^K/Z}`ҋLd5,c.^Rn~ d: qNYVl'! ~^1Ogq"H_P Njn7sEZ<Ԣ_ԑ0M.J/.jGd2Rlg׊ ?v!{*&a5&N$.ȝ#t# Aj'|NH0i]7x01h~<";\W ,3Aَ!-/!V6.9♻McpԁtFHVKEJmhoQab|FѤH5LsNl6o~ %r=Eg,ڡtAqBVH$IaѸLgo`3Vx^,> Z:c-tC3X#,aD>FK=DoɠW3t:7瓸M|*2w4N |*M^6JnX&B`1vvչխ@,KUXZ;qOi$%FZn]HvuUB)6ć  6 [ΟVW2=! !<!X[u͌}jN1Ε .ds!}Pf^@@E`o,Pu .LgH㥡ɻ$s>b0V? ƗQ'!%Sx%;BڍGeBٻj sq:~?-c/^z3α*To8 M?6!SDS~Y ADd6G7ioPxoyvb;[OKV04%*mUd}֥!jДse[Zh4 )@)^NuQ/p<1U8viNW5Q&c{lvX4hԗ8+k{<"+n̎lCθ+F+6{F>$901LχVή]k R?qhvaһJvc3qLb}v]F&OAt躰^`%jJ?|”62wh6SU #ϯJݮIQOhFm(MԊA^Jc!| A@fNĔ'\TLn}?8V C+ ,9f,2huV 1Y{}"\j[T?~VMY!vhsYGHT+OTTO`s$: Mn t"k Ưsdc] G/ʥ}ˁhC2M@JT~ڊȆS-Q_ lB2Y 1V;.E!p)=X~,ʷq G2ImCpDf%R8؋TZ).KzZy^nRSRyW]-,?R G > 'c2ss^-t3Q,!n ˡ ʭ`c\2Wa2lL!_b\>;e_v* m8 Byi?f&Ȗzy,%'W[1umiXq2[& 8I>>Ms0H_4䭉 #W|3$¢6 u?< kHcBM8U?XnO^A>_­[FKU"~;* $"tW0eޫ#G `2gS|.ݛC0rcŗa T*` Rj;c=2kqJ=:Ch,kl_Au;L"4J]g7V?JZ/zMm|Oz>4{9+@92~kA`-Ff%fZ+րAq $NR%;.<":O՝4u6Lq@?-RY&o*Xp30oϏ%i]ԙІH]JބX:Nٵ]_KZԁ(Nf߹Jؓ{e8!rvX+Nu`&;\tmDѐ϶00Rƈ]y ?ࢧLe~N7gz3 N ]EgU̝?_+YZEO<auD?{]GRP.PkK+6m`Y 㰤ꆯx+˔p%uPvwI{v%.6ǣ 7I%7*Kߨc=|BrD,C!!? ι/cz=WHX̥3 3֯ \D|蓖 u=WL'_hk{Na֞,!g:LlDZ=c58 lACLW!Hn:NMоj!}*hҕV:lu]1S۽?Rѝo?_㑘OΨ{.ՎfGDmύ_ȁix{ko>,Mܹ8kU:a7(պ6D\$`uf&~3t^I?B.w-]|5GS8+WaH\W=^X@)BV!4NYaF#_mF}DM4scOJԕY{Z8ioz В\s9]J<@/'P8ΡE3 <-g5t:bDi[#& G.cjOc΂+LܷRdlŵUa p Eh7+D\bun_Q NVl?=GY9.DbJ0 seUGܷb?!g!HKH|xhmߜPE ,7Y;*ެ\h ;)E`!]fE`Rr{ԕ-װK sw9^t w{2q6IXywҠ.=( UYGtV"cʚmVYn9W[']K6q %=1͍b6Χ(K_04C>j+POp'J f[>8w"uػFG>x *X"3۝zZu S)UzfφH8H>,.> )2Kb2<4=1*q2DjG%x߹d@roBo- Ryr0M[ &m}\D@rYF"RGPBL@O'("M1ʒ䫕pMkzTvJ0xȄ.#^MtTCط $䍰i.짹[DP{[W(#daJ+dj!g+P/V3ʃM|Io5#I䶸ٓ˩VH1#0 hFڦO3 N/CʫFg35'|4IH93!!iG_ oHeܑ!""p]߮Ƽ?Hrz8깘"(a} uQijK,%koNQ z%zH$ T~ (_ <+eiW-ݨw-/PMj0/\hAQ$qt#lM=`Ol ;]|ssIHh\>>gzSHP+bla*sYW'z03)>x湾I`uALFģYX)7t3u' \(׾]=v_;/<-twbw N"`D8Űݾnz}V ,,Md| Fw(8J浶ھ5NCbeWcbK3qM}P8߷u4K]I_,^811a{-$<g ݶ%+$JWHknJԷ!p{\tȁ!MqM_3re,~wt`' XPqI`fGI l;X\?ڠybez"6SAx; nzuАzjW%7XY4/Iҏ%bG)@'D'JFFϹ5Zx>+-fA>G"1Х~v<{y@j|0ui5*_Va!|^[+2!)V.QEmDv23`K"`pɦ63`]0ƁK>?n]3 &gAG|:l7On6 g;'Y f V;]bl?kcyuֽrb\m,@߆sw#Rr:hI+pʴbTߔi?^Ȫwv \o릀ꦤ̙ <4_0ޞl0OVes6đ]Z߲Ht^q*R}L740Pme=["kf Eʖ*Ob 0\?W )KJq@ ɢ" wC%ͰP}_?a$UtN,uo*S| poa3WVP 'WvVyKw[ 3] \ iſҪ .ؽAMa:.,_Kcr;: F|9eb𢥪xK R?qG8_`;'XARnpyF&>020ե21(=OkQ,~C 9Or|/f.#:WFE{<l@ԇZ`ޕ* [o瘔X'o bP:ΐlm2o+P=c0 Ѿ=]!K$ HuIu"N!7񔨗_1vJP|*>sd"= ՄʜnGꞌ?m&q(˶01"iG!z֑M0'ݎہ>pQt=-}`o6ھl|Ì/>Ium)#/.RaUq:i!ŠUJ:|'U"cɌ5ꊯ49L};y}axbktlNe jd'fg0KMyARz)^˨@N'`\GqrL5E@(Giv_gA(P1ё !2*-\oIK(2i*jlJۥCcw Y7T1$*];7AE1~fOS` _X=$p%wD›;Pyq%\169u/z*^$4&"TMj}M;y&,gu?0ƴڶ|SjL[!hHL؈|h #Y^DrUgE)N t A_fTDn1+AV^T dQ n>΄&ep{jm"̇] u^~uϦ<TU uo6<*6J[e:8(]E y?Jvv0܃EHsA ρ6~ U}c9s+%~GK{!.yxdNDdYSwϷ!]n1$D}PDeH΍)4t-vwap(b"|lGܒ ?p";#*K9' p&tW[9&$;v8ݼ|(qc䡞 rtl:>W !o.ΑW.: 'FπHBp ^Vr(; q'NCpO]JGʾ[ݞEq܎htXCzMfc9/'ߩI~%|/n`ǃ-\ހ`YEйL*oDPY|Z.#GD4 sBv|Rп Br@'pu.چ> 0dMB}\rm<%v o|IVӥMAμs]wUv YR@JsY8>t]W-%^)Aac &mi節ԍԩ%\fRe2WJ/9ϙ$7yifCp _iz^7EV%Z.Pmyv/0JatXugBE`>EhReNj0,9`)n fm%\#ӫ) ,b3=t*?'B<R:v̗"r{2׬;NJ6u+!C-Kgw~I9r5="YVO ].oB8$GFb~J3.-cJES6P9#RhYhK) yQ*p vYP0QFLE\fG:&5H8T:X [KyWgoVֵ |$uWךג᱀k໌v\Cծ1 ym!ɋ>xٜ֟2—iM~ljSݑWoaS\-?~؊0X5"1LJTդc qLI~nV]匮H2BuB}gJd(q+?<2G&\qUkk~rFqn g0 PliӺΚ=KsOdT?aU}jȶ}eA^dep&a{{+9T!wuDy-Nkt)Ҍu@Lԡmcý|Ғ ×dX7S:c8h'Y{ 6 7K!kvn( 'a7u[-%fPc#c2ˬΚ}u둀TN\*G;S TA8?oL-r qR$ ,s,5BYڸ\PB qA^ACѠ':gNbUj'?[s\*I (țOŇі9v% /Uejޛ1]tF!`}#${?1\8t$ؼxN)_m\Tq o5%ޞUS)\H+|u*[moվL>B##EuMQծfET@cgY'O֡Mv#^Jk.mZjm Pk0Xօ-tȮȾa^D"ЪrN?,!jT0M D?փa(˄ F. Н0G}Eͫ$ߚσ翲>/C4m/ @qbL}V]M+z{-n7dGX2uL6e}pI.E}je'ڻ.Hq2JJG˰KMޠ0Hl92ITS:mtǭ., >z(oҞ_F/jtAoS|X|WP3< 9, տ,}?*}!bA~;/$$~ 9k\`9XͿ/D'n,aycfpncכ␙& siH#Kj:0}oԪЭpTv죚mulCz r/xN ՙئa|&8Ms>~hU1]r_@ˌmJ<9bkr 7w?̼BѼYidyn@ PF[o藞D҇12Q $߼fDt ia!> R El/2ݟ@4BS_=djC-I I!ڤcK=YLv%yPY=g4CARH?8J^BbD?[K@7ȱ+(]U *WExӽ{%VˉeHeS}_+XmhX={L˄v?WY AEsDyR5ȫ5f"UH^(QRFag=!{x3q}xNo%txKB|~Oǎ*8o88-(ϤV4Wɚ6)f#h D/";h$4' l:l/3ئ_$doK-ƕaY! Ul3L8%)FYƄƛ*)sNDfmhu!h+t[ UF\9_ò~m?aďSODdXYgnt a>G7 D2XgOo,AuAʡflJ:aA3yld+O"}APYd^*67; a×_^UFM޿z$G灟q`aƙQV/ӛF]E vDlShy}&MgrcMJV&*:ȋYQ173l&$$"!T:[&fZ@F*bk?6nRcSq ,w-? MvBÉb"d2#w֝C[b +b]pxו; _a/lC|]BJkYq) 4Ӟd2?$DPH%(RE/-x'Y$IHq:)Z bh hi.C@zrMdϫ"n!@ds%gjyw pj;Aj+@/yEAL$'8!媁M\nA"r7ws8q PTmO,ޕbk^[?HnKmGߥԖQ]e_트W --Ŏi#\=~xNy[Mev{7R 2]gk/lo5s>Ά&66UP -+¿@Xe6u47QB5C:(K{cIf0"dڎX}PZs,_\}j Wt~[J9E"N TNsf}>ݰMt|3BԽ.ѻi*d )oTWf1T}+dX2M1i.{퓆M!0s8c(wd.#:EzܤСD+өyngo"__I;Z1D( +g:YDSN4DSh4<)I5S-zBsȈ.֥l4 O7E=*GeO_Qsb.9GۧR?K\.oc2|BH*yGH2界Y,/n+Aѡ`m%4ϑDb'Y`x{6g֋er)ESG2(VyVĉ.-ʊLSFS`"I ƝP8+7$Msh XZN|Zjao_J(ٺ?u@ak\w[wo4%[@;HZy*Jߣ}%6»O%Tcm\kuM?\`}c8{CZ`i %XzUyO׹rdޭk~:NυQ)mE8y\cGc3X1P55a9u˸OL^ Ž5&xe=Klѯ.,bQV kryu%pxXq c篂y5XnFROD^FR芳L۝~@Mz7asO`!V1i627]Ft8RPZqi2eZ 2[^b ~٫ds:piMA/,%ńgN^ mV] lNZ"*]suor@-BFyN3+NMdT͏&CJ-ͥAz^)D($nJd9b55#V"Aǎ6](f&Opo ;P\!v|?'5n-'r`t' #z <4|Mv2*ǹBŭ Q$%v7{aR{}Bf1U M6tA8k~IJy'Wrh IYR?[yOC|{#S~]--@>F>\c/%am<\1AfPbz==!&y/ yO>s5 퉉g8/BNXb!Q- *us]{36;>"?vv028Cɔ˝S-synIQZ4OpxS7=PTcykȻiK)FU `qi=X/H 1 NWd<Ӫ@>p]Mpx fOHTD &-tMSE]-Q',YL|}xD>t7J?i$ JZ¯q0ʶ[*@h;BW2ɍoh aݕt> 逻`UoZ3zxAKbCpčNer8`>j摗,((ȷ@ 'EVxmM]FBFhadrnd͊I @gڗvvd1PLy_hg *B6i(PB:^gQ,)6Ir0 38d#T˃B`V鏥%,oYajK!,=;/5 xFprwܲ0P J.כYZfGpP5 2С7/iYO܉BKx:bjcM Tˡ Q`J5!w &XqwCG?-!ҠXICQmb.:0 1,|î͆&bd 3:hid݁zNHNE/ s>s`y$ؘ) ;'NX_߸MVD4aS~>j`&Bt=l,<1!aajnj‰#'X-aGD0u ɛAI =331473wܹ =EsQi ))/i}!l0pgѢR;sЅ=2b5n0 kpbT>aC ?,YZݚP} NcxZ'G+"H *2+xܸ.z۹[f+؉N;=KTZf|g wm m," Yq ]#,~S%RLۛŊsx^%ӏkL3Vxtp@;8#<Ɏ+)[m sQ. xF. -o\E F}!WV.$%ofܤ 1twW~1>EjO2oZ9xZ@#ͪ -ۢS:2 1!rA`(S&:j9m5YVzoBe͍[s2}{z¥2(҆UOc^}I|G!԰QÓps~bloT$$}M\X;ٯK`9Z >:yWCfWlE9g"18>ՄO-Eً7߷`3Hܵ @W#[""B0f]~Dhˑ6[8h=ė!i#f < tV /Q3>e$-!<1 ir[J~'sD˂i`Td"T\%J#$6(Ɩj_TR䁰4O߱ss1I(n}_K!}iƐ|֊& n_>SF٤s+kT.9?m=b)-*67\/hIy{E>0HHq.ehBhc6{]`a=<Cx.9-^kU4N?Rm0%sēRL-h.9xbeqJ3n$aO>$jmT:]]2p y $$ȘɓyԅjFd7'B.zD8fR~몣q͎ "ҹIF @(#٣(W:Gm#'b: @d,h2W#inn>2TL>r; \EI@r1c :iaࠝb2  ;8p14,!~3:}Mǩ2/5eKE.qd@xHWj/PΪ41cBhb587Ϸ5攖D-\ =NKz<̻u햌'|a[e.PkL]G";s?$u]me:U{. 5֗dVC"/$ 3.*7L*0u[߱!Coy#P|0T̽!)ڹL,03>lԡcF~٫UAH[ V3Ac33Sfu9%Åy~}mbhcӟr0s'qx)IA 2W)/Y:;x^ `H篓b+r]m{<$}=tҸp9I"B)m SXeSrŴ j0.`ؕ]`|sjvHbnʉuT'4ߩ5pm/{7ڲ2Ox=i6ٷ.DtV)3G| UL-G92B=P$-V(.,h̊I#ϔځ/.PF&~kYw5){j#,>N? "%rQb$T I5ؕKeCl t*?&`pf!A#y5hKwY 6$E2EEYw=]PU<7*h̕Ro Oyw~[zriC֤X%8 sm~.-(.i­=F ptvA4j<0]{B-dg$jDCC0T|@#byil<5Pm3_ <{twO$.tv?y8aYjCS|"ݲ@|G,%yn];KF;<6]i%7w[ |Tcc-!%iDpmK7_8<=q #LaqZܑ9X2w#C3;s(7d;g10^*mⱩXŘq_XF|'x 3W]3);o:q}*,{qo W͈!$]._$hdՑ 1K0u iJ0otjY0|a N ;o"AjKk_ֲ&ƣ+6.)k$9)@\Wj,o: ТV⋒_Rc]3xQąZxe?_ۋtP jvet TU^a͉`A_O;G3p,&{5Gύ+6ߪt 6ɏY)i-8  'U8 *xI'ug֐y`ƴ b&\ RV GXۍ^E+9'h@Ş & WH Hj2堕%(Q95#ڧ*lN>,+4B:*_Bq86𧡖7X@3u'q*tؽ 1-qB909fTޮrY9ke*) f:Ec7r^Zpg%NV0=yTh(^~$>|:-K&E+ܣ\LRO9XLғ! `&bE}s…*Aktgz*[m'IկvµU+$}tc?pJD7ntl8lLpWn!=NqU [X~g*>kr}?Y(oGu`,ef~̕aVІip@IO<C?AUaBng;{gTq>yOA"AtQh6f_%3| b.+_˅~ :6E]Z2I>G0 ;KT~U HX\L t0%LU3-v2!| 5-x>N/s&*G]km޽05x( y̝O<, WYgjov>[ ƫԼٹ/ΦRb Jl}}WAtGJ&e+k^"xCWFV5; |÷VӎTpм8rk [ ,ɩ9_;C<p4 f^%S+is8]CrsnF4]HaKϖ7#3%EҺ#ya;E&RW X`.I4,Y\ qɍylѨ,Z$Զ'-2?ު)YN+2&Wx_\sGԱА*B%ny{ Մw$!,T셓bD k]CeA(0.) B'C "^MP>Tk'˾hd.Do^ Fv\5"efoEQ-2ԖL@evߞԲ+vD-ipV-$hnW Cǚ߮gxv%ńQe/@n?nV%h`('i.Q׌7 ݡ{FM(KX#_ֈO# Aj؆2~c|<,![u"(U* /b;.Um~ #U3ŸDwGc[@QλC)V NNQid< W{}n[y& ~, bڭv HwcԫfŎ;C\x)tӻjsš+ +[}mi$ʌlMTUO2`>ou8^u:.0IRƸ?$L3mq,%P4%eOnk賓DY wM agk_<:fk/NUyӤiN-(ef+;CDNTO:ݎFO,iv7ЀXtg$x,>]fԕY eaE;bV'qs#3诜Ӭs ~_qT2pkj(P 7jQoA:'UPnf"ornнhTSU,l']ōL+G hfUA!2V W4}NߴGZ[6Ma}y DB9~# 6FKSP{7l'yCI)k_#M&xZ$A}>⊀Ua\rI줕Ƙד‡vNdq׎Hɜ#ДB6tDbcޏԹɆM筝1=4a=g&^ukNt.\ <&[Ê5l険x֚AfiP!)\UE!Cf5&px9a>5\}Bȯ}To޸ιp=V$6G(q.{DL&u$Faӣ-&.)ݽpD`uh5Հ5A@9S~˓}@&dEV x^̃"^|.(S:٩ xh/[k1Yuj8 NgU (/0'S˒*dL tˡy!o^LlV(WEbA,o4p-yή>u|g@SG`)@`H*% ,PDrc 0u=+{zPI1=]>$є 6LZġ;+!fPl] Wf u'D#_Κx^̈́"G#)#A[(%` XmA$:.{'~Y9[{ﭧL_W]0萀8_D;m a',A 2M4#7/?MkI_)(/ w+n',+t.XϭZ{TXa!b -)zƐtYJd8kE$Y\8iVgetF</thDufܠ 5ݮ~?y:Uq s"֎fD\{#Se|@<6׎7ȧ#*?c9 F^3&Z֦x%sl)Gea7)p4*<Yy)DT 8~S+qޝQ,S}[H֞Vj6,,$I=_'\cq i)Pnx9sik3{{Xwb:^MQ_ D(*ָb(*mz2H$/2'+=/s<EǴr ,fՂP)v XhknƗl$Zҩ9=t+G3Ay" zzaw6ONHO6 ,/kO`7mRWeNd,s9BQo/6A]W0=,i.B)>9.$c rڟFJ8HnXoqR%F?ތefo4#y]oﱌ"yQ@چ~4q&jS´$TƝF-%-:.16E<$ ڬ#c|A^uFˑ"TwvQۈ,=CNkrJE- ? [g CRSK$OU51(,wQ{ i|mLF˶fKO;q dw8ʝc+9K3 97ӦPO9P C,,U |@eg2^BuzO29P~@oQnfɎd*X\a0sp:Ѝw>/ި/e 40tq{vZ%|$S(b@qRxw'{耟[bz xWQVˤA4MLѧ;kl;Rt3^Y~P[.bZ l%MJUivܪ?3nM6&8xw_ 5gT3qCXҮEIqABϭo+Q-1B>I v? &fX~e(FNr:jun!5r~p2=cg& k(əP-]_uydӇ<P텻p,+{d\k{q5A z1OhUjVk&[~Co~B&tvGbv`lxn(l xGqx:ߥIrw50 PH>5o7;[mp,4qWA2"5]<' q Z_gT(;~M. Fe9tҋsJv=M%IH&r&YU˩ ~Tv>bo'4[eSOvNR8!77\f4qTނO>-j=> Fd2ܧ?KHCŤ5d%_{v樽OrMm)N|B*i?Eӊ'姎YR˅7TAP1Խ!ҡ3Ldd\'ߕYu#'`P.Nko4L'A <msX|tȶupgT5=?MR p01]veQæNw juN{rXjLw]ÿebZ%2u^`|$O1)1[x/lq+u8Y{8U #ņMQ81UTv Vop f=s!%mwz׾|wz9!ADl)Z#*JB,+C1uVFZ׋:[B1tmlVe"Q0f괸lNz*e yCFn,N<7{l"_{8b$GWƪe|8P_*f<8U*aL>lZNY0…Ү{)ǽ3y!i a<niAl):]H.9SݖCT4X45csִd:$BNq󞎘S9@"itX|ϯ n:EiAØ%ŋ?2cAG0;LD`~)TQ}g6S$^We\];*sj_w ~ld8:$w:&r4 8D+z4ÏY< / *>־5#7+qC%SA(+VuC@p%D,ܝeq*б`$^?s*h ~v=FhSIommuF6-ꀮ$4m:aD?[oWeBt 95Цʏ Ӊwll9$ Rȶn?<-@\ 9ŗo {);_',HQ)z}pKu7hm?||-RèfF-Gr5c>048vq{ |×; b*ve%CV&$H7gu' t氼6;½?H}#(;=}b N6jH|/;E7&~W ƏhL9k+-ө>ƭhFq4,L_w"$!A#,ERME?ىėz4W16y5tb $g ?c4P*+1+ӽ2g"NǪ"\!, p =4ÝvϱhG&폋IǹYMU:?j_뇐u3mlu20Jϻz6DfIL 5\bJz2.0Jpev%a&GYqEwgr>6 JWZ>l3XS-Hn=}v9>Ij#{3"2'/;*5H~ǹ[މq|.1i"uVd:rK6G!gC [A $ )­; %E_ Jm44O 7>cF4eP#JCp49>8[ .`*|:_aትH,9O` ,>F8\o@{0ٟߍMCP[FPm&B޿=Sr7J\=i֛> -gDoʲ$^VMaN'w͗d(:oSͤ",R 1Mo:F 3?*Í nO)'3Ɛ1z[OsOɳ&[tgsbCD) ТilG#7~Y8 V)1[p ~v92At'2+Gutb%W+XҮ! b:oR7U1rR՚Pr'G܅E[=c r]/l}@-Pa !e ;!5/% KG/jA!7zVmS2MYfBp|)6(;[N~C]$(b pDq)i%yCwoh4Ic4)̴{ l^i @wm*<=D2uZ`䒌s6|J;? !lE?W9g[ 5%+ylK:*ذ17L1= yMլ/4)BI] 07(N>:)4`׆ zyE1)}ٙȩfbL)%\:O2}<|9Y!!^WB{s2b6 {h3? cw\7 c{KZG᭺zضFy㈉ncTǖB1CV6P0aTe1|@s8[ JőI~3J ͎* kxӗ47CLp"#EHIW"5#AEu EKt<+q1N+L 㧈A yrh[)V`xxѢdå&JYa x t&xǟ!WAcGT~;7_ǻ;$ SKNu.hʊ_L>4\,%)4. /!$d$Ra`ʠObhت[9d%Ϧ1"c?JOc޽YՅ䰲0cezPr ju '[͓R(O)+7[aJuV j*|wlcj_>ݡwzOE G8ym)q ْ,ܨ.KS"QL2 =˔$҂DNߎS_Dl[ћ4r􍐋|L_j&bPcpeͶa+/#dԖ{e\-ULB|i= jnA k}Z6 @'J33N%eF eKY ǛYթuB? P%bdk2|9?\~}MH)dL?`7r [u/Kpx|mdw^")h)λxAJQ;dpO_JFOG,(Ҫ@l`QdS eCф>Ä]3|1ix,/K)&W*ox;¸[}HքWWqhaø.ȕ%T,^j;\j p:E-Jei[?XZ+Sfop"3m{י.)Fu69m3Oo/@ߡCn^~ef[q*a*Q]4C!R1DQ.pH`?c$kc bbIif2IKGʵ4ia$xa5[I{c/?ҌYP~ Ö2.x!;~8P՘Ǎ]~v^ҏW!XN_ͅׯ|ʊCE@R<<$#'>'JI 86fF"ԣם>Hwv&ö9t wYH;,)ǖgH-[$$lvG8/s5OIK[CYf^qF4`Y\0גe-,u='/ ؘJ36:4O_Ǯ&a@`M E"1s1>;XCz?uX1R KJN+Tȁ_JAi}3,DKOY9/6޻5 =PN"sڌɊ_*K@?C 5=u3&32nbz"Yh25Ŭ' UOw x=GUN+Cꔾ%Ap H%*].e v248D\}?ܖgM5[>UleO`X}A3C "+A-L6,7a8^?O"DHؓޘ=N!΂"4H3we UjG " Mv[Ca .GQw13hyL]޼W$Syk09F7˭礓?`&LpjqBX.IC* F5e:'~|>h_ci~5fFun>%F4+^q˫y3!+J@'WD29]|AhhtMW0HrL!`b2,2ٮL6HuKUFFuS&\g[ {f>="3|OEe|owMkǫ-~4vODб667cNH- 姠>@ox4GgDb._KW"O}+ LU i'- HJaЇU}wg H|(wFbP A`ΗQmr*مM{|,W<&}>հpt2Q:6v21&Ik[ݤ`WuS35pPYTwBEoy_nϴN^]vjcRﴶr1$.7r25tO^+^ȩWpw0I֞| 1(UM4w'@rfyʬ`Rux_hp,N.6ʒh9YΛmjb~6MαɆRCB'=jÌ/=UFB&jh$f:klPpj%PFdG<?Y6:/Ynߏ uSCAgC$-Ns3/b]fG-7`WT,po0|NjQd`窓:zSJKmd4n|̹Z~l(wGgl[BI9<-ƹ^E8폆څJJЉEW'2JTI8iZ46zԶBfªzYok2W]Ԑ 3@p1 *m|C] G5O;}!\N,(@,_7F9;^&Ѭ/R\F= /\X}cvq7|R2n`LT!!sF-Lzs%C䘙;)If>,YmKt~# oкRv|p8fR `D8 Kr5gyjL]m!5Kus{ܳقEYU8 ~#- ^tX1XW)!^pikOXRY:V~o>Xtʓ$+ProCZ:dOP7|XEG/b\*q6`됶D=-Xx׹-[{S`⛗a6ъ/@3ݡVsJu80#2KSk"Z'*ĉ㌯@ədk)GOruy"?M\} %Gc: z~׻tAuR%6W䠝 7hNj B$t2njtkA!Uy)+kyJ<8={`N6_؛8ڹK#yDe}kƮ0u#կ'eFe8#&NhBY5OBB& ;M~r0Tn{ogOI@GAe0|kwu(Byb䘉Ne qu&˘ndMq \jFPi;EU@n?6'AE}1g1 ')i HЕ^iU5(@_"u 5LҽgO7ZZ>Eqq)U|XF=g7+@#͓~XݿOr&\"-P.=we  ^?r>ؔd6Tf5LF^A47ѭ7VkS)'V.k9R `hh }Z愳 #nBս4=Dg݀6 '+05fc.1/@" gSb~͓ rV@ <2\97o-9Kep28s}nךfIPj\VʰY[HK!04{n%ҁT[J~z3iJDtѫߔ!.Yf/ur-K U)RIʉeH$TwsP f1<ϖ$ K&]rxHD}WUbC/6 \mFف1ǜO_9-oKvrppH۝<,v%k|Q7*.K>Q GAdA>#1bttwDv&pq9)l}s;_;dԊv9@u$$W4)%L5nSXmމs٬0H: A\j\1lByl*#2rv7g*7&ːϤ , +e8GE/i/K mj-uǽͤl1+lO;TvMkCږqJ:Q߶7NxSH:NB,1'rYhJHaoOJd&Z ,^8QBpI!ƽYu W @W9W/f;X5EsʪBV^J}H!D#$\^$"$qTz{C~C+%>~>KL°ZvAn=)E3Nvi˽&E.@G!Gm骩g8& 3,jVYΪRt S[[߿斿R }XQA;AJ׮|'~Yй88nYܕ ers Bߊ9לEI疘qE>G'x8*q'z%\mHq4&:K%hU5jXSxIom,͙];Wx$&M޲n׷G͖Cy~Y`ޙ0R4'Z\T\:ƫlϙǓdj8^+Y%{ G]L>!;3(8v9`B[,w':g||b]44YDJBmJ./t%CuVEz+:HE%hOfG vOLXUf*悍%Mn\mTf(L'^RhP`&"@[?[Ѭ#uA},i968(M`Si|&SƋhg(rhKfDE,eoX"[,.קːOv1 B3Kq8Ȓ)Ȭ0P+$S`xV/|UڇhuC;/!P_)S=ry<8MzDnRw׺"}C/gվ$h>G+'n1_GD,#+U^/jzC-aBIK)֡gruV]msӿLj9H Dyi$X9;zpHVuc+KDZ)d} P|Y9$¥W[BF߂ct5EKatF@Io囯Fy *} b_/Nw8)-X ~"聶Q6F ^ȅ,/YL$ cV+v<5NJovZ#j˗F А E Xf[xtyVSi?Bpo6XUGRrVit8>Vy\b]}'4~Al-"vHwvBeT/d.AoH%03Gſ1{@Ţ_a0'd8`Ãf5˜ߢpf\/{[GbWɄղ;&/VB4u=+gd`_mo]ҝo)iy;3J#:NI/'A[cDJ0G 8#[3?PCўY[CQǖX ps&ꌄCˏ0~Ut' %v`?}m"#jnYک/6?oҏ/PN[4 !L y[D\CCXYxYG:pu UĶ&nJ5DmTMp1H{Nmt<ĕjq!=X ?Q5x/mĶH,G\ : *j([8]0:>R.9-}HѤ 1IPHW79̗m:+SV{MOPZ[MYdc>ZJVŝ#nOIa_1v:9*7{I)notEm6 @yF1*M}h{QVB G?Sh餑HO Tl3t?Ǐcv>_uL34ngӵ 9l1;"m&Mi _A^u2 7i̵^wtUe0AhOH覦L$J-a:Y+qJGK`ܩꟘ܍=onL8:fj9r;AZ8wR56>>ݧ,`-Wgoc⮩[﮳VrC(P ArJ l]7ʝ` RPv뫎~DmV:Ƚ/E>ii.yfRCZA;?fE3}OveEE/1v+ ,㛕dG XN"ܧu Uái =vb̦ qInn7dNF_!e'V))ĩ5+dIvdI$ K( Vʂ:L:S 2)"wy=TO9R)3Ȧ*(0 jJD?s^*;ݣCoGv+UY$S0]^<xNP|3۔]Pd) ݕm 4shB>'`pb[ipA?9ַf9 V?7ITI_v%1~:٧~K`3J7VmնPOnY,V/! C`͒Mfsύ mbJY~C43_憥%N [&Vl]o,>PT5#v,O(N<s3=-o:RSpwr~yC>{Ցs6>rtY y6 &v 7 c2w7Sset,SY+a+mv%G+lx^rjvq›b&w&ڧtL5Onh]F's% s9IT m(DAxi0 Ԋ,&.Lst2߲ lBjYmiFglo&2g8 ZYXת?i>01N5|J_Yijzi)HJs`^+Yq-9izW[1sod}5p'sb?,ïsd.~R8,GP?&197=$ɫiVYTTDJMY=DRlm̡j?5QY%@]tT7ncї'lo4StVn鼍z*?%lؐ&/XgJXw~7;:1 :Qڱ:( ĂAbiŏpRhfI0䘏yA7 kN`8^0+3# X&>/L?-,xpK>B;hಞow.+K4hf?[ @a%ʅS'ɭ# >E>Q,a+{M}+sF(ZӶD9[w}q.׻AnF <.p-1:(?F/D,W?n@<0aTďJķ?e{ cZbțmw n]`ڟ-@< qe|娭,M\ 9rKiUZ1 :iDme|}Ȃ4`L4ʿadKrhI/ljƀ_h7LQ0O_?s`UcV6 /U$6H&Ս/}TajYpp)`Ր9l G؂?geW!.Zc8tv R89 :kG^b}EQT$-8.II.(Iu^`Ֆ%CbXæT4v6sUT:4t}y2N Tx[cH 'rZFUBm*4n Qtspswj2[H{֨68~_7!={?dcZԢ8HL0tn 3Y8Qr8qAmQnzJ}Ms #^s=R9N+-:k .f[mj/]P DILD3eD_@5TS؍yz] ݸKEH&B2 L&ѳ~_%|Z%=,j/a| o/a}ڀTLIGwd) cƞ]&%A&w=$:2ԘboD[ut3CXƻ Q8Z wh:4B+%AQuB@+e)KdV\ݧat0Po2O:+`3DRHse]^_}~YLBwqZpʇÊ(r_+4?V)6B{]tϨA0瀵p,صBy:1Sފ8 Jm@kt}Ff$L(HII$ೄ}7z,e|RNѦ#T0ڄŚS0U/'Z-;/7}!8IopL&`fQP]i ^eڷߘ|_m Ap/[ƇTHFIBКn3alĒ I?.':KHw}Tǧ ]G^EHQOEA|kFMρٺ>hj3y/o;+^̢)B$QHzS8OɞM[vK_i`;?HpSJ~2%$ Eb͓Cq<_\?.zxeHڬиi3Fn"󕪳2~]+pSa] t!2E;S)xBAH0WlCIפ}55R͡?ipOsHx($Q-.jEՒLvћrF2 M?nAl7, 刀vpG"&SZ%5fTN̾tXڏ +yB~ i|0;} Jdɿl |ex)b!GW :L\kN~Q !myZ@FdQuQh䮖?v0A!2mUrSb2-Zf#=_lNuWœ)q}ς~.{#npmSʥ--?<Gso&k5_uf )OHjv'spq#Čaavu~(Os^8ŝ!3np36)&5Oո { /r_F_a.*I+U ).?Eҝ/^ٱs1ja ǠN|Vi]A[K 7 Bg#MGVC>|OXHLFP'<.MP-CL\̝^Vo^i4ìG- @siG]fmEZDAAҠC!wq9 N/,7d>8+}Lo#?q/;Ի,˒4goYrږȟjq_}<_eb]M@g6/?4Exk<<\1ЬY5_efS<yvW !y ^1΅ g{†M{_(GSHs†k&yiQn$CtLAcG/$ezm 0KMT;0^"M&5m-uO?}ZJCs2`џZ]WHYY)d<Yr+kՒO"vx]ІpqSP%L+ilc,>%hm[`G*3*L;J,NR8h4JP֋7Zuʘ5p > ʼnI_h `m༝,`t7$2t=^Q"DYpXLMVÉ׶H<ɘ>ܗGO N(JwoʙLQXL IEYy= K"^,E{:@QBC_}t[vM? =b+EDPo^5!б5UĮ$y}Pw<̦0vb P]FNS t%gʍԏIJm8 F\ (s!-ƒUK{:NS;X=}c`ʋ!} p>Q[J҄?_BJ'K;-NɅ@-J',W87΄21EMEmGD$G7owuAđIuHFoNg"G`.qt&'&sJw5okbQRܟ?5T4uz͇vWSR&ALp]Uh¸#l/95WEFy,/ Nmh?w΄ +JM $[$+3A?M. ^3=;!n#7ɵ>v"fY>~pQjSg7Wo EU0O}dw_%+A2yФko1HNnxgc1}ΰ(1 *ʥNQǼ+k}%ग़.b$2xcCPOdM"Bch:d Ex˛m}$ea4Y㱐I4(\ [HQHtt"+.Y>mEwj[Wt`^Vʀ_oњ7؞ŶsHT wO}͌pS)İo!I'`2X$h],lh3 =BYZ4v_=c?ӝ7ԁ*`ď|H{k8FnJαZTԈf׈P9Y$cؔ=F~_h'~&ʤKi$_X% UX&;~JK01E/a؄%>aMrxH, n07ւnA%r9lB.}v*Iݷ!寪-Jufu3Fv^U B'% :qE!-L\%WH&Ez Lgm+ e˟zM Cɦ$p;ƞ1e(Ӌ=HL) ꫤ675R$b%4O4d[6}ד|MVQp Lb$ވ!{g ӧ۾6⚫*ら8mwxOåِ\Qk5z~I{0H{VK>O@av9a7QGM}Ai<&HaO{\;C܊}8t9vʅH bɞpU0q7/dϴT(}>F_(٣o: 7߹O[؈tѱ裺˲vȇ4= xQ$7mJK|κHɸm1(S=M-&6~>w#"$[2h_.+۶k;:!|eY cTF!{J^7|u$9bgNj鵜ُ4gG"g=XҒLU$\Fll:V,zEO(7%Fw>mѶH)H|4qEXfMc 1EbuE;ܯ1!:3e`":~3 h8sj^@&['@KL58ʃ$=1xTlz3K,M eO{-dw_C&8i]or9pO䰑raA-+ =|6=OqAzGf'+!(>y -_$HR̐'eōG>njnMY?U.}dԉ{{Ǹ^Ն5 CGTb ̫4 aucٻ@8!-3u3E(}Wl[.jGo )pD8Jf6,4$WaKuwdt[ ̷wD|f$C)`^I슏 o DnH`\]+U<]+ X3tzWXȋRxf}r ;AP6xaybP>>8g(mBcrͪN(M?n٢d}qOOޥ1{|fc)ؙE}D9+ 0BayWE 0ߖҀUEv:X'mG cIZ0@npr 0L\jJ}@b"- υE z(.xꊢk'"K3ͷ4 bBxQ' _J%NC??!mTKE:MevJY[[܉ ?L1y‰gZO/{:yYVt/,Hb=W'CjCM(?ߨ> |y J?7a$M`ߤ y0\5?s=Ijʴfd\q, O%roX48z_*V"myjL-aܛsҦPvK /N`u)|#n#&6azbuIuj:W[K:& oHX޿J6679x"4ɍw.(A>\/hu[5kP9zUe_.sZ"X1R1/`  X$j-$85P͞4f Kl\SIgnWt@f634<d63ZB>PmRr\%u9 7>^ .[ʋ+A^ܢc[(^r_j?6BhcPc@]s˹ØB>j}CH8{lGC$[إ?$v K}K0'` [@$Ny LK-`_2cU]h/M~ Fc}&W]T`UnZ6־ Ґ Gg7]sldy˳~ЈAU[h\qPԱ69Z2 Qo)݌^&ݟI۫j~c0{'|8afuƲApc|-WDI+qa=t0dp&nD$ Hq0˖L[8Sj~tQ~kU/s >0Fph@+9r9F#R8.96a1F$8H}-., =t:J r>,,J3C9NyPޕ+bn׎3r@*,Gޓ=㌥DU3`jpRQ ?#cE$Z EcdkyfE9E :P ?5&nøCUzp2{߼Ȇ!?ݶ *y^|1puY[`bWxaIW28ijiI#]o@}KH<"Ң$}{w?;VWgnjjA""+e?:z>e_è9"٠Ϻ[(Yw?w\Y 4.}D > VHX!놄Rva{d1o~n?gV%,FB"P ^=_kdOeD%na1'CT{+|+Hk鿹0%vZl0 ƕ@=ɣ([*75d錤;V6VAX"xRϫ, ph9'X DZk&^+TЗ tXbpPb^[Um~ap(1)~o!#\aN$~MOz; Y?&j`JupWA1DPġ" Sl?w0 +9q(5Zܟ p֚4 zc0g?a ;bqc 7$-]3S5oC\ș59դ&d5`M*%c(A-v{JEksN>R4;PQ~bI0I=;(p) (+v08bc(RtJ^In;M]h195TvaS5:jC6n-E&e0 8&MhNbdG&J380\_~iatVo HLj4MƅgzKٶDeNny`Dn&dTf7͞eBA jzk'1t*c= .o Nи]N6KNNvؖob=7j y!>U1 IcyL!"xySӰޘ y-tO*l.X|K7'ψ2Gf:i++ig6_pp4$@q|P1"\kc yijTkM'u`b"|OZ.66agqX) ⽭sflQ򓇧j*uELL"%Gtly7|&CqI/T$d|Pm*)Z6ϼ:f#Owz*y|D ~5rޏr_ڞX쓻ϸ%R]+"14[X^ˣ'W:8_#VSFIU aU!~ds*7 S1.%zVLs+dQ*Bz6KBF׸` y͈b/ =GgWޏI@]K)0mKh5vÓXOA\L-)`/nMA汋b;yAyҥWx,tm|rWVؘϲ3@f~og;L-qe)OIX BdMɹZ1.Fo*҇EeX&D;.g2^Ih4;slIН (mA*JQ-ep̊NsfGIAOKRgt9#@) JS $pxp n/,u!{j#[oy6Rt\Vb,&{g|>%nKDҞMoTdmE]uËDngحXȇ[İDH ?ϼI".'_R8?^z$d)f~KjJ)#XHWpCG!x׽-۱6$w(c=F ZǗ~q0;'πTAĜEH-'ZRLsla0k;*Y/ylng1>tpJu&OE9kS^nЍ R{j @fDX^|[oOM&lfe)%;8-+6aӉ8 uu.~(0UѲN4Om:T?ړI 3,?P4.~8htKr"Dq7dY;I*#5V ^ rS!z Fɀh'7s {OLtW΃>M™z͊`=`,!`1p 53Ży&A 2bʅI#Oh{ LԨIp`VU (MֈQ9.DSaǞ\-յ L[PR@ "7\T)bV{}oqwMS3W i `?UDv5=ċAy4)ۯ%SL Ǿw,\pd-Q N*=\G΂"e$ʮK‹3SAhlަiEs\fSj 既\z<1U C1oЃT?;/)z{@Ѡ>?}1)PMtG IPՏ z7ҫO.+ƥH!Waolj߈ pz1^$geAU>yDĢ+ޥs`*̱:ŲGFz挚F8"*YT3NMKf/>lcXkAATN.y=m] 6c/C+$A)RQցǫI7%x z1Alu-K|CŘӋ52{-j2 +=-iO.Lm^ԤȂ>(%̜dF޴oH Il]&8}Cǯi|$\K93G9,LsPfObt.ϙ%{3jgႻ3[#ޢ?0}|c@4IùQ>G&{NZKȁR!G%(|(Ԥ̙p~:nl-DBq9e}z],ݡcਘҥ335E /e>'i{B d>0kcNr4NH>ܽ)K!.v7= EDyFzbY3um!^l(z(<Skq\l`GZòe<{Z ,'3?DMaݏac:J`[mܼףF cf575HiLT;ź']Š_}iYjaG-7g{juOK,ͤmߡDIXZ`r WUh;rI% l~ z&) t|)'tOzoekoف!56pu>.ou!/5ɺmD=#aV/ Vo ZPJsXW;!FJ.O[UFqe0;+Ӗ6j[l ,^3r`C;;$>K@V([¯QuDmkPBܯ9dN?LF|Hw֝_sk[Wڿ?bJ=ѧa(٪Q'HvǴᕩׄKy"1g!`Ee\4jpMw1ɸQ4m 'iA&橿%a H+zf.Ȍ L9#s&э41#UW iӶ9vi.wnh)m֗{67/ZWZSXRr*J3fVjTiB]vVosX|8PB7(e>JUq M:G@uOD/~2NuFo_|T2?ŜeDRTY/m&u׫# B̺zAqFJn$\?I*f yxdvRo9psm&HȘUO;(Uf/XqT?ݡ rXVqqCUFPh'$k/T 8-[Oؓ&OJG#*ٿjk`mszʅ;dߢi^L)>% szw4y'Q3^d.X}q0+کt~PiXau!n?'?Xx640W]5kTѴRlNe-X垹1@=#>C(;Io#5kQԦ|:M("G,rF#CHL4\) ʯJ{]Uu.#lh^wJAzT3 ?f@\p U&@F6XAYu\y(O\bu|_G@G/mC/z*W8<L?psf!(U> \X~UF[mhkVʵi4')(Bn͏!_ 1ln`IXWsZ6xpqW ]ȦYJ2T3$yGru^Uټ_Ǔ)F߮JRhSx#7?7K-6acpiH"{U &)7JoB'LZ'OCܿMTӛWR3I}\X8-78U˕s*H9 uv V;J4tɘ S4+cru k=Aq![$Ə:q+zOmäMD4g9'uOfhhF={a;ƪ\'?]ON8}ZdN$%!&s@y8lA$Bk*w6m&ct{8zF`AʇHx $vx{ UhOg`|s4~/@lTXl!tn'n<5w"&S61R7vbQ 7s5@M<2^wmIpB<H,~OsTA-bZȹ~D z ߋ%%D %N--f } \H翞Ե֚ym,fB c IzVŎރzR"?//zHKci xakhG~I8,~bs TO_9nƢlb6 uy#Ni.)UVfʃ8 d}Z~v.Yh$65iN: &vމd/b>+Zu]x ڶGX@ٯS\%~ei;4hm"|d"ܒ BC/}`) 9!fף*S;C 8wDTխzpD9zJ#Ė,:q#; l^;Z>|>v\.pMM2fzmXT(=&з''b[[/>[׭GPvڢF,{ۉ+F`59inmsd}׎`p6q컕|5#Y-jxnjAh*Oy`&A58Ь*]37 /~ԡn&d́󃠇G݋Gr2lM[ LkMWZm))sT+%w4hAїpx_xR5WvJ 9ҭ;!%RNтv"{إ(*t[hp!_IuѮFb3|Pz.Lv]܏.s!4(‹T-8%؜%MSR"qF54Wig=(yn|$Quu@=rI"iZ/sQʮ#y v d,Bǭ!`TQx=ΗȦH*IBi9}?yl"ϰxbkkZtZC@_ڭwgV(f b4Ht2Mzspb'>hsBwqps4Fy"֖0F0ƪ<*X6fegdɰIAnջܐړIo>![ Kbw" sٷP ?FiQ}RN*xBw #Deu%>j醽##ʧNSgCďYrM] z=x/Yۍ1! K)}^Bt\ք|xΚKU1$ێ7sǻ쬶lS#;K&Ot\iFP ο;E-3n,jݳ :Nb"ϣVIfRRu)zBÍANFwqZg'd>|)Gv9t}bTX;vh> |b1)xwrT5\|K`ә՜ff#663z⸾Z,~=輅nfų6B[:+EJV#*L]ؕxh#ɧ>ptLЫݬ15˕[c5"r~i?ܢ)_)zZEX^ `v O0=:rݴez J/H9x1Ḏؕo.4Z^PhRvChdm X1y`܋ /\]t/MLbSš2} y3$b٨rR:xZ^ JtX(wZK(HR:LRʘJ3,@fF%~{Ȑm,e'qj?u"^*&2DB| -|$ls/ߎ_I{ȵupC}>n0rY7W|igY ulLr&h7uAJW8_(z$NO5Op1!pbWXih€QG zۚviE;+O?*Op܀vl4c1~)pIS"@޶ ;>yٝ&}vsdEEd ?W =`f\ 0k..Ͼ\ý:mLNz ,4gcjԁi,(czy P`⬡5̦mu unC0A_?MݒTb`eVdʃJĜϮ : z+􀚲cŒIGF }ln?\= oC+γHjzؽK|uV:d-d}G.XEf˷9d'nZ}A@%L]98 [m ~=;(ni zf Go9h)r Eiyb6 (& rrj3 m݈F,ݫQǩNKh%b S'W{gRب/~dE; uDc|M_^ IzOЦdz4bx2u2B#}=LWwߤm 䠊2^3m,B٬+vL`\[t!@!Nac//w2XN8!.},)lDwr$ ?gpJhu1Hi90>˲(.QM9 shRfmgԶiݞ(JMo-e㩊λВ湓*5-ii{JiL1;`  NLqHvt){d=km99FgMğ:ݝk薄.<.eiRO>LBj-7 ;BXfbǺJx5,mxXn @V2'aN>\@$ҋ]R_DGij&vp;z[kJ@rP8YtakHz}Pk~053_b ȰH۽F \rϵ|lay*<ݿGbnᱤApщq0Q~vd}ce8`!UGRp8*E + ‹= }i_D8L/i.-w]b H8rI )W;kk`A9!U&D&u.Z^RZ Y /U [hYjtwr7"k!7$dT;.}esT*@8ЗRfmӻ͐u0ar ӫNt[+Z]ac^T+y >evtlI͈Px%*J"3j“!B㝃N'*e-oB}Og1|,ZVr<=dԮuc6oi:=&dYzk,T}3\t7ZFk/lمg;$w(E~.h_vm'mS[Bf9-_3JԦ jBY ]K>ZQvj4J>[{<5q͝β|/1f#"[bJs@IY0)uAS \X SS.f,z,qU\=pX b*P;[[q0먮`~vQ0sn\`F8 0阜2'2X\i"f+$'$d;}HuHJHdU7CD7Fһ](KrwLm]ލhq(9@ZX᧡ξp߷!MR1+r!a85ΦMھf9еs?"WYJ>$x=AMTLaI0ZUIrl.吧ob^~;ufư1]iySįb21w@XǓMdfVylPkiļ8ؿBNݵ7=@d>'R2_ʩ7Vy0т䚾VG#YufX4p".D`D"R6P oΤqϞc/) #I6Z/ӀqPKGIPПtC\&C(Ð|~|!h; !bkg/hWȢZ^Ǚ#8vNdL5n*yCh 2EYsoAuALړ3h|C403I+\&`s9~|E$yԐzyT VEјlbvp^=H?V]nƒfҫ6P)>M#gX\VCbNn %J r ){a~&A]7 O-Q̺K/ԬUPJmBJ0;? iPOƋ:[{vE6B@$a;UZL ~m\49AAzjV=s6*sQ=MG 7!!_4;DlAIRsb3)HbR|Ņ$tu_3[ [_JJ_9\'}jTƬ-VટCD\"_Lge|.adD,!t,6&0dq|l2۝k=:(г"2y]BQ'X-]{{p'$i[C6[k`.T;'Tf쒘DJPz < TDkM@'m AWx+"SzE0Xn1Z{څ[S%H{P~7~Ėvɰ-r'bz™.ԯdz: K.L7YtS.KJJn\QP\)&[xPb-x9qH1YlPD[*d>ĽӔ_+xEF5M,t"t#(3e>nYgj96Rƹ̭i F5.OB;w D݈ڳ}q,`}LNnxmOFOZgm-hcY"`H0cE~zYKOk& =ǃn_OR0Uaa$=dBEu;*G_dq[HL4ٓ],mQ:l;$c XW| e%n`EO#0 wv1ý8GA9pAk-hADŽ^XFy lTKm>nYAc&@jm>qR<z0z{ef[ƿXOL٦g|SPQ "^n0X_}Xœ".U[jbbH1XG:sc2_e}K&3u]:Zt0iWG:0qg@)&dːxx<,?`X…jk& m#o8o8[h *H+[؀+8E=TULps#Z؈זkHU^3.ԭ*{~bm`Vi0!֑Cm."Y1*8z!a?K ﳒ߉6.Ôy9NvXqItʫdaNQy-A/~;\Vm"׈-4#?K/+Эn+8\P4}\mbOj 縋(y~ܯT0C'u;(ᴴg<[Tnkk4 v{kRY=Od8B_RZK!߻czԟSVw`[Ŗa"+ $5 &Rq)k#IH#ۿ q4{Ru?sK/I.4'TE]ڠj; {m.L`"0|Ӧ Rja˖%^$@\O4nociՔZ ~)_zdoq$ỐX %z %g%}V־t@G!#p3pO}|no֥.XM?\t -psnjApE=VسؗTܞ.~?XVn̷wN>ɩDtpƕyRXَ puNzUg#ޔ 3W;͙NXGD.w1^ d7/[;5@$̦^[+_@dhlꯈٝ4ILE5K(gf|7Z7rǟ c1̪%j8ѕ^)P6-_ڎf6WU7mC3Gzs#p(qS|P|*Ӄ*QvUPa b<=$P ~R<4>H\dz Ò.$<]jRJIZ19|Ӎ. +Ef*dvas4ap 5G'!Wv@  .* *,ro"xmQl{fl7Y%ci/2~MOaNOG-/CRP< 4?VjY3-5cXRLWW0o15P}ؽZ"M5#@ΑZJ'tw0'Cy&+F5Huu!34%nuvα4+SйJ]أnz^uI a,;ak0E%,DO7!t.:܅n︂C~ǽhϽg jxځ~!p(ϮDjc/'-HcC0ګv]̃Y48 P8ٗ]3 7䉄ىw`Z\xWݜRZd ?"eyjWX{?At"֭iVB!^^8ܼ -?S.RQИ~b#[D:vmW4P/+ b:ġN3vxN`U)sd1rZV^Pt%UM\-05Pp[ E@F݇!ۖi U3 )-P4f%øs w0da+]>PgSK A*n)$V7cA*.ld=D9 N&&NpO: L!c?֓WEM).Y0<날KTJU5j Bְ0sica}D@%MYzg\vb\8}Xfd,D 6{%pVcU鰹^f C9Z AH%NFz=FPBs|}H#CM5_d,nРb>91QY)v4iPW6\/mRO*nk 8pU>m7s/JWs9s&u2RqL^%pDR5  p"lCd [\/J#& Fov?=ѯkΰ 5Iy)oV`ndM"IՄPC޶؈cv&wC5Q?^LK̓giw"]8$zibd.Bdd9qL6ꊩ]83=F]*i/{kfLtL1 E3VMG P6`trρ@EW6-u FX˸#yu8c-3yDKm~`no_μ'RLÜZOߒnga 1.8M]sܓNQ50G>(B7ij%W̲7ƻiid[(KգyPC}c]M6 KV(ns*.fB]b$>uO1ވ;ð"4wγ~!㧪2Jv[sZ۪BZi0.Ke.Jԭ{/u|tm/'&+* pD5:H /4+ȺD7yB/gq{gl5n0'>P@xɄ ysK= H8~-e&=r]6ə)O^`_9a(FLq х]kY[bnȟZ~ëya㸇#]N~jwY?/tt[n)JDWwH8QI| ޤUEK ]kpb AgMсJZRE='?Fo9{|r@&/2ɼ;vq@vE^yʼOt~T5+ ҫ!ft*Vǝ"*{OԊP'07Rrt=+ʍ1&ߖ(>;yޱ+njΎ8^s ̌55ԔU%̼a.vaGIZ[#_a=mO iq[ ;oqAK{ XBm:쌒x渲C5yag<B;50Y& DH2gb쏼x-O.aєkځZjid׮I\3>^9p5&hNzAޝ aʫi~+06{ķPLO=]4u7#5?u%zHPpE^@t|tI_3, ,Pvp}\R,&zqå[%7u?6ƾ[BgV$>F)tF4A2B xu .LxMsP$d^(3"ؐdL`3:8EOوƒrH38a.45rtVD9YlXX`ge*IjSDr 6_N4G:7Pm_|fIz1f2Wqˀvt*]^˫ra,`F ۈcy=ԆO3W$lh|lS?WOo+I-A|ƾHZ򎩁֡Bqǐ.(.ON\a;$ b(Ͷ O{w8>WY5aD@u B"_CASx1L0u~QCT+L溍 ]dRݷEk+.q܂$_>l1GԪo7eM(l=$v抛aI=1)VVlXJ1}z-ĨZ '1/^&3em.>ľP{9-ĴU>wk: cP; =[zpThhȗ3Bt>&1 TUN"}(ٿ?5 \s꽓?$F7F{xv{A\Ǧj}c٦ Ntg$x+=ݛ D楰y=!/[Cmpd93 .p/QC3k>uxRIw?D44 0(\P%L.0VX]dRYuj\9]~Y݅P5%=F+ dQ4K K(J')ЉxhY#gQXXюtm wr RhZ퓮_{B48ɘh4ܜI$w0bcJ|*FYS!k2ɼ*S 샻pO:t &XP/SB{/0E2Y\`n!z~TJG-cBRM޸hdw:JQ$)p Oc : eo8^F{J7plɫ>\Z+4si`v.Bҽ1Qv d9On p}rϳUmj9m}$t`+[N`|z7+TV57&BS^b5^/g [FO,k-7k,q&S$##@ Ra6%2$d(ah#o!C@^4k LK&O@3pЇ)}{4}ၟJ3PT,y _li_~X]WRl'L_d9&/ԧ)rU9o\"& F28o [LLuNT.{MoOC] v6sAR B=QzImEyVeƂr<KT7%] vszz|"3lJWbt.;J$d?Ç78.h3sH޲I~`AHo ?KXB%o>KWze,K{*wڌ㴗CA)Z38@:Q"H{GN WjFN |y-f- Q'!X;!Tpm!&&l>·u7hԂ8rF:}Jy! =h-zop6(q }b+_>Ea_D{sHҿlC#~%$I85)r# E*En^%*]95C9s  p:R[0qʪy2;3i\WY/aQ( Bmj}O5wad3|d@WG bD~kS(h>$|1݌}uM û(쑺v |>9r1`ȍBwL?`D}ߝ5BΩו(Gko5 DxHr0 iKwY񺉿X ѷ;\/ie9+kM|A܇h?"O"]ͨ<+ ?R`ڀk[-c*6~#sePln#Ư> %_osxB l^y 3(yduv] Z ,<\|THF}K9OmK\Ec%J_EAԙ7FUs2&LȰ{4λfRH;f`XY(W7B>>|xWPf-5%i~ܫX(^dw'A*_qhg\1zTrƇW3*Xg1) "Х !.|:Բ|u;3,]SbC) ֔DdA:fi8a9вl>`S2޾򺵈8u{ +.eڇxf X߀eijzJ_strbzDnt_ஸ\~PRݔDʢq3say (]T1F%$ ^\CU5pJfE|q^yH}^Ƌ mR}WE]HOkMeyg{,n V2 ZmumT8cE D_oܹdޛ0jo ]7$~"Em k1 ZQ$Q]ue4qbġ%03"O |fڱ(ˍo '$4.rʢZ"сWBN EW#ɘM5> yk%|/’tOǵzw;&̀w@2c΄O%NV+>MHHn|auեooTkquwԞ| 3t `Í#4 -a R" KɹYNQ2qW @2 b)# x5]BL,9;PZbO’0B%R Rdv"[tY?xYiȵm7Lv0 %"i#{U;,0\P WcYxxp -:?}/>{-n>zvQ~p{㣓^@GԊ*E/kii(bE+FXuo :܃jvz!_~/C~&O/R@. 7[@U@' F.@#7 x5uJ-a X]g5?IŃzau<1⠖_*h."ٞ(f^+EUظo(I"!XET{n+y,3\P>vmSY:{'`̴Ђz@u3h3wl=8T &;IXuCs0QqQY/J?2-} '_~ cEV dOMV++?).\e+k2z {P'{?[! p7whIk&uA\Ri3ᒺ4/'NA@_ L }3& |Im7i^B5Zݽȳ!mG1d~FiFsB==ipE` Wnjxa/E6Xܟ <ٟщ tϦUAp$mۀ7Co)w!ܞLJeTlImqxaB72q '_jK  e,W] CTfme2əV8Ht 05 E#~&E:{.V^ -UkLܐL)"v@)4px_ hM2ͫVl0+O"{V1 y(JNI.@m53%'>cۅMw_ c|6JHk$0g 4pP}$\oaT \W$;VB ڲ^^mn j(k0@ \yA0Jk{(DrM64XDŽ9G 0m`[Ewm^ !Zw~w ׆yoow]rdlKqDYt>0) YWfAMmim>_> Cc@PO/_(/64Y 9q,释}"1`-_7 ʀ=cyIUiڙQo'< K׀S>o[Pe #L\[R О>F H¬} z-SDx3d%>A[#a6Y5⹤zA۫cs+GVNV|cF?竀xFxR{IzSu|⚵,\~>Qoh2@ xyV#P[ȸrY*9y!y\{ElNsE2t4Gl1cHRȗ9+mл0$w2_y#o+FO.C 3T Ot 'lj5\u:B&XX/^_ϩ&~Y~f `W#-f0wg"BHTew@j6x97e 9D:FVRەz֝F#Dm/`rlc+WqHz?`O;*L%yb\$=`4ӻ 2z_Nq[ ] 5XS,L[< cRzMڅQs{ [BB75GWِ1fv~+ ̸hKD-Jd(1tOi{:}yR \OۭT/ْp?q ~옜}pMv7/Eu5BkQEpNcǖr ;?QΔђatvMQhcvVφ?$|?)Q2s]o|붑z|!V ]b T }\㸳13azx6!x8 nC-7Vx\8,f/ƜSr2eC2<9KOMBE0%NX+9Vk!5%~mG(pm F2~X]MDI +]^KJu(J/eW(mS+ޥD#5UUN=`F`pFe[نYcRhka97,n0j^^db9oҗvL]u`0漧*S^QQqTU*p`xWƩP(ZqO&Ơ݃[t7}'$^p3^bb'tN AԠ_H@ru'>Nlc(Jl=z8!8CQ ox?&8O&S?kDq C4̶cড়(B#۳& /$_:5*M JA{v'jT{/ g%\+^fx*~]w Qb]QcR (Zɀ磻vFBJ7I kr*:&&IN}CjnR$&J`˫ȞGL']2d" .u3p; pH E-Tάlňmrxv< 3k I'AJESx_u*C^b^(uT9e/85މ9 `I[-+\2%(l8=һi)^m/ #Bbt4{h>?XۚC7W X1zHxRt`%Zpug:M,K2xC(x8[ /EڪSYt0!'!fP|sFvB1 g2akS.>lM9Ww܂N ݘϵ̕e3Vvcb &{%Σur)7`fBgyٹC%Q2 V 'G N]ufز@J+!YNocX6f­Iu,\X) rU%cV1~uq׿xa8{Kڵ016rΣs3/B3o; Fݵs< V>L\O? KM}t\,"Q':Y֥eq+}kK Vt14i !#3*No:?g~#nRsywĉٺIA- /.ˢ vDJ[Ywk(X`쿒_ѱݎyî?T_ VeG"~٫9J3<=ZkDdp~obtJh◝(tMJ퀌V7+ޅܳFt^78,Y?3 HO",)^LvC^f n[NRװqjH1C< ԿTmNf_sLa`!V|=…a.(^}@T4T6I*ZE-ެ$4t|*36׵e-@P_㊂n[o5h.ج'<*C?<aDͱ< 8EB_svi)9~a1^#>+:NUco gܚ2 T&h 9yڥи;3l;$`xgoMA3h[&K`ц:ͨλZK/R a [Lrsң3]wŭ?'TsJzzf ; `h҅*CJ";oVCʊ:dVʼ$ TA-V<5: qނ#.E$ R+N]%"GjLM^ѣjo;0iob:Tr122oOW~[8*wN('?Lo$;8Hfd볏ً(1OTr".bbuka31y>I.w- Gw&/5 3m,[E?sN_Q>}8? 4 6GAкƶyQO-I5 a@$dTV2gyZ(u07n#\̀9;i7)^w"k- ]  !s `y~rr@EiC@>ds^l}r6` bx:DgB5F3Mx5/CMD\ ؈ŭb5r-K-1)W, $]"OLfȳtU-b~iIs$De_ ;,zb6,FyU]jCpseM =-mv?RY1+s/ ;K&үXa9TٿSzGAkf wN9go0۵7T I_Rbt+qB=`UUv%1}S ;3 ~L|!ۣ/1QÀoqGdNEOJ!,h֮ŽmxwqU$#YNQ9f.-Y{iwP`yNAݢV kmjJ+D/̐( 0їV%.!ȟmp3G`2Ҡu?.V*TRKHAQVhMfE;{w x&/м_=)QYŏ@Y낔ѼV+ S ė['hF;,F(+҇{bOT]i'OBO"ԎΘQw>Up֬=hNp8o4:`ˏU$[;>Xofqݛ\M<{UwO-.rb%QEˢGpO{7"\7@_pxi`q(D#> ϼRԆǤDy>[6Kw\{9)rH'Dz]lFG;\o.*"RIȘ4UʁO,CWZQ N:>eLKF;tO]dK`#HkX, a:BsFWS<F$֓wW T;!ŏGW/ҍM.TN*7KDhv^"Rx] w 91+}|>cYv~((fY~aOx?azvgGH0;;L^Bt%n7'=`dq l] &S>f՝Xd2!5΢5,DBA]]!|\ CFD C@ G6,WG-#4(ĉ\\0c ,  nH$vGz^/ׁtHֺU7__Rgd$0u)N2,٫(E6+Fv%p[ثutguʦRjws=XnsHIit?$g?.| !@V_ ֎ɨ{Xίa@$nrzr8ל4613#zh4E MAgiLn+ګF+|$C~gK_ԧp.tD&uiFKVQh=IbQO=Y`j^$ݢCZgr ?:Qzi T_iU4rd:iʠ ̿X%4yO= (oӧiij5QycZ yWW+ ^XD%~Cucx"ºm9z3ڳ0ԋCD.R|BaE|{n +rQ%- xbJ:}w䮃^LBH7k3nYrKe]1:n 1Vc"Bc,rlBk||˓6$fk pyvPSXi]u! jQ$|qig>NaE?wV `8أA7z\oQJ8e4N=]UjXKET&s4ru~LvVTʨC`~#o[ȇs2+M v&D3{N5%12N0WP@cЦLSAV~D"Zp.pq439v"F^s֎-~*hs Q=|8c?w9jp&fo R.WA"E(`잻zli@ʗeKMUm's\@#}8=T)H? L9яbE&h'%,۾vStb]ϤEc$1< :}8Â}d4@J:+1!U6 Rz"2jl^ٖP󎑁׽y5cڛq~YIW9c|lcgu^W"Ѭ/^EzA1I_K._ZN;Oк}zd8D| N3Ӗ:uD w%)qz9e\:hܶ2f-r+NV c*vsT, 8+q-IV1af/ZaYN`ob-Es0)ݷJ2%tUSZ?RK=g ..&MI0{u?{G۹aӹ\ N;w=u&6dKFeѨ鼋|f;#`?0(b Sfw=u]w0~^Z;)|Ku >r͠,,`rPb9yZ_~U:D=MLT/}aoGLU &-Yj'vGhcJJ$ץ.࣭rt,gB\$vr?pkGuhsQ bőeT|vTlS+ig#JD hZAFyHAɉ#v]u٢rt- eVW]sy@ o7jl݉d̺Dr>B3ȋw.&ar.wߌxYV]0;I~Pv2ȻdE U6|")P*×<<=YEvJ8E{x69qs&b$"" inp9Ld\gfџj)WM /VY"G#XC- "hML) Ŋ~Jr 'i|IOzLVPiO,_\: Mce 0t1nJd^؎҉Xcqq`4:bwS$n6Cb"="=B&ͬzAݯO`q 0p%T}9#R1ST" `{ _t9ieӬLF0тזg4}tΠ*ȵPIJK)ɘXIr~Z0nuV:y#Ov qOЫ:h #C\_t~Xpa e7" 49~{+ʄINy*[.As;t1 !)ۂK< 9xOxU7CS\*TTj=ԠWN|؏.Cm0wͅ)Q'#إ։-n&& Lx:ל)`)}4Ԑփ;ɛ*>G@`\TCte9,ɭL>b6}.s;Uh!?-^Վ4xŲݑ)v^eV5?Y >NkRqeV*>On_zH18Y84(0|˪mŷ-!smToԼ{Ycx淃+3\w6F mBS!:VC6%pv)*]gT-bٮG5bn& wl%:r EُCP|/2^0\I##U5ZuySSχMe h]T!zmZ5 h`=k .1Dq2WFHTYPpIHs>vϿЮ}paz-oKɯAfpGRξ\oOv'j]ղEe:FHyrֿ]TYD(ҵkvoڹ$~GkRh֗, ]<%yOuܓ)ȧ6ϫU ֎#UML'L6d#SL1V*?t?fSE⯝/Y|{ '_%O ށ6۵tF!gF60/Z8p zpsCp^AyȈs&%ELp[\:lM&#yF}8 * 7 #;tɈԤ 15;BQ*ko)֍8o׾6Q 4V&Y TX6PduŅ|G8(K|Rۏ8Ь|j9ess_\3IL@6mZkkӻl\iɰwק5UbW|ϢlqƎ&>Z&>N3/ȋN@$ t(cf,}սD'TgS DeOt:,055"m r v&M:ژ]70Z3šzARhR9k^s=0(+88v 7𗪇A>z dZ@qyKjAkYs2vh%`5Ńs+uCnG'i""`^ut>Sm|<4ɟhT7>fXA @~7xU_4&y}HK#Z͠Mۛ.tx"Y7L8~B:cy%QoF3~0`I)5Mn' +F\nYqu-ÑEL 8OCkXe,Ɲݺ"WDQM.*^4c3U|u_WN:)mrE__/X*>x+8A;=|@͟IjnhOm(Ց3 snġ8kt>f6Q />uCFh99L|ffV>5YH-{&`@zγZt%?kͻ;e8qa3;:7EWoR,a*,պ}2L~"ݓ*RhC pW68-kiqZn'MYka?x}R$.)s6Mˎ BzxRI"}=R Z!ܥ g#ގW=el ?5yBb8r$ap9-|G2QuWR-Z149ZZqg>UHv6_{0^䤫uܹL-g?nPAjZ;r0r6JTR5E|" ue"7C zS Q֛YUl髦ka~0QJ-sw5F\8Y#EmXȕA>S¼5JiQXR`A%0_Hu?i䁪1z71:t{rm!@ +Luhw\틕$%KbyX䐍5 !_ѩ"TAzlqL|LfFOew vd$1ᾷA0TdXS=&m+;4jͶ\4_i.[37՘ =V[Tj!~6mM1c}#B{q)J M«>p1c~]^oW)i9arzF&^,KAҞPYgM.8{K^Q ?Ww݈v4g%U=L?0)H*@, Ov|@贎z^K"#eueIB0L4нQJC ^RRv|dtN&ˈ.8Ud24eNT~2',O3>-G}!(_׽K[#ܹOdM w1D\3aHk '4][pH !%4#uVVTFdΆwƢX5:,w݄Mn'_lBYWcܙcTC Is0s>yXQB)7fa~i3˄SJWM3)"k 05Qwe ou)~IZim+ 7u^ʓ0zozE6QV57PZBBe6ڷz}'"ќT``gbV qbS5ebPTulDwϙ,l;lF؀DFdLaPmA }!(9A k2>沞9#?5( 37@2Ä aܩl69&ꗼ8Ȫv.B2眉Vr\;,Ө#Hz .v v.4ī΃}Gy?#x"z_,y6g;)A~"rUIE @LYg‰Hb_hW @ˎ'4l&3IF}bʈ,/m&R1i>̢U82sO5io Ϣ1"S|16p,PML^oauBTk"L=WCs8@:WY`NOC4q~:i*񁞎!շd"ɁW!_e݅ deEZڵƈL Wm?JQV@ ]}~33PE֚.-nO.|U+DQ{ypT/EF4,w?'Ώh!أo/mAh!hQid3ЍP=ٮ fYy̫d3"LXυ^t C[QFHQ u՘cyQ#W2H5xY8l TJ)ctT{ ?9gAI]{UmQuXd2z4o; [pn+z<ֻ@\ҾaO9/aVOεr{G>Yc V\YMzq@E 6 #Bhe"*}25 Hg B͖M>na{ĶX/L$Xf ?r}34dGJH%'_ό?/<ͣTy/*C>E>Ac ^lyik/Iՙ kp4D ]G% =( Xɶ$ppPKɷ G ޖuiݘ0Ѩ#KDsw-5'⒌s$XWIڰ|S$lD}BC/x1銏)'&zDI8p(~cw)AC=Oo4ZbvnL3/~cBJLTIlvE4ЫG%k.ȳbL7;%9HP v"0D2{c7Q!̢HXX[65QLJLZ.N®l|#IZ-s-yxdyR{ua ڔBBBR8+ͦ ԜO݁\c7/s#+=C_= G# c+vac jdY[{)Cä9盟GQ¯zzE t . i*%4zSXFF$=p a:,k45/ YKCDߛr-WE"4;T +Ux%̭j]ItS6P.=Khl%ID3#SV2<fo!Me8[۝ȆI OOCNC}\(?IXm3goIڬv5M_&p$꺘m1 ɕLWy>h8$Fⲙ0t:HxTs-$ժ, +Z قp.֜m>~8S'DEMO]9|#mHXnD]tؚdїPL_3~2F4؅gM`c4ecݒ5@YXPc?Hc*OPL9aq~Q\eBLb|˺ |I&ɔ ˖}Pm|Rwڴa$Ht8אgb}!{a47her["X0 le(E0~QN!= +5Χx ۷yȷMY,/# 2=20MJ6`uWIT:ZăEPEe@ajm=g8^5k,OEF=aA ˋ %%'!/9{Qk0HV!o& \H 7Bnd?Ƿi#R@V1BM8(lg -<ڲPNYs%N$N; r޺:;&A<ѷK݉h{2 h3625\ޏDm8*I.|MY ToЏֹ 8bg=#7 #ŠG$kue"r&i$Ad6z[#㺣! }[*2ɮVh93tv&8TZd}.g~0SrLFcP9wֲ.>iqkRpe,"_Y# _f&Hzlh󃱏eّ)gsqajt$cl @(v<9#S;l5 cr`Rrh^X;}cnaUЛL }t$hOM-) ˯' 9UgDG?&ܩ^t9hY/x0P;iԗxu΁,%,5')yt%* U|]ḻeI@}H#I⹃lt绦ɼh/פ`Nkd{}+NCJV4#OHAJsl'p e E_bi6C6noK{-Ksj"K9݋IVtԅ%Lt3]!k8L03xȞ*xdT2pI zf78qw\in*D/'\'pƃYCRVO:Ia[Qۜ!g9P!k,# rSQjS[(l&,^m_|o3qb~uZw톋(:xvte(-6>0T!iB@Zfxtv F-rc,]KA?aK͹K8>!Q( m佺!3SS .on2$NxE󖊭4X0j(@+}7gܢ3H šKF' ا 047vR$-jgwOJ_qq(^4̸k};9ep]脡aZĻB 1Ik=.z8@ mANÝbM3F Q߶#o{֣e̡%6l눌%8U07剌"ܶ^ *<[3 hyy`DN^;f%.S}6H{2+GQ:2B)7ЭK|Lӊneh5bl<%d|ɳѓ< ĥrQ@)|}#Dda-]Rz ^╏_ 0 Q ٧? Uip0߁2V"i-]-NnX\^Lr4zVA’Z1TG0uaY?Sѫ=|~9,AZ %6:ʟfcS Ө.<ό\||zn+xu/PQ %wZ(=8TTN57,z82 _l$$PdTi-)Z?BM(xhrSAvx7Hp-9~2v8}g)-!㠒`Mr 2QhG &f9mߏTɖR =%FS,Tqd>]+4 q10lm2;c& ђ[>i+69{w`A(/ltnhh7JvUXgpE&]DS0dNf7(1\N68Ƿ%)#dz/1u+ݺ&]CcؽTjKnW{#Ө nbƮ&i+*1S)E+ <?>|MƩ❜&>\=&(nkmҤ٠F=[]4Pߛ d4O@xY|>oL (߮; W Vt 1͇t[su*YV\Gcvݠm:y7yƾl\'䷊G2/EG7nPt<UOOb(Ʌ3~qMoW@XjzXڑޏ4 fFY)I~/N/lfxe-@/riL@esƁ/VL$ե"N#>::ƒxҾ&O}biF_;{=ھ2-DjQd\"ƀAoaHag odS,Rϒ,~^UY1 T=6RŰpܵH%5)6A2{]4;hЉ(+x\,A0 D YӠ0r`͢L2U?p2|sг C6bń~_^J2ryx6JeȊ5n+rxy|z(y9ȍS A@mHD5+hf*Ӄ %,Yaƴ0WӜDZn<N9S{$E0wuV4B`o`Ga"_zD=\eS=*, >r>1t!9 ,Q3ڼM!0sޑ+x Hˋ_X[hlH˦c͍:yjiGeK驃b8Iͫ>^XAFM*JSv&>5)Mɜ`AOhaFv]\(Za6Q џpկ_/Y9K"o4@Oo(-׬?E&$[G/\!bwz/kj-벶V3`h[`N))ARP0þ1tiS9.$aYo؎YmJf?w*76&R4UR/ȩK""\9 SLM`55ܩa^*c!Ź#B p-uh}SNv JqU6f# ƎwA5 V܇1iem-lP~ww\)#Ϫcs4rBt-8r\gO]]+0 cʮ_$9+F~jQyi[\8=)zm&<^v0Fp/v>#ث@ jdQKx́ AVj: ^!, ᒎ1ʂ+Ҏ狔a;f(q*D*qh{x "}է# og3Њ*uCNrCg~^^Slf$H6_¯KA]_PkE1eZLLd$$P#^>#39 0#\&_"7{+CM, p<ȋQِ^ B/^L~Nv.vdN)ezfe:ރ=o_9eu}ݪ՚y3][_ ӿOZpH+d:@9ȼxpҒ xS8:E_nۖj0 {}]Ԉkz9]\#\[ɢgd*rBqM%jI9 DŽkan/Q"rٖ+d/okK,@Kz+$q% : 7q,~/#qv̋^rӝ qv2 U  8MnIºUB?D@:Df:lLfj ZH=u]9SA‚&ZC,@,l껮`]7yѶlN)*{<6 3^)WƗEf 8Br ԭK.ܽo`F/_kg1!/լ:w bwJkd: ϕMՂǒ^g5PP?DGm30~|!h OzA5AG| O]q~nHO(2oY>"ؓ[2Cы{<ˈιB|e276F[Eb^ѹLS݆ 'S W\BGT| ٬<âLs/xot%BQ|ˍn؀ɢEˣ'p:y0hI&-eo$;O# rޛXDtLFnoi2 OR=m'[E_Ib(S}ك^`ʪ={Jݔ`|]W@bGPn&rp)9~T2ӭY8r&&&)7 Y;M_xL>!hzΊS|Xuĕ^8#`bKZjyg>DzY 3GKNB=B^oո,W*Щ)M+->!}>p"edJARc)bɩ_q`,#<~{*]aqx&fArR 7C~f (oDa!+8UBtfd6E$]MApx 8XD%3 (MGmhQڍMѝci¢faH0E0ew@^/Q<$}SCyjw{{UMv.nBJ(lSrgԉO[213C͵ j|d$T$qJ+yJlT }i#NœݩcC,Ü0=m$WIM`W?QByUt{kͳ}+W(h2`jtLGYBz|y2 {~W:":TR#ea5TKZhy3iпR-&x AeSH|H%Ϥ,W<0>؞ vIΣ>z8悌bp P`1HVbVin^\Nv"mo7kq)QyA'lŗKuPÝP\6e01NJlx,iԈD}ӿ4Zr+V ;O?+[B\]{d@@amB*ޮB!z>X-rE+3 "PqR7cս蹹|wn+앱 خQHp*cG:A o1m"W'$DNuUXj(DmVa s[X3A okxpR.NMji{`+KSG q h*P@;x2VҤxC>g5R{+D;(#foWݖ2>XS|1q!}HL<6gKmNM$E^H#K6X_w\Fş}AhR,' F \.YIhBH?LzMI։Z fL;j۲ !jb^SAz [1me~'ת ݸk02<7ml7iu3~UvVk'l͋"rNcl3eGM~ /vzwrC*Pj>߫p46rUT-Ʃ<\_*\,WxV{D:ȅCE% `hҬ7! Unq'X$2 K[5t߃h4 aoFM$o &K/kj5s+!T8#OH\{0cP0qhlΩ`Cieǹx!.H!DܖDt,JXڗ~oN:@me:/ hq@$Wf UYc\f6c#B) $x3 \n-vA C'tkڼ#/1$i*O`wy=Əbuܐ#uU&La~lq1 j8&h|"QjHPO7Gم1NԖe&JY8Caz@0RJ:%" ][5B$qU?D&\5HM1M OD7UŚߘ!8 )A5xMi+c7wIDG,ylN(ɤGK}eNS]̓чё/ ^8鹑1G#GDT`5$r׶+ k<;IJ($x~ª/F3XcarR+U"vХ( c 13<p6hGS|pVNHGxnY&VN]8M^P!rPPZDѱpEٴvv;,7 :YF{({an IRBs,#d.t}-QJ"a2rؖ "[Єo9gQqKNʝ0l#5 ǡLl &.t,fP ߗ2:ċPs}MSՒ ,10V}_]NK!9?  *\E%suC;W "Ug}bca^x,z21fYBJ*<ՠgli^y_e}4O6/Y G=PsvE%_#kF*|hߔ*ENZ{*0?8v$M{{fVH΍GFW'լqK== Ńl6?i&Ƃ!6pJh0ZV's[̼S$,b wD[Kb7m)v dqВ6NAΥ}bilVv2S.s8H"%J! 56Wd p*j70CmZOU"XPOs 45TF{.'}Z$e>z DWݖ5rCOE5m8ȯm;< ʾw賑BWp$^k78~~߄Gȸ-|IƹITk tMF48LFp3n}ћ W}9-ṇGk)*뭝ʕrҚRP}Y>딶Caw [@ cŠ"CncS?C?uQ}L`YPɗgŊTnYBޠb񓄿Sz`_x/cKr+dg9AXÿ0:@:%5TX5~׋ʱl;O¨;n;!Ҙ $DC px (6:& g+\8=u>"\`}V<]UH~oS%eD)7n b5xM/0QC`/ ƎқI fح1 9z6jOnYh]Y ,]a0u ~0,aCrk}+/RQs,76&>u3#D}pJFhAu?7E;&R<OD!UM '%R 捔6U[< 7qG9(moUW\U֡ #<>F q/#AnL\oqV=LJo?cv|yxeBepM*ũLvZ:@µgʟ& A"=/=ի$f qb~XQZ[=] %O'>ejwat2FH\8g@'48qkl %㘕-ZDdc9߁|zO,%dy`_`aqu7E L5F󦖺W8(ޱV>Cٛ_oUb̽G|%o\SCN1yds #0+%>`@U!G9qB1@){360Up ^,C]bVUj>Vlrs&KH3ND+˙Gv{gΠϱtSol8oYj"ZvQܞo*>b'N.Xem)H=wWՄo/k8 `[–sGc9GhgA(eΫD"]+!8 YW;"-8SoJ|!HK$#ƾ7-4l@,*LAxcb=X 6g/SwdIh|;HxT$KQ4cU1f7x?^hw!m!# r("mK+7c @?L!X7W<-u(mvkY<0w+Ե&k>yz`D~IM-)_=9FP=S3\t{M1N ,*ro[IcvB_wVw*wi]9ol0B| G6@JHp?7h+wi Aڕ7gs~ tISC.-UMZ g^^ CyP"H[u` @f&Y\]Apk8ųj0"YF5&{\&g8 ORK۷9@4C4\}%m^N zϳ6ߥGY#xBbU{Ү!+X.n1NErF?wdH6h'$j<1G\mhb&/!TM4@~ڹ~Vz1{ȎI% ,o9 ؛sYCIe@/<Jj+v拻b,aE+jaGJc} &Vh)PfrbgfGtO52|?.MI΋[$0Èx&']@zCQIU&p.[-Hiqɻ@jΝbC^ۆK; p'|5/?qܨMn =3$JuZ : -P< -<<±(5sI.XPwSP{yURմ+Н̰˴])\,XbPݫ:]*P0lhWUS*nԦ\_8z5r SScU;I0fnԿ# >߂4bmHbT9=mQgOPdɀZT :Ȝot <\Ad҅f:f= 1o&M@f.}$|HIM^HIlW PZ_R_{5e)ZO wO]4/* /g*YT =yooMcխ ~cBsk6HxJX4^ %-}z1y^*tysy4% } KJ8X7㳙C(nDU7 J ŋzIRS4dY+JG'wqĀu5--eI"+ƚ{N${Riy.: ]v +2&aIqGBV= O+ЅhT%CN} x.U4凍u\y,xt!3uSU1=a 5*H];h9eYJzZI7{85O-MTpwp zEyVB}\Y~Fɳbf3!]ݢU7ݦq84aw3b3skWc-{9ƗK}py<L76NsUI/+9W}0?*&m&tEl [9Xezk Jf_!lE6&" /XytoI"3[K^Ar@LqU1o5Gz |ZBrڮ N@yZAul9ƌvn Yi]`(lfjITsRoH` ŭƘ ͑$6Г3e$kɔʚb. =T oiNwJЙFF=5<{ZŬ-NFH*yqDTD|5REkjL' u rr^avlڛI9< k{jOaϋJ&~}Ehޅ1 q#aCQ t|})?w >4)c _WzZ]q ~/|zA9':搤.i -n"=ؓhrfg:tq.9'Ds2e:LW68t&SfKЦ 25p.R6 ͸/ǭ\CO!'۳?kM'7nְZ2%uݾUdWeڱbL6uW#G)9 + @7a"i%Yˋ9b1px9ك$G7Ems9rO8z<[sa^J=JT壔|`0&XvhqAIǦdfKz $ CTUa,>f %"^V Ț摫ȰW76ԦI0:p_1)UƇSS-,\h4HQeyQn IkDm) $}6,iBz"vyO}st\&K\S&~>Zì4ϟ E4.o%VF ˻lG9W`%?Iߨ7KRΥY+N["߷mY:_1R{!x;fjQK]meq9P$tyow33Y[Oza5"P+byZ îN]P c;A6Qǔe0U,B~Xl! ͑5d2ձZA[6ic.ы< Ҿ \BE x:Et{*FAkj)WBeWw޾(׮|KGaf ,bn)0yf^p_E'ʖ-Q#c{y`Ҿ(K)[/Gz{]3S'r+&--0!it>KZ8sDb Hu#3W ϻ$}vnk1>4{vj7.SZ%)_b^$ Z(Wy-A>vzEG Ϊɠ+,f>FSw@EK95^o Amgvgfb޻;|ثyf*`jӨ -z}yb{~ 787]%$|!p{to!nb]̓Q{AUTV_p:K] p~3oB̷>aI厔+C(g Lk!f%3EY9\A.k{ )&l[ fr͏.p";U܅+0t~//Fd~{1;](Big<{Nh2G39Lpr"fY[G< k m1VÑiZYbqdrjվ_ `!0BSmS!5Ƀ#+2wZHJC>8إ?v-7Ƨ!!%DÂ>CG>PGPRfv)qذr8*th2'*FA!)DW#\Ԣ^tPT,K,m)E~*LRCT ' cW0WgC11tVşOt7H{ 4x$#F“f.;vj[EQ{Jz_ .@O2$v3șo!AX\ae:.%>[qAP~,p8KcW Sٴ.Wr2H"t^Aq!VzӹW/EDf>|v}x~bWŊ ܙߐ PE֑#Ή!Ȅo- #{7xxS㦑m"4@6㉼vvaPp&2~揋V۳ָ"ur}YR<Qq'3ʂ_q@LlfWDyݬwЛqP'vk^⻢eW)90F+I%5}βkkBOs]Ѣ7#Ң# $keȘ&ZslKn8wKp]@O7ul}\Gum))[0+Q!rtQd47tI)pEtisp G2D W 'ۼY۵aj'`^&L*Z(tpi+Fm %G +YmgW%qMyUd1Pt.ׄ"RwvK^]6$|YuVGV)- zd_ [gBDG/nA" J_W8ѫ"+yHy9iӌ;X(:wLoͮlax "^-R̠27bq(1θNPAVK['MEI 6JU)2O}q7SaVE2rR1 f'=P-#%K39oL}$rꏤ1hT/WCw4f %>SDv2 7Ӌ!7+'nB\ 1s CFK;诌m-iՎřօANW8WA 80 enنKJ>亿 ~'_n~.-Ydx?4"\LtP;\v3pF8 Grp%Np{yuPV/i⬴ xn3:6W9/q`r| $ ~"l=;y·SpIe m/6#3Ma!)V2F駼O`'ZI腛Ҙ3$.K? y א-C{+jef]ꑘA1nzvR.O %]ta[?f-IutP>6/1n8ǰWg 3`b gpDDY;r7e%6l7@aZ-.g}3İA9~}2.}CɳF7e-{o mA_-bOq4| ucY;uBw`jFS;Fːj weR`MSuÄJckC;0Ŀ<ϔ" W> j&,|%y-f'KqGeF h|jkˡBЯYAqI'v,n`nBĊ=D>ȮBhNq-g0>Oc_299(?jȒDe7[_9" ؅y33pI'6\nrZz#~vTmDY7kRiEl'-zȸVe^O 6;165-TÃ,3A3FUFdiLqow 8"ݢEf l+#7l("⹹3MjW6 w!mއ]UJ2~"w.sH:x W}u?d|ݿI$j3}Ps䥓7SiǺHo”(/(]ik3AY{0~QhwSEϡ8X*՜i8,%!cAP^W4,v$ޕ W|1͚~FQ/ Fšmm1l#1+u^q7ÍYbL0W;i~6[:U .|#l~SKs- TmV#m$֪-n_EΪ%iݴzK'Kږmnc0g8 ]Ec1ϸgD=Ūt\G}酌2E}9ڼRaʻvr(,^&|(*0Mm$ ̸S^/x`lɔ[BI7kcbV ~B7 u9Kl64u+6uTaY@r;cCGJ/N4*J>$ -TC Uzefkv&H0۫2HK<Aקz/fuAs'?.X?AD}]}a۹ϸz[T 7D _滋ĖթCAFä]0~3q'.E0j0[v]";ӭYA $aG8<_|E׬#XJ!eo`0zdtܧW:] (],> "o(󠛀;:`+!g_xP-@]z joB7ϴhyj2RRR% |g0& Uy{\{P>T}8#~ȟ?<'$Lv- akL(ڠ5cc^F;& ʺ&}wo2g1[MLv}$rQ0:,p4&%ܮ7$[$ڃnZ f\2ŝa:5<7p0tRiKG~F5c*ZROJג>WИE"H*i`5Ⴑ p[da_|?,=iCw8p*^M?B9LwMvo* E겵kG̝w}imA顫%=Vp닸a~u:ꉺX&NL2ēXeD ba (zV㮯ֺ4nC']Dn-~7`HqFwz؄ZwhU>h_Q]bgsBZ.2 `MDe~܉WΧ02~m&f>*nB*M oʵTJہn [D=uh|8OV,'(C?aԜ[v&}w#ԩgNz*\^چOu~m *wǰxĽ7NFTޙGآx&c ;gGՍ (W7K v;ݿL;岉:u[ NdR۵э ZIyTz?ըWHlOณUӀ2r֨&򄒼tM]_VOM_I\N'[}m>=Y}* qtt bm[/@J|f2om53MN)ٽ;BaN7f|@>k#'z!;0#g 5 F ;4&%p=d vެY+tU615dB(6̼q1+j 4S0n/|쑺592x87q*~d?%SRW0;нCz_|ugSM ӖDS17qIr au+334^O9s2dA2M7 _r3p\?^D[i)"gGrVu?=^_HG}%ZS @N%?c0B0]^N'$;|)HqM7 .z) iX#zm`݊B8`"elt z ~ޣ쮏9#Ly"1~f*uHET62XrëU`u"Ԃ]UTm,v39m^}nhe3^AlDdk4۪&"“\q=]|U61ncMG7> )"V:VVe1hM&\"؀vJH&nt?jErŽ<)!b}.I c2E#$&.ܫuHIK  Tج|l/9rCƢAAqV?Օn+~JL©lZʼnKAMj1dXR3c$b+pn`]tM5Ӈ# 7NP7E8|ؘB37ckXOc,LDmA孧0Br𗠚=7F )!3сQƦpAC-b8'z@FYm8r=Ddh D*}Pk so^7H(V֦ Ɇ4>}+u,?EtA gNvCJlI!K퍔X Xta)J/g)f9st-FI\QGzNEKFN͛xi!Tr:vd;0wÌ8->Qe, Pv*8`>=0tjƟ;FTdS*`H}T# V Y'K8OZUL.pVKMi+@#p;Or) ]Aa oUZJ[8B,8V`_#J5cHRZO]rC~(iYG*Qs=Q#WFdR+j:l qG!/[tzuH+̩>lB{JƙlF~h=-t^ޱ;ޒH3ZwOS<!tTGcBh&4Uu\| _敼B4 U'd,0auXXqCw9i #%쏵ycεQz#d{a\g նy 'M5lNkʹ9fcParS ޶!Q`kq_;^W0t/evU sf| :Fv0]`,Q8ACEJU` *cJmߑsFeu>& )ʗkT09wxlg6dQ5{?6yg&Mdr Ű\>$/6aS$Tk  KE zšƙ:8y4;5n-.'?4w߰uA5<PPdKb&}9xI˺=yEM|]p!9"'F6( wfZ[߆h& $Uz![B-_39WǎG6HI#)chx xG?1QI2PZ- |2^Cq}OMA+Ch ~6>t[Ce C<7gSm}2t(!6:twŧg.{ :Z{c#9:ڜȅNZ" ?}090r\d9į+\j%̟9'GTA6%fRy[K/ڊy ;r0Wl_B"ִ*婋j|Ch4,`-SB2W*h7{0f:iZˍ/5[M?YKTqBjR"sljYTך{Z*[P_~!{:xOc{;!cx_}$+gAW :Lufl#ß x}UP.)F'5I?aaߑf}.5SUh]CNLQGA'g<14N]!k_g) ʄ=i`(Vv8Zi]Bm La a:"M<~=_*JKɪg(xj\y<ԛZ Qa̺l!LO4@k/fe!Y@Wa[oɬ4{z$f}va8Ҭ[(]!LasP|a3#?hʋ4eD|\`F Nx8KVf" Mla[֣c7@ |fg{PxRU89Pl22v瑘 w^M2uաO>aT,{_ƾ3gS/бB]bp{ ^*m>xZY{d| J8R`WA6R(|),q1U~r"( 1vkO: `HyȾ - aϣ1VޟSLc6˧ rkӯPhqmFd*@:B]NI.)C2hǠ FV#,XSk=qvxG-[/^\{CT\iDIKg>d(El̐kv9'q"6a +S!jV0qwNzV; 1hb K(:4 ۔@$v"R}_m࢕K1m8-;\-*t!`Ċb:Zb Pż_$1c9h1[0/]FxtẂ D cY dή<&Py9Ek1< m?KϽ~ 5tX"q%ɣ ,,-I@n?H=K`*;H*JuٺOR3OtU'B^?)c4m[eb>~+f QQAc@!r Ab Agvނg*w5HsV[ݙC,"F E@⫛, ;6=Qgoʃ]_Ę(qO'Y?Ծ6|M !К Up9 C܋H)䉨h85)F75 3~-*vBlpׂ1A_X+K-6wۺy_i]0Vg t&@CLQWlա;/4nF*ORdJgRI J;SRIH+t/'pc|^Q?cӽ|H\ ʣIs!YdM˚f'eD|fn"_ߥG0gKj-+ZH?kR.jCcvy KFLj F:u.O,p v6AjZj|d7y~`w2<@%gvQr(A`@ŵRK?|$5w腋Qչ~7TcVD E˳!,IwZƦ4=n-\d ACL"O\ ?iR>I7s]A2d*KW+CpZ(y,S~LDdF-ZCX {ahumJM>ĒMEˮ14m 7#(}T1icX~;(+7҂A]MZć)0Ԟ[%EJL'DٜmlēHgG3H)ژ` i87SN(>˼RpqHƓ7\is?= I,3z(*Ӄ{WuR_ Fs"/Lڅ檫 4=^ཞܔnf?-Sdv0q)KnH `oN"ֻWM4~bE42 0_eFN(]O2s¬ɱ'Ffr[r[%)ݏ/8 * J3wW^DITՐ 8KkV rQKr`LHgZoV·Wtβ -MiSV1W \z;EЎ-/P67w$-a&( z(.7]^FgK[gaor5JH7xAlPMYۆFQL\:k mʬ'YNAK-|L`n䚽9ѡVa\[i8];i#fHB* 7R }O[QJ=)h-Rhser.= ;`CFRVw]LׄZ Q~Wv_ {9v#Wu^=OԚ=EMJv)V^];є#O?_#9ʞڦ熢r;FKuM@Qq>O5)R-,+'v'vҁpA 'tᗄ!xNPzbz̮2 ڠkp  1CLJߵao#62 }+$>\FӐkɶ@-?+#w `un}=>g UM^ s(7HfO/{-g1e7 ˫苈]yG[3(u_]U:cKƤBwgZ3>UGIa.Éh.ZDJO#;U@D9#[`wJ@ CۼBPû`}I _=pJQcAX/G׳d-w`tj@ܤ,va]`0~EҼ?ߡ!$3 5w#"e*(:V;xqnr',̵ d^Uɘ&݁ԫ4n $&Jȧ[G"[%3ΝRyv"9# G ]lmMs5]C>Yw:<պ ,ևp7ԠdlDAuX(W@bh ȠI|U<Y.U;h_XzɓGEV,!C!hY$bH-؀ao3?01ұݒ!điF WnXPgnӽ+^St:%O ڙ51nƒٱL/mm iH5G8M]e5m=3!qy0,lqiXzY<5)%҈H9. <ͷ iثȨx(EZH &s%֕nu,T\sc1  (zڹI~ܻJ'B-gaRqHm@* Pjj؋0=\@Ģk zWr%SGvDK6pѡNf+]i:0pd 3>nq>bɼ캲k61Dby@Z$$3CXa-]!pM _[d 5cѥ{|7f6;w Zf#p5H7&fN-gR/U alvx! LPBK-M-?[h  j6Bs`59?r%Q<Lo]8.4#ƋvDaEÑ@`eBtY= H%E05 ID[Hc%;xՐxYkt82d뢄 )uѽV4/q 2uZc{e:+֙4U=9hb n4ZQg%V}m\+Kֲ>C5+UMH--@g`ӜjW$0Z<ͩKǣP$ -gw}p$bzB&8I.#66 rBp*)2`S+H7Ⱦ%e+B)@ֺ38KѺpJLQlf_J33*^ ieie$u6" (C8u>UoF^.R?uV &XbMjpYWmpOox~WTƗb.#=,ߧj \1>k0 K:0S"7<uñ/f.04jd ȝ nzR]<KT ʍ%߇)[? 5S<.LHbGZyP`A~d{sw7쿨]s+ҕe_칿(+ͺcA^Sݞ={]|Ese+#'s nC%C|v@ T=A1?Zn.I+>yl110tv _<)dA|/ B_,',6 -&kqAG{{z#C;YK [[Q[8oH£(Txᦞ$e іݔ!Y90=}T!,Xy̝ץI:И0_JڥU⟂m?xoa!ܧbn)6u~g0baUcB֚[t&ML)glFar@m`> =Oclyp$\;=MP/tٲ@Z-r "pB .&0P#ď1Pg7!^ xn)Ec?=œ$'mΉnx7yS[ Z>yk/15Ap7Wï/+rn0px: Tg׾hhk9А⋭=ߥx!dF)J,q'3r)X³Ԩ\]~i1 2%g>NDj9NC;riۄ@tSJ[ar /8ȟJ}h'2CW!BX6IVD Mx[$_F9]m69;O8H& %d(wim<⪩(sTpK"RI+묚mGgz6E^ɴ9daĒEn#JSKvT4 -*^,~PZhcxy h=IZhh$#h8s}f_DCId0! ȉ{[)%O ۼ oX_Q}o֊rH[?jl'͋z 'RYĨ-7Fucj;{3V/6km~6{viVPePhㅽZZRatވZ^ .jEm|m L&9$x66+ZqM0 AǢM O,x<|ا\I*x& ,'A6:bD\K K>: ҫy4~XpIZ{'d @nTcMHGcP 8ǷyYUm٠:hѱ+:Ę:)e镲L_E?X%v7vv8"RRB់ejidͷh0@GgRCZoirnY+ݎ4B̓I񁠓-8aϬ&kO6])OǧwGWY-** #[DjLn>&pi 7#!w_͓00$vNG!!,`Td$lpIzMfA?v{ ;4v XO,f0=SKm(85E^ GޔWP2~7M= cܗGO< CW-DS83}c/ qC="_PcV(tcҸ8fDzQ`fqx9 76)%E$rV~* `IO{˥YpnpO)I [1[n濽> m~~0d)RGDuGNOɎaUΣ9biBK-ZRs秿@\"lҪ8:Y-j'W/kܛ`"| Ԋb5_Hq-BLҷ4\ŵ({# 3Zcy^&C9>bAbKoB4[?ȼYft [>[mheq]!+a#PO.GF ?xE]G췿/E_M{`2QBFQLӜ.]xC4Ld9xǫIG4›t#E ‘R )RlVl",R4zOV(CTRn1ms%P0- ?Pi`upˈ{ZggJT0murrt_.*<]ţP&AlT6dX"pK'҈^ oM+[妶2]Ҟa4f[8 + ϊt2J[Υ#-H"Ny Y#z0?u)@rcE,9O̝ƋP֟;Tgk_Dp*eEcGVVg.I[h>k aۿhSè;FZ> cLMViZPd|nF=ɏ!SkHTeʜ1V[V?cfqiM.~$ sPR;Pu|8sX-=_PvW(o5oz[vPZp')V8*A,݂\T'&rȸXݛ8xq㬯Cx1wAWj}NoLtJXTԋ)ObӪpuQ_-B G&'Q"X늘 '߯::%cxjyEx/J;'x8L^ib=2)B2: ;ׂK䲕jj/PbFBlxez/3yt9K*K]qlaς#!ƤNR&JN T?x¢.dqoH͖Z2tg~47)6ڳ6>a^U$c1}mH^ڠ7}UuŐpNj*rN;@O\m{&RMAfD@𭖓3F0CNj7Vfd'kZ܀:ИKkg"ŋ_ 9t,܂F?0[&Qr_p%M2W8 :[:g}x' WǕ'ČbW&:uFʀ̀>9oOJ#G3{keѼn$~ rZD FvlNE]#(P?E)i"Ʊiruw!^TGwWvF eMݥ|̅xx\9U$.+#E3m9!|"i32lE;F"?a TdR@_8R\DxPwJ ]vgw_-K5ؔq3^2 V "~0pg/BQMxdKڳ 1 ҩw3ƂM,f ɼކe+%HL#Pf( ,k*_Aୡ @sV՚@ÀJR4R5GȌx/>ЯǍ 26.V=Pu?6{Ϙ.@cln 7Šj-d,KXH Tف>DݣY8eifom 9T )7 $$Ecw<3cIŔ19+7ۢL8Bߣ,h{Ƀ.#xB#6oz?2 {mHgUuWK 0wV7 fY SVmMAE(UT~FƼjO@1AD}z[B)D}Jۗmxx.x>m!h>L ;K?C at`o1>@w̺}1qBqWhEZQ L% FSMF+y GvfB[޵EGR'F)e62F硱jhBgFlVɴN_0tEfO@3̸piځ zWS{ bׄC y̩.VZUA_͏PCn<4u/|qaBhLF$I@-9F=4֍X͊^B(/&ϜmuU} }^^ON[h Y҂h*brK_zSlz!5Uq%7h|/N$}lUS* e2#hHI]L!jVQmӅXbP͚Abv(:Đv"#n'#㛣bX|/WoAAn?Z?y쵳bs2vzg8z;ֻRAQ"2s[M5xb C7<@t8=k|*LJ6/0|5lCQFan?5[7d_fRSu􎯍cWbx՚3] 3hP0Aw.6K$)_<*ubfF?+V ?DQBB[RPދbg&tMKswDusCqE),Z HWe$٨\3VEJ9tӽF7Mgz.2UG d9 F0H!"g4qjv}^G6@Κ2_bVJԮiPn>WRxv?i9*/6F'Jd\l?8rH(t+z@o *ѝ| YDI4yR G^ᖛ"rCNd3Rڴ+//>z 21_{V5^ק*_VuҳTzne-v^Fy|<cbI&XY!)vapnd2P?(;qb2xEJNuYI4%l>& !J{nډ-5Fʿ0ƙKjZF+іꔿЧ.kѕ oKsVa{&m&0~s9㍃5e?>!KPX?Iyӯ+!HDv^]E~"ȝP07qiIߪ3gx3 ٫v;|V9X XzUûiÔ^i6t8Cs.=͖WmKOLIŀ22httbF:4۱PѣBLT jK<4Șo xu /jf0?) io=_C},%7ϚELAPaW JցW\ TWg*n=M,.*N`0m15_ll Ƹ=hU$Gm :Uķ$PX:*6{~lE>İѠU0 G=ݕY.VOiYei4!r.1sN0dVI\Z ;6|; @ @A7N-# ]HYt31笹OW-6H< pOXv_b]vUKr= >̨mKosR9r1eLjlWO*eWN vw])oIx:aHXv*7L?&yk'PmU J:T2<:Pq,:"|F|nhjj'_&+h>(S/G2:-@BKDuM}ߖ>πhCաͨju^]F {.NId4c`bSVUTc;߷iSJdF{w'hDtc Z{`TؙUaގ/_Q/>%ޢf"'&Ck l$Y@S|C-Y55g?nW=_pLXL%tm-2.pw1c؈q%y!h?$HJܼRdg*T a=:d(Ӷ*+cX%lX%5+{ 7fKis9jg+K m@IZψ+AjmX ﷎7EH#MKIa])zP.&9qO@e$ DŽ$ڃpMLًqevi~9!@y7dg[X, LMKuk +Vk`A!DlbN[[pKty^ʲ܇%ǑGcGzSOK jґr'32WEZA&Ct)趣yvVp2jZʃ1Є{>< OyT\ИF(]$Pu! '/,mtlWX!W{lO@s>\BLE)bHͥS.BٌBt)qǯbvֈ~ae>^~pgQz|4勬3dwKZ*İ;}m:Bg 9 ޜ)ygTR@B8;գMKLy_ϒ7$C)k?ߋ|$vdl Luw9?=:jKjYvZFtlVb UYY-T:ݜɟuac4XN_5/w9Y"%vupU+R50D=P;ԤLO7M 'ā͙뵶Ӯwg[&ʐTO_y>|a @8%KL O!dKE +M X?@\k_,^ #uBP^ fl[~KONYE"5BQW%+8~m"~a6Gq6ca"bJSj8uwRtx&Tvj->'e>ӠBO@&M5euHZ(*{\<*R@kݧn|"3)ؗ$] r".ll;!I t@.DtwΔ9ZoKS?tP x /+NꯔH\5|WnGn2]30WSg8lNbQ˚Эmog}:gآ P#G성'O({߽ΫEG)P[RRu%< D6H!u[*p}]b* z~totu@ NiQJ'GmftA& ~ NZh [#FVD(#w aXhq *wcta& <7D-zd,$Rjw:` n>B(Xs7Ib3A+w[=1/%]Ee(L, 5$>GoOڟa&v#:K^0.}VC L`#TmZC#J1v4 t˨Pzk>H( tm^q/TS:W:l_!<`+G".K>j9k#&ñN Ӂb<^UXAhflH>6Sq\֛׷ͶMp!}Q$Y=,Seӏ0fFp^ {>P7 Yj {X&xopٺA2[]- cU>p6\0'[dLj@u{ţ I #pQꟆvg`r@!XI9 keT`\)]Mt)xBO`Jی y+,)::6{'SYQ4G9r -h7m<9lE3ͼߒdq%4Z3*jIuB* 2:`ӵ[+^+A:+pP9iRC1;v'&ŏ(tOPX}S! ``dGAs׶M&@h-?dy)i rPu7qZCGj lRETum~ Ԓ=up9tT®6U_BG!NZRtk%(ĵfzcgy0INqWt&Pjʄ98g}wXQv2^`!V.?> |@hL-fC! b>Ėı5e[2ơ#w أBgSX~ W79h&>-'ecPzf43'άe3ULM}Og#=J퀃d{n:4[l5wٳZu@TsG":[s9AȇM\}=0 xxw'.I/A||EPw~tcj'j2}C^'D"yH$P?,]z'!1µS!3. `'-(>S8SHpK\RH={R0a[lŀ|zWT޼djVm"a؃aj5s2yGS)J PBQg꿢Lco=ErCts!-U耋23a|ŵNK]U% +ǐjX}K7Rq]cC'zTߧяGg S%l d':=NSH?H[N7 ZVKU+?hݹ)؅wntG/-y<;!Sй#/2$wH6_U\C"L5=ҶỈ@e6Qoo%ו.'R4 ݮ7ه*Ikoȧ4.s]UXxS猬ǢN@BKsUn͂?qϠ-CqF&C*ɾFط6`AOR O\^Y!y#0]//6T` ` jŮdFv I)p;HE97‰Ϙw<;!@wX4` r/Ŧp9^A7/KP _jG2(* >%i/ aRFw^񘝚H=z_Ak GUR&K9h(}OgJgBK<lak"4 VNМϬiFc3q UGOxwIDcUzZ#\QLJ 3ޯWK{eV,wA94y<,# JEw- v O](BY}kn 6u#L"&!Y%36ߤ%{H39DܰzhotL`mvSQxLqA`&?v 3鋈:ewWC~K;?%Q1JRdԩ3.e==?vḼ pOhU8)b txa<0Yc& fAĭT!2q16Ng#ΖJp2+;쳈Cj]HGu*ۀ3igl䏪^K=QZ9wm"H{@(rcW)e(kl(2ې52Ɖhhʸ/>Z?3R9^9i760=${X'-N 3ѱDA$\fI]-M4D#.(C'i$hήv寭]&Bn¶gS".cln]i* pN ~X֗ʚIעҗk_o$#\?M()Bƪ$j!T-eX|l6TfhĘ53z]+c zFUf%mOaePrW4qpqylK6ۊuUZZe֝pQ3*!tEN셽0•.b8^yJaώx\Hf$>:/:XS#ՀpS|0<;eR׭6y-U/ؔ1C;ڿ9,Κ!G#ehK8|'6<<0FJTljOaEZ }`Ĕ}OV0'w>Pb"KDj"5_pSq[o /XH F~6*m! ғށ é\sFs(:ܿD3ئ(pG9/N>@O(蹛:LŏBB"h 0@.[˶Fu9AhrX}5T[ uPbzʿzf 1wnk‚  sp`N7uaYf2/ &gBb/5lw *^G]X}4Q{_96zTGpOQ6->0F'` F.U:<IT-# vpq٘!DAՆbny?:@<7\)a [ya_=F -LL;srRHT-Ա0鮪S_)Z RfmxRz?U}^| 6$E2E(zC;)sDŽW$I%FT*|[0~YY)G*ԝL*jؚ:)ѐx#+ jz-:u Z*p8Q8] Q`C]url1Rf0}C-CɁhhWH~%>F?u1)$st]".Dgڠ>6m>x9+n?߈fd`GJkz_h炶j܄摳B߶.Gl?ͥ-@pV+ڳ8Iˌ2юj3+`'t˩N1g~*dj\&rklq2{E nNGW@54By*uhm.Uhvv曒gZ7hiD믶DE7e )Xw}5SA@?deh+.[Usc G+CJֻQP78_k~dB7*_g`Nvc}7o*oܤ."Rh!_>ir4I usɀJ QsrQ7Bp-FHm%,5X=pzę^h, u脩eF:EG͋l;qԐ!˹KLN7#V5ú]/Pbi !]Dבac`ϓI0t*2V` dD#Ddsgp>&&І0 w&*a! 9dZ0*N|'(s]5A.\ʜs} wÆkڟK4.v7V~6DDoVT=?Fzβmo~D9/Ev:.d%t|nd%CF{;;4 sV; ~VVW8Ni:~)CJ ?oM`#KKnS*"+U|ч2A|u6*yD>r&_QxO%Z?ijm4ڤ2&74j+ oJOl9 OG~B0GLToa:Kfֵ15"*@"\ 6ٍ &ӵ"EAZznePi#țgPal_RyleKuߋV3{ aӳ$Za>7+ ȂS*HX߯\ta<⪽7D l9`˃µy?&grA\63 Lh*Q9Q10ј(zMI;FWl-xdX1.6 F'™~9nJ zu:|>W Dv{n?ZY]-H CWIEOOUW$ pYf 6=y*eD TzA.6?r! 3uŠ٦J5 eRjaK%Ŝؑ{dB-=8ٺi([(?b:pTLO"'م|2$ e|9 Pm@E ]bV#5(ӟ&jo#N5SZiԌtbF'UPe)+8f:\pց慳O T\t፮ `,6:F쿄R~¾E#1E+T3)II<8>zҰS<2 -e{Uc? ⿑t_ʡUfSxDN,Jcm%4w|W|Q27A4&wZ(32"2ړۘP-Yٱp! &uVzx sՑ:1d/Ͻrzn󄻓%r66Hݙ7[ s+0e;2? _I2h38a{}ۛMtxPEVߏ G46;: ";W \ >M翊:|)%a+{a_z9S),kv#IZQ/!Ӣ38G!v{q&K[ӡU4Y% %s>ґ5~=TV{EcR7BPV)ٵ@ VFgAcLF(:%]ӳ^n )F`U3yOv vb=D Mjɉ LJc8\q#ziCt~eȁ}o•u,],uTHF4" :͵< ?L֪3raV-Rf 9@{U.PYwkKFs*+CS*q`#ZP'{_0Wrk MQo x1iiuB>y2fϾ=\fDC'84Eӆ؊WBj?GI~Cd5? lsNwR3a - 8']: m#WZp /=:ɥ {5pW`Ѫb[;zdUMU#Z[l比IS3r_Es~ C7jMRM}N(SUɾqJt9` sUr}ٽ#3Ak8ϿmW<_u[y D{Cw#d.F U_\6魩`5;l>nc"qkH -Zuj4 'V > zeWX{'ni*` .#h*9l +h~/ "OK$zd2c3ѝ ݂=CR8,%qq_Z=j"+J^ΠL- Ԗd&*kqQ"V+{-T/ Ø\uR4 )Bxjbjtn!zG瑩X|fϹ tv>e^g<,^@#?YrIrZn œl Uy7^!c`_8 E`I!7>U9Mٜ,I)p[~ӓ R{4kq:39E;Ghf=*r!u.ӃOeBK%ŽO=*ZJˈ>Uo0sQܝW'"λݟ86@x.Vd}UbY[ -p*.fKt8Q7'i 6s2qrN’0VQ5V2QiR2 O8gRAbR{߈*WhXd#Zx1hMxkɵ8 ʵ⠂{i/IzCc`flm5XKq;?(TzDNXDӹ)@.[?a;ao1Ŝ5f nƀ Axzy n0q;b5ۮ[Ao1 /Domw]-ϔK/- bY44+> [5l5Hjt#`-y^Xdf}> ZWCbjJ&Evyq @[l5nZʓ%g+O|e"٦` fi)tAn_'uUsl[ !@DFB$LLc1EuS6TZz^TV0&|b3"΁t򊄔{f'9|$y#S إިq]*0jJb MOno]_7UG EP$[Bqr㑉i]PRҭ[H4vN)\6R15u ` ;p8Vͺ|[Hs֚ -|϶ي =1Pb\InncNJO.t %_+=j[PynSPHg~j_-KO0[&rBXHTjt<<W:IMS[kL9O_g!hK*'W3AJLp„Ĉו? -(v:.a5'ƑG׉lfLc^Gh2\NA2aQZMdxd^:alNÜ%!>@V'?xs'ҕ5^/(4*0:h+Xq:iC fUnB*&1oǶcޘY,RŇ춲]^ǔ]Zryj ?1` W.QZ C/-H=/i -WlW]/EqWĺsTWqJw\I;Ș"ң|]dOv03 V!(6üY\Ka[]⿩ˈo"'iaG7;gn5J}+&mDWZ&W`Qs|ު >5Ϥ<ۣ^`Ɛn[CM^daF T/ېEF>Zw?u#h9Cq4"&a%!jSAVCS"] C#mCfhNӧc"'M{,}|H|4m j%?!>\X5̓ůPH7}jC4 Kq]{CDqd{#P =au ܯZCdeX6?R!# "K5$7LJ#SzMF6] TIba=%m sbQy/4·@$.·1*xyfEwz1=-*} DB'9+<_UL@Ba,NvIv<~nI.{w,9y !_)1jfmXi&M$>YWz_;`@ڵi$SxԧE),nYL +o/ŌJ7=Is^kwX3@ s~&Ws參mh:=6GY,4K ђ74&A=ȬeMb̝݆_JF% 'urhJ }|Y~|Hi*sԷm u|Z0Bލ%lI+B叄:Cơac&j)@P!jdhZW5F&[&Z l4gf 7ZWXl{W,*γ%}()@1 c۬E]D U!R~c(El'uQ@){ʳߊS tA2x3dEXdS F;n:q5H<ۃˌY>o6"$1K¿~rjӊ8o͚ӽM4o %0r,Gf 3h`u`sd L0/bA@_"SDH=W88Dc0~U JiSW%nLWo%yĔP'j:bk'YU[67N߭ȷ`8mFt5qR;M$veMp+,YqԅVku2dYWnh F11>g4l(s~u9m飚25(̓ޝ,OF| Qɾb#g$ MWG[9*^ [u+@q5CVx pF-`-}1b"h[X3 & :b*q*s/;^#ΜUByO9MmK;%Zl2 ^Tڧkb7{Bk o:E׉TrX-YnCm2@&Lv2`UՈ}n^hj!{֫d<{Os#ѧ |}%X^TIXCmPŅR3.Cp6sڡ[O{@^1T{f5.~j3f!ӊ]4K4up''w+ 1_V)gY=qC)܇UOtWUQ [3V2ڼDFCp#ܳʆF(y/lng|=,U 28MzBMG8ƄI]# Xŀwx[\=<Қf/DCH/XG3 975^R (gcd5 sB- .0IDž}Vы[X _ `Nn2wzC$Dӳ e7IY2zw {OF{]8P3>(fyp' $VńhTgom|iOF`Iu+ÁHs^CXMYfY!)+ی8̀m./Huh<,2;dC͇sc xe}a8S&{BEy\̱)ߍvvwcdɅbv9 ڵnaM)'"{i;ɿzf7Qʒ`'pWC ^cMyOʴШAAɼf˱/wywMst8(|$C@zG8h UQ{==f# i⍱SZqi+YD&H茩-lb|3e mHc2>BAT''ciLT I8#4ڐ 8讴7vwd]!.#OЫ/.ϜQ j*\G<^3D!Vx%dtLJOjKu.B p>{4Q}X;w=_ŕtuYKc/t.X?<]LY?kP:p-\r3\)h81@۶K/dܣmtcjBX ԾʹR*OOC_H6 ri)!+]3{L,o:.#@6~vʋ)>6s@}{!8|Va"mr KOh)L HslQ-=fcV&n@7b%W Β@ݓ5Sy?TQyJ|~@ ]*b$av_Tc/cZ[;dfu*&Ul.j6[uM$ 1%>0ŕ⯴v2 +),'f 1 SM [o*|#B;޽ e1ha֮q'g,#FL5+n^U?r5Sĝ3m!XI._Ҷso#&Ӑ!d6is ?5]iQH$PSnb6Ϧ D^>NbDaiB)r;0 hn`nj!/I\|T RԂ:yv sr4XR(I_puҝ;3Vvru;~Nj.5 d5L=ɤ+mWVtE—G4Ebґ̫#8~%7c̝ө"ޗVaWçDj-N97*6HxB3/pNa!<5_{ NGi҃J؄a#з(!b0WiJA *B RN19-;| Dm }W0І<WcK0XJ3ˠ X47.}'n.knt)&,N#yX^ {p.n]|d]ʸąMF_7zewH"Ʀ~kD'_{ԉkak6NV]N;X¸R.gk7ΒQ@:oyV8}oN2k-';4}Ή# GKh}qfs9.Or6M>[G}úʸЂz"UI_F!ȱa#o|NyA rڿ`(JNľ۪*o%^>O,+!eyzd{-:xe_n:L(R\/(!"o8\;ZK"-0+56hy;ǿ7d 38GƉ HN&(/?ۛ1Y缹v˲~,Vi_V4̝sހ<^PZVڄpND$)7Y-g=Q}3h'{$)@ IޑPR4\cf Xmՠ@P5u5P@aG]Y7};٦e"`Tsq~X6Q[8 ƙN˒3e;PH,ʄnƤ;;y#XdOHh2Gf SY`;4:devJk O5|iL#M3o_1ebDH~ǴW2Xv_\%tF4A1e^<«ͿT7Z%4X(6p~&ЎhkŞ3V t6ou<lD[;,pW;`+ q;p&~-L!煴hEEB\gIu3IT-O35Dz 5[@̲v t 7R3h"f pYԥ 14[6(>^蒙074kXhq{J&Ɇy6БsgD\:kT2YKr--圍Tɮ1Nhΐ2v>!Yf(}r(s"0Ѹ.`Lϩ\+3{Fq|Y1jQ2u9ruôkCl1v+)|)>({3cQO:<6#~M/Uw0~ךSGp!٩Syȋ#)"Y #30pƍ#mZ-F Ka|*N đc1kʱ0P{}QFCx6X\>Lgycl (I+qmj}榢M\&,4_=[lq#-L&!Ҁt?o;3w42ٶLTbO[Z@q8A"k!5U$'c:km)u7?t/?Sڥ # VZNДf^PDaNnRJjyINlԦ̙p8DD}0JڽC B,xfGhz.#wy<۶*9 ߺ!%wpe«x`&HH³@o\6➯U6.P^#ԾGPo;o~boz1Ⱦ{V?@ * d"|  E.Xiq~ T[*zS%+?rbpyP#g kF#-s_ލZd\5G܀&զ,rv|~dF(=1b7< )klI":(2K@5‚P uGzd4<5q0ۦLϡN; DY\v@B4ƃk2!Zaª*&ks'!k6|yGc67?睅pxP\*$=^$"јp^꾃'ѩ*<5CeejXʱ}(V)k ʳֶdCmX 6'<}'G*ƀ:u 9W+)n|Z/!WGke Yzp@0"2$3d9j?o 2[@ ꥝3% <D܂2;SViܡJ5JDz*%MXzN߯8 3` P*Kn{+ŝ7`[@PkO7鄒ToH*t(ocm58?1ڔ}X5}oRCaLK AC:(_ :v:#8e([i5j+-?$RX-e?Ćf`c6 ϲTI1z.$!{W~BƷ?1/Փ “视@8F3>6')JAe]D FNl'.a] դ.;/ճb ]|dQN,WD9<pŪR\bǵj -G&o՞1ѿvx\`ړmST7aL7PśV.YzΗ!# YZ