asterisk-dahdi-13.7.1-1.fc22$>GtHWm>>,?d  Chl , X  n      {     :\ 8v(8*9 x*:F~*=gBoG H I XYZ,[0\D ]p ^ bWd?eDfGlItd u v w x y$=Casterisk-dahdi13.7.11.fc22Modules for Asterisk that use DAHDIModules for Asterisk that use DAHDI.Vbuildhw-02.phx2.fedoraproject.org Fedora ProjectFedora ProjectGPLv2Fedora ProjectApplications/Internethttp://www.asterisk.org/linuxx86_64/usr/sbin/usermod -a -G dahdi asterisk =X,R8MO=(큤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-13.7.1-1.fc22.src.rpmasterisk-dahdiasterisk-dahdi(x86-64)asterisk-zaptelconfig(asterisk-dahdi) @@@@@@@@@@@@@@    @/bin/sh/usr/sbin/usermodasteriskconfig(asterisk-dahdi)dahdi-toolslibc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.16)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libgcc_s.so.1()(64bit)libgcc_s.so.1(GCC_3.0)(64bit)libgcc_s.so.1(GCC_3.3.1)(64bit)libpri.so.1.4()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)libtonezone.so.2.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)13.7.1-1.fc2213.7.1-1.fc222.0.03.0.4-14.6.0-14.0-15.2-14.12.0.1V=@VV@Vk@Ua@UrU&iU&iUUTr@Tr@T TT5TmTmTeTD@TD@TD@TD@TD@SS@SSSSSSt@SW@SS@R@R@R@Re@R7R7QQ@QV@Q@Q@QvwQT0QP9@PrP!@PqP@P7@PP@P@P~PtPb@Pb@Pb@PE@PE@P?UP?UP?UP?UP/P@OOOG@O#O#OO O OOOtNOc+@O]I>]I-I-I-I-IH,HCH@HWH@H@H@HkmHQHO@H1kH @Gu@GGG@G@G@G߮G΋@G@G@G@GG{|Gt@Gl@GiGiGg@GcGcG_@G_@G^{G]*@GO@GB@GAzG=@G9G G m@F%@FS@F^F^F @F@FF;@F;@FF@FtF#@F@FEF@F@Fzh@FvsFvsFvsFvsFvsFu"@Fu"@Fr@FAF1F@EWE@E@E8@E7hE6@E6@E6@E2"DDD(@DWIDLDGwDGwDF&@D - 13.7.1-1Fedora Release Engineering - 13.3.2-3.1Jared Smith - 13.3.2-3Robert Scheck - 13.3.2-2Fedora Release Engineering - 13.3.2-1.2Jitka Plesnikova - 13.3.2-1.1Jeffrey C. Ollie - 13.3.2-1:Jeffrey C. Ollie - 13.3.1-1:Jeffrey C. Ollie - 13.3.0-1:Jeffrey C. Ollie - 13.2.0-1:Jeffrey C. Ollie - 13.1.1-1:Jeffrey C. Ollie - 13.1.0-1Peter Robinson 13.0.2-3Tom Callaway - 13.0.2-2Jeffrey C. Ollie - 13.0.2-1Jeffrey C. Ollie - 13.0.1-1Jeffrey C. Ollie - 13.0.0-1Tom Callaway - 11.13.1-2Jeffrey C. Ollie - 11.13.1-1Jeffrey C. Ollie - 11.13.0-1Jeffrey C. Ollie - 11.12.1-1Jeffrey C. Ollie - 11.12.0-1Jeffrey C. Ollie - 11.11.0-1Jitka Plesnikova - 11.10.2-2.2Fedora Release Engineering - 11.10.2-2.1Jeffrey Ollie - 11.10.2-2:Jeffrey Ollie - 11.10.2-1:Jeffrey Ollie - 11.10.1-1:Jeffrey Ollie - 11.10.0-1:Fedora Release Engineering - 11.9.0-2.1Dennis Gilmore - 11.9.0-2Jeffrey Ollie - 11.9.0-1:Jeffrey Ollie - 11.8.1-1:Jeffrey Ollie - 11.8.0-1:Jeffrey Ollie - 11.7.0-1:Jeffrey Ollie - 11.6.1-1:Jeffrey Ollie - 11.6.0-1:Jeffrey Ollie - 11.5.1-3:Jeffrey Ollie - 11.5.1-2:Jeffrey Ollie - 11.5.1-1:Fedora Release Engineering - 11.4.0-2.2Petr Pisar - 11.4.0-2.1Rex Dieter 11.4.0-2Jeffrey Ollie - 11.4.0-1:Tom Callaway - 11.3.0-2:Jeffrey Ollie - 11.3.0-1:Jeffrey Ollie - 11.2.2-1:Jeffrey Ollie - 11.2.1-1:Jeffrey Ollie - 11.2.0-1:Jeffrey Ollie - 11.1.2-1:Jeffrey Ollie - 11.1.1-1:Jeffrey Ollie - 11.1.0-1:Jeffrey Ollie - 11.0.2-1:Dan Horák - 11.0.1-3Dennis Gilmore - 11.0.1-2Jeffrey Ollie - 11.0.1-1Jeffrey Ollie - 11.0.0-1:Jeffrey Ollie - 11.0.0-0.7.rc2:Jeffrey Ollie - 11.0.0-0.6.rc1Jeffrey Ollie - 11.0.0-0.5.beta2Jeffrey Ollie - 11.0.0-0.4.beta2Jeffrey Ollie - 10.8.0-1Dan Horák - 11.0.0-0.3.beta1Dan Horák - 10.7.1-2Jeffrey Ollie - 10.7.1-1Jeffrey Ollie - 10.7.0-1Jeffrey Ollie - 10.6.1-1Jeffrey Ollie - 10.6.0-1Jeffrey Ollie - 11.0.0-0.2.beta1Fedora Release Engineering - 10.5.2-1.2Petr Pisar - 10.5.2-1.1Jeffrey Ollie - 10.5.2-1:Petr Pisar - 10.5.1-1.1Jeffrey Ollie - 10.5.1-1Jeffrey Ollie - 10.5.0-1Petr Pisar - 10.4.2-1.1Jeffrey Ollie - 10.4.2-1Jeffrey Ollie - 10.4.1-1Jeffrey Ollie - 10.4.0-1Jeffrey Ollie - 10.3.1-1Russell Bryant - 10.3.0-1Russell Bryant - 10.2.1-1Jeffrey C. Ollie - 10.1.2-2Jeffrey C. Ollie - 10.1.2-1Jeffrey C. Ollie - 10.1.1-1Jeffrey C. Ollie - 10.1.0-1Russell Bryant - 10.0.0-2Fedora Release Engineering - 10.0.0-1.1Jeffrey C. Ollie - 10.0.0-1Jeffrey C. Ollie - 10.0.0-1Jeffrey C. Ollie - 10.0.0-0.7.rc3Jeffrey C. Ollie - 10.0.0-0.6.rc2Jeffrey C. Ollie - 10.0.0-0.5.rc1Jeffrey C. Ollie - 10.0.0-0.4.beta2Jeffrey C. Ollie - 10.0.0-0.3.beta2Jeffrey C. Ollie - 10.0.0-0.2.beta2Jeffrey C. Ollie - 10.0.0-0.1.beta1Petr Sabata - 1.8.5.0-1.2Petr Sabata - 1.8.5.0-1.1Jeffrey C. Ollie - 1.8.5.0-1Jeffrey C. Ollie - 1.8.5-0.2Jeffrey C. Ollie - 1.8.5-0.1.rc1Jeffrey C. Ollie - 1.8.5-0.1.rc1Jeffrey C. Ollie - 1.8.4.4-2Jeffrey C. Ollie - 1.8.4.4-1Jeffrey C. Ollie - 1.8.4.3-3Jeffrey C. Ollie - 1.8.4.3-2Jeffrey C. Ollie - 1.8.4.3-1Jeffrey C. Ollie - 1.8.4.2-2Marcela Mašláňová - 1.8.4.2-1.2Marcela Mašláňová - 1.8.4.2-1.1Jeffrey C. Ollie - 1.8.4.2-1:Jeffrey C. Ollie - 1.8.3.3-1Jeffrey C. Ollie - 1.8.3.2-2Jeffrey C. Ollie - 1.8.3.2-1Jeffrey C. Ollie - 1.8.3.1-1 - 1.8.3-1 - 1.8.3-0.7.rc3Jeffrey C. Ollie - 1.8.3-0.6.rc2Jeffrey C. Ollie - 1.8.3-0.5.rc2Jeffrey C. Ollie - 1.8.3-0.4.rc2Fedora Release Engineering - 1.8.3-0.3.rc2Jeffrey C. Ollie - 1.8.3-0.2.rc2Jeffrey C. Ollie - 1.8.3-0.1.rc1Jeffrey C. Ollie - 1.8.2.3-1Jeffrey C. Ollie - 1.8.2.2-2Jeffrey C. Ollie - 1.8.2.2-1Jeffrey C. Ollie - 1.8.2.1-1Jeffrey C. Ollie - 1.8.2-1Jeffrey C. Ollie - 1.8.1.1-1Jeffrey C. Ollie - 1.8.1-1Dennis Gilmore - 1.8.0-6Dennis Gilmore - 1.8.0-5Dennis Gilmore - 1.8.0-4Jeffrey C. Ollie - 1.8.0-3Jeffrey C. Ollie - 1.8.0-2Jeffrey C. Ollie - 1.8.0-1Jeffrey C. Ollie - 1.8.0-0.8.rc5:Jeffrey C. Ollie - 1.8.0-0.7.rc3Jeffrey C. Ollie - 1.8.0-0.6.rc2Jeffrey C. Ollie - 1.8.0-0.5.beta5Jeffrey C. Ollie - 1.8.0-0.4.beta4Jeffrey C. Ollie - 1.8.0-0.3.beta3Jeffrey C. Ollie - 1.8.0-0.2.beta2Jeffrey C. Ollie - 1.8.0-0.1.beta2Jeffrey C. Ollie - 1.6.2.10-1Jeffrey C. Ollie - 1.6.2.8-0.3.rc1Marcela Maslanova - 1.6.2.8-0.2.rc1Jeffrey C. Ollie - 1.6.2.7-1Jeffrey C. Ollie - 1.6.2.7-0.2.rc3Jeffrey C. Ollie - 1.6.2.7-0.1.rc2Jeffrey C. Ollie - 1.6.2.6-1Jeffrey C. Ollie - 1.6.2.6-0.1.rc2Jeffrey C. Ollie - 1.6.2.5-2Jeffrey C. Ollie - 1.6.2.5-1Jeffrey C. Ollie - 1.6.2.4-1Jeffrey C. Ollie - 1.6.2.2-1Jeffrey C. Ollie - 1.6.2.1-1Jeffrey C. Ollie - 1.6.2.1-0.1.rc1Jeffrey C. Ollie - 1.6.2.0-1Jeffrey C. Ollie - 1.6.2.0-0.16.rc8Jeffrey C. Ollie - 1.6.2.0-0.15.rc7Jeffrey C. Ollie - 1.6.2.0-0.14.rc6Jeffrey C. Ollie - 1.6.2.0-0.13.rc6Jeffrey C. Ollie - 1.6.2.0-0.12.rc6Jeffrey C. Ollie - 1.6.2.0-0.11.rc5Jeffrey C. Ollie - 1.6.2.0-0.10.rc4Jeffrey C. Ollie - 1.6.2.0-0.9.rc3Jeffrey C. Ollie - 1.6.2.0-0.8.rc3Jeffrey C. Ollie - 1.6.2.0-0.7.rc3Jeffrey C. Ollie - 1.6.2.0-0.6.rc3Jeffrey C. Ollie - 1.6.2.0-0.5.rc3Jeffrey C. Ollie - 1.6.2.0-0.4.rc3Jeffrey C. Ollie - 1.6.2.0-0.3.rc2Jeffrey C. Ollie - 1.6.2.0-0.2.rc2Jeffrey C. Ollie - 1.6.2.0-0.1.rc2Jeffrey C. Ollie - 1.6.1.6-2Jeffrey C. Ollie - 1.6.1.6-1Jeffrey C. Ollie - 1.6.1-0.26.rc1Tomas Mraz - 1.6.1-0.25.rc1Fedora Release Engineering - 1.6.1-0.24.rc1Jeffrey C. Ollie - 1.6.1-0.23.rc1Fedora Release Engineering - 1.6.1-0.22.rc1Jeffrey C. Ollie - 1.6.1-0.21.rc1Tomas Mraz - 1.6.1-0.13.beta4Jeffrey C. Ollie - 1.6.1-0.12.beta4Jeffrey C. Ollie - 1.6.1-0.10.beta4Jeffrey C. Ollie - 1.6.1-0.9.beta4Jeffrey C. Ollie - 1.6.1-0.8.beta4Jeffrey C. Ollie - 1.6.1-0.7.beta3Alex Lancaster - 1.6.1-0.6.beta2Jeffrey C. Ollie - 1.6.1-0.5.beta2Jeffrey C. Ollie - 1.6.1-0.4.beta2Jeffrey C. Ollie - 1.6.1-0.3.beta2Jeffrey C. Ollie - 1.6.1-0.2.beta2Jeffrey C. Ollie - 1.6.0.1-3Jeffrey C. Ollie - 1.6.0.1-2Jeffrey C. Ollie - 1.6.0-1- Bastien Nocera - 1.6.0-0.22.beta9Jeffrey C. Ollie - 1.6.0-0.21.beta9Jeffrey C. Ollie - 1.6.0-0.20.beta9Jeffrey C. Ollie - 1.6.0-0.19.beta9Jeffrey C. Ollie - 1.6.0-0.18.beta9Jeffrey C. Ollie - 1.6.0-0.17.beta9Jeffrey C. Ollie - 1.6.0-0.16.beta9Jeffrey C. Ollie - 1.6.0-0.15.beta9Jeffrey C. Ollie - 1.6.0-0.14.beta9Jeffrey C. Ollie - 1.6.0-0.13.beta8Jeffrey C. Ollie - 1.6.0-0.12.beta7.1Jeffrey C. Ollie - 1.6.0-0.11.beta7.1Jeffrey C. Ollie - 1.6.0-0.10.beta7Jeffrey C. Ollie - 1.6.0-0.9.beta6Jeffrey C. Ollie - 1.6.0-0.8.beta6Jeffrey C. Ollie - 1.6.0-0.6.beta6Tom "spot" Callaway - 1.6.0-0.5.beta5Jeffrey C. Ollie - 1.6.0-0.4.beta5Jeffrey C. Ollie - 1.6.0-0.3.beta4Jeffrey C. Ollie - 1.6.0-0.2.beta4Jeffrey C. Ollie - 1.6.0-0.1.beta4Jeffrey C. Ollie - 1.4.18-1Jeffrey C. Ollie - 1.4.17-1Jeffrey C. Ollie - 1.4.16.2-1Jeffrey C. Ollie - 1.4.16.1-2Jeffrey C. Ollie - 1.4.16.1-1Jeffrey C. Ollie - 1.4.16-2Jeffrey C. Ollie - 1.4.16-1Jeffrey C. Ollie - 1.4.15-7Jeffrey C. Ollie - 1.4.15-6Jeffrey C. Ollie - 1.4.15-5Jeffrey C. Ollie - 1.4.15-4Jeffrey C. Ollie - 1.4.15-3Jeffrey C. Ollie - 1.4.15-2Jeffrey C. Ollie - 1.4.15-1Jeffrey C. Ollie - 1.4.14-2Jeffrey C. Ollie - 1.4.14-1Jeffrey C. Ollie - 1.4.13-7Jeffrey C. Ollie - 1.4.13-6Jeffrey C. Ollie - 1.4.13-1Jeffrey C. Ollie - 1.4.12.1-1Jeffrey C. Ollie - 1.4.11-1Jeffrey C. Ollie - 1.4.10.1-1Jeffrey C. Ollie - 1.4.10-1Jeffrey C. Ollie - 1.4.9-7Jeffrey C. Ollie - 1.4.9-6Jeffrey C. Ollie - 1.4.9-5Jeffrey C. Ollie - 1.4.9-4Jeffrey C. Ollie - 1.4.9-3Jeffrey C. Ollie - 1.4.9-2Jeffrey C. Ollie - 1.4.9-1Jeffrey C. Ollie - 1.4.8-1Jeffrey C. Ollie - 1.4.7.1-1Jeffrey C. Ollie - 1.4.7-1Jeffrey C. Ollie - 1.4.6-4Jeffrey C. Ollie - 1.4.6-3Jeffrey C. Ollie - 1.4.6-2Jeffrey C. Ollie - 1.4.6-1Jeffrey C. Ollie - 1.4.5-10Jeffrey C. Ollie - 1.4.5-9Jeffrey C. Ollie - 1.4.5-8Jeffrey C. Ollie - 1.4.5-7Jeffrey C. Ollie - 1.4.5-6Jeffrey C. Ollie - 1.4.5-5Jeffrey C. Ollie - 1.4.5-4Jeffrey C. Ollie - 1.4.5-3Jeffrey C. Ollie - 1.4.5-1Jeffrey C. Ollie - 1.4.4-2Jeffrey C. Ollie - 1.4.4-1Jeffrey C. Ollie - 1.4.2-1Jeffrey C. Ollie - 1.4.1-2Jeffrey C. Ollie - 1.4.1-1Jeffrey C. Ollie - 1.4.0-6.beta4Jeffrey C. Ollie - 1.4.0-5.beta3Jeffrey C. Ollie - 1.4.0-4.beta3Jeffrey C. Ollie - 1.4.0-3.beta3Jeffrey C. Ollie - 1.4.0-2.beta3Jeffrey C. Ollie - 1.4.0-1.beta3Jeffrey C. Ollie - 1.4.0-0.beta2Jeffrey C. Ollie - 1.2.10-1Jeffrey C. Ollie - 1.2.9.1Jeffrey C. Ollie - 1.2.8Jeffrey C. Ollie - 1.2.7.1-6Jeffrey C. Ollie - 1.2.7.1-5Jeffrey C. Ollie - 1.2.7.1-4Jeffrey C. Ollie - 1.2.7.1-3Jeffrey C. Ollie - 1.2.7.1-2Jeffrey C. Ollie - 1.2.7-1Jeffrey C. Ollie - 1.2.6-3Jeffrey C. Ollie - 1.2.6-2Jeffrey C. Ollie - 1.2.6-1Jeffrey C. Ollie - 1.2.5-1Jeffrey C. Ollie - 1.2.4-4Jeffrey C. Ollie - 1.2.4-3Jeffrey C. Ollie - 1.2.4-2Jeffrey C. Ollie - 1.2.4-1Jeffrey C. Ollie - 1.2.3-4Jeffrey C. Ollie - 1.2.3-3Jeffrey C. Ollie - 1.2.3-2Jeffrey C. Ollie - 1.2.3-1- Update to upstream 13.7.1 release for security fixes - Resolves AST-2016-001: BEAST vulnerability in HTTP server - Resolves AST-2016-002: File descriptor exhaustion in chan_sip - Resolves AST-2016-003: Remote crash vulnerability receiving UDPTL FAX data - Full changelog at http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.7.1 - Also build the 'radius' sub-package against freeradius-client-devel, as the radiusclient-ng project is dead- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Remove %defattr macro invocations, as they are no longer needed- Rebuild for libical 2.0.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- Perl 5.22 rebuild- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28, 11.6, and 13.1 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28.cert-5, 1.8.32.3, 11.6-cert11, - 11.17.1, 12.8.2, 13.1-cert2, and 13.3.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerability: - - * AST-2015-003: TLS Certificate Common name NULL byte exploit - - When Asterisk registers to a SIP TLS device and and verifies the server, - Asterisk will accept signed certificates that match a common name other than - the one Asterisk is expecting if the signed certificate has a common name - containing a null byte after the portion of the common name that Asterisk - expected. This potentially allows for a man in the middle attack. - - For more information about the details of this vulnerability, please read - security advisory AST-2015-003, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert5 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.32.3 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert11 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.17.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.8.2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-13.1-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.3.2 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2015-003.pdf- The Asterisk Development Team has announced the release of Asterisk 13.3.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.3.1 resolves an issue reported by the - community and would have not been possible without your participation. - Thank you! - - The following is the issue resolved in this release: - - * --- pjsip: resolve compatibility problem with ast_sip_session - (Closes issue ASTERISK-24941. Reported by Matt Jordan) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.3.1- The Asterisk Development Team has announced the release of Asterisk 13.3.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.3.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - New Features made in this release: - ----------------------------------- - * ASTERISK-24703 - ARI: Add the ability to "transfer" (redirect) a - channel (Reported by Matt Jordan) - * ASTERISK-17899 - Handle crypto lifetime in SDES-SRTP negotiation - (Reported by Dwayne Hubbard) - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24616 - Crash in res_format_attr_h264 due to invalid - string copy (Reported by Yura Kocyuba) - * ASTERISK-24748 - res_pjsip: If wizards explicitly configured in - sorcery.conf false ERROR messages may occur (Reported by Joshua - Colp) - * ASTERISK-24769 - res_pjsip_sdp_rtp: Local ICE candidates leaked - (Reported by Matt Jordan) - * ASTERISK-24742 - [patch] Fix ast_odbc_find_table function in - res_odbc (Reported by ibercom) - * ASTERISK-24479 - Enable REF_DEBUG for module references - (Reported by Corey Farrell) - * ASTERISK-24701 - Stasis: Write timeout on WebSocket fails to - fully disconnect underlying socket, leading to events being - dropped with no additional information (Reported by Matt Jordan) - * ASTERISK-24772 - ODBC error in realtime sippeers when device - unregisters under MariaDB (Reported by Richard Miller) - * ASTERISK-24752 - Crash in bridge_manager_service_req when bridge - is destroyed by ARI during shutdown (Reported by Richard - Mudgett) - * ASTERISK-24741 - dtls_handler causes Asterisk to crash (Reported - by Zane Conkle) - * ASTERISK-24015 - app_transfer fails with PJSIP channels - (Reported by Private Name) - * ASTERISK-24727 - PJSIP: Crash experienced during multi-Asterisk - transfer scenario. (Reported by Mark Michelson) - * ASTERISK-24771 - ${CHANNEL(pjsip)} - segfault (Reported by - Niklas Larsson) - * ASTERISK-24716 - Improve pjsip log messages for presence - subscription failure (Reported by Rusty Newton) - * ASTERISK-24612 - res_pjsip: No information if a required sorcery - wizard is not loaded (Reported by Joshua Colp) - * ASTERISK-24768 - res_timing_pthread: file descriptor leak - (Reported by Matthias Urlichs) - * ASTERISK-24685 - "pjsip show version" CLI command (Reported by - Joshua Colp) - * ASTERISK-24632 - install_prereq script installs pjproject - without IPv6 support (Reported by Rusty Newton) - * ASTERISK-24085 - Documentation - We should remove or further - document the 'contact' section in pjsip.conf (Reported by Rusty - Newton) - * ASTERISK-24791 - Crash in ast_rtcp_write_report (Reported by - JoshE) - * ASTERISK-24700 - CRASH: NULL channel is being passed to - ast_bridge_transfer_attended() (Reported by Zane Conkle) - * ASTERISK-24451 - chan_iax2: reference leak in sched_delay_remove - (Reported by Corey Farrell) - * ASTERISK-24799 - [patch] make fails with undefined reference to - SSLv3_client_method (Reported by Alexander Traud) - * ASTERISK-22670 - Asterisk crashes when processing ISDN AoC - Events (Reported by klaus3000) - * ASTERISK-24689 - Segfault on hangup after outgoing PRI-Euroisdn - call (Reported by Marcel Manz) - * ASTERISK-24740 - [patch]Segmentation fault on aoc-e event - (Reported by Panos Gkikakis) - * ASTERISK-24787 - [patch] - Microsoft exchange incompatibility - for playing back messages stored in IMAP - play_message: No - origtime (Reported by Graham Barnett) - * ASTERISK-24814 - asterisk/lock.h: Fix syntax errors for non-gcc - OSX with 64 bit integers (Reported by Corey Farrell) - * ASTERISK-24796 - Codecs and bucket schema's prevent module - unload (Reported by Corey Farrell) - * ASTERISK-24724 - 'httpstatus' Web Page Produces Incomplete HTML - (Reported by Ashley Sanders) - * ASTERISK-24499 - Need more explicit debug when PJSIP dialstring - is invalid (Reported by Rusty Newton) - * ASTERISK-24785 - 'Expires' header missing from 200 OK on - REGISTER (Reported by Ross Beer) - * ASTERISK-24677 - ARI GET variable on channel provides unhelpful - response on non-existent variable (Reported by Joshua Colp) - * ASTERISK-24797 - bridge_softmix: G.729 codec license held - (Reported by Kevin Harwell) - * ASTERISK-24812 - ARI: Creating channels through /channels - resource always uses SLIN, which results in unneeded transcoding - (Reported by Matt Jordan) - * ASTERISK-24800 - Crash in __sip_reliable_xmit due to invalid - thread ID being passed to pthread_kill (Reported by JoshE) - * ASTERISK-17721 - Incoming SRTP calls that specify a key lifetime - fail (Reported by Terry Wilson) - * ASTERISK-23214 - chan_sip WARNING message 'We are requesting - SRTP for audio, but they responded without it' is ambiguous and - wrong in some cases (Reported by Rusty Newton) - * ASTERISK-15434 - [patch] When ast_pbx_start failed, both an - error response and BYE are sent to the caller (Reported by - Makoto Dei) - * ASTERISK-18105 - most of asterisk modules are unbuildable in - cygwin environment (Reported by feyfre) - * ASTERISK-24828 - Fix Frame Leaks (Reported by Kevin Harwell) - * ASTERISK-24751 - Integer values in json payload to ARI cause - asterisk to crash (Reported by jeffrey putnam) - * ASTERISK-24838 - chan_sip: Locking inversion occurs when - building a peer causes a peer poke during request handling - (Reported by Richard Mudgett) - * ASTERISK-24825 - Caller ID not recognized using - Centrex/Distinctive dialing (Reported by Richard Mudgett) - * ASTERISK-24830 - res_rtp_asterisk.c checks USE_PJPROJECT not - HAVE_PJPROJECT (Reported by Stefan Engström) - * ASTERISK-24840 - res_pjsip: conflicting endpoint identifiers - (Reported by Kevin Harwell) - * ASTERISK-24755 - Asterisk sends unexpected early BYE to - transferrer during attended transfer when using a Stasis bridge - (Reported by John Bigelow) - * ASTERISK-24739 - [patch] - Out of files -- call fails -- - numerous files with inodes from under /usr/share/zoneinfo, - mostly posixrules (Reported by Ed Hynan) - * ASTERISK-23390 - NewExten Event with application AGI shows up - before and after AGI runs (Reported by Benjamin Keith Ford) - * ASTERISK-24786 - [patch] - Asterisk terminates when playing a - voicemail stored in LDAP (Reported by Graham Barnett) - * ASTERISK-24808 - res_config_odbc: Improper escaping of - backslashes occurs with MySQL (Reported by Javier Acosta) - * ASTERISK-24807 - Missing mandatory field Max-Forwards (Reported - by Anatoli) - * ASTERISK-20850 - [patch]Nested functions aren't portable. - Adapting RAII_VAR to use clang/llvm blocks to get the - same/similar functionality. (Reported by Diederik de Groot) - * ASTERISK-24872 - [patch] AMI PJSIPShowEndpoint closes AMI - connection on error (Reported by Dmitriy Serov) - * ASTERISK-19470 - Documentation on app_amd is incorrect (Reported - by Frank DiGennaro) - * ASTERISK-21038 - Bad command completion of "core set debug - channel" (Reported by Richard Kenner) - * ASTERISK-18708 - func_curl hangs channel under load (Reported by - Dave Cabot) - * ASTERISK-16779 - Cannot disallow unknown format '' (Reported by - Atis Lezdins) - * ASTERISK-24876 - Investigate reference leaks from - tests/channels/local/local_optimize_away (Reported by Corey - Farrell) - * ASTERISK-24882 - chan_sip: Improve usage of REF_DEBUG (Reported - by Corey Farrell) - * ASTERISK-24817 - init_logger_chain: unreachable code block - (Reported by Corey Farrell) - * ASTERISK-24880 - [patch]Compilation under OpenBSD (Reported by - snuffy) - * ASTERISK-24879 - [patch]Compilation fails due to 64bit time - under OpenBSD (Reported by snuffy) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24745 - [patch]Add no_answer to ARI hangup causes - (Reported by Ben Merrills) - * ASTERISK-24811 - asterisk-publication sorcery object does not - use realtime (Reported by Matt Hoskins) - * ASTERISK-24790 - Reduce spurious noise in logs from voicemail - - Couldn't find mailbox %s in context (Reported by Graham Barnett) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.3.0- The Asterisk Development Team has announced the release of Asterisk 13.2.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.2.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24342 - PJSIP: Qualifying endpoints attempts to do them - all at the same time. (Reported by Richard Mudgett) - * ASTERISK-24514 - res_pjsip_outbound_registration: stack overflow - when using non-default sorcery wizard (Reported by Kevin - Harwell) - * ASTERISK-24472 - Asterisk Crash in OpenSSL when calling over WSS - from JSSIP (Reported by Badalian Vyacheslav) - * ASTERISK-24607 - res_pjsip_session: re-INVITE with declined - media streams results in 488 (Reported by Matt Jordan) - * ASTERISK-24563 - Direct Media calls within private network - sometimes get one way audio (Reported by Kevin Harwell) - * ASTERISK-24604 - res_rtp_asterisk: Crash during restart due to - race condition in accessing codec in stored ast_frame and codec - core (Reported by Matt Jordan) - * ASTERISK-24614 - Deadlock when DEBUG_THREADS compiler flag - enabled (Reported by Richard Mudgett) - * ASTERISK-24449 - Reinvite for T.38 UDPTL fails if SRTP is - enabled (Reported by Andreas Steinmetz) - * ASTERISK-24619 - [patch]Gcc 4.10 fixes in r413589 (1.8) wrongly - casts char to unsigned int (Reported by Walter Doekes) - * ASTERISK-24536 - AMI redirect with PJSIP fails to move extra - channel (Reported by Niklas Larsson) - * ASTERISK-24459 - bridge_native_rtp: Native RTP bridging is - chosen for RTP compatible channels when the DTMF mode is not - compatible (Reported by Yaniv Simhi) - * ASTERISK-24337 - Spammy DEBUG message needs to be at a higher - level - 'Remote address is null, most likely RTP has been - stopped' (Reported by Rusty Newton) - * ASTERISK-24513 - Local channel apparently leaked in off-nominal - DTMF attended transfer (Reported by Mark Michelson) - * ASTERISK-23733 - 'reload acl' fails if acl.conf is not present - on startup (Reported by Richard Kenner) - * ASTERISK-24628 - [patch] chan_sip - CANCEL is sent to wrong - destination when 'sendrpid=yes' (in proxy environment) (Reported - by Karsten Wemheuer) - * ASTERISK-23841 - DTMF atxfer doesn't set CallerID for the recall - calls to the transferrer. (Reported by Richard Mudgett) - * ASTERISK-24376 - res_pjsip_refer: REFER request for remote - session attempts to direct channel to external_replaces - extension instead of context, without providing for the - Referred-To SIP URI (Reported by Matt Jordan) - * ASTERISK-24591 - Stasis() side of an ARI originated channel - cannot be Redirected (Reported by Kinsey Moore) - * ASTERISK-24049 - Asterisk Manager Interface: A number of list - type responses aren't using astman_send_listack (Reported by - Jonathan Rose) - * ASTERISK-24637 - Channel re-enters Stasis() when it should not - (Reported by John Bigelow) - * ASTERISK-24474 - sip_to_pjsip.py lacks documentation and does - not function (Reported by John Kiniston) - * ASTERISK-24672 - [PATCH] Memory leak in func_curl CURLOPT - (Reported by Kristian Høgh) - * ASTERISK-20744 - [patch] Security event logging does not work - over syslog (Reported by Michael Keuter) - * ASTERISK-24665 - Configure check required for - pjsip_get_dest_info() (Reported by Mark Michelson) - * ASTERISK-23850 - Park Application does not respect Return - Context Priority (Reported by Andrew Nagy) - * ASTERISK-23991 - [patch]asterisk.pc file contains a small error - in the CFlags returned (Reported by Diederik de Groot) - * ASTERISK-24655 - res_pjsip_outbound_publish: Hang on shutdown - while attempting to publish (Reported by Kevin Harwell) - * ASTERISK-24485 - res_pjsip cannot be unloaded or shutdown - (Reported by Corey Farrell) - * ASTERISK-24663 - [patch] Unnamed semaphore autoconf check fails - on cross compilation (Reported by abelbeck) - * ASTERISK-24624 - Transfer to invalid extension results in hung - channel. (Reported by Zane Conkle) - * ASTERISK-24615 - When Multiple Transports Exist in pjsip.conf, - Incorrect External Addresses is Used in SIP Packets When - Responding to INVITE (Reported by David Justl) - * ASTERISK-24288 - [patch] - ODBC usage with app_voicemail - - voicemail is not deleted after review, hangup (Reported by LEI - FU) - * ASTERISK-24048 - [patch] contrib/scripts/install_prereq selects - 32-bit packages on 64-bit hosts (Reported by Ben Klang) - * ASTERISK-24600 - Stuck IAX channels, Asterisk stops responding - to most traffic, potential deadlock (Reported by Jeff Collell) - * ASTERISK-24560 - Creating a named ARI bridge twice causes a - crash (Reported by Kinsey Moore) - * ASTERISK-24682 - app_dial: Multiple DialEnd events emitted when - MACRO_RESULT or GOSUB_RESULT are an unexpected value (Reported - by Matt Jordan) - * ASTERISK-24640 - Registration pending stays forever after sip - reload (Reported by Max Man) - * ASTERISK-24673 - outgoing sip registers cannot be removed or - modified without doing restart (or doing module unload - chan_sip.so) (Reported by Stefan Engström) - * ASTERISK-24709 - [patch] msg_create_from_file used by MixMonitor - m() option does not queue an MWI event (Reported by Gareth - Palmer) - * ASTERISK-24649 - Pushing of channel into bridge fails; Stasis - fails to get app name (Reported by John Bigelow) - * ASTERISK-24355 - [patch] chan_sip realtime uses case sensitive - column comparison for 'defaultuser' (Reported by - HZMI8gkCvPpom0tM) - * ASTERISK-24693 - Investigate and fix memory leaks in Asterisk - (Reported by Kevin Harwell) - * ASTERISK-24626 - Voicemail passwords not being stored in ARA - (Reported by Paddy Grice) - * ASTERISK-24539 - Compile fails on OSX because of sem_timedwait - in bridge_channel.c (Reported by George Joseph) - * ASTERISK-24544 - Compile fails on OSX Yosemite because of - incorrect detection of htonll and ntohll (Reported by George - Joseph) - * ASTERISK-24723 - confbridge: CLI command 'confbridge list XXXX' - no longer displays user menus (Reported by Matt Jordan) - * ASTERISK-24721 - manager: ModuleLoad action incorrectly reports - 'module not found' during a Reload operation (Reported by Matt - Jordan) - * ASTERISK-24719 - ConfBridge recording channels get stuck when - recording started/stopped more than once (Reported by Richard - Mudgett) - * ASTERISK-24715 - chan_sip: stale nonce causes failure (Reported - by Kevin Harwell) - * ASTERISK-24728 - tcptls: Bad file descriptor error when - reloading chan_sip (Reported by Kevin Harwell) - * ASTERISK-24729 - Outbound registration not occuring on new - registrations after reload. (Reported by Richard Mudgett) - * ASTERISK-24676 - Security Vulnerability: URL request injection - in libCURL (CVE-2014-8150) (Reported by Matt Jordan) - * ASTERISK-24666 - Security Vulnerability: RTP not closed after - sip call using unsupported codec (Reported by Y Ateya) - * ASTERISK-24711 - DTLS handshake broken with latest OpenSSL - versions (Reported by Jared Biel) - * ASTERISK-24646 - PJSIP changeset 4899 breaks TLS (Reported by - Stephan Eisvogel) - * ASTERISK-24736 - Memory Leak Fixes (Reported by Mark Michelson) - * ASTERISK-24635 - PJSIP outbound PUBLISH crashes when no response - is ever received (Reported by Marco Paland) - * ASTERISK-24737 - When agent not logged in, agent status shows - unavailable, queue status shows agent invalid (Reported by - Richard Mudgett) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24552 - ARI: Allow associating a channel as an - initiator of an Origination for record keeping purposes - (Reported by Matt Jordan) - * ASTERISK-24553 - ARI/AMI: Include language in standard channel - snapshot output (Reported by Matt Jordan) - * ASTERISK-24643 - res_pjsip: Add user=phone option (Reported by - Matt Jordan) - * ASTERISK-24644 - res_pjsip_keepalive: Add keepalive module for - connection-oriented transports. (Reported by Matt Jordan) - * ASTERISK-24412 - [patch]Incomplete channel originate/continue - handling with ARI (Reported by Nir Simionovich (GreenfieldTech - - Israel)) - * ASTERISK-24678 - [PATCH] Added atxfer* settings to - features.conf.sample (Reported by Niklas Larsson) - * ASTERISK-24575 - [patch]Make capath work for res_pjsip (Reported - by cloos) - * ASTERISK-24671 - Missing docs for the CDR AMI Event (Reported by - Dan Jenkins) - * ASTERISK-24316 - For httpd server, need option to define server - name for security purposes (Reported by Andrew Nagy) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.2.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28 and 11.6 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28.cert-4, 1.8.32.2, 11.6-cert10, - 11.15.1, 12.8.1, and 13.1.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerabilities: - - * AST-2015-001: File descriptor leak when incompatible codecs are offered - - Asterisk may be configured to only allow specific audio or - video codecs to be used when communicating with a - particular endpoint. When an endpoint sends an SDP offer - that only lists codecs not allowed by Asterisk, the offer - is rejected. However, in this case, RTP ports that are - allocated in the process are not reclaimed. - - This issue only affects the PJSIP channel driver in - Asterisk. Users of the chan_sip channel driver are not - affected. - - * AST-2015-002: Mitigation for libcURL HTTP request injection vulnerability - - CVE-2014-8150 reported an HTTP request injection - vulnerability in libcURL. Asterisk uses libcURL in its - func_curl.so module (the CURL() dialplan function), as well - as its res_config_curl.so (cURL realtime backend) modules. - - Since Asterisk may be configured to allow for user-supplied - URLs to be passed to libcURL, it is possible that an - attacker could use Asterisk as an attack vector to inject - unauthorized HTTP requests if the version of libcURL - installed on the Asterisk server is affected by - CVE-2014-8150. - - For more information about the details of these vulnerabilities, please read - security advisory AST-2015-001 and AST-2015-002, which were released at the same - time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.32.2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert10 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.15.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.8.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.1.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2015-001.pdf - * http://downloads.asterisk.org/pub/security/AST-2015-002.pdf- The Asterisk Development Team has announced the release of Asterisk 13.1.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.1.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - New Features made in this release: - ----------------------------------- - * ASTERISK-24554 - AMI/ARI: Generate events on connected line - changes (Reported by Matt Jordan) - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24436 - Missing header in res/res_srtp.c when compiling - against libsrtp-1.5.0 (Reported by Patrick Laimbock) - * ASTERISK-24455 - func_cdr: CDR_PROP leaks payload (Reported by - Corey Farrell) - * ASTERISK-24454 - app_queue: ao2_iterator not destroyed, causing - leak (Reported by Corey Farrell) - * ASTERISK-24430 - missing letter "p" in word response in - OriginateResponse event documentation (Reported by Dafi Ni) - * ASTERISK-24437 - Review implementation of ast_bridge_impart for - leaks and document proper usage (Reported by Scott Griepentrog) - * ASTERISK-24453 - manager: acl_change_sub leaks (Reported by - Corey Farrell) - * ASTERISK-24457 - res_fax: fax gateway frames leak (Reported by - Corey Farrell) - * ASTERISK-24458 - chan_phone fails to build on big endian systems - (Reported by Tzafrir Cohen) - * ASTERISK-21721 - SIP Failed to parse multiple Supported: headers - (Reported by Olle Johansson) - * ASTERISK-24304 - asterisk crashing randomly because of unistim - channel (Reported by dhanapathy sathya) - * ASTERISK-24190 - IMAP voicemail causes segfault (Reported by - Nick Adams) - * ASTERISK-24462 - res_pjsip: Stale qualify statistics after - disablementation (Reported by Kevin Harwell) - * ASTERISK-24465 - audiohooks list leaks reference to formats - (Reported by Corey Farrell) - * ASTERISK-24466 - app_queue: fix a couple leaks to struct - call_queue (Reported by Corey Farrell) - * ASTERISK-24432 - Install refcounter.py when REF_DEBUG is enabled - (Reported by Corey Farrell) - * ASTERISK-24411 - [patch] Status of outbound registration is not - changed upon unregistering. (Reported by John Bigelow) - * ASTERISK-24476 - main/app.c / app_voicemail: ast_writestream - leaks (Reported by Corey Farrell) - * ASTERISK-24480 - res_http_websockets: Module reference decrease - below zero (Reported by Corey Farrell) - * ASTERISK-24482 - func_talkdetect: Fix stasis message leak in - audiohook callback (Reported by Corey Farrell) - * ASTERISK-24487 - configuration: sections should be loadable as - template even when not marked (Reported by Scott Griepentrog) - * ASTERISK-20127 - [Regression] Config.c config_text_file_load() - unescapes semicolons ("\;" -> ";") turning them into comments - (corruption) on rewrite of a config file (Reported by George - Joseph) - * ASTERISK-24438 - res_pjsip_multihomed.so blocks Asterisk reload - when DNS settings invalid (Reported by Melissa Shepherd) - * ASTERISK-24307 - Unintentional memory retention in stringfields - (Reported by Etienne Lessard) - * ASTERISK-24491 - Memory leak in res_hep (Reported by Zane - Conkle) - * ASTERISK-24492 - main/file.c: ast_filestream sometimes causes - extra calls to ast_module_unref (Reported by Corey Farrell) - * ASTERISK-24447 - Bridge DTMF hooks: Audio doesn't pass when - waiting for more matching digits. (Reported by Richard Mudgett) - * ASTERISK-24257 - agent must dial acceptdtmf twice to bridge to - queue caller (Reported by Steve Pitts) - * ASTERISK-24504 - chan_console: Fix reference leaks to pvt - (Reported by Corey Farrell) - * ASTERISK-24250 - [patch] Voicemail with multi-recipients To: - header fix (Reported by abelbeck) - * ASTERISK-24468 - Incoming UCS2 encoded SMS truncated if SMS - length exceeds 50 (roughly) national symbols (Reported by - Dmitriy Bubnov) - * ASTERISK-24500 - Regression introduced in chan_mgcp by SVN - revision r227276 (Reported by Xavier Hienne) - * ASTERISK-24505 - manager: http connections leak references - (Reported by Corey Farrell) - * ASTERISK-24502 - Build fails when dev-mode, dont optimize and - coverage are enabled (Reported by Corey Farrell) - * ASTERISK-24444 - PBX: Crash when generating extension for - pattern matching hint (Reported by Leandro Dardini) - * ASTERISK-24489 - Crash: Asterisk crashes when converting RTCP - packet to JSON for res_hep_rtcp and report blocks are greater - than 1 (Reported by Gregory Malsack) - * ASTERISK-24498 - Segmentation fault in res_hep_rtcp on attended - transfer (Reported by Beppo Mazzucato) - * ASTERISK-24501 - ARI: Moving a channel between bridges followed - by a hangup can cause an ARI client to not receive an expected - ChannelLeftBridge event before StasisEnd (Reported by Matt - Jordan) - * ASTERISK-24336 - PJSIP timer_min_se value under 90 causes crash - (Reported by Leon Rowland) - * ASTERISK-23651 - Reloading some modules that are loaded already, - results in 'No such module' before a successful reload (Reported - by Rusty Newton) - * ASTERISK-24522 - ConfBridge: delay occurs between kicking all - endmarked users when last marked user leaves (Reported by Matt - Jordan) - * ASTERISK-15242 - transmit_refer leaks sip_refer structures - (Reported by David Woolley) - * ASTERISK-24508 - pjsip - REFER request from SNOM is rejected - with "400 bad request" - DEBUG shows "Received a REFER without a - parseable Refer-To" (Reported by Beppo Mazzucato) - * ASTERISK-24535 - stringfields: Fix regression from fix for - unintentional memory retention and another issue exposed by the - fix (Reported by Corey Farrell) - * ASTERISK-24471 - Crash - assert_fail in libc in - pjmedia_sdp_neg_negotiate from /usr/local/lib/libpjmedia.so.2 - (Reported by yaron nahum) - * ASTERISK-24528 - res_pjsip_refer: Sending INVITE with Replaces - in-dialog with invalid target causes crash (Reported by Joshua - Colp) - * ASTERISK-24531 - res_pjsip_acl: ACLs not applied on initial - module load (Reported by Matt Jordan) - * ASTERISK-24469 - Security Vulnerability: Mixed IPv4/IPv6 ACLs - allow blocked addresses through (Reported by Matt Jordan) - * ASTERISK-24542 - [patch]Failure showing codecs via 'core show - channeltype ' (Reported by snuffy) - * ASTERISK-24533 - 2 threads created per chan_sip entry (Reported - by xrobau) - * ASTERISK-24516 - [patch]Asterisk segfaults when playing back - voicemail under high concurrency with an IMAP backend (Reported - by David Duncan Ross Palmer) - * ASTERISK-24572 - [patch]App_meetme is loaded without its - defaults when the configuration file is missing (Reported by - Nuno Borges) - * ASTERISK-24573 - [patch]Out of sync conversation recording when - divided in multiple recordings (Reported by Nuno Borges) - * ASTERISK-24537 - Stasis: StasisStart/StasisEnd events are not - reliably transmitted during transfers (Reported by Matt Jordan) - * ASTERISK-24556 - Asterisk 13 core dumps when calling from pjsip - extension to another pjsip extension (Reported by Abhay Gupta) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24279 - Documentation: Clarify the behaviour of the CDR - property 'unanswered' (Reported by Matt Jordan) - * ASTERISK-24283 - [patch]Microseconds precision in the eventtime - column in the cel_odbc module (Reported by Etienne Lessard) - * ASTERISK-24530 - [patch] app_record stripping 1/4 second from - recordings (Reported by Ben Smithurst) - * ASTERISK-24577 - Speed up loopback switches by avoiding unneeded - lookups (Reported by Birger "WIMPy" Harzenetter) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.1.0- Add speexdsp as build dep as speex_echo.h has moved - rhbz 1181021- update for lua 5.3- The Asterisk Development Team has announced security releases for Certified - Asterisk 11.6 and Asterisk 11, 12, and 13. The available security releases are - released as versions 11.6-cert9, 11.14.2, 12.7.2, and 13.0.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerability: - - * AST-2014-019: Remote Crash Vulnerability in WebSocket Server - - When handling a WebSocket frame the res_http_websocket module dynamically - changes the size of the memory used to allow the provided payload to fit. If a - payload length of zero was received the code would incorrectly attempt to - resize to zero. This operation would succeed and end up freeing the memory but - be treated as a failure. When the session was subsequently torn down this - memory would get freed yet again causing a crash. - - For more information about the details of this vulnerability, please read - security advisory AST-2014-019, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert9 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.14.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.7.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.2 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-019.pdf- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28 and 11.6 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28-cert3, 11.6-cert8, 1.8.32.1, - 11.14.1, 12.7.1, and 13.0.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerabilities: - - * AST-2014-012: Unauthorized access in the presence of ACLs with mixed IP - address families - - Many modules in Asterisk that service incoming IP traffic have ACL options - ("permit" and "deny") that can be used to whitelist or blacklist address - ranges. A bug has been discovered where the address family of incoming - packets is only compared to the IP address family of the first entry in the - list of access control rules. If the source IP address for an incoming - packet is not of the same address as the first ACL entry, that packet - bypasses all ACL rules. - - * AST-2014-018: Permission Escalation through DB dialplan function - - The DB dialplan function when executed from an external protocol, such as AMI, - could result in a privilege escalation. Users with a lower class authorization - in AMI can access the internal Asterisk database without the required SYSTEM - class authorization. - - In addition, the release of 11.6-cert8 and 11.14.1 resolves the following - security vulnerability: - - * AST-2014-014: High call load with ConfBridge can result in resource exhaustion - - The ConfBridge application uses an internal bridging API to implement - conference bridges. This internal API uses a state model for channels within - the conference bridge and transitions between states as different things - occur. Unload load it is possible for some state transitions to be delayed - causing the channel to transition from being hung up to waiting for media. As - the channel has been hung up remotely no further media will arrive and the - channel will stay within ConfBridge indefinitely. - - In addition, the release of 11.6-cert8, 11.14.1, 12.7.1, and 13.0.1 resolves - the following security vulnerability: - - * AST-2014-017: Permission Escalation via ConfBridge dialplan function and - AMI ConfbridgeStartRecord Action - - The CONFBRIDGE dialplan function when executed from an external protocol (such - as AMI) can result in a privilege escalation as certain options within that - function can affect the underlying system. Additionally, the AMI - ConfbridgeStartRecord action has options that would allow modification of the - underlying system, and does not require SYSTEM class authorization in AMI. - - Finally, the release of 12.7.1 and 13.0.1 resolves the following security - vulnerabilities: - - * AST-2014-013: Unauthorized access in the presence of ACLs in the PJSIP stack - - The Asterisk module res_pjsip provides the ability to configure ACLs that may - be used to reject SIP requests from various hosts. However, the module - currently fails to create and apply the ACLs defined in its configuration - file on initial module load. - - * AST-2014-015: Remote crash vulnerability in PJSIP channel driver - - The chan_pjsip channel driver uses a queue approach for relating to SIP - sessions. There exists a race condition where actions may be queued to answer - a session or send ringing after a SIP session has been terminated using a - CANCEL request. The code will incorrectly assume that the SIP session is still - active and attempt to send the SIP response. The PJSIP library does not - expect the SIP session to be in the disconnected state when sending the - response and asserts. - - * AST-2014-016: Remote crash vulnerability in PJSIP channel driver - - When handling an INVITE with Replaces message the res_pjsip_refer module - incorrectly assumes that it will be operating on a channel that has just been - created. If the INVITE with Replaces message is sent in-dialog after a session - has been established this assumption will be incorrect. The res_pjsip_refer - module will then hang up a channel that is actually owned by another thread. - When this other thread attempts to use the just hung up channel it will end up - using a freed channel which will likely result in a crash. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-012, AST-2014-013, AST-2014-014, AST-2014-015, - AST-2014-016, AST-2014-017, and AST-2014-018, which were released at the same - time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert3 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert8 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.32.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.14.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.7.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-012.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-013.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-014.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-015.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-016.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-017.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-018.pdf- The Asterisk Development Team is pleased to announce the release of - Asterisk 13.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - Asterisk 13 is the next major release series of Asterisk. It is a Long Term - Support (LTS) release, similar to Asterisk 11. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 13, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+13 - - A short list of new features includes: - - * Asterisk security events are now provided via AMI, allowing end users to - monitor their Asterisk system in real time for security related issues. - - * Both AMI and ARI now allow external systems to control the state of a mailbox. - Using AMI actions or ARI resources, external systems can programmatically - trigger Message Waiting Indicators (MWI) on subscribed phones. This is of - particular use to those who want to build their own VoiceMail application - using ARI. - - * ARI now supports the reception/transmission of out of call text messages using - any supported channel driver/protocol stack through ARI. Users receive out of - call text messages as JSON events over the ARI websocket connection, and can - send out of call text messages using HTTP requests. - - * The PJSIP stack now supports RFC 4662 Resource Lists, allowing Asterisk to act - as a Resource List Server. This includes defining lists of presence state, - mailbox state, or lists of presence state/mailbox state; managing - subscriptions to lists; and batched delivery of NOTIFY requests to - subscribers. - - * The PJSIP stack can now be used as a means of distributing device state or - mailbox state via PUBLISH requests to other Asterisk instances. This is - analogous to Asterisk's clustering support using XMPP or Corosync; unlike - existing clustering mechanisms, using the PJSIP stack to perform the - distribution of state does not rely on another daemon or server to perform the - work. - - And much more! - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+13+Documentation - - A full list of all new features can also be found in the CHANGES file: - - http://svnview.digium.com/svn/asterisk/branches/13/CHANGES - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.0- rebuild for new libsrtp- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28 and 11.6 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28-cert2, 11.6-cert7, 1.8.31.1, - 11.13.1, 12.6.1, and 13.0.0-beta3. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerability: - - * AST-2014-011: Asterisk Susceptibility to POODLE Vulnerability - - Asterisk is susceptible to the POODLE vulnerability in two ways: - 1) The res_jabber and res_xmpp module both use SSLv3 exclusively for their - encrypted connections. - 2) The core TLS handling in Asterisk, which is used by the chan_sip channel - driver, Asterisk Manager Interface (AMI), and Asterisk HTTP Server, by - default allow a TLS connection to fallback to SSLv3. This allows for a - MITM to potentially force a connection to fallback to SSLv3, exposing it - to the POODLE vulnerability. - - These issues have been resolved in the versions released in conjunction with - this security advisory. - - For more information about the details of this vulnerability, please read - security advisory AST-2014-011, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert7 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.31.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.13.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.6.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.0-beta3 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-011.pdf- The Asterisk Development Team has announced the release of Asterisk 11.13.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.13.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24032 - Gentoo compilation emits warning: - "_FORTIFY_SOURCE" redefined (Reported by Kilburn) - * ASTERISK-24225 - Dial option z is broken (Reported by - dimitripietro) - * ASTERISK-24178 - [patch]fromdomainport used even if not set - (Reported by Elazar Broad) - * ASTERISK-22252 - res_musiconhold cleanup - REF_DEBUG reload - warnings and ref leaks (Reported by Walter Doekes) - * ASTERISK-23997 - chan_sip: port incorrectly incremented for RTCP - ICE candidates in SDP answer (Reported by Badalian Vyacheslav) - * ASTERISK-24019 - When a Music On Hold stream starts it restarts - at beginning of file. (Reported by Jason Richards) - * ASTERISK-23767 - [patch] Dynamic IAX2 registration stops trying - if ever not able to resolve (Reported by David Herselman) - * ASTERISK-24211 - testsuite: Fix the dial_LS_options test - (Reported by Matt Jordan) - * ASTERISK-24249 - SIP debugs do not stop (Reported by Avinash - Mohod) - * ASTERISK-23577 - res_rtp_asterisk: Crash in - ast_rtp_on_turn_rtp_state when RTP instance is NULL (Reported by - Jay Jideliov) - * ASTERISK-23634 - With TURN Asterisk crashes on multiple (7-10) - concurrent WebRTC (avpg/encryption/icesupport) calls (Reported - by Roman Skvirsky) - * ASTERISK-24301 - Security: Out of call MESSAGE requests - processed via Message channel driver can crash Asterisk - (Reported by Matt Jordan) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24171 - [patch] Provide a manpage for the aelparse - utility (Reported by Jeremy Lainé) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.13.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 11.6 and Asterisk 11 and 12. The available security releases are - released as versions 11.6-cert6, 11.12.1, and 12.5.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - Please note that the release of these versions resolves the following security - vulnerability: - - * AST-2014-010: Remote Crash when Handling Out of Call Message in Certain - Dialplan Configurations - - Additionally, the release of Asterisk 12.5.1 resolves the following security - vulnerability: - - * AST-2014-009: Remote Crash Based on Malformed SIP Subscription Requests - - Note that the crash described in AST-2014-010 can be worked around through - dialplan configuration. Given the likelihood of the issue, an advisory was - deemed to be warranted. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-009 and AST-2014-010, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert6 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.12.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.5.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-009.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-010.pdf- The Asterisk Development Team has announced the release of Asterisk 11.12.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.12.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-23911 - URIENCODE/URIDECODE: WARNING about passing an - empty string is a bit over zealous (Reported by Matt Jordan) - * ASTERISK-23985 - PresenceState Action response does not contain - ActionID; duplicates Message Header (Reported by Matt Jordan) - * ASTERISK-23814 - No call started after peer dialed (Reported by - Igor Goncharovsky) - * ASTERISK-24087 - [patch]chan_sip: sip_subscribe_mwi_destroy - should not call sip_destroy (Reported by Corey Farrell) - * ASTERISK-23818 - PBX_Lua: after asterisk startup module is - loaded, but dialplan not available (Reported by Dennis Guse) - * ASTERISK-18345 - [patch] sips connection dropped by asterisk - with a large INVITE (Reported by Stephane Chazelas) - * ASTERISK-23508 - Memory Corruption in - __ast_string_field_ptr_build_va (Reported by Arnd Schmitter) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-21178 - Improve documentation for manager command - Getvar, Setvar (Reported by Rusty Newton) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.12.0- The Asterisk Development Team has announced the release of Asterisk 11.11.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.11.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-22551 - Session timer : UAS (Asterisk) starts counting - at Invite, UAC starts counting at 200 OK. (Reported by i2045) - * ASTERISK-23792 - Mutex left locked in chan_unistim.c (Reported - by Peter Whisker) - * ASTERISK-23582 - [patch]Inconsistent column length in *odbc - (Reported by Walter Doekes) - * ASTERISK-23803 - AMI action UpdateConfig EmptyCat clears all - categories but the requested one (Reported by zvision) - * ASTERISK-23035 - ConfBridge with name longer than max (32 chars) - results in several bridges with same conf_name (Reported by - Iñaki Cívico) - * ASTERISK-23824 - ConfBridge: Users cannot be muted via CLI or - AMI when waiting to enter a conference (Reported by Matt Jordan) - * ASTERISK-23683 - #includes - wildcard character in a path more - than one directory deep - results in no config parsing on module - reload (Reported by tootai) - * ASTERISK-23827 - autoservice thread doesn't exit at shutdown - (Reported by Corey Farrell) - * ASTERISK-23609 - Security: AMI action MixMonitor allows - arbitrary programs to be run (Reported by Corey Farrell) - * ASTERISK-23673 - Security: DOS by consuming the number of - allowed HTTP connections. (Reported by Richard Mudgett) - * ASTERISK-23246 - DEBUG messages in sdp_crypto.c display despite - a DEBUG level of zero (Reported by Rusty Newton) - * ASTERISK-23766 - [patch] Specify timeout for database write in - SQLite (Reported by Igor Goncharovsky) - * ASTERISK-23844 - Load of pbx_lua fails on sample extensions.lua - with Lua 5.2 or greater due to addition of goto statement - (Reported by Rusty Newton) - * ASTERISK-23818 - PBX_Lua: after asterisk startup module is - loaded, but dialplan not available (Reported by Dennis Guse) - * ASTERISK-23834 - res_rtp_asterisk debug message gives wrong - length if ICE (Reported by Richard Kenner) - * ASTERISK-23790 - [patch] - SIP From headers longer than 256 - characters result in dropped call and 'No closing bracket' - warnings. (Reported by uniken1) - * ASTERISK-23917 - res_http_websocket: Delay in client processing - large streams of data causes disconnect and stuck socket - (Reported by Matt Jordan) - * ASTERISK-23908 - [patch]When using FEC error correction, - asterisk tries considers negative sequence numbers as missing - (Reported by Torrey Searle) - * ASTERISK-23921 - refcounter.py uses excessive ram for large refs - files (Reported by Corey Farrell) - * ASTERISK-23948 - REF_DEBUG fails to record ao2_ref against - objects that were already freed (Reported by Corey Farrell) - * ASTERISK-23916 - [patch]SIP/SDP fmtp line may include whitespace - between attributes (Reported by Alexander Traud) - * ASTERISK-23984 - Infinite loop possible in ast_careful_fwrite() - (Reported by Steve Davies) - * ASTERISK-23897 - [patch]Change in SETUP ACK handling (checking - PI) in revision 413765 breaks working environments (Reported by - Pavel Troller) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-23492 - Add option to safe_asterisk to disable - backgrounding (Reported by Walter Doekes) - * ASTERISK-22961 - [patch] DTLS-SRTP not working with SHA-256 - (Reported by Jay Jideliov) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.11.0- Perl 5.20 rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Drop the 389 directory server schema (1061414)- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.6, and Asterisk 1.8, 11, and 12. The available security - releases are released as versions 1.8.15-cert7, 11.6-cert4, 1.8.28.2, 11.10.2, - and 12.3.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - These releases resolve security vulnerabilities that were previously fixed in - 1.8.15-cert6, 11.6-cert3, 1.8.28.1, 11.10.1, and 12.3.1. Unfortunately, the fix - for AST-2014-007 inadvertently introduced a regression in Asterisk's TCP and TLS - handling that prevented Asterisk from sending data over these transports. This - regression and the security vulnerabilities have been fixed in the versions - specified in this release announcement. - - The security patches for AST-2014-007 have been updated with the fix for the - regression, and are available at http://downloads.asterisk.org/pub/security - - Please note that the release of these versions resolves the following security - vulnerabilities: - - * AST-2014-005: Remote Crash in PJSIP Channel Driver's Publish/Subscribe - Framework - - * AST-2014-006: Permission Escalation via Asterisk Manager User Unauthorized - Shell Access - - * AST-2014-007: Denial of Service via Exhaustion of Allowed Concurrent HTTP - Connections - - * AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-005, AST-2014-006, AST-2014-007, and AST-2014-008, - which were released with the previous versions that addressed these - vulnerabilities. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert7 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.28.2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.10.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.3.2 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-005.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-006.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-007.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-008.pdf- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.6, and Asterisk 1.8, 11, and 12. The available security - releases are released as versions 1.8.15-cert6, 11.6-cert3, 1.8.28.1, 11.10.1, - and 12.3.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following issue: - - * AST-2014-007: Denial of Service via Exhaustion of Allowed Concurrent HTTP - Connections - - Establishing a TCP or TLS connection to the configured HTTP or HTTPS port - respectively in http.conf and then not sending or completing a HTTP request - will tie up a HTTP session. By doing this repeatedly until the maximum number - of open HTTP sessions is reached, legitimate requests are blocked. - - Additionally, the release of 11.6-cert3, 11.10.1, and 12.3.1 resolves the - following issue: - - * AST-2014-006: Permission Escalation via Asterisk Manager User Unauthorized - Shell Access - - Manager users can execute arbitrary shell commands with the MixMonitor manager - action. Asterisk does not require system class authorization for a manager - user to use the MixMonitor action, so any manager user who is permitted to use - manager commands can potentially execute shell commands as the user executing - the Asterisk process. - - Additionally, the release of 12.3.1 resolves the following issues: - - * AST-2014-005: Remote Crash in PJSIP Channel Driver's Publish/Subscribe - Framework - - A remotely exploitable crash vulnerability exists in the PJSIP channel - driver's pub/sub framework. If an attempt is made to unsubscribe when not - currently subscribed and the endpoint's “sub_min_expiry” is set to zero, - Asterisk tries to create an expiration timer with zero seconds, which is not - allowed, so an assertion raised. - - * AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions - - When a SIP transaction timeout caused a subscription to be terminated, the - action taken by Asterisk was guaranteed to deadlock the thread on which SIP - requests are serviced. Note that this behavior could only happen on - established subscriptions, meaning that this could only be exploited if an - attacker bypassed authentication and successfully subscribed to a real - resource on the Asterisk server. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-005, AST-2014-006, AST-2014-007, and AST-2014-008, - which were released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert6 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.28.1 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.10.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.3.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-005.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-006.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-007.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-008.pdf- The Asterisk Development Team has announced the release of Asterisk 11.10.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.10.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-23547 - [patch] app_queue removing callers from queue - when reloading (Reported by Italo Rossi) - * ASTERISK-23559 - app_voicemail fails to load after fix to - dialplan functions (Reported by Corey Farrell) - * ASTERISK-22846 - testsuite: masquerade super test fails on all - branches (still) (Reported by Matt Jordan) - * ASTERISK-23545 - Confbridge talker detection settings - configuration load bug (Reported by John Knott) - * ASTERISK-23546 - CB_ADD_LEN does not do what you'd think - (Reported by Walter Doekes) - * ASTERISK-23620 - Code path in app_stack fails to unlock list - (Reported by Bradley Watkins) - * ASTERISK-23616 - Big memory leak in logger.c (Reported by - ibercom) - * ASTERISK-23576 - Build failure on SmartOS / Illumos / SunOS - (Reported by Sebastian Wiedenroth) - * ASTERISK-23550 - Newer sound sets don't show up in menuselect - (Reported by Rusty Newton) - * ASTERISK-18331 - app_sms failure (Reported by David Woodhouse) - * ASTERISK-19465 - P-Asserted-Identity Privacy (Reported by - Krzysztof Chmielewski) - * ASTERISK-23605 - res_http_websocket: Race condition in shutting - down websocket causes crash (Reported by Matt Jordan) - * ASTERISK-23707 - Realtime Contacts: Apparent mismatch between - PGSQL database state and Asterisk state (Reported by Mark - Michelson) - * ASTERISK-23381 - [patch]ChanSpy- Barge only works on the initial - 'spy', if the spied-on channel makes a new call, unable to - barge. (Reported by Robert Moss) - * ASTERISK-23665 - Wrong mime type for codec H263-1998 (h263+) - (Reported by Guillaume Maudoux) - * ASTERISK-23664 - Incorrect H264 specification in SDP. (Reported - by Guillaume Maudoux) - * ASTERISK-22977 - chan_sip+CEL: missing ANSWER and PICKUP event - for INVITE/w/replaces pickup (Reported by Walter Doekes) - * ASTERISK-23709 - Regression in Dahdi/Analog/waitfordialtone - (Reported by Steve Davies) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-23649 - [patch]Support for DTLS retransmission - (Reported by NITESH BANSAL) - * ASTERISK-23564 - [patch]TLS/SRTP status of channel not currently - available in a CLI command (Reported by Patrick Laimbock) - * ASTERISK-23754 - [patch] Use var/lib directory for log file - configured in asterisk.conf (Reported by Igor Goncharovsky) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.10.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- build against gmime-devel not gmime22-devel - do not use -m64 on aarch64- The Asterisk Development Team has announced the release of Asterisk 11.9.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.9.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-22790 - check_modem_rate() may return incorrect rate - for V.27 (Reported by Paolo Compagnini) - * ASTERISK-23034 - [patch] manager Originate doesn't abort on - failed format_cap allocation (Reported by Corey Farrell) - * ASTERISK-23061 - [Patch] 'textsupport' setting not mentioned in - sip.conf.sample (Reported by Eugene) - * ASTERISK-23028 - [patch] Asterisk man pages contains unquoted - minus signs (Reported by Jeremy Lainé) - * ASTERISK-23046 - Custom CDR fields set during a GoSUB called - from app_queue are not inserted (Reported by Denis Pantsyrev) - * ASTERISK-23027 - [patch] Spelling typo "transfered" instead of - "transferred" (Reported by Jeremy Lainé) - * ASTERISK-23008 - Local channels loose CALLERID name when DAHDI - channel connects (Reported by Michael Cargile) - * ASTERISK-23100 - [patch] In chan_mgcp the ident in transmitted - request and request queue may differ - fix for locking (Reported - by adomjan) - * ASTERISK-22988 - [patch]T38 , SIP 488 after Rejecting image - media offer due to invalid or unsupported syntax (Reported by - adomjan) - * ASTERISK-22861 - [patch]Specifying a null time as parameter to - GotoIfTime or ExecIfTime causes segmentation fault (Reported by - Sebastian Murray-Roberts) - * ASTERISK-17837 - extconfig.conf - Maximum Include level (1) - exceeded (Reported by pz) - * ASTERISK-22662 - Documentation fix? - queues.conf says - persistentmembers defaults to yes, it appears to lie (Reported - by Rusty Newton) - * ASTERISK-23134 - [patch] res_rtp_asterisk port selection cannot - handle selinux port restrictions (Reported by Corey Farrell) - * ASTERISK-23220 - STACK_PEEK function with no arguments causes - crash/core dump (Reported by James Sharp) - * ASTERISK-19773 - Asterisk crash on issuing Asterisk-CLI 'reload' - command multiple times on cli_aliases (Reported by Joel Vandal) - * ASTERISK-22757 - segfault in res_clialiases.so on reload when - mapping "module reload" command (Reported by Gareth Blades) - * ASTERISK-17727 - [patch] TLS doesn't get all certificate chain - (Reported by LN) - * ASTERISK-23178 - devicestate.h: device state setting functions - are documented with the wrong return values (Reported by - Jonathan Rose) - * ASTERISK-23232 - LocalBridge AMI Event LocalOptimization value - is opposite to what's expected (Reported by Leon Roy) - * ASTERISK-23098 - [patch]possible null pointer dereference in - format.c (Reported by Marcello Ceschia) - * ASTERISK-23297 - Asterisk 12, pbx_config.so segfaults if - res_parking.so is not loaded, or if res_parking.conf has no - configuration (Reported by CJ Oster) - * ASTERISK-23069 - Custom CDR variable not recorded when set in - macro called from app_queue (Reported by Bryan Anderson) - * ASTERISK-19499 - ConfBridge MOH is not working for transferee - after attended transfer (Reported by Timo Teräs) - * ASTERISK-23261 - [patch]Output mixup in - ${CHANNEL(rtpqos,audio,all)} (Reported by rsw686) - * ASTERISK-23279 - [patch]Asterisk doesn't support the dynamic - payload change in rtp mapping in the 200 OK response (Reported - by NITESH BANSAL) - * ASTERISK-23255 - UUID included for Redhat, but missing for - Debian distros in install_prereq script (Reported by Rusty - Newton) - * ASTERISK-23260 - [patch]ForkCDR v option does not keep CDR - variables for subsequent records (Reported by zvision) - * ASTERISK-23141 - Asterisk crashes on Dial(), in - pbx_find_extension at pbx.c (Reported by Maxim) - * ASTERISK-23336 - Asterisk warning "Don't know how to indicate - condition 33 on ooh323c" on outgoing calls from H323 to SIP peer - (Reported by Alexander Semych) - * ASTERISK-23231 - Since 405693 If we have res_fax.conf file set - to minrate=2400, then res_fax refuse to load (Reported by David - Brillert) - * ASTERISK-23135 - Crash - segfault in ast_channel_hangupcause_set - - probably introduced in 11.7.0 (Reported by OK) - * ASTERISK-23323 - [patch]chan_sip: missing p->owner checks in - handle_response_invite (Reported by Walter Doekes) - * ASTERISK-23406 - [patch]Fix typo in "sip show peer" (Reported by - ibercom) - * ASTERISK-23310 - bridged channel crashes in bridge_p2p_rtp_write - (Reported by Jeremy Lainé) - * ASTERISK-22911 - [patch]Asterisk fails to resume WebRTC call - from hold (Reported by Vytis Valentinavičius) - * ASTERISK-23104 - Specifying the SetVar AMI without a Channel - cause Asterisk to crash (Reported by Joel Vandal) - * ASTERISK-21930 - [patch]WebRTC over WSS is not working. - (Reported by John) - * ASTERISK-23383 - Wrong sense test on stat return code causes - unchanged config check to break with include files. (Reported by - David Woolley) - * ASTERISK-20149 - Crash when faxing SIP to SIP with strictrtp set - to yes (Reported by Alexandr Gordeev) - * ASTERISK-17523 - Qualify for static realtime peers does not work - (Reported by Maciej Krajewski) - * ASTERISK-21406 - [patch] chan_sip deadlock on monlock between - unload_module and do_monitor (Reported by Corey Farrell) - * ASTERISK-23373 - [patch]Security: Open FD exhaustion with - chan_sip Session-Timers (Reported by Corey Farrell) - * ASTERISK-23340 - Security Vulnerability: stack allocation of - cookie headers in loop allows for unauthenticated remote denial - of service attack (Reported by Matt Jordan) - * ASTERISK-23311 - Manager - MoH Stop Event fails to show up when - leaving Conference (Reported by Benjamin Keith Ford) - * ASTERISK-23420 - [patch]Memory leak in manager_add_filter - function in manager.c (Reported by Etienne Lessard) - * ASTERISK-23488 - Logic error in callerid checksum processing - (Reported by Russ Meyerriecks) - * ASTERISK-23461 - Only first user is muted when joining - confbridge with 'startmuted=yes' (Reported by Chico Manobela) - * ASTERISK-20841 - fromdomain not honored on outbound INVITE - request (Reported by Kelly Goedert) - * ASTERISK-22079 - Segfault: INTERNAL_OBJ (user_data=0x6374652f) - at astobj2.c:120 (Reported by Jamuel Starkey) - * ASTERISK-23509 - [patch]SayNumber for Polish language tries to - play empty files for numbers divisible by 100 (Reported by - zvision) - * ASTERISK-23103 - [patch]Crash in ast_format_cmp, in ao2_find - (Reported by JoshE) - * ASTERISK-23391 - Audit dialplan function usage of channel - variable (Reported by Corey Farrell) - * ASTERISK-23548 - POST to ARI sometimes returns no body on - success (Reported by Scott Griepentrog) - * ASTERISK-23460 - ooh323 channel stuck if call is placed directly - and gatekeeper is not available (Reported by Dmitry Melekhov) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-22980 - [patch]Allow building cdr_radius and cel_radius - against libfreeradius-client (Reported by Jeremy Lainé) - * ASTERISK-22661 - Unable to exit ChanSpy if spied channel does - not have a call in progress (Reported by Chris Hillman) - * ASTERISK-23099 - [patch] WSS: enable ast_websocket_read() - function to read the whole available data at first and then wait - for any fragmented packets (Reported by Thava Iyer)- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.6, and Asterisk 1.8, 11, and 12. The available security - releases are released as versions 1.8.15-cert5, 11.6-cert2, 1.8.26.1, 11.8.1, - and 12.1.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * AST-2014-001: Stack overflow in HTTP processing of Cookie headers. - - Sending a HTTP request that is handled by Asterisk with a large number of - Cookie headers could overflow the stack. - - Another vulnerability along similar lines is any HTTP request with a - ridiculous number of headers in the request could exhaust system memory. - - * AST-2014-002: chan_sip: Exit early on bad session timers request - - This change allows chan_sip to avoid creation of the channel and - consumption of associated file descriptors altogether if the inbound - request is going to be rejected anyway. - - Additionally, the release of 12.1.1 resolves the following issue: - - * AST-2014-003: res_pjsip: When handling 401/407 responses don't assume a - request will have an endpoint. - - This change removes the assumption that an outgoing request will always - have an endpoint and makes the authenticate_qualify option work once again. - - Finally, a security advisory, AST-2014-004, was released for a vulnerability - fixed in Asterisk 12.1.0. Users of Asterisk 12.0.0 are encouraged to upgrade to - 12.1.1 to resolve both vulnerabilities. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-001, AST-2014-002, AST-2014-003, and AST-2014-004, - which were released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert5 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.26.1 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.8.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.1.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-001.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-002.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-003.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-004.pdf- The Asterisk Development Team has announced the release of Asterisk 11.8.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.8.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-22544 - Italian prompt vm-options has advertisement in - it (Reported by Rusty Newton) - * ASTERISK-21383 - STUN Binding Requests Not Being Sent Back from - Asterisk to Chrome (Reported by Shaun Clark) - * ASTERISK-22478 - [patch]Can't use pound(hash) symbol for custom - DTMF menus in ConfBridge (processed as directive) (Reported by - Nicolas Tanski) - * ASTERISK-12117 - chan_sip creates a new local tag (from-tag) for - every register message (Reported by Pawel Pierscionek) - * ASTERISK-20862 - Asterisk min and max member penalties not - honored when set with 0 (Reported by Schmooze Com) - * ASTERISK-22746 - [patch]Crash in chan_dahdi during caller id - read (Reported by Michael Walton) - * ASTERISK-22788 - [patch] main/translate.c: access to variable f - after free in ast_translate() (Reported by Corey Farrell) - * ASTERISK-21242 - Segfault when T.38 re-invite retransmission - receives 200 OK (Reported by Ashley Winters) - * ASTERISK-22590 - BufferOverflow in unpacksms16() when receiving - 16 bit multipart SMS with app_sms (Reported by Jan Juergens) - * ASTERISK-22905 - Prevent Asterisk functions that are 'dangerous' - from being executed from external interfaces (Reported by Matt - Jordan) - * ASTERISK-23021 - Typos in code : "avaliable" instead of - "available" (Reported by Jeremy Lainé) - * ASTERISK-22970 - [patch]Documentation fix for QUOTE() (Reported - by Gareth Palmer) - * ASTERISK-21960 - ooh323 channels stuck (Reported by Dmitry - Melekhov) - * ASTERISK-22350 - DUNDI - core dump on shutdown - segfault in - sqlite3_reset from /usr/lib/libsqlite3.so.0 (Reported by Birger - "WIMPy" Harzenetter) - * ASTERISK-22942 - [patch] - Asterisk crashed after - Set(FAXOPT(faxdetect)=t38) (Reported by adomjan) - * ASTERISK-22856 - [patch]SayUnixTime in polish reads minutes - instead of seconds (Reported by Robert Mordec) - * ASTERISK-22854 - [patch] - Deadlock between cel_pgsql unload and - core_event_dispatcher taskprocessor thread (Reported by Etienne - Lessard) - * ASTERISK-22910 - [patch] - REPLACE() calls strcpy on overlapping - memory when is empty (Reported by Gareth Palmer) - * ASTERISK-22871 - cel_pgsql module not loading after "reload" or - "reload cel_pgsql.so" command (Reported by Matteo) - * ASTERISK-23084 - [patch]rasterisk needlessly prints the - AST-2013-007 warning (Reported by Tzafrir Cohen) - * ASTERISK-17138 - [patch] Asterisk not re-registering after it - receives "Forbidden - wrong password on authentication" - (Reported by Rudi) - * ASTERISK-23011 - [patch]configure.ac and pbx_lua don't support - lua 5.2 (Reported by George Joseph) - * ASTERISK-22834 - Parking by blind transfer when lot full orphans - channels (Reported by rsw686) - * ASTERISK-23047 - Orphaned (stuck) channel occurs during a failed - SIP transfer to parking space (Reported by Tommy Thompson) - * ASTERISK-22946 - Local From tag regression with sipgate.de - (Reported by Stephan Eisvogel) - * ASTERISK-23010 - No BYE message sent when sip INVITE is received - (Reported by Ryan Tilton) - * ASTERISK-23135 - Crash - segfault in ast_channel_hangupcause_set - - probably introduced in 11.7.0 (Reported by OK) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-22728 - [patch] Improve Understanding Of 'Forcerport' - When Running "sip show peers" (Reported by Michael L. Young) - * ASTERISK-22659 - Make a new core and extra sounds release - (Reported by Rusty Newton) - * ASTERISK-22919 - core show channeltypes slicing (Reported by - outtolunc) - * ASTERISK-22918 - dahdi show channels slices PRI channel dnid on - output (Reported by outtolunc) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.8.0- The Asterisk Development Team has announced the release of Asterisk 11.7.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.7.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- app_confbridge: Can now set the language used for announcements - to the conference. - (Closes issue ASTERISK-19983. Reported by Jonathan White) - - * --- app_queue: Fix CLI "queue remove member" queue_log entry. - (Closes issue ASTERISK-21826. Reported by Oscar Esteve) - - * --- chan_sip: Do not increment the SDP version between 183 and 200 - responses. - (Closes issue ASTERISK-21204. Reported by NITESH BANSAL) - - * --- chan_sip: Allow a sip peer to accept both AVP and AVPF calls - (Closes issue ASTERISK-22005. Reported by Torrey Searle) - - * --- chan_sip: Fix Realtime Peer Update Problem When Un-registering - And Expires Header In 200ok - (Closes issue ASTERISK-22428. Reported by Ben Smithurst) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.7.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.2, and Asterisk 1.8, 10, and 11. The available security - releases are released as versions 1.8.15-cert4, 11.2-cert3, 1.8.24.1, 10.12.4, - 10.12.4-digiumphones, and 11.6.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * A buffer overflow when receiving odd length 16 bit messages in app_sms. An - infinite loop could occur which would overwrite memory when a message is - received into the unpacksms16() function and the length of the message is an - odd number of bytes. - - * Prevent permissions escalation in the Asterisk Manager Interface. Asterisk - now marks certain individual dialplan functions as 'dangerous', which will - inhibit their execution from external sources. - - A 'dangerous' function is one which results in a privilege escalation. For - example, if one were to read the channel variable SHELL(rm -rf /) Bad - Things(TM) could happen; even if the external source has only read - permissions. - - Execution from external sources may be enabled by setting 'live_dangerously' - to 'yes' in the [options] section of asterisk.conf. Although doing so is not - recommended. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2013-006 and AST-2013-007, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert4 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.2-cert3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.24.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.4-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.6.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2013-006.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-007.pdf- The Asterisk Development Team has announced the release of Asterisk 11.6.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.6.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Confbridge: empty conference not being torn down - (Closes issue ASTERISK-21859. Reported by Chris Gentle) - - * --- Let Queue wrap up time influence member availability - (Closes issue ASTERISK-22189. Reported by Tony Lewis) - - * --- Fix a longstanding issue with MFC-R2 configuration that - prevented users - (Closes issue ASTERISK-21117. Reported by Rafael Angulo) - - * --- chan_iax2: Fix saving the wrong expiry time in astdb. - (Closes issue ASTERISK-22504. Reported by Stefan Wachtler) - - * --- Fix segfault for certain invalid WebSocket input. - (Closes issue ASTERISK-21825. Reported by Alfred Farrugia) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.6.0- Disable hardened build, as it's apparently causing problems loading modules.- Enable hardened build BZ#954338 - Significant clean ups- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.2, and Asterisk 1.8, 10, and 11. The available security releases - are released as versions 1.8.15-cert2, 11.2-cert2, 1.8.23.1, 10.12.3, 10.12.3-digiumphones, - and 11.5.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * A remotely exploitable crash vulnerability exists in the SIP channel driver if - an ACK with SDP is received after the channel has been terminated. The - handling code incorrectly assumes that the channel will always be present. - - * A remotely exploitable crash vulnerability exists in the SIP channel driver if - an invalid SDP is sent in a SIP request that defines media descriptions before - connection information. The handling code incorrectly attempts to reference - the socket address information even though that information has not yet been - set. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2013-004 and AST-2013-005, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert3 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.2-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.23.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.3-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.5.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2013-004.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-005.pdf - - The Asterisk Development Team has announced the release of Asterisk 11.5.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.5.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix Segfault In app_queue When "persistentmembers" Is Enabled - And Using Realtime - (Closes issue ASTERISK-21738. Reported by JoshE) - - * --- IAX2: fix race condition with nativebridge transfers. - (Closes issue ASTERISK-21409. Reported by alecdavis) - - * --- Fix The Payload Being Set On CN Packets And Do Not Set Marker - Bit - (Closes issue ASTERISK-21246. Reported by Peter Katzmann) - - * --- Fix One-Way Audio With auto_* NAT Settings When SIP Calls - Initiated By PBX - (Closes issue ASTERISK-21374. Reported by Michael L. Young) - - * --- chan_sip: NOTIFYs for BLF start queuing up and fail to be sent - out after retries fail - (Closes issue ASTERISK-21677. Reported by Dan Martens) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.5.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild- Perl 5.18 rebuild- rebuild (libical)- The Asterisk Development Team has announced the release of Asterisk 11.4.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.4.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix Sorting Order For Parking Lots Stored In Static Realtime - (Closes issue ASTERISK-21035. Reported by Alex Epshteyn) - - * --- Fix StopMixMonitor Hanging Up When Unable To Stop MixMonitor On - A Channel - (Closes issue ASTERISK-21294. Reported by daroz) - - * --- When a session timer expires during a T.38 call, re-invite with - correct SDP - (Closes issue ASTERISK-21232. Reported by Nitesh Bansal) - - * --- Fix white noise on SRTP decryption - (Closes issue ASTERISK-21323. Reported by andrea) - - * --- Fix reload skinny with active devices. - (Closes issue ASTERISK-16610. Reported by wedhorn) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.4.0- fix build with lua 5.2- The Asterisk Development Team has announced the release of Asterisk 11.3.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.3.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix issue where chan_mobile fails to bind to first available - port - (Closes issue ASTERISK-16357. Reported by challado) - - * --- Fix Queue Log Reporting Every Call COMPLETECALLER With "h" - Extension Present - (Closes issue ASTERISK-20743. Reported by call) - - * --- Retain XMPP filters across reconnections so external modules - continue to function as expected. - (Closes issue ASTERISK-20916. Reported by kuj) - - * --- Ensure that a declined media stream is terminated with a '\r\n' - (Closes issue ASTERISK-20908. Reported by Dennis DeDonatis) - - * --- Fix pjproject compilation in certain circumstances - (Closes issue ASTERISK-20681. Reported by Dinesh Ramjuttun) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.3.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15 and Asterisk 1.8, 10, and 11. The available security releases - are released as versions 1.8.15-cert2, 1.8.20.2, 10.12.2, 10.12.2-digiumphones, - and 11.2.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * A possible buffer overflow during H.264 format negotiation. The format - attribute resource for H.264 video performs an unsafe read against a media - attribute when parsing the SDP. - - This vulnerability only affected Asterisk 11. - - * A denial of service exists in Asterisk's HTTP server. AST-2012-014, fixed - in January of this year, contained a fix for Asterisk's HTTP server for a - remotely-triggered crash. While the fix prevented the crash from being - triggered, a denial of service vector still exists with that solution if an - attacker sends one or more HTTP POST requests with very large Content-Length - values. - - This vulnerability affects Certified Asterisk 1.8.15, Asterisk 1.8, 10, and 11 - - * A potential username disclosure exists in the SIP channel driver. When - authenticating a SIP request with alwaysauthreject enabled, allowguest - disabled, and autocreatepeer disabled, Asterisk discloses whether a user - exists for INVITE, SUBSCRIBE, and REGISTER transactions in multiple ways. - - This vulnerability affects Certified Asterisk 1.8.15, Asterisk 1.8, 10, and 11 - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2013-001, AST-2013-002, and AST-2013-003, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.20.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.2-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.2.2 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2013-001.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-002.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-003.pdf- The Asterisk Development Team has announced the release of Asterisk 11.2.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.2.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Fix astcanary startup problem due to wrong pid value from before - daemon call - (Closes issue ASTERISK-20947. Reported by Jakob Hirsch) - - * --- Update init.d scripts to handle stderr; readd splash screen for - remote consoles - (Closes issue ASTERISK-20945. Reported by Warren Selby) - - * --- Reset RTP timestamp; sequence number on SSRC change - (Closes issue ASTERISK-20906. Reported by Eelco Brolman) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.2.1- The Asterisk Development Team has announced the release of Asterisk 11.2.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.2.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- app_meetme: Fix channels lingering when hung up under certain - conditions - (Closes issue ASTERISK-20486. Reported by Michael Cargile) - - * --- Fix stuck DTMF when bridge is broken. - (Closes issue ASTERISK-20492. Reported by Jeremiah Gowdy) - - * --- Add missing support for "who hung up" to chan_motif. - (Closes issue ASTERISK-20671. Reported by Matt Jordan) - - * --- Remove a fixed size limitation for producing SDP and change how - ICE support is disabled by default. - (Closes issue ASTERISK-20643. Reported by coopvr) - - * --- Fix chan_sip websocket payload handling - (Closes issue ASTERISK-20745. Reported by Iñaki Baz Castillo) - - * --- Fix pjproject compilation in certain circumstances - (Closes issue ASTERISK-20681. Reported by Dinesh Ramjuttun) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.2.0- The Asterisk Development Team has announced a security release for Asterisk 11, - Asterisk 11.1.2. This release addresses the security vulnerabilities reported in - AST-2012-014 and AST-2012-015, and replaces the previous version of Asterisk 11 - released for these security vulnerabilities. The prior release left open a - vulnerability in res_xmpp that exists only in Asterisk 11; as such, other - versions of Asterisk were resolved correctly by the previous releases. - - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following two issues: - - * Stack overflows that occur in some portions of Asterisk that manage a TCP - connection. In SIP, this is exploitable via a remote unauthenticated session; - in XMPP and HTTP connections, this is exploitable via remote authenticated - sessions. The vulnerabilities in SIP and HTTP were corrected in a prior - release of Asterisk; the vulnerability in XMPP is resolved in this release. - - * A denial of service vulnerability through exploitation of the device state - cache. Anonymous calls had the capability to create devices in Asterisk that - would never be disposed of. Handling the cachability of device states - aggregated via XMPP is handled in this release. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-014 and AST-2012-015. - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.1.2 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-014.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-015.pdf - - Thank you for your continued support of Asterisk - and we apologize for having - to do this twice!- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8, 10, and 11. The available security releases - are released as versions 1.8.11-cert10, 1.8.19.1, 10.11.1, 10.11.1-digiumphones, - and 11.1.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following two issues: - - * Stack overflows that occur in some portions of Asterisk that manage a TCP - connection. In SIP, this is exploitable via a remote unauthenticated session; - in XMPP and HTTP connections, this is exploitable via remote authenticated - sessions. - - * A denial of service vulnerability through exploitation of the device state - cache. Anonymous calls had the capability to create devices in Asterisk that - would never be disposed of. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-014 and AST-2012-015, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert10 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.19.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.11.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.11.1-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.1.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-014.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-015.pdf- The Asterisk Development Team has announced the release of Asterisk 11.1.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.1.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix execution of 'i' extension due to uninitialized variable. - (Closes issue ASTERISK-20455. Reported by Richard Miller) - - * --- Prevent resetting of NATted realtime peer address on reload. - (Closes issue ASTERISK-18203. Reported by daren ferreira) - - * --- Fix ConfBridge crash if no timing module loaded. - (Closes issue ASTERISK-19448. Reported by feyfre) - - * --- Fix the Park 'r' option when a channel parks itself. - (Closes issue ASTERISK-19382. Reported by James Stocks) - - * --- Fix an issue where outgoing calls would fail to establish audio - due to ICE negotiation failures. - (Closes issue ASTERISK-20554. Reported by mmichelson) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.1.0- The Asterisk Development Team has announced the release of Asterisk 11.0.2. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.0.2 resolves an issue reported by the - community and would have not been possible without your participation. - Thank you! - - The following is the issue resolved in this release: - - * --- chan_local: Fix local_pvt ref leak in local_devicestate(). - (Closes issue ASTERISK-20769. Reported by rmudgett) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.0.2- simplify LDFLAGS setting- clean up things to allow building on arm arches- The Asterisk Development Team has announced the release of Asterisk 11.0.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.0.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- chan_sip: Fix a bug causing SIP reloads to remove all entries - from the registry - (Closes issue ASTERISK-20611. Reported by Alisher) - - * --- confbridge: Fix a bug which made conferences not record with - AMI/CLI commands - (Closes issue ASTERISK-20601. Reported by Vilius) - - * --- Fix an issue with res_http_websocket where the chan_sip - WebSocket handler could not be registered. - (Closes issue ASTERISK-20631. Reported by danjenkins) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.0.1- The Asterisk Development Team is pleased to announce the release of - Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - Asterisk 11 is the next major release series of Asterisk. It is a Long Term - Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for DTLS-SRTP in chan_sip. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0- The Asterisk Development Team has announced the second release candidate of - Asterisk 11.0.0. This release candidate is available for immediate - download at http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.0.0-rc2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release candidate: - - * --- Fix an issue where outgoing calls would fail to establish audio - due to ICE negotiation failures. - (Closes issue ASTERISK-20554. Reported by mmichelson) - - * --- Ensure Asterisk fails TCP/TLS SIP calls when certificate - checking fails - (Closes issue ASTERISK-20559. Reported by kmoore) - - * --- Don't make chan_sip export global symbols. - (Closes issue ASTERISK-20545. Reported by kmoore) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.0.0-rc2- The Asterisk Development Team is pleased to announce the first release candidate - of Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - All interested users of Asterisk are encouraged to participate in the - Asterisk 11 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - All Asterisk users are invited to participate in the #asterisk-testing channel - on IRC to work together in testing the many parts of Asterisk. - - Asterisk 11 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for DTLS-SRTP in chan_sip. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0-rc1- Don't forget format_ilbc module- The Asterisk Development Team is pleased to announce the second beta release of - Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - All interested users of Asterisk are encouraged to participate in the - Asterisk 11 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - All Asterisk users are invited to participate in the #asterisk-testing channel - on IRC to work together in testing the many parts of Asterisk. - - Asterisk 11 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for DTLS-SRTP in chan_sip. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0-beta2- The Asterisk Development Team has announced the release of Asterisk 10.8.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.8.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- AST-2012-012: Resolve AMI User Unauthorized Shell Access through - ExternalIVR - (Closes issue ASTERISK-20132. Reported by Zubair Ashraf of IBM X-Force Research) - - * --- AST-2012-013: Resolve ACL rules being ignored during calls by - some IAX2 peers - (Closes issue ASTERISK-20186. Reported by Alan Frisch) - - * --- Handle extremely out of order RFC 2833 DTMF - (Closes issue ASTERISK-18404. Reported by Stephane Chazelas) - - * --- Resolve severe memory leak in CEL logging modules. - (Closes issue AST-916. Reported by Thomas Arimont) - - * --- Only re-create an SRTP session when needed - (Issue ASTERISK-20194. Reported by Nicolo Mazzon) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.8.0- fix build on s390- fix build on s390- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are - released as versions 1.8.11-cert7, 1.8.15.1, 10.7.1, and 10.7.1-digiumphones. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.11-cert7, 1.8.15.1, 10.7.1, and 10.7.1-digiumphones - resolve the following two issues: - - * A permission escalation vulnerability in Asterisk Manager Interface. This - would potentially allow remote authenticated users the ability to execute - commands on the system shell with the privileges of the user running the - Asterisk application. Please note that the README-SERIOUSLY.bestpractices.txt - file delivered with Asterisk has been updated due to this and other related - vulnerabilities fixed in previous versions of Asterisk. - - * When an IAX2 call is made using the credentials of a peer defined in a - dynamic Asterisk Realtime Architecture (ARA) backend, the ACL rules for that - peer are not applied to the call attempt. This allows for a remote attacker - who is aware of a peer's credentials to bypass the ACL rules set for that - peer. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-012 and AST-2012-013, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert7 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.15.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.7.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.7.1-digiumphones - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-012.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-013.pdf- The Asterisk Development Team has announced the release of Asterisk 10.7.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.7.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix deadlock potential with ast_set_hangupsource() calls. - (Closes issue ASTERISK-19801. Reported by Alec Davis) - - * --- Fix request routing issue when outboundproxy is used. - (Closes issue ASTERISK-20008. Reported by Marcus Hunger) - - * --- Set the Caller ID "tag" on peers even if remote party - information is present. - (Closes issue ASTERISK-19859. Reported by Thomas Arimont) - - * --- Fix NULL pointer segfault in ast_sockaddr_parse() - (Closes issue ASTERISK-20006. Reported by Michael L. Young) - - * --- Do not perform install on existing directories - (Closes issue ASTERISK-19492. Reported by Karl Fife) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.7.0- The Asterisk Development Team has announced the release of Asterisk 10.6.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.6.1 resolves an issue reported by the - community and would have not been possible without your participation. - Thank you! - - The following is the issue resolved in this release: - - * --- Remove a superfluous and dangerous freeing of an SSL_CTX. - (Closes issue ASTERISK-20074. Reported by Trevor Helmsley) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.6.1- The Asterisk Development Team has announced the release of Asterisk 10.6.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.6.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- format_mp3: Fix a possible crash in mp3_read(). - (Closes issue ASTERISK-19761. Reported by Chris Maciejewsk) - - * --- Fix local channel chains optimizing themselves out of a call. - (Closes issue ASTERISK-16711. Reported by Alec Davis) - - * --- Re-add LastMsgsSent value for SIP peers - (Closes issue ASTERISK-17866. Reported by Steve Davies) - - * --- Prevent sip_pvt refleak when an ast_channel outlasts its - corresponding sip_pvt. - (Closes issue ASTERISK-19425. Reported by David Cunningham) - - * --- Send more accurate identification information in dialog-info SIP - NOTIFYs. - (Closes issue ASTERISK-16735. Reported by Maciej Krajewski) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.6.0- The Asterisk Development Team is pleased to announce the first beta release of - Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - All interested users of Asterisk are encouraged to participate in the - Asterisk 11 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - All Asterisk users are invited to participate in the #asterisk-testing channel - on IRC to work together in testing the many parts of Asterisk. - - Asterisk 11 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the caller/callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0-beta1- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Perl 5.16 rebuild- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are - released as versions 1.8.11-cert4, 1.8.13.1, 10.5.2, and 10.5.2-digiumphones. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.11-cert4, 1.8.13.1, 10.5.2, and 10.5.2-digiumphones - resolve the following two issues: - - * If Asterisk sends a re-invite and an endpoint responds to the re-invite with - a provisional response but never sends a final response, then the SIP dialog - structure is never freed and the RTP ports for the call are never released. If - an attacker has the ability to place a call, they could create a denial of - service by using all available RTP ports. - - * If a single voicemail account is manipulated by two parties simultaneously, - a condition can occur where memory is freed twice causing a crash. - - These issues and their resolution are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-010 and AST-2012-011, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.13.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.5.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.5.2-digiumphones - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-010.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-011.pdf- Perl 5.16 rebuild- The Asterisk Development Team has announced a security release for Asterisk 10. - This security release is released as version 10.5.1. - - The release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 10.5.1 resolves the following issue: - - * A remotely exploitable crash vulnerability was found in the Skinny (SCCP) - Channel driver. When an SCCP client sends an Off Hook message, followed by - a Key Pad Button Message, a structure that was previously set to NULL is - dereferenced. This allows remote authenticated connections the ability to - cause a crash in the server, denying services to legitimate users. - - This issue and its resolution is described in the security advisory. - - For more information about the details of this vulnerability, please read - security advisory AST-2012-009, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.5.1 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-009.pdf- The Asterisk Development Team has announced the release of Asterisk 10.5.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.5.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Turn off warning message when bind address is set to any. - (Closes issue ASTERISK-19456. Reported by Michael L. Young) - - * --- Prevent overflow in calculation in ast_tvdiff_ms on 32-bit - machines - (Closes issue ASTERISK-19727. Reported by Ben Klang) - - * --- Make DAHDISendCallreroutingFacility wait 5 seconds for a reply - before disconnecting the call. - (Closes issue ASTERISK-19708. Reported by mehdi Shirazi) - - * --- Fix recalled party B feature flags for a failed DTMF atxfer. - (Closes issue ASTERISK-19383. Reported by lgfsantos) - - * --- Fix DTMF atxfer running h exten after the wrong bridge ends. - (Closes issue ASTERISK-19717. Reported by Mario) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.5.0- Perl 5.16 rebuild- The Asterisk Development Team has announced the release of Asterisk 10.4.2. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.4.2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Resolve crash in subscribing for MWI notifications - (Closes issue ASTERISK-19827. Reported by B. R) - - * --- Fix crash in ConfBridge when user announcement is played for - more than 2 users - (Closes issue ASTERISK-19899. Reported by Florian Gilcher) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.4.2- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are - released as versions 1.8.11-cert2, 1.8.12.1, and 10.4.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.11-cert2, 1.8.12.1, and 10.4.1 resolve the following - two issues: - - * A remotely exploitable crash vulnerability exists in the IAX2 channel - driver if an established call is placed on hold without a suggested music - class. Asterisk will attempt to use an invalid pointer to the music - on hold class name, potentially causing a crash. - - * A remotely exploitable crash vulnerability was found in the Skinny (SCCP) - Channel driver. When an SCCP client closes its connection to the server, - a pointer in a structure is set to NULL. If the client was not in the - on-hook state at the time the connection was closed, this pointer is later - dereferenced. This allows remote authenticated connections the ability to - cause a crash in the server, denying services to legitimate users. - - These issues and their resolution are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-007 and AST-2012-008, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.12.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.4.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-007.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-008.pdf- The Asterisk Development Team has announced the release of Asterisk 10.4.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.4.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Prevent chanspy from binding to zombie channels - (Closes issue ASTERISK-19493. Reported by lvl) - - * --- Fix Dial m and r options and forked calls generating warnings - for voice frames. - (Closes issue ASTERISK-16901. Reported by Chris Gentle) - - * --- Remove ISDN hold restriction for non-bridged calls. - (Closes issue ASTERISK-19388. Reported by Birger Harzenetter) - - * --- Fix copying of CDR(accountcode) to local channels. - (Closes issue ASTERISK-19384. Reported by jamicque) - - * --- Ensure Asterisk acknowledges ACKs to 4xx on Replaces errors - (Closes issue ASTERISK-19303. Reported by Jon Tsiros) - - * --- Eliminate double close of file descriptor in manager.c - (Closes issue ASTERISK-18453. Reported by Jaco Kroon) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.4.0- The Asterisk Development Team has announced security releases for Asterisk 1.6.2, - 1.8, and 10. The available security releases are released as versions 1.6.2.24, - 1.8.11.1, and 10.3.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.6.2.24, 1.8.11.1, and 10.3.1 resolve the following two - issues: - - * A permission escalation vulnerability in Asterisk Manager Interface. This - would potentially allow remote authenticated users the ability to execute - commands on the system shell with the privileges of the user running the - Asterisk application. - - * A heap overflow vulnerability in the Skinny Channel driver. The keypad - button message event failed to check the length of a fixed length buffer - before appending a received digit to the end of that buffer. A remote - authenticated user could send sufficient keypad button message events that the - buffer would be overrun. - - In addition, the release of Asterisk 1.8.11.1 and 10.3.1 resolve the following - issue: - - * A remote crash vulnerability in the SIP channel driver when processing UPDATE - requests. If a SIP UPDATE request was received indicating a connected line - update after a channel was terminated but before the final destruction of the - associated SIP dialog, Asterisk would attempt a connected line update on a - non-existing channel, causing a crash. - - These issues and their resolution are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-004, AST-2012-005, and AST-2012-006, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.24 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.11.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.3.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-004.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-005.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-006.pdf- Update to 10.3.0- Update to 10.2.1 from upstream. - Fix remote stack overflow in app_milliwatt. - Fix remote stack overflow, including possible code injection, in HTTP digest authentication handling. - Disable asterisk-corosync package, as it doesn't build right now. - Resolves: rhbz#804045, rhbz#804038, rhbz#804042- * Add patch extracted from upstream to build with Corosync since - OpenAIS is no longer available. - * Add PrivateTmp=true to systemd service file (#782478) - * Add some macros to make it easier to build with fewer dependencies - (with corresponding less functionality) (#787389) - * Add isa macros in a few places plus a few other changes to make it - easier to cross-compile. (#787779)- The Asterisk Development Team has announced the release of Asterisk 10.1.2. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.1.2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Fix SIP INFO DTMF handling for non-numeric codes --- - (Closes issue ASTERISK-19290. Reported by: Ira Emus) - - * --- Fix crash in ParkAndAnnounce --- - (Closes issue ASTERISK-19311. Reported-by: tootai) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.1.2- The Asterisk Development Team has announced the release of Asterisk 10.1.1. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.1.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fixes deadlocks occuring in chan_agent --- - (Closes issue ASTERISK-19285. Reported by: Alex Villacis Lasso) - - * --- Ensure entering T.38 passthrough does not cause an infinite loop --- - (Closes issue ASTERISK-18951. Reported-by: Kristijan Vrban) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.1.1- The Asterisk Development Team is pleased to announce the release of - Asterisk 10.1.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.1.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * AST-2012-001: prevent crash when an SDP offer - is received with an encrypted video stream when support for video - is disabled and res_srtp is loaded. (closes issue ASTERISK-19202) - Reported by: Catalin Sanda - - * Allow playback of formats that don't support seeking. ast_streamfile - previously did unconditional seeking on files that broke playback of - formats that don't support that functionality. This patch avoids the - seek that was causing the problem. - (closes issue ASTERISK-18994) Patched by: Timo Teras - - * Add pjmedia probation concepts to res_rtp_asterisk's learning mode. In - order to better handle RTP sources with strictrtp enabled (which is the - default setting in 10) using the learning mode to figure out new sources - when they change is handled by checking for a number of consecutive (by - sequence number) packets received to an rtp struct based on a new - configurable value called 'probation'. Also, during learning mode instead - of liberally accepting all packets received, we now reject packets until a - clear source has been determined. - - * Handle AST_CONTROL_UPDATE_RTP_PEER frames in local bridge loop. Failing - to handle AST_CONTROL_UPDATE_RTP_PEER frames in the local bridge loop - causes the loop to exit prematurely. This causes a variety of negative side - effects, depending on when the loop exits. This patch handles the frame by - essentially swallowing the frame in the local loop, as the current channel - drivers expect the RTP bridge to handle the frame, and, in the case of the - local bridge loop, no additional action is necessary. - (closes issue ASTERISK-19095) Reported by: Stefan Schmidt Tested - by: Matt Jordan - - * Fix timing source dependency issues with MOH. Prior to this patch, - res_musiconhold existed at the same module priority level as the timing - sources that it depends on. This would cause a problem when music on - hold was reloaded, as the timing source could be changed after - res_musiconhold was processed. This patch adds a new module priority - level, AST_MODPRI_TIMING, that the various timing modules are now loaded - at. This now occurs before loading other resource modules, such - that the timing source is guaranteed to be set prior to resolving - the timing source dependencies. - (closes issue ASTERISK-17474) Reporter: Luke H Tested by: Luke H, - Vladimir Mikhelson, zzsurf, Wes Van Tlghem, elguero, Thomas Arimont - Patched by elguero - - * Fix RTP reference leak. If a blind transfer were initiated using a - REFER without a prior reINVITE to place the call on hold, AND if Asterisk - were sending RTCP reports, then there was a reference leak for the - RTP instance of the transferrer. - (closes issue ASTERISK-19192) Reported by: Tyuta Vitali - - * Fix blind transfers from failing if an 'h' extension - is present. This prevents the 'h' extension from being run on the - transferee channel when it is transferred via a native transfer - mechanism such as SIP REFER. (closes issue ASTERISK-19173) Reported - by: Ross Beer Tested by: Kristjan Vrban Patches: ASTERISK-19173 by - Mark Michelson (license 5049) - - * Restore call progress code for analog ports. Extracting sig_analog - from chan_dahdi lost call progress detection functionality. Fix - analog ports from considering a call answered immediately after - dialing has completed if the callprogress option is enabled. - (closes issue ASTERISK-18841) - Reported by: Richard Miller Patched by Richard Miller - - * Fix regression that 'rtp/rtcp set debup ip' only works when a port - was also specified. - (closes issue ASTERISK-18693) Reported by: Davide Dal Reviewed by: - Walter Doekes - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.1.0- Remove asterisk-ais. OpenAIS was removed from Fedora.- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Don't build API docs as the build never finishes- The Asterisk Development Team is proud to announce the release of - Asterisk 10.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - With the release of the Asterisk 10 branch, the preceding '1.' has been removed - from the version number per the blog post available at - - - http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-arrived-at-asterisk-10/ - - The release of Asterisk 10 would not have been possible without the support and - contributions of the community. - - You can find an overview of the work involved with the 10.0.0 release in the - summary: - - http://svn.asterisk.org/svn/asterisk/tags/10.0.0/asterisk-10.0.0-summary.txt - - A short list of available features includes: - - * T.38 gateway functionality has been added to res_fax. - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - * Support for defining hints has been added to pbx_lua. - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.asterisk.org/svn/asterisk/branches/10/CHANGES - - Also, when upgrading a system between major versions, it is imperative that you - read and understand the contents of the UPGRADE.txt file, which is located at: - - http://svn.asterisk.org/svn/asterisk/branches/10/UPGRADE.txt- The Asterisk Development Team has announced the third release candidate of - Asterisk 10.0.0. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.0.0-rc3 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Add ASTSBINDIR to the list of configurable paths - - This patch also makes astdb2sqlite3 and astcanary use the configured - directory instead of relying on $PATH. - - * Don't crash on INFO automon request with no channel - - AST-2011-014. When automon was enabled in features.conf, it was possible - to crash Asterisk by sending an INFO request if no channel had been - created yet. - - * Fixed crash from orphaned MWI subscriptions in chan_sip - - This patch resolves the issue where MWI subscriptions are orphaned - by subsequent SIP SUBSCRIBE messages. - - * Fix a change in behavior in 'database show' from 1.8. - - In 1.8 and previous versions, one could use any fullword portion of - the key name, including the full key, to obtain the record. Until this - patch, this did not work for the full key. - - * Default to nat=yes; warn when nat in general and peer differ - - AST-2011-013. It is possible to enumerate SIP usernames when the general and - user/peer nat settings differ in whether to respond to the port a request is - sent from or the port listed for responses in the Via header. In 1.4 and - 1.6.2, this would mean if one setting was nat=yes or nat=route and the other - was either nat=no or nat=never. In 1.8 and 10, this would mean when one - was nat=force_rport and the other was nat=no. - - In order to address this problem, it was decided to switch the default - behavior to nat=yes/force_rport as it is the most commonly used option - and to strongly discourage setting nat per-peer/user when at all - possible. - - * Fixed SendMessage stripping extension from To: header in SIP MESSAGE - - When using the MessageSend application to send a SIP MESSAGE to a - non-peer, chan_sip stripped off the extension and failed to add it back - to the sip_pvt structure before transmitting. This patch adds the full - URI passed in from the message core to the sip_pvt structure. - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.0.0-rc3- The Asterisk Development Team has announced the second release candidate of - Asterisk 10.0.0. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.0.0-rc2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Ensure that a null vmexten does not cause a segfault - - * Fix issue with ConfBridge participants hanging up during DTMF feature - menu usage getting stuck in conference forever - (closes issue ASTERISK-18829) - Reported by: zvision - - * Fix app_macro.c MODULEINFO section termination - (closes issue ASTERISK-18848) - Reported by: Tony Mountifield - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.0.0-rc2- The Asterisk Development Team is pleased to announce the first release candidate - of Asterisk 10.0.0. This release candidate is available for immediate download - at http://downloads.asterisk.org/pub/telephony/asterisk/ - - All Asterisk users are encouraged to participate in the Asterisk 10 testing - process. Please report any issues found to the issue tracker, - https://issues.asterisk.org/jira. It is also very useful to see successful test - reports. Please post those to the asterisk-dev mailing list. - - All Asterisk users are invited to participate in the #asterisk-testing - channel on IRC to work together in testing the many parts of Asterisk. - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more - information about support time lines for Asterisk releases, see the Asterisk - versions page: https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - A short list of features includes: - - * T.38 gateway functionality has been added to res_fax. - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - (More information available at - https://wiki.asterisk.org/wiki/display/AST/ConfBridge+10 ) - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - * Support for defining hints has been added to pbx_lua. - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/10/CHANGES - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.0-rc1- Add patch from upstream SVN to fix AST-2011-012- Patch cleanup day- The Asterisk Development Team is pleased to announce the second beta release of - Asterisk 10.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - With the release of the Asterisk 10 branch, the preceding '1.' has been removed - from the version number per the blog post available at - http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-arrived-at-asterisk-10/ - - All interested users of Asterisk are encouraged to participate in the - Asterisk 10 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - - All Asterisk users are invited to participate in the #asterisk-testing - channel on IRC to work together in testing the many parts of Asterisk. - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more - information about support time lines for Asterisk releases, see the Asterisk - versions page: https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - A short list of features includes: - - * T.38 gateway functionality has been added to res_fax. - - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - - * Support for defining hints has been added to pbx_lua. - - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/10/CHANGES - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.0-beta2- - The Asterisk Development Team is pleased to announce the first beta release of - Asterisk 10.0.0-beta1. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - With the release of the Asterisk 10 branch, the preceding '1.' has been removed - from the version number per the blog post available at - http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-arrived-at-asterisk-10/ - - All interested users of Asterisk are encouraged to participate in the - Asterisk 10 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - - All Asterisk users are invited to participate in the #asterisk-testing - channel on IRC to work together in testing the many parts of Asterisk. - Additionally users can make use of the RPM and DEB packages now being built for - all Asterisk releases. More information available at - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Packages - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more - information about support time lines for Asterisk releases, see the Asterisk - versions page: https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - A short list of included features includes: - - * T.38 gateway functionality has been added to res_fax. - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - * Support for defining hints has been added to pbx_lua. - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/10/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.0-beta1- Perl mass rebuild- Perl mass rebuild- The Asterisk Development Team announces the release of Asterisk 1.8.5.0. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.5.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * Fix Deadlock with attended transfer of SIP call - (Closes issue #18837. Reported, patched by alecdavis. Tested by Irontec, ZX81, - cmaj) - - * Fixes thread blocking issue in the sip TCP/TLS implementation. - (Closes issue #18497. Reported by vois. Patched by dvossel. Tested by vois, - rossbeer, kowalma, Freddi_Fonet) - - * Be more tolerant of what URI we accept for call completion PUBLISH requests. - (Closes issue #18946. Reported by GeorgeKonopacki. Patched by mmichelson) - - * Fix a nasty chanspy bug which was causing a channel leak every time a spied on - channel made a call. - (Closes issue #18742. Reported by jkister. Tested by jcovert, jrose) - - * This patch fixes a bug with MeetMe behavior where the 'P' option for always - prompting for a pin is ignored for the first caller. - (Closes issue #18070. Reported by mav3rick. Patched by bbryant) - - * Fix issue where Asterisk does not hangup a channel after endpoint hangs up. If - the call that the dialplan started an AGI script for is hungup while the AGI - script is in the middle of a command then the AGI script is not notified of - the hangup. - (Closes issue #17954, #18492. Reported by mn3250, devmod. Patched by rmudgett) - - * Resolve issue where leaving a voicemail, the MWI message is never sent. The - same thing happens when checking a voicemail and marking it as read. - (Closes issue ASTERISK-18002. Reported by Leif Madsen. Resolved by Richard - Mudgett) - - * Resolve issue where wait for leader with Music On Hold allows crosstalk - between participants. Parenthesis in the wrong position. Regression from issue - #14365 when expanding conference flags to use 64 bits. - (Closes issue #18418. Reported by MrHanMan. Patched by rmudgett) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.5.0- Rebuild for net-snmp 5.7- Fix systemd dependencies in EL6 and F15- The Asterisk Development Team has announced the first release candidate of - Asterisk 1.8.5. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.5-rc1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Fix Deadlock with attended transfer of SIP call - (Closes issue #18837. Reported, patched by alecdavis. Tested by Irontec, ZX81, - cmaj) - - * Fixes thread blocking issue in the sip TCP/TLS implementation. - (Closes issue #18497. Reported by vois. Patched by dvossel. Tested by vois, - rossbeer, kowalma, Freddi_Fonet) - - * Be more tolerant of what URI we accept for call completion PUBLISH requests. - (Closes issue #18946. Reported by GeorgeKonopacki. Patched by mmichelson) - - * Fix a nasty chanspy bug which was causing a channel leak every time a spied on - channel made a call. - (Closes issue #18742. Reported by jkister. Tested by jcovert, jrose) - - * This patch fixes a bug with MeetMe behavior where the 'P' option for always - prompting for a pin is ignored for the first caller. - (Closes issue #18070. Reported by mav3rick. Patched by bbryant) - - * Fix issue where Asterisk does not hangup a channel after endpoint hangs up. If - the call that the dialplan started an AGI script for is hungup while the AGI - script is in the middle of a command then the AGI script is not notified of - the hangup. - (Closes issue #17954, #18492. Reported by mn3250, devmod. Patched by rmudgett) - - * Resolve issue where leaving a voicemail, the MWI message is never sent. The - same thing happens when checking a voicemail and marking it as read. - (Closes issue ASTERISK-18002. Reported by Leif Madsen. Resolved by Richard - Mudgett) - - * Resolve issue where wait for leader with Music On Hold allows crosstalk - between participants. Parenthesis in the wrong position. Regression from issue - #14365 when expanding conference flags to use 64 bits. - (Closes issue #18418. Reported by MrHanMan. Patched by rmudgett) - - * Fix timerfd locking issue. - (Closes ASTERISK-17867, ASTERISK-17415. Patched by kobaz) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.5-rc1- Fedora Directory Server -> 389 Directory Server- The Asterisk Development Team has announced the release of Asterisk - versions 1.4.41.2, 1.6.2.18.2, and 1.8.4.4, which are security - releases. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.4.41.2, 1.6.2.18.2, and 1.8.4.4 resolves the - following issue: - - AST-2011-011: Asterisk may respond differently to SIP requests from an - invalid SIP user than it does to a user configured on the system, even - when the alwaysauthreject option is set in the configuration. This can - leak information about what SIP users are valid on the Asterisk - system. - - For more information about the details of this vulnerability, please - read the security advisory AST-2011-011, which was released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.4 - - Security advisory AST-2011-011 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-011.pdf- Don't forget stereorize- Move /var/run/asterisk to /run/asterisk - Add comments to systemd service file on how to mimic safe_asterisk functionality - Build more of the optional binaries - Install the tmpfiles.d configuration on Fedora 15- The Asterisk Development Team has announced the release of Asterisk versions - 1.4.41.1, 1.6.2.18.1, and 1.8.4.3, which are security releases. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.4.41.1, 1.6.2.18, and 1.8.4.3 resolves several issues - as outlined below: - - * AST-2011-008: If a remote user sends a SIP packet containing a null, - Asterisk assumes available data extends past the null to the - end of the packet when the buffer is actually truncated when - copied. This causes SIP header parsing to modify data past - the end of the buffer altering unrelated memory structures. - This vulnerability does not affect TCP/TLS connections. - -- Resolved in 1.6.2.18.1 and 1.8.4.3 - - * AST-2011-009: A remote user sending a SIP packet containing a Contact header - with a missing left angle bracket (<) causes Asterisk to - access a null pointer. - -- Resolved in 1.8.4.3 - - * AST-2011-010: A memory address was inadvertently transmitted over the - network via IAX2 via an option control frame and the remote party would try - to access it. - -- Resolved in 1.4.41.1, 1.6.2.18.1, and 1.8.4.3 - - The issues and resolutions are described in the AST-2011-008, AST-2011-009, and - AST-2011-010 security advisories. - - For more information about the details of these vulnerabilities, please read - the security advisories AST-2011-008, AST-2011-009, and AST-2011-010, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.3 - - Security advisories AST-2011-008, AST-2011-009, and AST-2011-010 are available - at: - - http://downloads.asterisk.org/pub/security/AST-2011-008.pdf - http://downloads.asterisk.org/pub/security/AST-2011-009.pdf - http://downloads.asterisk.org/pub/security/AST-2011-010.pdf- Convert to systemd- Perl mass rebuild- Perl 5.14 mass rebuild- - The Asterisk Development Team has announced the release of Asterisk - version 1.8.4.2, which is a security release for Asterisk 1.8. - - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.4.2 resolves an issue with SIP URI - parsing which can lead to a remotely exploitable crash: - - Remote Crash Vulnerability in SIP channel driver (AST-2011-007) - - The issue and resolution is described in the AST-2011-007 security - advisory. - - For more information about the details of this vulnerability, please - read the security advisory AST-2011-007, which was released at the - same time as this announcement. - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.2 - - Security advisory AST-2011-007 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-007.pdf - - The Asterisk Development Team has announced the release of Asterisk 1.8.4.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.4.1 resolves several issues reported by the - community. Without your help this release would not have been possible. - Thank you! - - Below is a list of issues resolved in this release: - - * Fix our compliance with RFC 3261 section 18.2.2. (aka Cisco phone fix) - (Closes issue #18951. Reported by jmls. Patched by wdoekes) - - * Resolve a change in IPv6 header parsing due to the Cisco phone fix issue. - This issue was found and reported by the Asterisk test suite. - (Closes issue #18951. Patched by mnicholson) - - * Resolve potential crash when using SIP TLS support. - (Closes issue #19192. Reported by stknob. Patched by Chainsaw. Tested by - vois, Chainsaw) - - * Improve reliability when using SIP TLS. - (Closes issue #19182. Reported by st. Patched by mnicholson) - - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4.1 - The Asterisk Development Team has announced the release of Asterisk 1.8.4. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.4 resolves several issues reported by the community. - Without your help this release would not have been possible. Thank you! - - Below is a sample of the issues resolved in this release: - - * Use SSLv23_client_method instead of old SSLv2 only. - (Closes issue #19095, #19138. Reported, patched by tzafrir. Tested by russell - and chazzam. - - * Resolve crash in ast_mutex_init() - (Patched by twilson) - - * Resolution of several DTMF based attended transfer issues. - (Closes issue #17999, #17096, #18395, #17273. Reported by iskatel, gelo, - shihchuan, grecco. Patched by rmudgett) - - NOTE: Be sure to read the ChangeLog for more information about these changes. - - * Resolve deadlocks related to device states in chan_sip - (Closes issue #18310. Reported, patched by one47. Patched by jpeeler) - - * Resolve an issue with the Asterisk manager interface leaking memory when - disabled. - (Reported internally by kmorgan. Patched by russellb) - - * Support greetingsfolder as documented in voicemail.conf.sample. - (Closes issue #17870. Reported by edhorton. Patched by seanbright) - - * Fix channel redirect out of MeetMe() and other issues with channel softhangup - (Closes issue #18585. Reported by oej. Tested by oej, wedhorn, russellb. - Patched by russellb) - - * Fix voicemail sequencing for file based storage. - (Closes issue #18498, #18486. Reported by JJCinAZ, bluefox. Patched by - jpeeler) - - * Set hangup cause in local_hangup so the proper return code of 486 instead of - 503 when using Local channels when the far sides returns a busy. Also affects - CCSS in Asterisk 1.8+. - (Patched by twilson) - - * Fix issues with verbose messages not being output to the console. - (Closes issue #18580. Reported by pabelanger. Patched by qwell) - - * Fix Deadlock with attended transfer of SIP call - (Closes issue #18837. Reported, patched by alecdavis. Tested by - alecdavid, Irontec, ZX81, cmaj) - - Includes changes per AST-2011-005 and AST-2011-006 - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4 - - Information about the security releases are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-005.pdf - http://downloads.asterisk.org/pub/security/AST-2011-006.pdf- The Asterisk Development Team has announced security releases for Asterisk - branches 1.4, 1.6.1, 1.6.2, and 1.8. The available security releases are - released as versions 1.4.40.1, 1.6.1.25, 1.6.2.17.3, and 1.8.3.3. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.4.40.1, 1.6.1.25, 1.6.2.17.3, and 1.8.3.3 resolve two - issues: - - * File Descriptor Resource Exhaustion (AST-2011-005) - * Asterisk Manager User Shell Access (AST-2011-006) - - The issues and resolutions are described in the AST-2011-005 and AST-2011-006 - security advisories. - - For more information about the details of these vulnerabilities, please read the - security advisories AST-2011-005 and AST-2011-006, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.40.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.25 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.3 - - Security advisory AST-2011-005 and AST-2011-006 are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-005.pdf - http://downloads.asterisk.org/pub/security/AST-2011-006.pdf- Bump release and rebuild for mysql 5.5.10 soname change.- The Asterisk Development Team has announced security releases for Asterisk - branches 1.6.1, 1.6.2, and 1.8. The available security releases are - released as versions 1.6.1.24, 1.6.2.17.2, and 1.8.3.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - ** This is a re-release of Asterisk 1.6.1.23, 1.6.2.17.1 and 1.8.3.1 which - contained a bug which caused duplicate manager entries (issue #18987). - - The releases of Asterisk 1.6.1.24, 1.6.2.17.2, and 1.8.3.2 resolve two issues: - - * Resource exhaustion in Asterisk Manager Interface (AST-2011-003) - * Remote crash vulnerability in TCP/TLS server (AST-2011-004) - - The issues and resolutions are described in the AST-2011-003 and AST-2011-004 - security advisories. - - For more information about the details of these vulnerabilities, please read the - security advisories AST-2011-003 and AST-2011-004, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.24 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.2 - - Security advisory AST-2011-003 and AST-2011-004 are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-003.pdf - http://downloads.asterisk.org/pub/security/AST-2011-004.pdf- The Asterisk Development Team has announced security releases for Asterisk - branches 1.6.1, 1.6.2, and 1.8. The available security releases are - released as versions 1.6.1.23, 1.6.2.17.1, and 1.8.3.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.6.1.23, 1.6.2.17.1, and 1.8.3.1 resolve two issues: - - * Resource exhaustion in Asterisk Manager Interface (AST-2011-003) - * Remote crash vulnerability in TCP/TLS server (AST-2011-004) - - The issues and resolutions are described in the AST-2011-003 and AST-2011-004 - security advisories. - - For more information about the details of these vulnerabilities, please read the - security advisories AST-2011-003 and AST-2011-004, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.23 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.1 - - Security advisory AST-2011-003 and AST-2011-004 are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-003.pdf - http://downloads.asterisk.org/pub/security/AST-2011-004.pdf- The Asterisk Development Team has announced the release of Asterisk 1.8.3. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.3 resolves several issues reported by the community - and would have not been possible without your participation. Thank you! - - The following is a sample of the issues resolved in this release: - - * Resolve duplicated data in the AstDB when using DIALGROUP() - (Closes issue #18091. Reported by bunny. Patched by tilghman) - - * Ensure the ipaddr field in realtime is large enough to handle IPv6 addresses. - (Closes issue #18464. Reported, patched by IgorG) - - * Reworking parsing of mwi => lines to resolve a segfault. Also add a set of - unit tests for the function that does the parsing. - (Closes issue #18350. Reported by gbour. Patched by Marquis) - - * When using cdr_pgsql the billsec field was not populated correctly on - unanswered calls. - (Closes issue #18406. Reported by joscas. Patched by tilghman) - - * Resolve memory leak in iCalendar and Exchange calendaring modules. - (Closes issue #18521. Reported, patched by pitel. Tested by cervajs) - - * This version of Asterisk includes the new Compiler Flags option - BETTER_BACKTRACES which uses libbfd to search for better symbol information - within both the Asterisk binary, as well as loaded modules, to assist when - using inline backtraces to track down problems. - (Patched by tilghman) - - * Resolve issue where no Music On Hold may be triggered when using - res_timing_dahdi. - (Closes issues #18262. Reported by francesco_r. Patched by cjacobson. Tested - by francesco_r, rfrantik, one47) - - * Resolve a memory leak when the Asterisk Manager Interface is disabled. - (Reported internally by kmorgan. Patched by russellb) - - * Reimplemented fax session reservation to reverse the ABI breakage introduced - in r297486. - (Reported internally. Patched by mnicholson) - - * Fix regression that changed behavior of queues when ringing a queue member. - (Closes issue #18747, #18733. Reported by vrban. Patched by qwell.) - - * Resolve deadlock involving REFER. - (Closes issue #18403. Reported, tested by jthurman. Patched by jpeeler.) - - Additionally, this release has the changes related to security bulletin - AST-2011-002 which can be found at - http://downloads.asterisk.org/pub/security/AST-2011-002.pdf - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.3- - The Asterisk Development Team has announced the third release candidate of - Asterisk 1.8.3. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.3-rc3 resolves the following issues in addition to - those included in 1.8.3-rc1 and 1.8.3-rc2: - - * Fix regression that changed behavior of queues when ringing a queue member. - (Closes issue #18747, #18733. Reported by vrban. Patched by qwell.) - - * Resolve deadlock involving REFER. - (Closes issue #18403. Reported, tested by jthurman. Patched by jpeeler.) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.3-rc3- Bump release to build for F15- Remove isa macros- Make library dependencies architecture specific- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_RebuildThe Asterisk Development Team has announced the second release candidate of Asterisk 1.8.3. This release candidate is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/ The release of Asterisk 1.8.3-rc2 resolves the following issues in addition to those included in 1.8.3-rc1: * Resolve issue where no Music On Hold may be triggered when using res_timing_dahdi. (Closes issues #18262. Reported by francesco_r. Patched by cjacobson. Tested by francesco_r, rfrantik, one47) * Resolve a memory leak when the Asterisk Manager Interface is disabled. (Reported internally by kmorgan. Patched by russellb) * Reimplemented fax session reservation to reverse the ABI breakage introduced in r297486. (Reported internally. Patched by mnicholson) For a full list of changes in this release candidate, please see the ChangeLog: http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.3-rc2- - The Asterisk Development Team has announced the first release candidate of - Asterisk 1.8.3. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.3-rc1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Resolve duplicated data in the AstDB when using DIALGROUP() - (Closes issue #18091. Reported by bunny. Patched by tilghman) - - * Ensure the ipaddr field in realtime is large enough to handle IPv6 addresses. - (Closes issue #18464. Reported, patched by IgorG) - - * Reworking parsing of mwi => lines to resolve a segfault. Also add a set of - unit tests for the function that does the parsing. - (Closes issue #18350. Reported by gbour. Patched by Marquis) - - * When using cdr_pgsql the billsec field was not populated correctly on - unanswered calls. - (Closes issue #18406. Reported by joscas. Patched by tilghman) - - * Resolve memory leak in iCalendar and Exchange calendaring modules. - (Closes issue #18521. Reported, patched by pitel. Tested by cervajs) - - * This version of Asterisk includes the new Compiler Flags option - BETTER_BACKTRACES which uses libbfd to search for better symbol information - within both the Asterisk binary, as well as loaded modules, to assist when - using inline backtraces to track down problems. - (Patched by tilghman)- - The Asterisk Development Team has announced the release of Asterisk 1.8.2.3. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.2.3 resolves the following issue: - - * Reimplemented fax session reservation to reverse the ABI breakage introduced - in r297486. - (Reported by Jeremy Kister on the asterisk-users mailing list. Patched by - mnicholson) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.2.3- Build with SRTP support- - The Asterisk Development Team has announced a release for the security issue - described in AST-2011-001. - - Due to a failed merge, Asterisk 1.8.2.1 which should have included the security - fix did not. Asterisk 1.8.2.2 contains the the changes which should have been - included in Asterisk 1.8.2.1. - - This releases is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.2, - 1.8.1.2, and 1.8.2.2 resolve an issue when forming an outgoing SIP request while - in pedantic mode, which can cause a stack buffer to be made to overflow if - supplied with carefully crafted caller ID information. The issue and resolution - are described in the AST-2011-001 security advisory. - - For more information about the details of this vulnerability, please read the - security advisory AST-2011-001, which was released at the same time as this - announcement. - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.2.2 - - Security advisory AST-2011-001 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-001.pdf- - The Asterisk Development Team has announced security releases for the following - versions of Asterisk: - - * 1.4.38.1 - * 1.4.39.1 - * 1.6.1.21 - * 1.6.2.15.1 - * 1.6.2.16.1 - * 1.8.1.2 - * 1.8.2.1 - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.2, - 1.8.1.2, and 1.8.2.1 resolve an issue when forming an outgoing SIP request while - in pedantic mode, which can cause a stack buffer to be made to overflow if - supplied with carefully crafted caller ID information. The issue and resolution - are described in the AST-2011-001 security advisory. - - For more information about the details of this vulnerability, please read the - security advisory AST-2011-001, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.38.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.39.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.21 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.15.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.16.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.1.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.2.1 - - Security advisory AST-2011-001 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-001.pdf- - The Asterisk Development Team has announced the release of Asterisk 1.8.2. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * 'sip notify clear-mwi' needs terminating CRLF. - (Closes issue #18275. Reported, patched by klaus3000) - - * Patch for deadlock from ordering issue between channel/queue locks in - app_queue (set_queue_variables). - (Closes issue #18031. Reported by rain. Patched by bbryant) - - * Fix cache of device state changes for multiple servers. - (Closes issue #18284, #18280. Reported, tested by klaus3000. Patched, tested - by russellb) - - * Resolve issue where channel redirect function (CLI or AMI) hangs up the call - instead of redirecting the call. - (Closes issue #18171. Reported by: SantaFox) - (Closes issue #18185. Reported by: kwemheuer) - (Closes issue #18211. Reported by: zahir_koradia) - (Closes issue #18230. Reported by: vmarrone) - (Closes issue #18299. Reported by: mbrevda) - (Closes issue #18322. Reported by: nerbos) - - * Fix reloading of peer when a user is requested. Prevent peer reloading from - causing multiple MWI subscriptions to be created when using realtime. - (Closes issue #18342. Reported, patched by nivek.) - - * Fix XMPP PubSub-based distributed device state. Initialize pubsubflags to 0 - so res_jabber doesn't think there is already an XMPP connection sending - device state. Also clean up CLI commands a bit. - (Closes issue #18272. Reported by klaus3000. Patched by Marquis42) - - * Don't crash after Set(CDR(userfield)=...) in ast_bridge_call. Instead of - setting peer->cdr = NULL, set it to not post. - (Closes issue #18415. Reported by macbrody. Patched, tested by jsolares) - - * Fixes issue with outbound google voice calls not working. Thanks to az1234 - and nevermind_quack for their input in helping debug the issue. - (Closes issue #18412. Reported by nevermind_quack. Patched by dvossel) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.2- - The Asterisk Development Team has announced the release of Asterisk 1.8.1.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.1.1 resolves two issues reported by the community - since the release of Asterisk 1.8.1. - - * Don't crash after Set(CDR(userfield)=...) in ast_bridge_call. Instead of - setting peer->cdr = NULL, set it to not post. - (Closes issue #18415. Reported by macbrody. Patched, tested by jsolares) - - * Fixes issue with outbound google voice calls not working. Thanks to az1234 - and nevermind_quack for their input in helping debug the issue. - (Closes issue #18412. Reported by nevermind_quack. Patched by dvossel) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.1.1- - The Asterisk Development Team has announced the release of Asterisk 1.8.1. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * Fix issue when using directmedia. Asterisk needs to limit the codecs offered - to just the ones that both sides recognize, otherwise they may end up sending - audio that the other side doesn't understand. - (Closes issue #17403. Reported, patched by one47. Tested by one47, falves11) - - * Resolve issue where Party A in an analog 3-way call would continue to hear - ringback after party C answers. - (Patched by rmudgett) - - * Fix playback failure when using IAX with the timerfd module. - (Closes issue #18110. Reported, tested by tpanton. Patched by jpeeler) - - * Fix problem with qualify option packets for realtime peers never stopping. - The option packets not only never stopped, but if a realtime peer was not in - the peer list multiple options dialogs could accumulate over time. - (Closes issue #16382. Reported by lftsy. Tested by zerohalo. Patched by - jpeeler) - - * Fix issue where it is possible to crash Asterisk by feeding the curl engine - invalid data. - (Closes issue #18161. Reported by wdoekes. Patched by tilghman) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.1- dont package up the ices bits on el the client doesnt exist for us- dont build the 389 directory server package its not available on rhel6- dont always build AIS modules we dont have the BuildRequires on epel- Rebuild for new net-snmp.- Always build AIS modules- The Asterisk Development Team is proud to announce the release of Asterisk - 1.8.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - Asterisk 1.8 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.4. For more information about - support time lines for Asterisk releases, see the Asterisk versions page. - - http://www.asterisk.org/asterisk-versions - - The release of Asterisk 1.8.0 would not have been possible without the support - and contributions of the community. Since Asterisk 1.6.2, we've had over 500 - reporters, more than 300 testers and greater than 200 developers contributed to - this release. - - You can find a summary of the work involved with the 1.8.0 release in the - sumary: - - http://svn.asterisk.org/svn/asterisk/tags/1.8.0/asterisk-1.8.0-summary.txt - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=markup - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0 - - Thank you for your continued support of Asterisk!- - The release of Asterisk 1.8.0-rc5 was triggered by some last minute platform - compatibility IPv6 changes. In addition, the availability of the English sound - prompts with Australian accents has been added. - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=markup - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc5 - - This release candidate contains fixes since the last release candidate as - reported by the community. A sampling of the changes in this release candidate - include: - - * Additional fixups in chan_gtalk that allow outbound calls to both Google - Talk and Google Voice recipients. Adds new chan_gtalk enhancements externip - and stunaddr. - (Closes issue #13971. Patched by dvossel) - - * Resolve manager crash issue. - (Closes issue #17994. Reported by vrban. Patchd by dvossel) - - * Documentation updates for sample configuration files. - (Closes issues #18107, #18101. Reported, patched by lathama, lmadsen) - - * Resolve issue where faxdetect would only detect the first fax call in - chan_dahdi. - (Closes issue #18116. Reported by seandarcy. Patched by rmudgett) - - * Resolve issue where a channel that is setup and torn down *very* quickly may - not have the right call disposition or ${DIALSTATUS}. - (Closes issue #16946. Reported by davidw. Review - https://reviewboard.asterisk.org/r/740/) - - * Set TCLASS field of IPv6 header when SIP QoS options are set. - (Closes issue #18099. Reported by jamesnet. Patched by dvossel) - - * Resolve issue where Asterisk could crash on shutdown when using SRTP. - (Closes issue #18085. Reported by st. Patched by twilson) - - * Fix issue where peers host port would be lost on a SIP reload. - (Closes issue #18135. Reported, tested by lmadsen. Patched by dvossel) - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=markup - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc4- This release candidate contains fixes since the release candidate as reported by - the community. A sampling of the changes in this release candidate include: - - * Still build chan_sip even if res_crypto cannot be built (use, but not depend) - (Reported by a user on the mailing list. Patched by tilghman) - - * Get notifications for call files only when a file is closed, not when created - (Closes issue #17924. Reported by mkeuter. Patched by abeldeck) - - * Fixes to chan_gtalk to allow outbound DTMF support to work correctly. Gtalk - expects the DTMF to arrive on the RTP stream and not via jingle DTMF - signalling. - (Patched by dvossel. Tested by malcolmd) - - * Fixes to allow chan_gtalk to communicate with the Gmail web client. - (Patched by phsultan and dvossel) - - * Fix to GET DATA to allow audio to be streamed via an AGI. - (Closes issue #18001. Reported by jamicque. Patched by tilghman) - - * Resolve dnsmgr memory corruption in chan_iax2. - (Closes issue #17902. Reported by afried. Patched by russell, dvossel) - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc3- This release candidate contains fixes since the last beta release as reported by - the community. A sampling of the changes in this release candidate include: - - * Add slin16 support for format_wav (new wav16 file extension) - (Closes issue #15029. Reported, patched by andrew. Tested by Qwell) - - * Fixes a bug in manager.c where the default configuration values weren't reset - when the manager configuration was reloaded. - (Closes issue #17917. Reported by lmadsen. Patched by bbryant) - - * Various fixes for the calendar modules. - (Patched by Jan Kalab. - Reviewboard: https://reviewboard.asterisk.org/r/880/ - Closes issue #17877. Review: https://reviewboard.asterisk.org/r/916/ - Closes issue #17776. Review: https://reviewboard.asterisk.org/r/921/) - - * Add CHANNEL(checkhangup) to check whether a channel is in the process of - being hung up. - (Closes issue #17652. Reported, patched by kobaz) - - * Fix a bug with MeetMe where after announcing the amount of time left in a - conference, if music on hold was playing, it doesn't restart. - (Closes issue #17408, Reported, patched by sysreq) - - * Fix interoperability problems with session timer behavior in Asterisk. - (Closes issue #17005. Reported by alexcarey. Patched by dvossel) - - * Rate limit calls to fsync() to 1 per second after astdb updates. Astdb was - determined to be one of the most significant bottlenecks in SIP registration - processing. This patch improved the speed of an astdb load test by 50000% - (yes, Fifty-Thousand Percent). On this particular load test setup, this - doubled the number of SIP registrations the server could handle. - (Review: https://reviewboard.asterisk.org/r/825/) - - * Don't clear the username from a realtime database when a registration - expires. Non-realtime chan_sip does not clear the username from memory when a - registration expiries so realtime probably shouldn't either. - (Closes issue #17551. Reported, patched by: ricardolandim. Patched by - mnicholson) - - * Don't hang up a call on an SRTP unprotect failure. Also make it more obvious - when there is an issue en/decrypting. - (Closes issue #17563. Reported by Alexcr. Patched by sfritsch. Tested by - twilson) - - * Many more issues. This is a significant upgrade over Asterisk 1.8.0 beta 5! - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc2- This release contains fixes since the last beta release as reported by the - community. A sampling of the changes in this release include: - - * Fix issue where TOS is no longer set on RTP packets. - (Closes issue #17890. Reported, patched by elguero) - - * Change pedantic default value in chan_sip from 'no' to 'yes' - - * Asterisk now dynamically builds the "Supported" header depending on what is - enabled/disabled in sip.conf. Session timers used to always be advertised as - being supported even when they were disabled in the configuration. - (Related to issue #17005. Patched by dvossel) - - * Convert MOH to use generic timers. - (Closes issue #17726. Reported by lmadsen. Patched by tilghman) - - * Fix SRTP for changing SSRC and multiple a=crypto SDP lines. Adding code to - Asterisk that changed the SSRC during bridges and masquerades broke SRTP - functionality. Also broken was handling the situation where an incoming - INVITE had more than one crypto offer. - (Closes issue #17563. Reported by Alexcr. Patched by twilson) - - Asterisk 1.8 contains many new features over previous releases of Asterisk. - A short list of included features includes: - - * Secure RTP - * IPv6 Support in the SIP Channel - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-beta5- This release contains fixes since the last beta release as reported by the - community. A sampling of the changes in this release include: - - * Fix parsing of IPv6 address literals in outboundproxy - (Closes issue #17757. Reported by oej. Patched by sperreault) - - * Change the default value for alwaysauthreject in sip.conf to "yes". - (Closes issue #17756. Reported by oej) - - * Remove current STUN support from chan_sip.c. This change removes the current - broken/useless STUN support from chan_sip. - (Closes issue #17622. Reported by philipp2. - Review: https://reviewboard.asterisk.org/r/855/) - - * PRI CCSS may use a stale dial string for the recall dial string. If an - outgoing call negotiates a different B channel than initially requested, the - saved original dial string was not transferred to the new B channel. CCSS - uses that dial string to generate the recall dial string. - (Patched by rmudgett) - - * Split _all_ arguments before parsing them. This fixes multicast RTP paging - using linksys mode. - (Patched by russellb) - - * Expand cel_custom.conf.sample. Include the usage of CSV_QUOTE() to ensure - data has valid CSV formatting. Also list the special CEL variables that are - available for use in the mapping. There are also several other CEL fixes in - this release. - (Patched by russellb) - - Asterisk 1.8 contains many new features over previous releases of Asterisk. - A short list of included features includes: - - * Secure RTP - * IPv6 Support in the SIP Channel - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-beta4- - This release contains fixes since the last beta release as reported by the - community. A sampling of the changes in this release include: - - * Fix a regression where HTTP would always be enabled regardless of setting. - (Closes issue #17708. Reported, patched by pabelanger) - - * ACL errors displayed on screen when using dynamic_exclude_static in sip.conf - (Closes issue #17717. Reported by Dennis DeDonatis. Patched by mmichelson) - - * Support "channels" in addition to "channel" in chan_dahdi.conf. - (https://reviewboard.asterisk.org/r/804) - - * Fix parsing error in sip_sipredirect(). The code was written in a way that - did a bad job of parsing the port out of a URI. Specifically, it would do - badly when dealing with an IPv6 address. - (Closes issue #17661. Reported by oej. Patched by mmichelson) - - * Fix inband DTMF detection on outgoing ISDN calls. - (Patched by russellb and rmudgett) - - * Fixes issue with translator frame not getting freed. This issue prevented - g729 licenses from being freed up. - (Closes issue #17630. Reported by manvirr. Patched by dvossel) - - * Fixed IPv6-related SIP parsing bugs and updated documention. - (Reported by oej. Patched by sperreault) - - * Add new, self-contained feature FIELDNUM(). Returns a 1-based index into a - list of a specified item. Matches up with FIELDQTY() and CUT(). - (Closes #17713. Reported, patched by gareth. Tested by tilghman) - - Asterisk 1.8 contains many new features over previous releases of Asterisk. - A short list of included features includes: - - * Secure RTP - * IPv6 Support - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-beta3- Rebuild against libpri 1.4.12- Update to 1.8.0-beta2 - Disable building chan_misdn until compilation errors are figured out (https://issues.asterisk.org/view.php?id=14333) - Start stripping tarballs again because Digium added MP3 code :(- - The following are a few of the issues resolved by community developers: - - * Allow users to specify a port for DUNDI peers. - (Closes issue #17056. Reported, patched by klaus3000) - - * Decrease the module ref count in sip_hangup when SIP_DEFER_BYE_ON_TRANSFER is - set. - (Closes issue #16815. Reported, patched by rain) - - * If there is realtime configuration, it does not get re-read on reload unless - the config file also changes. - (Closes issue #16982. Reported, patched by dmitri) - - * Send AgentComplete manager event for attended transfers. - (Closes issue #16819. Reported, patched by elbriga) - - * Correct manager variable 'EventList' case. - (Closes issue #17520. Reported, patched by kobaz) - - In addition, changes to res_timing_pthread that should make it more stable have - also been implemented. - - For a full list of changes in the current release, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.2.10- Add patch to remove requirement on latex2html- Mass rebuild with perl-5.12.0- * Fix building CDR and CEL SQLite3 modules. - (Closes issue #17017. Reported by alephlg. Patched by seanbright) - - * Resolve crash in SLAtrunk when the specified trunk doesn't exist. - (Reported in #asterisk-dev by philipp64. Patched by seanbright) - - * Include an extra newline after "Aliased CLI command" to get back the prompt. - (Issue #16978. Reported by jw-asterisk. Tested, patched by seanbright) - - * Prevent segfault if bad magic number is encountered. - (Issue #17037. Reported, patched by alecdavis) - - * Update code to reflect that handle_speechset has 4 arguments. - (Closes issue #17093. Reported, patched by gpatri. Tested by pabelanger, - mmichelson) - - * Resolve a deadlock in chan_local. - (Closes issue #16840. Reported, patched by bzing2, russell. Tested by bzing2)- Update to 1.6.2.7-rc3- Update to 1.6.2.7-rc2- Update to final 1.6.2.6 - - The following are a few of the issues resolved by community developers: - - * Make sure to clear red alarm after polarity reversal. - (Closes issue #14163. Reported, patched by jedi98. Tested by mattbrown, - Chainsaw, mikeeccleston) - - * Fix problem with duplicate TXREQ packets in chan_iax2 - (Closes issue #16904. Reported, patched by rain. Tested by rain, dvossel) - - * Fix crash in app_voicemail related to message counting. - (Closes issue #16921. Reported, tested by whardier. Patched by seanbright) - - * Overlap receiving: Automatically send CALL PROCEEDING when dialplan starts - (Reported, Patched, and Tested by alecdavis) - - * For T.38 reINVITEs treat a 606 the same as a 488. - (Closes issue #16792. Reported, patched by vrban) - - * Fix ConfBridge crash when no timing module is loaded. - (Closes issue #16471. Reported, tested by kjotte. Patched, tested by junky) - - For a full list of changes in this releases, please see the ChangeLog: - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.2.6- Update to 1.6.2.6-rc2- Add a patch that fixes CLI history when linking against external libedit.- Update to 1.6.2.5 - - * AST-2010-002: Invalid parsing of ACL rules can compromise security- Update to 1.6.2.4 - - * AST-2010-002: This security release is intended to raise awareness - of how it is possible to insert malicious strings into dialplans, - and to advise developers to read the best practices documents so - that they may easily avoid these dangers.- Update to 1.6.2.2 - - * AST-2010-001: An attacker attempting to negotiate T.38 over SIP can - remotely crash Asterisk by modifying the FaxMaxDatagram field of - the SDP to contain either a negative or exceptionally large value. - The same crash occurs when the FaxMaxDatagram field is omitted from - the SDP as well.- Update to 1.6.2.1 final: - - * CLI 'queue show' formatting fix. - (Closes issue #16078. Reported by RoadKill. Tested by dvossel. Patched by - ppyy.) - - * Fix misreverting from 177158. - (Closes issue #15725. Reported, Tested by shanermn. Patched by dimas.) - - * Fixes subscriptions being lost after 'module reload'. - (Closes issue #16093. Reported by jlaroff. Patched by dvossel.) - - * app_queue segfaults if realtime field uniqueid is NULL - (Closes issue #16385. Reported, Tested, Patched by haakon.) - - * Fix to Monitor which previously assumed the file to write to did not contain - pathing. - (Closes issue #16377, #16376. Reported by bcnit. Patched by dant.- Update to 1.6.2.1-rc1- Released version of 1.6.2.0- Update to 1.6.2.0-rc8- Update to 1.6.2.0-rc7- Change the logrotate and the init scripts so that Asterisk doesn't try and write to / or /root- Make dependency on uw-imap conditional and some other changes to make building on RHEL5 easier.- Update to 1.6.2.0-rc6- Update to 1.6.2.0-rc5- Update to 1.6.2.0-rc4- Add patch from upstream to fix how res_http_post forms paths.- Add an AST_EXTRA_ARGS option to the init script - have the init script to cd to /var/spool/asterisk to prevent annoying message- Compile against gmime 2.2 instead of gmime 2.4 because the patch to convert the API calls from 2.2 to 2.4 caused crashes.- Require latex2html used in static-http documents- Change ownership and permissions on config files to protect them.- Update to 1.6.2.0-rc3- Merge firmware subpackage back into the main package.- Package internal help. - Fix up some more paths in the configs so that everything ends up where we want them.- Update to 1.6.2.0-rc2 - We no longer need to strip the tarball as it no longer includes non-free items.- Enable building of API docs. - Depend on version 1.2 or newer of speex- Update to 1.6.1.6 - Drop patches that are too troublesome to maintain anymore or have been integrated upstream.- Add a patch from Quentin Armitage and rebuld.- rebuilt with new openssl- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- Rebuild to pick up new AIS and ODBC deps. - Update script that strips out bad content from tarball to do the download and to check the GPG signature.- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- Update to 1.6.1-rc1 - Add backport of conference bridging that is slated for 1.6.2 - Add patches to conference bridging that implement CLI apps- rebuild with new openssl- Fedora Directory Server compatibility patch/subpackage.- Fix up paths. BZ#477238- Update patches- Update to 1.6.1-beta4- Update to 1.6.1-beta3- Rebuild for new gmime- Add patch to fix missing variable on PPC.- Update PPC systems don't have sys/io.h patch.- PPC systems don't have sys/io.h- Update to 1.6.1 beta 2- Fix issue with init script giving wrong path to config file.- Explicitly require dahdi-tools-libs to see if we can get this to build.- Update to final release.- Rebuild- Replace app_rxfax/app_txfax with app_fax taken from upstream SVN.- Bump release and rebuild with new libpri and zaptel.- Add patch pulled from upstream SVN that fixes AST-2008-010 and AST-2008-011.- Add patch for LDAP extracted from upstream SVN (#442011)- Add patch that unbreaks cdr_tds with FreeTDS 0.82. - Properly obsolete conference subpackage.- Disable building cdr_tds since new FreeTDS in rawhide no longer provides needed library.- Bump release and rebuild to fix libtds breakage.- Update to 1.6.0-beta9. - Update patches so that they apply cleanly. - Temporarily disable app_conference patch as it doesn't compile - config/scripts/postgres_cdr.sql has been merged into realtime_pgsql.sql - Re-add the asterisk-strip.sh script as a source file.- Update to 1.6.0-beta8 - Contains fixes for AST-2008-006 / CVE-2008-1897- Return to stripped tarballs since there's more non-free content in the Asterisk tarballs than I thought.- Update to 1.6.0-beta7.1 - Update patches - Back out some changes that were made because beta7 was tagged from the wrong branch.- Update to 1.6.0-beta7 - The Asterisk tarball no longer contains the iLBC code, so we can directly use the upstream tarball without having to modify it. - Get rid of the asterisk-strip.sh script since it's no longer needed. - Diable build of codec_ilbc and format_ilbc (these do not contain any legally suspect code so they can be included in the tarball but it's pointless building them). - Update chan_mobile patch to fix API breakages. - Add a patch to chan_usbradio to fix API breakages.- Add Postgresql schemas from contrib as documentation to the Postgresql subpackage.- Update patches. - Add patch to compile against external libedit rather than using the in-tree version. - Add -Werror-implicit-function-declaration to optflags. - Get rid of hashtest and hashtest2 binaries that link to unfortified versions of *printf functions. They are compiled with -O0 which somehow pulls in the wrong versions. These programs aren't necessary to the operation of the package anyway.- Update to 1.6.0-beta6 to fix some security issues. - - AST-2008-002 details two buffer overflows that were discovered in - RTP codec payload type handling. - * http://downloads.digium.com/pub/security/AST-2008-002.pdf - * All users of SIP in Asterisk 1.4 and 1.6 are affected. - - AST-2008-003 details a vulnerability which allows an attacker to - bypass SIP authentication and to make a call into the context - specified in the general section of sip.conf. - * http://downloads.digium.com/pub/security/AST-2008-003.pdf - * All users of SIP in Asterisk 1.0, 1.2, 1.4, or 1.6 are affected. - - AST-2008-004 Logging messages displayed using the ast_verbose - logging API call are not displayed as a character string, they are - displayed as a format string. - * http://downloads.digium.com/pub/security/AST-2008-004.pdf - - AST-2008-005 details a problem in the way manager IDs are caculated. - * http://downloads.digium.com/pub/security/AST-2008-005.pdf- add Requires for versioned perl (libperl.so)- Update to 1.6.0-beta5 - Remove upstreamed patches.- Package the directory used to store monitor recordings.- Add patch from David Woodhouse that fixes building on PPC64.- Update to 1.6.0 beta 4- Update to 1.4.18. - Use -march=i486 on i386 builds for atomic operations (GCC 4.3 compatibility). - Use "logger reload" instead of "logger rotate" in logrotate file (#432197). - Don't explicitly specify a group in in the init script to prevent Zaptel breakage (#426629). - Split app_ices out to a separate package so that the ices package can be required. - pbx_kdeconsole has been dropped, don't specifically exclude it from the build anymore. - Update app_conference patch. - Drop upstreamed libcap patch.- Update to 1.4.17 to fix AST-2008-001.- Update to 1.4.16.2- Bump release and rebuild to fix broken dep on uw-imap.- Update to the real 1.4.16.1.- Add patch to bring source up to version 1.4.16.1 which will be released shortly to fix some crasher bugs introduced by 1.4.16.- Update to 1.4.16 to fix security bug.- Really, really fix the build problems on devel.- Tweaks to get to build on x86_64- Exclude PPC64- Don't build apidocs by default since there's a problem building on x86_64.- Really get rid of zero length map files.- Get rid of zero length map files. - Shorten descriptions of voicemail subpackages- Update to 1.4.15- Fix license and other rpmlint warnings.- Update to 1.4.14- Add chan_mobile- Don't build cdr_sqlite because sqlite2 has been orphaned. - Rebase local patches to latest upstream SVN - Update app_conference patch to latest from upstream SVN - Apply post-1.4.13 patches from upstream SVN- Update to 1.4.13- Update to 1.4.12.1- Update to 1.4.11- Update to 1.4.10.1.- Update to 1.4.10 (security update).- Add a patch that allows alternate extensions to be defined in users.conf- Update app_conference patch. Enter/leave sounds are now possible.- Update patches so we don't need to run auto* tools, because autoconf 2.60 is required and FC-6 and RHEL5 only have autoconf 2.59.- Don't build app_mp3- Add app_conference- Use plain useradd/groupadd rather than the fedora-usermgmt - Clean up requirements - Clean up build requirements by moving them to package sections- Update to 1.4.9- Update to 1.4.8 - Drop ixjuser patch.- Update to 1.4.7.1- Update to 1.4.7 - RxFAX/TxFAX applications- It's "sbin", not "bin" silly.- Add patch that lets us change TOS bits even when running non-root- voicemail needs to require /usr/bin/sox and /usr/bin/sendmail- Update to 1.4.6 - Remove upstreamed patch.- Build the IMAP and ODBC storage options of voicemail and split voicemail out into subpackages. - Apply patch so that the system UW IMAP libray can be linked against. - Patch modules.conf.sample so that alternal voicemail modules don't get loaded simultaneously. - Link against system GSM library rather than internal copy. - Patch the Makefile so that it doesn't add redundant/wrong compiler options. - Force building with the standard RPM optimization flags. - Install the Asterisk MIB in a location that net-snmp can find it. - Only package docs in the main package that are relevant and that haven't been packaged by a subpackage. - Other minor cleanups.- Move sounds- Update some more ownership/permissions- Fix some permissions.- Update init script patch - Move pid file to subdir of /var/run- Update init script patch to run as non-root- Build modules that depend on FreeTDS. - Don't build voicemail with ODBC storage.- Have the build output the commands executing, rather than covering them up.- Update to 1.4.5 - Remove upstreamed patch.- Add a patch to fix CVE-2007-2488/ASA-2007-013- Update to 1.4.4- Update to 1.4.2- Package the IAXy firmware - Minor clean-ups in files- Update to 1.4.1 - Don't build/package codec_zap (zaptel 1.4.0 doesn't support it)- Update to 1.4.0-beta4 - Various cleanups.- Don't package IAXy firmware because of license - Don't build app_rpt - Don't BR lm_sensors on PPC - Better way to prevent download/installation of sound archives - Redo tarball to eliminate non-free items- Remove explicit dependency on glibc-kernheaders. - Build jabber modules on PPC- *Really* update to beta3 - chan_jingle has been taken out of 1.4 - Move misplaced binaries to where they should be- Remove requirement on asterisk-sounds-core until licensing can be figured out.- Update to 1.4.0-beta3- Update to 1.4.0-beta2- Update to 1.2.10.- Update to 1.2.9.1- Update to 1.2.8 - Add misdn.conf to list of configs. - Drop chan_bluetooth patch for now...- Zaptel subpackage shouldn't obsolete the sqlite subpackage. - Remove mISDN until build issues can be figured out.- Build mISDN channel drivers, modelled after spec file from David Woodhouse- Update chan_bluetooth patch with some additional information as to it's source and comment out more in the configuration file.- Add chan_bluetooth- Split off more stuff into subpackages.- Update to 1.2.7- Fix detection of libpri on 64 bit arches (taken from Matthias Saou's rpmforge package) - Change sqlite subpackage name to sqlite2 (there are sqlite3 modules in development).- Don't build GTK 1.X console since GTK 1.X is being moved out of core...- Update to 1.2.6- Update to 1.2.5. - Removed upstreamed MOH patch. - Add full urls to the app_(r|t)xfax.c sources. - Update spandsp patch.- Actually apply the patch.- Add patch to keep Asterisk from crashing when using MOH inside a MeetMe conference.- BR sqlite2-devel- Update to 1.2.4.- Took some tricks from Asterisk packages by Roy-Magne Mo. - Enable gtk console module. - BR gtk+-devel. - Add logrotate script. - BR sqlite2-devel and new sqlite subpackage. - BR doxygen and graphviz for building duxygen documentation. (But don't build it yet.)- Completely eliminate the "asterisk" user from the spec file. - Move more config files to subpackages. - Consolidate two patches that patch the init script. - BR curl-devel - BR alsa-lib-devel - alsa, curl, oss subpackages- Do not run as user "asterisk" as that prevents setting of IP TOS (which is bad for quality of service). - Add patch for setting TOS separately for SIP and RTP packets.- First version for Fedora Extras./bin/shasterisk-zaptel 13.7.1-1.fc2213.7.1-1.fc2213.7.1-1.fc2213.7.1-1.fc22 1.6.0-0.22.beta9chan_dahdi.confmeetme.confss7.timersapp_dahdiras.soapp_flash.soapp_meetme.soapp_page.sochan_dahdi.socodec_dahdi.sores_timing_dahdi.so40-asterisk/etc/asterisk//usr/lib64/asterisk/modules//usr/share/dahdi/span_config.d/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=generic -Werror-implicit-function-declaration -DLUA_COMPAT_MODULEdrpmxz2x86_64-redhat-linux-gnuASCII textELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=ad354ead310054f5f81e5efa96d6a9cec9b29999, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=0b0158600fcebacef6ef8efb3949a4349c678d8d, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=94a0170f8ea76e9d563f6b5c4b6dbd125426822e, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=01794561359cfc88c7a166a7808dc29cc5367742, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=7b5272edca9f7f684500eb9cfed8b0e219ce86df, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3d8e20c3876331c5f625285d761b76669f715049, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=51c4bdb2b00f639cd2a6d76a222a55e6eb051355, strippedPOSIX shell script, ASCII text executable  /7 RRR RRRRRR RRRRR RRR RR RR R RRRRR RR RRRR RRRRR RR R RRR RRRRRR RR RRRRR RRRR? 7zXZ !#,*]"k%x1dVg1Dnz 5S^Ekq 3t7Z$sw.M;BgG[J%2ޠ?e#?&gqw\R.\ripz(/*T,63ɂD!tJz{x׸W+\>4H#oYVŀ.Ita`ɐl}cv`_Do\ig+ =#Z81 z\ 9Kn0]̿.!ic *t*>$Wۦ g%!5#g)"09*rֻ 7ě/7|[m (/ynp $/."[)j4?FfmCnX ҭ- 0)%En }GN#w 1VHJYwFc0vWŇ;eE+5~2L1% ?jl?K2=koixg*0G?]sU~nf-AL}VتV%Q.P(}gG>L^䬳&wY[jRKs}e}ů!1Gn-#|Y&L7WA @pX&6 'CNtC[mx/|ь !I+"0_pKw=)Vz((rf6FEQʝ_cd𹚴:^Gy;SEm3Z˃S)b8tf#l7ܝېvQgtr|M;i{ZӔܷ{oZ~HZ5~@[ `@8Ҽ4Wa8GփO^dt1̂!h问#dy0B n.Z'L'?h9"gH6{I`L0N_#$3w&?K hn3z(XǏnL'"kUɀsAdQ wzt"|)jͼUXg$Ek=%2A)Ⱦ X""=^êOa)ӇX$*LPTa7u"UjR $Nd:8v;ov/3Avao&[znj^.@Ɨ9ڠ3rZy?Y@'riÍ4!.ͳT=naVt.o0b];_wSz./v!(-^ڌu.AcYES d):KR~۞M35yxuIw1ɫS0?I@xĵ}F㴞vQaF.ң<#Ebb j=ݑ~}& s+aƠدcvk&?m{-_e1[0MSg դqW9Z{/7H]$]b^.gȱ s뾝5<hŔvzlBe(jTf.XqI6N$$ P}++ؚ̻cµYKooCWGKmĮITB{eQ iy*yH b&)o4 ^8nỊ̇x\!f6Yo @<.2ͳpYY?P%G&0_npK)F=QRi,liDn@PycUdpJ jYH5g轼tB%آ# |?$k_^>-G\H,ȡ u&"c'_#q#݅=w;3cν K& >i9lc+ qtӁܤUc)r[>Ei#:g5$2Yɇpl3L0ɪ"5|FákCゥPt`q_z#Bt%֊\ rmˆQC_y;;s#yR ?kgiMX+NQGyMp;H!Ɍ{A7UnGjj yXF`ynxѥQK+DEc1hrJbOH #u߸/{q9@va{)gΖV/b}ɓ2P!=ȱE$f^N9Lm.9\CxC!C`)hp##ke/S Y]i@A_1IݷT3d߿ӔCoA>j5[Q u.]H{z6pG' ;9[- Q?AIxNhǝڦ5<8&jېb[xVeلjUh]?Q% HKG)r@`Ud~þ \%QJRLw5;=[4u!ZCAVh i&z5EΏlJjYF7׻YOeAIGe zc}}6LY; r "Kv@eA(Y DW7̟oi*+ɷb3~*°HwnT>F;/ y@*Uɤ,_F&+4qDTAAS1Zcn$'ߘo#砱$+H%8 fwRYj^)RE&]B=!O& ]NIHۥ5HЌ8Wt7rw'=f 1yMO}CʥНaYεz/s/ut~>2|Q}!َOnQm뵭s5ˊe}Z;"V',–7IJXBƑ\N|*g[b3Da\6uJkZrM#Y{v3A'QVPl%,ZP=>S77MIWɇ2ziq3aeOvM誷xCVbp {܅bܻҔ_/!$\,VefI WM a_AŵCzY~dslH_U/Yev#)!>ZI{a%(aq|4ya5/ƚ w?(j:7-F`۳^^?`dBFkpm9*LGJI{sv|@؞\@1@\q|&U z7$U ;=Be"@-S_3!s;`xqQ\'~#pim\>iC(9}5XC&MЪֹo+^ڬBA] SkCuT!:#[% ('5C / 5*yX |렔Ht)ۑ:P ։׹er\?)UYrX΀"ymWW@%Xc#XBsz"[saz~l@ZLq|up0Z^ f \ i ,xR{h/ \xޅĽ,gTVyrx%jGU&i%3bDʥW:y<11b3W2eGrxow^:euul㙇(쮮dL#5Snb*}~D&-or]LicԇL(>JC`k"Y'̍ q|ީ6SHSV5-Հ/UsIkWjib=32VŪ$E ZS2 TRTJPh9߿@xþ;D1|#փn^caܳT b}<:Y %͋ӶЕaRxgд& t'}o6d+awZDr#|b琠$ ۫2^"]T&y] e7`Y벶K|&(0ģI'>@.{MN#9cXEٰB>d 5Kcoa^H& `o\>V[Ch[= *u,]Ea&!0M/Gr:dR4/L8޿4M/DCwK\. Pg8>[7r!^ǸXSRc{$&NS(Y/$#]M'rw4oK~s N Іhu?u&lB!dB|ͭIK}G GG<'V!TNގU{vTeeqT=iXlVe(u! ?Mү']l x&SH{ºۚ6:l sXC¾)%-`q  bCh%;;nJVwƉ9ttQs u+<1Z'zD_BDV]X+tfks! +8}BQFXnbޠ4)m `WH.(8W>LoôqNxHdg=^C,\,.#XS(DpT V tフMW_ *o\veF+GnZc=`wJ~ߨ}~$ (1OPϕq=P!A`Q}o X\jx4 pL3Q{Y>*z[GuPtb;k}u[vs6!fTyix'¹WD~“9u_^w 9tǯ85P]ҨS{v4:sqq ǹlV̙Vll()[%݈L= ?YǙAo!go⨮P#%RZuV_:Ilj<=jtmeC.@ozE뷛?~WQ~_R1Ff|{,^Gef2唿xT4ҕ 4TUjgL+$@Xnt?3d2:ixgT+;2l1QE۸&b?N H(^)Vռo:65Om@1δbw TM 44/㳙4o]c+u2 Ej;,^% `1vIZeP;*I |(Wz:a>Z/WJ)w%z5k[jg=\I7K/m k_v'm ȓ GLN M"Jump6VsoT (QH2kNKQngJNY:ITRSDld籛aӹ&rp>z'C^9\$Ղک 5tV:Z fa#Lp?Lv VHj l;^ijG֪W[5U/㳇{w4 04duBP#XGO|-ia"Ory+lm1g 6NPGLpAKp5bq\9ly;Un? +UlAfqt#=x] .!-gY$)~YQʆB44ol.›) 'D5 B]@tzǞ4.۳]Bof' =Ɓ`ld)'Y2?ځh% H ƴ3 DEtT5 VWbc!ъ` ,] x*rdvaS@ȳӠ֑,Nj7 y4%`@6H=߁rpȤ6*Ӳ[Q#xT͍ W~6n^M $Fh1-4D_Kӱ!۠)džpp? Գ !ȉᡝFtW $*Hy#1AAREQ&xaWBj+0ӝ܌2Nr#E*|m%o8p|S{{TQZ %x0fI9WtB(\ 6S|xu>Et)+j6}'x_ ˆQm@EHgYC5Wsm›wі?_Kdlq~'_U6En|2=*ɝ: }svISY|7xi5iKϛ< e淀Q1W#7aQJYǷmЃ)şφWa ua=A@L*"LE@b텂%F#38nRK?BPDĭdZŇh[o>ǽ7p[EadB"0%Q%GZ]qbҼCsxD1c+T3:]T(N' V@>hWZ ,_J5`=7+1~KKꗍ,䣊y$Dtd\ jg$޸RN1nP5&}Êm(5IbwIS̘t2"t2mb5%QȸrUXF>oɟ(3c 4 d#U38h$!5F@3CG95"k\6GAZ2  5̆v!ɃV.?Uɣs4lefreuyF{ ɇ[LN׏5-rJ-3FC{7M"_W/27J}C7eN\E {".v/#ǽ{2>U hBX݈ynG zRG 9: #U96w Hl\U5<p[l s 1L:Y!’i#"ghy;~ ".LR>G4Ѷ_wI8OIIKU^< qD\T#ԟ忎kjv뎙8"`2TdcL>H"$!;pO-SL~}uhBi34x :M~d9;P[x\ए~A+'S.$@:y%t9j:j1Odg˄s]yqhlo .ݤ~VD'/ -iZKM`K&3~^>\/9$NREb?.dͅꮷ;f aWIq=ILCɐwc.I Ognt=<;di޿J'ؔ!ZuZ| ma-ܠk!^czn,{뒻>&wk}G$h}ie;vZ(M?ȫSOdժy A5n̬p؉}1 h/4}=uYd; * WD& 2_8" p'NUgioMV6 M "8|dbhxoS7$4(C]K:6ДvMm3ⶼ\xCĭҴ<`̇!W^'!e' i@toJY% R"EC^Ů(\59b ,JKN-\ˤ})¤:yl1W'jyJ=2*ͷfG,q'^}9:~/դ`OH.vױyJVe|W]ZY8M0L7N>]E/K(vGm͍5ɬNZ> d晄.Sehqkieي`>+ R%^:*&jK2s%Կ9^&ANK>ډ grZo|FnͳDAErl?-.3xME&hGms4:^T&Mxf̂tӝ["Hn~-v]œ[QtB18֜ "gWL|mql"q]۔@ڟuy"kt:K4CE=|yƯHT`NǼb]r|F햂ipAn҆~O\>m#oi$:ӛM,iA6/;}JƲBiPwBST/KOC C֢K~M`wšKsIȰ|rE;tCJ_#|q";_ԻI^\P.T% lGA "2lM1ŒL;I_Z~;J!Z)F^WlN$Z@U`,ƫ~R e fJ]ߤR!h?r7ZSSfֹbqL?1r/LfՃ@ qTdbd|5mض'a_B *@k9[ A.mY.%QzkB0A'SVW^%`M`m@Dܗ]T^J w+Ka`?c"5ӽcO24O0z-+SDw8Hn[v>LdW8_KQ \5"\ nuKe?bs AEw$(D>ڊ`AݵŠO_?MZ+΄imrrKE*#"A![oT,_nq1qv8t߆SȤ;/4f{;O'Rx$Bʓ6<{.n~F(rC#9޷_4Bo %fH`]ٿeIZ8 ^~0MZI.ڻ ୥6 Xn#8Ңi4B<^X-:_E1{8vU/g3MM7k]fPw JƇxYwF"7\aL?^* rS~.jmWŦ&8,Ͱ~sG ?:pK 38V^W똪rU &vr؄tGw#?^W൶GȒ *W3OE@x"^ p^%2(2>V.+lj*@T&y(zRi-; GBOO  ibuW. , e~1sn,W,/@Rn=#0o4U1] ̜o3:#(5޽?<"=2cW =f'x}i7$nyȳq(jI^I8(g/-Ѫ"cx]da='J$PL'd &$vH&IXZdN>|(9^ێ!ű`NIXМ❜PN\ӍKBR/a@`nF{'U"ls\HMEL I$U=- dzW4DJez"?'6Ê9xqO&&M5U"/a AG[>Fwk *] gTʸrF5үܒy: tbʒ_ؠO@~ ")f7Ϣw[݌4Ȟh_(NHC$; r^ݢ72v Gs(ేte~omY<̽Ȇ:Lhd,c/a7d $澭#Y4r_mޯ]a]G18|ih6Yk[ZuX32$Q&6|bx% #{60.oY~4uEN *䉿dҏCAy:`Ic$P'?#Hy~˔ӵh/T3w/ryf2jH$h4]<g$)?kJe_Yhtr{nJes%}W.Y*g}j|uJt4'#f3N|=j6Cvc%KPoRP eDY6j[q-uv"$A~p$)h.܈jt3fbCGgtUª]Nc8 Cd|(J֜Bcd 4ӦH}Ze ."cr̽I\,Z 5sF2hgB(r!#rְ!vȉFݾIꨦ gT=E/cJQ uR$J#H 1悾p8ܝ%rƑ;E:i^1>]T**kn0ZAFEQ'kR=dN#DUhoplo\,節"4'㩛Xv_㢳6+13)$8ϊR{+{ 7 ow;CZ/andBIՆ%2ސ:U*вQ q԰ҥf9.:)-Jou0ȑ(^"X4P" -E*Mo̸|e9]IJjetT{+$YВa?ryx[56م\31>G~Qz?#Auy/p9GK,ݯwɢ&g'4MO-n>7\NDv#۵UAP] sF<MLa쑣%"{مa5iJKCm$e~GCF@|‰`m/:btUAzv0[u{@T RMڑ 4fD^j[bЖCqSc\%}Wi"cnjμ&}`[ 65q%S7TWhZ΢á[@g;oaz=0s3EbN ;Јr3W{sD{l vIS*O5; *GN6._WOpgrEUFsC|iʘΐ]eW%uÞ8p-*O!& jw %z-C3̒)E{\zgyt2Pv %'PM3w)49v4hy' kBllqod :pk3s$Q6^|(+(i%_(#hrH8r~"&3Exd;]<̞.=рC ݩo'&f?T( P-Q (`sy-8\eGz1㘠=E>l:?ބiI#vmHvJ*(6Wø> F4E tLJ%m3'ߢ>r.= ;mMp:>ե˨@E/K6h3c^~J{P#x Y t?Cnl{qD=jR0;Y] D$9)% Sgّ oVz)]!D>ul+Ϳ|%]b>\13jhv=j>uM?G} 26O+-usN,Kڵxgpoq2wuFK8hIrGB%@ݮ޽)Hb0yq> DȀ\^Bn]V=حApdO_[z0O[ XxΪ3jit`pHW͈/aVCQsc"gO&SC V"4VH'PssY^=?l+5ƕ;Td e4?pn*F~qB9O%IUL;!o{"$#V/^fp"ll?"Jhc)4Caf!i 1}dm!om __{􎌁4q??wG?ɫǓ&d\sٓ>@UeV3a r05~ǹR4NW˒R<0,gܜ ׽xj ?Ϗhg kwX)ufstcP %,M*ÊO{ep.ΕFe?nc(,ӎo߇]aRsxkDC{". ʉ|-RـyƬnKXV]\йv1.x O< ]]|ڬ1=™Pv&z.W =M6;".ZII~#8"[ diUX*駶Wܨ] #z}o>oD'bď ӕ;U++Ɇ|7 NNt{ya+{3B՟8 ( 3b\j voۙ6>JB(D 0~|GTZ uElBbre57hfն:gi,/g.-nSlll-ЌUuZU6 %+GgMw*R-= \xۜX\o^+ohQmgϧz'U>pX]4rS/u}S┯̾d:{o2VaJ 6¬p79jwhɠ=8? b>B1.^ʺaIh>L0v/+M:, [-F663Hhh?g؜WGoɾ< NɋW^i0K\/C.2ً2XuXYkou'!Y^F[m(K֣+Rԑv@$LRw:H< ']5?=$NglV1qUct2t..11&?kRn[鏩!\=oCU0"T[nP6Rj3˰'Ɉ&hY.&> ]kQ82P#dJM( O`'vP׹A7ۖםwB\˒r\m-Kf}?rjQQw0-;evWԑ,CW_+Mlo2֔Kl98%H]3>ҷ? b"HC֮DӪEH\NQrn*WܵЧ1 l jP#DJ <']ӎ/{A2f3)v]Qp\63< `6Ŋ3L5 ]5d T&j]h!Y=/a?\ M~-nCo0^ӲZ5V~T֬řZ0SoIiF}x%.v>şmL;;~$zƵ[кVbAtFb?j(!,# iVПϨ.II~2!ṟ 7&bZR]Gd!KZ)Hs`wԩYg楟ڡb^s`cɓ;,SyxJ&كK#\+|]^T eMBUs{6`do~H:>t~$3xݨY۰?cACviC$y[E v'ͩE v?+ުJ&1 x;J1I2n=\YCufhM3\ ~qJ0&kJ.AǾu?4;Uts24jU 1ٲ"0#̰ o7܂fˠJE3U,&ìZ# r\6ֲ&j"w$ͼǞѧҞhOo1t8bQsFΒD= nm2"mj'CWn88>Si_@ 1YNwYW{{[Qk)xi\ୁbfulatK1[Xva=ιn)(wԱ *]Y46xͧV ŨnbYb#?-v&L%фU7|$r# Ѱ͝_w%a-AW@B/'wL2>zǵj OvUߙOI[J:*?T3£L"v(s\ APjp+jpbDFQ*lvNXz=gʹjfɓ'uyW!8߃ 앂$ ʙE5n3d^#! a("ˢ~>~oNVFX&ofLXO3K<˃ˋzL@_exW;uQ'[5j 8(G]#+3'7%.-$$u/6 ٱeKVlU >0_6ã2M61XF-AP^}*53V 3׈Sz 9Xt-Vx+R; mE,j\Eyo  } <6DS 4,; WSfşc#^(ײLD}VŔkWYunV@&^:;apLy¼٣ U!~ 71 S7wO. K6?+w!0zH ECpp :@aq+HNtdـ$bX2ʧo kB^YG e@'$|(kd%A06 Ne|`\s~KEDTV{7=˽J$*tYE/)jn入:;Hpx_.f v N2X | QU{?\eWS偩A D0mAi1J+{tct ;\)6fӅLcA%pNui԰)Z0Ҿ>8[aM3QvY>|N}=_M GCuv"(0YTJ໽V :!e=KZh&7KE2Y'Aqd7YoegLђi%Ď͋>S!(B17ϸرǃW^hB1 V 7\ o BI>r5h,#J> Be__[E/`B$(O@BmVr)Y%pO2=p֌X_7c'^ߵ5ChMhoZ7NJA)"~$, 6,9GC<}KD^aD'̟kHȳf&'QȡjZ%:=h=Lbq`0X4VsZwoGQ]0΢\5+iڻWy<7G%wRA@uRXzudm΁A;O`\r6{f˵4#93g(P]'dsvT;w;Dʄ [~5RߔŠ\ RMQʻ!'O3n->͗>olOj!"oؘ@w)g)v-m f\]II8aQjnQZKBH;&)ioF/YflX@)>C|n-,a(m z![]g$8R&\2TV?G"4;'t5G ͇@6Q U^6d4M -T/@93-0;[.4  Cv P'vq-Vg&o5\ q[WʯK=~G{04jSjY\lpL냹ÍԏC{t=8Dq#Gc.{joOlO,s@(vZq&sӦ1vԱ e Q(nVS]_"Vy!9KsJYqp/7mFUb*'T. XfKQl'X;4U"n$&{F9 eL^geCK#$-{6ͱF2M50{(ѕE\^Qqu,XY5UXBV0ZyIԁzR'%,Q뚯ę #VANh ENpi G eL|Ya'846U/|ʸ0K'Sĭu}eWf$ͪV:f\*.C z!+ k/)B0*xG%$rE!hja9vdE& *wTO!%P37}Ŗ$za+:#tSTHuYIx C.W6idm WΉqƟz-Pm6u#V3Lڿe{G~QP9TO?UZ0y$LTl#tT "HJ L)ȃ@" VV=dpeݢGkP'l=nV4qbr1z17|ܽwu\&#ߊg[H(WWt8ݙ!>sl_vp@Mɵո0*Cu9"$Ð &mG 7eNq[{Ux0Sb~ Fn;/Zƀl E:~A`߼z`0EYdB o>!–r8_Yo+:v - |gT]3y}%w&5NlS ߼}*ğ}@ gc5VXevOgϽc[ ~3 <9fu"NF0;oΩ6 p=~h& >GY^6]$K .K2ȅv> 82l[̡̢V1ۖv IN\<MkcfBm(DL0pVʄVd p̤Hw6^Ɉޮ"^ Ա5O*c9Y4)!)fD+e#YZ wd *fD /$k{X'SՌȜ$`sDCӺDu.}mZ =^8݂DiO9xϕV8ZYҴb`WejW:kE-{ǯwPXgylLtfm[7wfYh{Kp " {-r" GU*V2<׺Կh)?Nj$쾐[Rɣ8,Kje_ӗVܟ~1)R2 *IOvߩd( HTVW` N"_~=016sZ`hHMvA߸>gHFvB [1^}8ŗ΍8jF\TAvH{8mK^e^-EvxRr헦;[ƶ5ȿ3Y]pЄ<蚡t~lY[pۼ0}Lq)j@/1_SP{d?jhєw~YDC6 f߆ crEmȟ5ziҸuL"M#Er,뻳1=͹f%]LZx.Ύz>̀;cSG|j8nҲ34#!(ZސƓ6S;2CwթYmQ+9 P9nIzwءϒ(mDox:/!][ͯ:ɦg$ 2p~ߎePDiW8+OTI {L_ p'u1O;у}o YG-y 3 ݭ$o!>R!pf7^W1y!F- M{nbM,"[RUY֘ɦe䢯3R-{zZE!fRʬ_\;sV'[m귝"HǽzlM~aUz֩VUj8N7'scT5yEVL|T{X5!_*`U.ti5PQ]$ h;\ֱ͘JYgY-.gLK?"=.HBMH|0-8΃l]iyeTe[5GU:*IUIj 5} TwB=Gfl;HsR 4enB_F6hQi3ҸIc\FQCûc 6ԋ1+9-!j,[m/W)T~|WDgfcچQS8 MNGnSK> 9~z B7HhVxkD@ldh'4¯v:ܲhuJSո7 D /jXଋIcaZez޸W7ٰrP 9z4_U\:p[Lғto #>+(K;S.]9ɵ~ݥwdN/A;o8ĎʞD씪y8Sqslk[b\dupNްI*:YΧ1 t;q\0,F_#|zɐ72|d=25WI)\OÌgEeər1 #rfۿsݶUaá?G䟷x V-2UN/U"qM̏#NzpsޛL1Ki14%ÏmDqW4¼Gvᵵ0w1]Dj_9 N'ϫ48Dqح/7 b4 ]Ȧz?G!ΦUOYhN~nXXDL 4!l˅ɤ T3L%tu)T(4dL71Б25B:+AMbS h_* ̰S ~N]w%)ȫAMfLK'GEbs9U)tO ].[&`[<0[J24d{@Wᴂ+ fYএ 1lrՐ4€]h'19lJoyuI5]t^B;R) ą_8!ˌĭv{bOf=n߇7>fo:א$º{QY5\ ȣ'8|>C2K_]*}G<þXoK!Dž|adL\mH_#1y}uc"x%pX"7o:k,4'#?:vYOnȓDծ=ҺE9buL{:+6+LJ"fЊ}*}g`I;XE"c_wTTJQ@c~EN MEfV7X}aסg YhVzqdeěrpvK)_Tx"o$qD7vQ|\X%AM΃E̲5;^vNIԵќDjJֶ2k s~eJ!,{BFϗRI =6P!֔RfVa,MrELPX cy;QpI(ŨB8FʸަDV=h5L%fP'C{`8Fv0ݩhKO09'lMGb8њT:B P{( NDRX6QwY(N{!qE Pۢ"*=qK69ei$\d}R+':lD#{#kRL>P+@ #\/ep(*=IX#RXҎJJvU̔Mr Y@-/Bx7栿IЏD'(}! Oj*O JqSVkOC̝! Vf'IkrBYJMv]EٛH9SM" HtZ(6%l'njU9 r1OI'vVTj +YʠT C:26I4Y7(ڑk4C&)GL1HK9›7fDϡ:IN@ 0vFHRI3S͈{Dcrv}z-q`S~d) \U%6j)/0̞F F3OwJp!k$=>޻vèeX%0OH984oV$-:'mWMd񵅟O=5G +!ʭEuwPЫO> Ĺ"ĶN;ɴk$!Ԙpgn7Ar@[O[iԹN։>ƔͭN D92My3a–!6t?c,0++@s|'6\אVHZ g?%A 7M"ɬ;|T8w' xm-vUъiBmQ"v 63~k+зv3fA `X4D ٣R\Ogs.KAW^=! hqbۀ҅L_8-@, v̍(JU@[U#?vR*U "Ɠimq߫P 鳲ښ)Btt+>͹wF~!Zp'g$%VpmܵkrK^z L~V4 hФGM25iGl&aH-V(tS'RǓZL|DQ3BT?M$t{]d;3i!;(hp~z0}tyF: JSm7;\0!㯫6fhvݭ{oS`6Y'|$Y]0=EDS"1郭JnYtLi[/E9ZIiBeJQa.~x,^Zasm_Váu o#d/Ko4'B ?wJgrCMywvP 2&+&wt(ܔxk ,SBB2`B;akbZaGf>Ȧs@9Y+48(-(cZ:^%œݲ ]mDIu3vB`tǙJ-Y=tv M@JhW-7H^s4 D0j.P?;ɝQ+(R%Fʹ2#W@Bj ʡZ8 Keȝ+n&);CDu{ )`Onyg7}hYFc$~\ q(F@S5z >;!vs]ܘV'3:xFdV:6 d|ŝ,ՍBZ5s $9ڱP 1iSl7}smtwr.Yۭ25AC)}pl,/fu.WLseS!/Oh*=R 񜽁Ӭ)^).$jalMhb ;st;`Ǥl}"ѱ 1@3bHO6d^QcĐ4:ZHfaV0 T(U݈/̣}Y5CZފb jr( h emb1ZCGi#KDR}tT n` ͷmi] /aVt[_XctR,&@͝&X!7H /?:GS"OqCMc*ͿeQ`9o =}f4L"*8֐|y`#J~MCˉb'AlqqO7>}Zys:!Ā` Vw_${FkW~ǹ7{ ~3H< EeԦ8@°ےQptO$VPC]tGI𤺆öf|2@>8x|SQ*aSqCYsbt8nS6A3'%Li|"; B-E_H>= }?ύ]a&Wb4 NGq6^(W'XgOLS*_-'{ƠZкwZ6)BJRU'v:ބ>vvJy3+V>Esݶ_~2Du %`=n?CMP=c-%TO3`1lBV1"ؚ0U$z)ǖ٬6C+ ۰d"ׯ Q8>0E}Lc,O 8O(sO M(2B^X>C3rG$xҦ|6m5&-F.O 䁢hCxev hn_&?|Գ!xs=v^],gQ@8X2blt ?qY-HEˎx!64ro5{#8VgpL%FH Sk7EM{σH$k8t Ȗ/-bzGx|X4,-oRKTL70;ȅj;N(r JeEbLٴHP(RPauqb~Vf$NWQIQJCGA9J- SG*]Cy W)ud64C0ӿ" ެVkVι7Cd-%5O]zV| ҅3:~*=0O2A\=lzQчF.PyTײ/=0ZHf7ЁyWlPlm&;nUNNfq+I}a sYpgE$i;Q>qF?6rR:V} $+_GKtj́'sY[I0Iq-mC]& jm܃iԎ:c3j'ԸEm\_YE pk c_'w$9/HDvY8&&{c8)H.c{5価U'1'36HJ5M4N: T<qssvfEd+5Ϝ.N=>]1>ϭVQ9Go"J1:uEe8 cSymʃ}k6݈5'RŭHbsQvfM) iN^aIXt~-E(K토HCz8+! A@#) e>m#t6Fa'9ǀA3Q gtX(w5TFot3 _Gi˘yrg?OC6\ "qlEuWDJfo\ijN,[i8a_!Bj=Z[, Wۆ8FS4v{aR6EfqlGN>֕r;aW̰\8ہ,zI r+Z4]axݖ'X;(m)RX_aTqG % 0XY{X&CsabjULkvUN,QTc'/קvfVJTa܈2>_2k1q _Q0#TV+zO'+=<{mroEmopmSOE.L4iU󣝟}c ] _<$.DP^B;FBWvǸ-O]Zg{ٷvü"m@ݻ]հdTEIf.϶z +s8Ӳ1;,s< *s *ưֲo ]\4yG AE R}T?0DK1ߜ۠n{ zÈcɟy|9Ik'cGt >G~0ŊqfyQG]* ;zUgC12#*NvMbRm{ɶI#d,3'8m3s!Ӊ!q/ׅ\K۟26fIag pn,č53(-AEޝ9/q*^YhY>ZR C8TǑ c2_uuC!tH`3'p8~l_~wiX- QUġ` "Lwu1aWH DM `gq4@T\).WyK:쀫ݚ!o^8Gڎ:*{W`(Rocz.CKn9n;E>aW$8v/dt_._ *!qH {T\^n-Q ZX0fL2!M1__i uH2]@Z\U4FF&ƾfy +Ek[ն ֩deo7.b,Qkg.*JgZsVE4xӲ$[~E,s5~2 SJ[/w}X@5Mlc՝՟]*=S ͧlv$Mo(, ]EKNT:4?v,P!PԺ A"30̞CqT0'p Pkn$oǬ[]jpkpmlL9RZ@ r3 V\ jv3``}}u!93dX#:޻ŇaḑoiNHl,S&H%хi=s$m69-cwx|Z7Vچ5j-mԎ6:޹wXI.9dߞ?ݒх-AH9!unR#`E&߱Ɂ"K- NiBg!3萫ol\T.ŅMoZZ3-8]Q"99 ۈ{r(bYt9yiI㟽la&&pi0F>l7`_LrI=*D1jB{#,l53zV!]Up0)LS4 b%dT~f:֫h[ŏ1k wU+,E^\yuj 1` 9;eF%?݋u5UEs%BDYc/[X]! pkU=BuY,+$Fǂ㑲@?k,3rs`H%cXw/KIuq\ĂT~ Uv,pacƗPI:r1?VX?\~Tx!F3=@ʹ]A&0_x \; ZoW928HM1R-Vnj)^²Hx^02z >JP jyPy{'Nlla#l% y#Y&j'/ V4r/|z8J VZQ w4cix+1`k6uX)$SPۖbnx4+P<İC Wq0rp  LjX.Q6fy^?FCF Kf$?y䍗OhxP=AEC[?0@z sƗQR]U|Jo&Ӆ)-*AG$η  cL[D"ӷ!|EY5pq {"lXu` OO%S(HswưZ, p=wȾ3:](8e.@̹X":s'8.I897<,/W G:?u{hfqX.|QNz]^jJ0I|7S&^Ń?Mz󞔿ȂrџM}x? jB1#D0Ђ7ڂHU^`W܅Y `dxVc: F^ 8X*IS7 n2<ԹcLѷt .0LSm6(Xunm~-z*и7K3񵣎 y$Kz @鱊palT.oj+S tmPQ +*r5N:Ȓԓ8K\9:Bd>ǽ%R;y7h{6bi64 WZ]wt%d8~43uӦ9Hw^4'U|[)0 H^= EꠀQҥ9<a!}Jar*7FE9Ay6 '7 ?߼V?獈Q0Ug^LB2Sie/[\Zχh0/[톮@ݱϒ++S_Qr)gȦp^tT4j(PEM!%KmV \M˜'icptM6drp]x %VY3x3s6tʩm "\!B!v{JwMvg]P-m}J-m;U!wXpx.GZBRuywRom(ŤBF3ve6WWs N_f\ҽ>>pԃT; 5F!4lpg\ g܍,Wd Q$ &Ά> -rr\P>ɫ2%4v\&jI-zU3jHhp*(^vZ.O%"$KC9g@!; @ldu(Oh-J0=VD Ge8s8+xtv} T .O;5HB=MFP$#bQq6jO4T8Sj}tiǕ~^(W+\Nvx"iaV!֝1 IDm .ޡ/rIhYse~d;yc8ur]o38K(_:P"EtWwY&ĺecmX5 yl(SinY`'3kb 'S,"^@&Y ``ig$.\U80 U I:n?aUPU_L}D^vq#_ֺr!MB0j<@U'\Qyzm^' ae0G?2V[꟪qVW^GK>gF{%km5"TCb0JY4=v%B {zZ`Ϡ\&Qޯao/n=_K.A}Tww(+Au|5FoV5㐿4&-fi`q[6]>\S e_j{xq@RxcI%8RN~e"dmǃ=>4w.#/' /*?; B27^W{]X֛GXmTQ} plmɣJ5&Fh)iz=q@"fD l9Ss@I*CN) ld/q;JdjjHmq=aE&Wf0]W5wkoeUԀW"}8ˀH)u#vn%B@1PKٗ2IySΘr33LP=ܬEK0D s7l$طM=7GA@l3Z^fm%xfZ쬓Ή0+bfԴ+6N`#ri(6A:*q\,8~3+ (&Wl ZW9kyf@Yx,RЊmy _%gQALޤd ;rL'I0 :' J&8WW.[UO|*OU}J4ݲuYx򍾯`O, yN&'${%w4Z XUէ\N+6%+ÏĸABA-jeF~lZbI/4%2Bo5F#}(~ÓYWvD̺ɿɞ%iVCi #Lpn# }6quY"pI4<wKP!!P/iDxǀd'Ff$FH ibЍJXVV^g/ Fīx[(U-=ǭbvn7v鹠ҡE@{NjqLPCo=ϛʀ $2YJ*} fp`Cv[3 .sj-N~]#<{V!t]Z Ɓ8 E}ݘ +ٶGj6OWWJܤ>`<|8\KG0c$NK1@:*:;ëm<(VَG2f\;a|ttG 9om_U;"=D_JKPr\g.9 . :gM^— Zpl{lg #sO"=N]4VtAv遲'ȣ5 IzmNQ$p^|I4]u˦j4mxd792tT\".l` U3/M q^']:qq`عo,_u!J'v8:Α (i6Ϧ0-Ƚ1!?X:se.yϢD0qW<ͲC&dB4dO66I{`ѦxRb(q|AJ :W>;Nsؠ1ąP d*0\Hpl]/coc(%b l>ܽd?xUs;r.{T,JOXZU^5P"ug/#$8z^s0iBܔTTY\yWVvm ^ee)GùoBy:qۿ/ZF Y sբ#g# R`l.?vW7b;(,ôn9k6IA| 9+3;mmx[e"XM<`:3@*2`l3e>g]`N{nTFnJ{ea"5儒8ٶ'l62)h{n`Rvg: X l+|TSIlheՎ0,=VoOkVt/r!s=?~j5kӷ$ mDt*$q}&״}!E GGYtװ;] Xµ]5}c0ȇf!%V:JV nrDlk@r8Bu^McD1SyYWΈ̝q e ԧ69A l~{xuu6kVy 5p=1 _ ck@u*Sΐ8$ nȿ}ٕš3?dY5m7K<̞F_DŽCea.~ Wr pN7k/U)Ԡ!ZN7Ѩd5S¶z:`xF-"ϫPA;G' IMpIFtyP.^tʪ=顠'njZ] W*b.V J;Lwh>^~-ϒ;g0Z.q\Ȉ:;frg ?l.Omp:t8*>'ay)~̻@KwyÕˍj8Ej6B9uD%[qOWiq7jK-E#fp#QOb>BgY In sBq8=96/Ȓw;C#rbJfeh^gHeF B˪$ ^,%rF|ߟ߫{ف5Q܀NrriI|5Y>Kvm{PŪ6.0#*<:wFxz+PKa*~`3;ѻbMW`+`>r74g ؓ=)S杒qX U*[eu SQCu*y:7E-(MwL&%s>_.3W駵nKJp&g}4b Ŋsb[VK8Ao5K؝]-DS^Cx0ѭgÚ8P~saktM &gfÔaY,T-f^^fm⃟r~zֻSUZB`9ԩU.J|}P*xM\NC$WkPofBm9lB`'Zq^P{Y8P/ J M4-}m<bDwEbCq$w0Z??Y$ɩ1Wcޢ;Y_]ћu*OZ?S9|}?TF/Cji5<^%)}*-3]6VK, rKϐ C[5%' E޻V;''߼n4cMN + $cF9`~󆎏\&~d@G}Xaø V!d)!dZ2J=rPNh,D%oN@i~ S,"] N'ztü^Je`Lxhz[ F?}w+S7qb5xֿ㓙&MńYwٷ (6Enf!>8H'00j2 L}JY^>ϥ1C3ipd#DW PwZAkxxh3$F4Nm L7t*|q ˃r\#"CiQS8GjE{9ۣv}RgD6hIx c7瓆.l5P=M)ٶ@9ዋ9"e!+2,A:+dUO2@F5b қjE1Ԙ|X)6"j&<&6^ۆ_(O_oD6T6voEh+PtXjǀ#3F>b ;Fp A/o^bdGIys*Zm[;HrL B29t',9(w~w)RS vfl6qL#UEBbF`>#ߋ7a\awlQ8hl+y\±)3M `Rr@W569 *p BRdxWyWRRU]_rQWZ-=Ydoҹ=KLȧiܙG tBl) h:F`|VE tdܔFqH5:doΏ7Dot6gL3v7".ޞb^^46|Þz:3뽜]]Ĥ`$RSmgoךJIz"Q EjSw+hD\ . `Tc9ƙ]U`Ok^$M5qTyk4RweI9jI\ٮű ԣdgBhFS L8 {ŷ[04sOEG#Cތ&΢'ʕpStq6;Ov۩D[54;[[D7Fn*^6IGepwnfZMzPܣ+]=\fT#X_:ӆ1 >ߤkX}S}k{Gmy D'|P4^7C7hWjTƔfr/0*6xyå`QTœf=8Ei^Asޗ ]qH}.vGqɃD5~Co߾MĨ 4JCL)U(aadAcG?$T%y!-q Mv"&}x :b)*I Á޹om_,YN Эӛt; 9M9sL|;ygeYXQeqkU֌;cuWNv ek2z1tqγX)w΁gQ8TՉ:d32ɃM8-rRS%# Ǹ.T:/SumM=o! K]z9n6d8ъ6Hpm )A;)p!kQndâH ^Y`A,@hZo:"x|}I-E;:6m4QD!ЌԳEKn<E_n{un)ۣ/Q;< ٛB 3h%JU te՘rJF8S!VW5%!c?ȞN`%YmEEWHzہ $J騖_fq) -%^-*Ab1O>X⭒(a]fjLBE+,Bwwۣ~V&yh3OIJ'ec;xWl2^m4FNO} uhe&ע95h,]k`t>Uә^fܯx uKDf/yEU4va3 tAlNf֥.u ENSOcv{9IQb.Jy6mZ^k&^&F/ )^D>lȈ,,9Ղ')ӧM²s 17^o˽PiN:JKM 췍 P[;a׽c$|K8C?~~p)dc.j'ݬ)YRRgƴ9CY`D{Q0bdXNc1@|_2/~ $~N/Xhk-GbÒ'~ spZ^7jï9o1V(J[@ G/l _1_?Z*"I|򜝪ץ~@zT~1`tžC/Cogi@~.U uUc8CC|";;06֪]*/̾0) wyRt)ӝWMPMۗ-b!5OzBr"p-Z;s4$cX^8\ F$$u^)TcT҉@qV"єx)X,g>,*;.lM9aF_<S? ZA E=?k~bPΜTeORM+=}>u\p8%AcwdU1˅e_}**RȖ=` rTڰ!|S9FnrR~$s EYK AӸW-laDs5T>0G1Z;OMW!,жB|+YX5Vw yUH?OcoHF$yujm`I`WdfZT?3L"L14`ZVKyb g%ƒntA 6д?W)նƇ= gVLb2zҐ֘[}Ғ"V'w`!B Zzr|ѭE*ővcq"( )M܁F ժ˦CU]o iWP%aPy^bm8}XIfam+;T}6$s@;HP c% ɢ0~f#VT Ԫ./re"m/ ){TY}7 RzQToc#;=Dynx MqَHWQ=+ 大4!0\]N ϯjґ[#,ŕfMLo=ϘBmqekb @t_C%S$ ~{žْ#{Y-j|L/jQ-2x;FYnƾO-S-BAzW (9;sO΄"=:U8C+ў P,9,/ Ebm{ wOm{_D+i{W7?t]\oϥ;fnh_* 2lXm|ć9D*i$X6)#;*?G4:g:%ɵP,ۓ\-1MyWH\!lGc{w/o-]kevC-ATFƟ?m4}p#X1yTB >YlOO@1vNq! sgE]: XR2 *-r0)ES?p+LJzMϊ}+Q&TY-1DpCZg|%+$gM/ۚv5%-A֦Sz#ׄx ` N}Ϲ/ݓfuWM=9Cq?D-L*fB>̄t R"4F:DHE޺Apfr*Ҳѿ(홁\NZY{ {sO9C=іxG5dH%Y$"ݸiǏGˮ9I\(̨W\m-2B8(b! ͵?(qL8Hi䥜:]V5yBJw5>No;3h ,#ޛ1+Q 540nMYF5Fﺯ6Ajy8Qu.7-x_tqdfo_4^o{ g ~uAZD+Lp هU `w ޛ t$]ZN%yr=@W%ITej-@Ihw+)΅smﳪܯzEr?,]%;! ,ΤE-PJS:ع]@']JWBZV0u]_ϞK.r>F? BJ1st!۵ĸ0w}}k>`~U*gr"V\;%Fb|KN]ܱ,ߖ՞ A6)R$,ceӶR=Wnb+dCm,钜񊕊g|}?Vxڪt?RV/09H^%T3DŲ&DP-/]Fq2gI\ڴkh|^V|I!aBofd~k(=?ž~Qd'XJuAsBoڱ)@':bC2JT|99P!]i/uA8}܅ 8y]Zwihw 6!BZE:j[^ Os4ơ+mZdi#$:+C꯷S5n1w>Eh@i kO("$9kO9F5vl5\9u+g}.SpR)P5+3Zx5H?_#*`ܧ N?nOBЙCY~Z⨡K>g6 Ѝ%<3 ONnsF!ŭŇI?H?INcU.1J~ )G"\T*:v2lUDfS.N [ezj(fx}8_;^+ EҠf5ȟJHB-ٛ/fʳ;j2"7vfiG'߶J8 D2&ZW4܋Řt~$kM:8ip\ToA*bI(ޫYt!y*fYNQd4CGC<>y^,odEIYXPZybC-T,!Hy˔gCL5sYx-P -Ό7^dn*$/߿8baNtȤqk *W}\'e5/OAf. p ]KR`/>XP6rδ@ a>m!U*҇bB FNmyXo< y v1{qMmM‚!…HRP$bƊA܇Zd"NF>Bn4). Y+ " CWC9!_isb]] O͐Hv4?՗alNv:$FiNE>[g@= i*\}׼3eS;# t noW3MyYQ=8c8~PwYI8^}=`/5A( bc(Bs6UA-@[.ʓv0#5&=؝*oQmdn{!i&Q TۉͿYQ:P~ xab[i6-".#CwY"boFDgsvI ~[:=mrA~G8^'['sTPdoe\>a˅<>/hl?PdwIВ?D1]:5(NP2axwɋيО"1PK9I(aj )A_{.=7jR}Ȭ_"f}GN*/>bvZ\ .Lځs>+Zq N%t֒D!(%գ@xd#(EcͰ.'$azvIdPP- 6 /܏ô<]{$J:j12>hi ZsQ7s>v9v{=5K8*?7{LI1g=^揯28wkQG 8ƛ/c> !K];AIP"5A(obEɚ ]q FBsn6*pB߹b5(|KAH1Z 2I b<{7 k6ɡS()X7pvd:H"S@証&0ڛaZ۵m!c ԒgP6 X<:/֕Xev]|<dd$kjGU RGS'W)kힹqtꄤ,i\զ48_II/(8E9^VtSALE^oM&lh8(]0oUe :cYms Q:P(7HaGJ}TJUD`}*0+?U y%5?^ͩ)ndyaX\XhNM^y_vΐCEna(6i̘1 B46_cڢLWwUq1_qןw / D?Q5QD~C !bÈM@߃0glV 0hҰJ0,ѶT3R0 bWٮ#r-5Ӓ3tYN\g}mJb2 ܚ*; b`6=m{ITUtit39iձbٹj^+AH+R"*tw`ɿOrԆ$.W '(*x(y|{c7O9bSb3osڳ@ `sUC> 8Ԏr&a1Z#D@=Y\ʼn"DtIY?=$産zÝ Qa'JHlb|N^wCJnnzN8[܇jE5ɯZd=0+}T3^)&52io ʇ3.lTӵg[,)(˄D.ϙA J8 A2/k*fF%j;XlǴu$Kv^!*G@Ą$1 @H \09ׄ1cWa%qJ5HˏK!;N+,ϕwXK+ٍ:6v]8jE2ZԞ:i*i;-~=2;#rڱcN?Iy$7Th>m]ٍ%|WT,Iqhte^hZ^*ܤ@ZQ+5]\iԶr۵Nf@Zo)7:Vg{4*) ?1sVú8_/wrInAD jz냢ؐO5չ鞔wwĉk`nZ5Z%t3Rj =#f[(DIAnǎZ-Л&?VtWGͷg]P#m߶*ʭ.(툹v3+fNp-ޮVAGfEj7sly)|d+zzKzIBjYkB9Yi1jR)eڅXEoNy<ߟvc㖫>׎t\a3|Zaj:u`fGU;j[6vk6Kh\[:txGS-uH5N!CJA'Y8f:"kEN–#)gv 5pC=R{sƒ)ŗi2w][ɟK1+{B#ᮍ*,<9a |ol8fV" /SpVW(0.t o[:!(0r4݊z&K-J7L%'U"dž35&.`}q8O_ |5asFSo08zd8!`5 sS}`N /͍WTH+'w~5;tP>hNX׸gRp蒅 FI8׻UR("bAN 6>bxcp~t_Wh pn{{Kk ,a-%()$ZDGQҟW(bxnײr$t;x7d僛*) ΘŠg SJ.\\DhN2WF Gj[5|߳ѺhU7ϕRnY?Xz(DsD Wv.KĖԟH# UIUW3-|aJcm3yzJ?*u8P:dUEԟt|DNN)3=ƾuiqh؅=Yy7M"V#̭WP+oΚnS3 ])H SrӜ FSGv+YXfq_ZoNx.FT"'ȢO O"N:~GbWuM@ɲH21|B^`1DV'#DGYU鲻V^qK9`㽗 PIa[>B#ǟI`@cMHz,^ǧpM%>(Rn}yΉ:oCuTӯ~W9s7M}? qAmAUKȜZі4]OdF,nק0sS2? ~/שzgӀz75O3hׄ'6T ϝH"W 0/n= aD߳A %' tkbϏ( n{! !kU;0+Ƙ_g=Xʮ y'J6zz`D;kRL=S~* MQB+?Swb}fH5T0vrYdJz;njtgZӖ{8/y3")3ZBYJ#[QPn :nM,j 1MhJR]tƭēVض.zsQLU~أ=H"xO3B'ik9c<%.6jr+ 06\:[,sTNJaz/˒bv'C4c }uqL]2mk]rD;#W8(whGqFY_;ۙϧb"ͫSF \{`b!cURZJ+o#+_snLKyH0Y^Ć9i̤_H_e u4RㅴRpަJNHOקxX%BYzF0kE0z`Rb81C Xsr@XȪu;˯> [o2->P|>ߒK]6KbвxiZy"L34Lz¦1:< $)9)}U [(XEptEqk|edE/BKP+}L{*Ú' +Rgchu˳98)-7oEbAiҩ"hl0-45lW\t tƭ9*B&D→/LоSy[VJj+ u…rì] ,NU D i?+cC.<35 [#/~Meb1\Uy*>R\\c8o4KWI'r"@.zD3JE$٦z(_MZCE(uĈ+l$Z:`$/e3ئrt.(p5a\A$ F w[̎+d, `ba"Oݷ'ǟ&T¸ ]sP ʻz>)B\ $``0BXn6kA~Cg1fKY`.@Qf \![Obµ{!3K$|\9R.SXox8POئ D Ή{\qǂckRw1rDc/"Efۧ:/)/uRxg1P~^ߪrNG3wp[°% 0;hFէӯ"0X t}.DbRZcy͏}@NVL}^`AQcYlܙZHf`88S5b*i@#7XG!niWz@ r l`#9o:Ĥjv$c<{{r:wypוvWh[&!$Fw q rfTNu<0\3ٳµ?lFTlt]\0พ"q(N< ]ܠA'`١K{pJGϷiَe o&{qx 'jDqVd_iA;,x(vFs}l.KL@.Q:@ЪS/=-\k6zstRtBTCk^wVM;=n/[G% W6WsGxD.NhK0E&_O' ['BOƕl/TA!y aҘ&@b̡R*̎ٞ"hc&Ndy?9w;I\_NaL*5_ 1+,%J9R$y$6*B;Vs^C;&Qp27,vu8篯lrٓmvn/wh\0728Uz`+W=-2~T< )T t̾ܟc@kWA3Ia^ '8ryG0/o h校h"H7b|}!$6S*ee[e:zr4QLչ3մصvc@&r]J~N-ʽ5T؀T yn,<&R02md γg3j-⼧6t2&QQnQ$=|Rh5bw{-!T]båYv[fnm1Km4-9Ou?g;}bxP:^Ƶ.NAb#W);Pn7Bb <(Js}* %2*DmR[mhˈ6 @D8P$w4}sQ] ryP#st}}|1GF]ѵZ']S6N^ %"VBUdp&#ɋl)m ^qXk!"_4s)Rx:?#AVjAYnz/X2Gmcɖ-.`ޅkIFH_B;^lzl؉$YW`,1L;l rWW.4ftQlAQ>yS A7 mFca5n%%x&hc[ގZ!S0A4a>S( B'ԣG̈́*=QB{?Jc v}NC5?̢/Pb 0ᦁ}i/8'MYQr0\maeTj۬iaYg^.خ؛ *!.B0\͈أn #Z2 /4F6Tc$AC`gwWw{ò3҆v쏚8Oj2! ڶH:MBݟ94M4~?7wGڸd<.Wx4V#/> Ȝ,bPOۿp;j2{dig!m Qc=k?(=2q^w,Wv*蜚~B3 Q;\(V)E d<sy-;@X\!ҸPXE O+:Oj}+,QAvO">C#[/@hf;v*DS0Pz46{ 8lX''Թ+QnxQT'BRD<ԫHdFIPpM6ZEFR^`D)>?7} `:h,ӟf`#BL؉J·=V\%Ʋ.'e%i, kwǂ\N.1.2UהܑE{K[o^rʠHv3b&S 謿'=J4`}ǒQ 似;'1^ѹpE0%)j!Hh_۽=3|ͮ4M6ΠIDAw՜jn:"~b|R*;BdV! 96?z 3vM]L_:EM/ٮ;PU|l6eÀ@%>$Pm"I͈e٦.+#)4GFT1fw8̗rDgA_GM /?4Ujc`#q v7VrB+l92FSH^39Tʂ$%/,U/%i ϭ` Cw9Lfj z*&*a"-PW*M Fa~*_,)8@\#oHtd(/ҡĻ'A$\EQЙժѺrw2z/F((%BJ3?u s)ufY«T>D8q+zҹ{u]A"NMn>'?;W#]ZG7־.veƒ1^n菥hfS.X̏& AY·X a,=H_",Q>WR57%|)ir-mCLy^ xj= t(˲ ܈L/>+^\2!3^M(/w0<(6T m\~>-G1ɝK1!?h٦Pl(o9ߐ(nigR^2:B9zGkH IJX Xl)}Ȥu?bͶ#Pnv+ӦS9AO~|8+37ܤs%S2/AN =2$VAB1澃6~hbN2}TA.IģLyӀ~47RMdf\u0$d|yV}S>:[}fU)7-Ted9VBYc/g-iR7\7`JͣF4|3G[VR]5-:*ƒصI+<GӜ;wF x~uEڦ_HU`-VϯCSu ?&MJfCx쩺g~oRz6U*0'㴲c'kKșdh HQ:rz*j8䯧Q'itGk.GzRGKQE| 3@3y6^*7QcFV֙l%hK/h5_l'͏Ej40<2YC3Q9KӉUG bӪS/`;ITD"BW!T@'/0',@Hx_+dNĠ=sxk(R k*M(wOvܿQV{_HiI_zx [ ?>'ktf1O?h֞c.. ݥXXjCD?#t?%;ͨIb`V1[}b¾,} 0p`rV>ᄈ4w'^EvK+^;.z[}w7IĜ,v;eq_yto7Tj(T@ BHe of񿗼{@GvbLZ*ēa rmecuZ`gc|3k@ԕsa;4|P9gl|i).t]l/(!׌*Pb1jI#N.`h0M;6ۮ&b:si_.nfrm@`F\F ټ!52A|SL> ƣ+'b.҆*PG@waTEgݩ"à(ki}{X9Z┅ㄺpe.oK\*S~za:}/r)ZE֝3$TP ٛӍYz?H.&yuklѧ۽!K ۳N$r#S%uhBN}X _BߞSYaآg0bI eANJ/!2"IzO[)tnq}fT7}{7+eo?IK`gYd] OE '-]Cm8kiY&^?h~F|)RgNn?i 4<3)15hÝ=1JKfιBTRFc"'t<^S[#H}-FĀgF'6+1 >^ju tElaV(= hQ-"8[>ym„4"]4V&s ABT)ɱey5gy"|Zpyat-bʉi&/(ݸ6ߙ,t 꿚MX^M+g *x3yqsgW2L[Ah3HJm(Q]7O,}W (+gL aT&=4*DTx)O Z9+2>ZǧfyD@RĨYL,DH&!Cc3.ܖ'J{c+Z$Ӥ՗Qy!X_>gyuhu8V ;V#g0EGl,"EPIe :fA?VXu<|)kRrczds\A:d:\6rbW؞k{6e7Uޮ [. N$iXIpl%o:ju sj9J]I 1f*h]ZG˙k_EZŸ;9hZB`wd{`7*I~/ 4b"ᳯ4鶁't9U=U,LeT0_AD)^>n\(jɡna@@Zm#ɋ.T6A)^ 1%w}KWw)$S?߈1Sh!U'jMξWABPГ;X3"ڙ-H,-6_ur1&5u!N֮Eʫ ߹5,Jc-l*#CJzT仡ѐrXlNi(*FбYim( h𣹌8 Nʋݲީϯ6T j_ f0|Zad#82 dؤe?~Blޕo=l{SP;+ޅ0oOI(FU U3|v[ n0\wwAdpAoVm$$w!(< /rG,j@>tor(RI*Ȟ.M+DP=ڮ蟋M0/#iy ?vwdbm!({)!G3K8-TZ;{۴(yQ˳9?JF!tYbne&+m*͟i]{FcuN:AC)&6Ӭ@td[)‘t?ԓv D |a\Ax/`{L&6Y%.(9J7 01u }f|Y^8z`Ou;= .PيxʶWb}#J!L@xʹn}-?*r[н>|:fڭ3JGxgֱn$6! <'p.X}ZpPZ62chZtqۮ'tYXBU8<̃@1mRi[Ku:"p :3_ss%9C>B4h1p"Ovx[{,6A6 WOD'ާmG&ç.}!+uS7|Ԋӑ ث#{MpR{%Пt\$悹ڲ:}:JvL#ʏ;HqUeZT yB_Di2 fb*}vhnOXDLu<1e9G7 6tdljK^GZ/~F4|lgL#`w+\d̉ED=fW` 'n ʚɵMpT', S}H<~\K /,GϽ&뾁([1לQ'Vܪzh &w-Д2f%/2 4gron+)NtջV5Qts2HcZq!̈́tS8䧳3-@ϧY>k^n!~w:C=~$ӌ1'5EJö:oj QHb90`ϫ4docٕ6 iOTzuXNjxkmE BF }= -=r[`.18,Z 5ưPFENKY.- ƒuՒ>lUiJy'$cxXhCfT~0^D,p?_\KeL>!$u`/M-b%s[5F)ŷg).m-DPz']K8 } MS|>mS<㔻|N@KoSn\%8AOO6θ ?."{W쬨:Y fra0 16I kUiHr"ntRдI Tu‰̟cb-XJ"T\n ץ]oP3PZ`(.j[)wLӖqTfQo'.Gndϳ(3TEɛr"FxHdORΰՆ:[q? r9Dղ: WŽ@Wjujׇ*jT$- k9sLmh?:4ЊMNtqV:"UH ^sft9BpmN;(L "/iv|m7| &OS)؀Dt3Lӆ=Vr#*p57 `Z)QNFBׄPr_K1`N>i`DaS^łF;"z}/2n&%"4CS5@,g"^CI%Oǘ;ooӛChyo욭yӋyNi|V9߈ozс~μu#P4GqgH0 M X,6P}JkL}*?5,؞ Wz5ro{&\I栊szAL[{H(K{cӧ l76vVK^ Zt}/(AjSN1}1k!U<&tPU*O;UEz=Jx @|ؙ5?+DmYB'NJ*s$""rcbѹYu=[r b,r SO:,́\(tNɔ+bqp>|a5\veJ;d0.'Ie40k״}K0L{"o.!`ܫjՁ2G ֥Ԩ"/p3^ b+7qqe \Ew=TrGgIDZfPa\5,-qw\ 6L: "ݓ3{G wPX$݊|r!SS©Bd/Ї,qCͱ&r -7 "`fM ?Z F9xyHSE>C ~0glVR 8^5dkÇI!/e6ȳڌkjM0F^LkbN89M A^]9 rFM3/`1p@6k|UP #`"nQ.l:Є 7W.ǂ~j/Wm 6֤W "UY*\Pi)O ye|qB"]Qd29~o2n^97Բ #vX ~U~(=8(BѹBg`:: ꔳ0JaMMkij 8\Azi,3JbboZR_ šdK"9ؿȑ.9C~Wm6|'y٥kgXTPRSG/?)"I;:Y&BK 9bXAkEC1^kȔU6 -fp>iV 4PSc(Qk]`XMD82P_)GyT;AjEvTڹ"x!]姫i4G:a.SsT.̡Hh,P)#Hzݘz,)fGIkAe9R2|7`Fn=Q4Ja߭w_o*.nbIˑ Bᯇ_=cz:MFSةOp'QQe6*~ṛIJ6%消9pJQm+h!ӥPų苃_ېd 72^U t͜Kd5%* 0wCCL&,F]Wa{J4঴-G(>y-1bx718B!rjgƨ# ^> )!)1L F B#8vjtguÑOhDMP𐩟  B٥e9]0͏tɬ~0TeukJ]XוV? X4%L'[7 FQz , ų`Чn`Vh\ G(ڠ%7kr ʊ|7׽"SR8Ouʠ\a!$-T 06 0&өQG}O~ވz{ܺ9ƨ8p HO"ڳS 2"06>;! q7$+Hd ڨ\B3"t!$Zq\YKfd-q#R\vD h;Tƣo E,r*ݢm @)$66+]؅PXg7g}hj%zLcwh r4]V5~0([tɐ2PA )$6΅bJmSrF7;hBj4|m_? qqcNJw7K{r1LEc(>Q/X>f4W]A RFka#36s_ :VXgH 26H EL ELgGr%N4@l6e2>yn"LR"ˬ^A?[JTn׾Vo\3H\t 7&=D!ijvoCL`;EGXÍD$m~7^M_\!j!l ̨FIcâmJ)ζ,Ԯi 12{kqjL#^}9J WvA9o)>Xrk-Hu C٩tw*@cS- p{Qة/NhT@lstLA:1$=}H_jO/n8i#ݴhX_NGr'/?4Jw9vSmRdm>]eA@!#갩\w =P԰lE/T>ގ5kT\Мy&f[;C[)ޒȊnA l=F5ב{p վ΃ɳF47)BTtM8#z} &^am+ٌ apv?g 'llSezx:UOr]e*XdhS'q1c:eXMn>c%fGoO*<@mʠ!t,`'hWgrZv $Y݌̼ȶ9 T+Ĵ|E0sxOtt;tòގձFG,]gb ó/i$e*]L(^ܧlJ9<+uUd#mL =m": A6ےy媗zLN./ {71Iҗb̞= ~ZUvEȨ2%)~  m|Ou^0rєg|r5, X)RO5(+7PSP1H_8N(NqD(p׉ЛR c5ߔ]CX)/7Xh WŊF?[`q5r-Xɦ*@S3=F`|Csk7ٞdKjTHdBdf|c 5]esaKŎaUI Y<+e˖ o.ng\{ (u~>C MjQKܳf,g[㑯|CC3 !CKXt<$ a;bvUV_|"z @ pm%8Fu,]DNo"SöܬYXF4ȵ©)Ak9NZx?eQ:^T.'WR $WCRM äMq'bp͆3jP,,=!!H|:kUhΡn]ŔEׄ)<)o/Bo-MTE`,GsV?y)aZuQZMKM17vdzU`̄dob3-C.ő,YP kC P[(rOk$Eav_5蠩O*'4g\d6<. /5?I"׆|p |9++;]e#'8rLٳ\Q}lL)1(9rȓ=EPn54Ȏ?o r5Z߀)@f1 L~i &' ##ӝZG|IӡUD?o?'yy R6<[ۺ%%K7d E3lj8M#9>3&I,-f 94zBBVĖlS90m~-WpLqS<*h> IU$m62bbMI!i5?@d%K/C/1P!#^o]>,tG-w2i*M3zb JZ($`g (e x? Ckרi(IGsySYR T2/huy8@XlI_'lӉ5)6nBݝUTFk! f=B[{@P)>ڐ[HI5iw99S· Mq&=i$:Z ^PzY!U@A . n0eKSC^լJx%>DP•힋/4pH7m-Jr0WkpgKG*[i(,@w̘[[(4il˸&%`"Ĺ)hKN(~(s!L4 iZ^Vc!IW)JSIʤ!$d7tzK꓁ Q N|Q܇cd` $1 Qݦ2HJ|$RZ?෵D$24(Ɛ:f4 zShIP$HL.̓&-˞ԩ3lgXH.| biS`iƗӽOkB4|F[޿N$`_Й|ذ +,>=4R<϶t.֭4=M4%n(ʙ,fa|jAɔ1xg}Ʊ0BKud6Q:?Y >#!]i>UHn"=GMe1RK\C(0 `;Xͣ>П}y0zE礏Nj-aiL7O VXpȢAe_&t{I&S1N(߮TԌ6n|\, gȷLPJ0a"WI{LO2~<Ƃ2F*#NKXO0ڣUZ 6e$Uouq5Dї%\Ad7 6`xɋxRK`ѯOȊ =a㜬]@risvޒf+6j6|bh ` CH~+W_3l98 9Xˎ.f+a4?~HeB3b!|2o’3%[DZ}YVͻLsy`7D6@*VlM|o_=ĺ#>P6]>m?kD0 so+ftLh%lEa+,ʙ =KX]y Zօ ʞ/s,o${WgJa+ps߫1n+}gU59&0ܽzFཚf2Dx@M%Z,D<cMktrbiBpC.GԕvH=I)ݼ[a,+sx.{\ }8oZߊ+C^1_ cs#BdjSKe~29oC._tk=z~SuɎ3)AČ!%9L4r9?Z2)u|ķ:^v/86pkIÞ*һ_C%X:X;ibj@AZpK%5T?҂ R/ۗvDJdI Rpeu<Bz6dt3΁J&EswSƄ/d'6+;ޠxY`21 .'ALמϘT %@D;tP4&\UeIsۋq# F6\L% 1'E7ɒ3֖ p0OqHz%b ri]Ny> 1񙮆<8sd|ABxmzx1dڂJNe xfBRGͤV|n]Iky zf ST ~ W2Ot-{4(glDJ}@ۈ$U|Q4)&?#_Pw0V@ mQŏȇ Y-}!]X⚗$ݙioDkìPv _@FlPMNV3` DG æ/ݺLzw2ZOMz;2a!@ f$(U&L? \Z aHN.J=W*>`fXaZ1b6{s6:t~x m_Z,e&8ZJtt?W0BV3j8LUWg,*qsUUCQB3'9BHӤ=s۹]@OS#e\"zUNN„ L-@O]*;Ұ ԋ@G/QFā,[)!@Ōv(dOE%WZJwAYjo$5\r_b)rj£NìNQҳ֗'MGsG׍&μWmQ14E4r!?%F coXdַV"K&FRQG:%|ڙk(:|@>C"<_/6)!h/&n>(,_i*.y+]߇ܪ-]_t_Gx/1U,ج0>1/BJɖ g`ں DmπzZ%tcy+9F?e_pq4"q`4p.1zV([O\_"#iTz⠲T`A1P7[LV/qI~o5hru8IҠ{Qzl=1GutQ3rG, Eb%>E?m0f`F&Gδ1Ou;Y:,%VL,mEhQN?9& -cpOJAxWZS 3%KB aA/ԜXp)b ~㺳##d@=Ku-K(=?;ͬ2vZv} L'^.T !vz4$4?Sn4;&_/0 >Ѓx׈M+;?po 52sqB8ˑj!Y-ĥX4WZ|~Fo[S:ʿ[i]6> ?" "RYZ' ^neqWa 5J-֡||uI^Sln< 13tW,J]m߆0DO[46)R)ƩI\;lǁm͢TzV\'pwe]>)1q 3qm~Mn"?gmc$"$jOlE:e+ABwVhB^EKWEQ"ӡ-WFBisn?t!C1R}2RM!פd}"e.J?_&9 ֯1?ʿViBSW `_v!t2/ѤۑT*E,JslU))q= uM*"Bd:},] 7+StKBai~CŖ2&7iK@܍9ak!5鰏`bqzE}seQNX5HA'RVݽL} `CZLmlǓ׷P'aʒ ?:whm D[_HwBy-5 1@$pXoRҲX#`[O{z*\BNuw(atk.; ^y(3ui9- {C9,0a:JHǩts%ωoQ*Y#7*X[!,^?I|]ŻLQQn.c㙖p2c'O-*l-^{ x'޼tLMhÏ5ȮkE&9N}4/`yp$ҽ1+MO ocĉKm*Q슧e5v}ח267,BQ-N燜]6:[,g KCkɾ$ci4Fk|\cg`&*f:M h{b0F0@2ś V{iA G2Bo;&ͅR2(0B0I㶁 kI_Z=~AHS,+U2,T5?hFQ,cAy7vr3h>r`呷υ⫓i jwӫmK K@"Ǐn9(n ~Ьۮ/E٬,M`o{'L٥e{Gu>fR-ap"PE{1F/"אAk' lIHǛ&퍈GMgYș> FG_%oEkwx$=ƭ/(ݶȌyK&ZpԈInJyƱ3v$."rG&PP=(f'q^`Ct@m]M,U:*&P,\̥xw]{b'I!`-N#sKu8 4ʹ g{HYE Q`v (M R-3dTٸ_ VIPQ܈6'56#;xv[BN{ RKDl6|x;q\Q:tT `38UXa/=Srnov껞n*.)eU1lAƐ Ѧ;B07UƝm6F3Y?vJI(`&XAݐ.}v duz)DbN#_wL l\+&smgS-a/]A}B|cg ҷgyG%QST9<V(iWgO 5 WӮԧ2&6U!o埝מ&T3} .]٪fp ; Es]?p{ĭ_K&Alm1#[ۀIqlڊ T^xmʽ\^eFho W 56utxn8# #O޻}wViNR\@3*4DU"狃20Pu#2.j+^ݩa3$"r$ty+@6za$|LIu8%f)%ɤjTZ^F~5ӷ$m ʫ‡@ 푿dYB 3]ߘ*w!KqcC9̣Rh%K[wG҆nàĖ#ϸ#OyL !p9}B|pCGn 9"-熷UynT|B.A QZ]OXgy Gx|iA/3|,)2{~ؙX`Y wwtDmB۲ջ+½Ea[uz|23Ϝe e"@s 9|Q1a]AmsfĮ{Mʫ'` eQCaYsLn*\Du:pA &QU\V Wn^&wYؿi O@'6&Ů,vc‰ܩT^?$s+zIMˠ2wptc~+Q0]r,֫j&!p6Qq9%K2i7= o3;G}Qcx!#5:[r5VCP B6aD 9 tZ!4KmC$ܐ5x^]@?HOWa.6LtMjJYά;e5꧜cDWl/ `S %>aFwr5X(i91CmΩEZ"cXY.iξ)?Qy [G7\3QJk yq>&5Cj2˨\dl[}y,2pG/Xx;WәA[0c ǶKŊW2)p>G_kN0.pa;5y) 㛗kg?3Z[MZ %~ 2.qDPP>eGvq0Fݖ6G#>ˏ L7XG#gID_ 'T",cb,@ x؃C$76b`"e~4A8SMo j꛱T٦j3KX#-7o]L _h1Ti?ke%[ .LJAmCfJ<#{ymJ=d! *@DHRp<$qm'*W=Ga/ϙx˄)K#bx҃7&2ߖN٦M6/TCqmt@:i&x>גO 184XdAt}*#FfĜ"m4` HQ{:ҭcz+E҃tќG"|W7:gDerRGDj\b+߭Vƒ'&pu^4@jxd)?ܮMw͐ s09YϼpWFPG:T( ,.,*:-< ׅ֜ڇA@E. ti59 0$J_`YR:hLНW/^Ϋ!*Hh r1xWۨwԸ_]]דWr$HF &T.VK*J&EB6?uǓ\3ȏ H0B6t{%/YX7 -W )SwQTT̯$eV۵p+ЍzvuL^'mKt;H\:Giպ^dt+<ڂMN3ҤoT`ӒKpܖyn7hĤ_empJVA<֘͠pc⪅ d4TO)G.PPGs}TT#`8E=JZD'GH r&ٲEѥdRFѩEAkNgz͗ g&kb#?AX,?{^(D]'[uaBW_p3Sz;X6v2~t^&`Ҵ3:lm: v^o4'욚z/*lزy oSt-ں)DT ,:p:wt;#ik$:' BJzlÁuS4F$g4)W@ LyNx=DYT~"šDʈ?Rdż [(g8 ^ 7% CNJZ 0.?eߙtlX_={{mBV\I<6Ak$kԋv$ҏ3 Bݠ͑P?ߐO1"._TL"a]&dAx|^6?mp3c Ȣ, MWľXGXj^<@/=7/mi3 Lv62nfaofȚvCHz+w()F3⚠]AATA91c3B^@y:>U 짋CkЬ.G#h6M"lyŠdC&bmY7|®4a=V<7LWPu#EC͂/ ~/je՗ qKA?~K$}kJϮJP,H'<`WW!"Z-p""cl5xnXㄐjtǻTIIL~\?U/^֩2[#Mq</9+`"rw7KqtFdiBcUl6fֲ h1 dUsi-"`GokUj(o`M!^+dh*BG.NPtA 93xnSȼmNMeEsB= Nq~sQ~ИR15榈|m*H6}V#\#)g>7ܩ ZI|'YqS Sf7` \rK8RIc[>9: `xMāCeA2f}_sBH- ;}TvWQImQB=ay'O@^FhCM%V BxxOi+X˴'Qϛ9='W]K[& )LkPP-{髯-o.˾䆲dqRy+qyywMM=0|1TMbKkBP"ܖjEO.jNoa$1뾾xF=pit#X5]Y%;쯛!+ bmraNyR0/oN =wU$!gYD[W2C;rQYJMI;ac )H:uxyl~wV4e.3'EnBIL)xw`#&=캂KADC []+i'7E"~!Jy[XԽVw@nDbНp7dSV#}Xk:$&.d'/^jbiɘP,Oש[^]{EAR'fWlp#iB[Jp‰ 3؂pâKYHq7x+z_A@qO`^q7&[R9+Bk|p~q4[գDג0f/HXC7ȧR#r'֙tE]3;=6dA*8Q/fn;jw+(f$ ={b̏ 9xʳ]m4WK/:7.ýxG+Yjp HnJոV7à䔄@*H"PD71}/t9ڭ.}fX;۷ƚh݃qjQӘb͡Q_f`9sƳ?3pU#`T+_fFNqqIŵ] w@ Jo}ui#8w`ɞ<\lCo`̬{!MiM|.SUWr.c#WK$!10*H񀓺?#IDŽѱQ+x/|;i**"a!F &!g~KlV1AJy(D&Y*JvNר~jUՂܔ q13. (#e5+LЙm4zIBǐ>S(w[UDf@yn\N"QQ/#*>ۈCpeMz ~+ҹGRbRd?%5|Ŗ뿭Eݞ _.Íǰ=q0PLSEXIEіnxuC T9\xBI76ҁ 7cwzHO}d2gwkZ2Ğ#(e'v\PFyJI-Mb&ms*QXߌQ3N5 H֗2LLo= MArۂr-@<.9)_e}ixE? QZ_ߙLT Q8 pc<=Gv4տ/g,c_My:9+u :N&c{[ɳvZXyRK_M?l7:G|p`{vd^~8[ Lm9eȧ,+8y?: ]e^=Ȕq`s]щa+melV4'I+`xENc!t>O9w'-MY̗R,kpѧ>&x5x6s."`. %k \v˞K'LV)l$fdygݒz$ʫH !e|fȽ̐ &Юi+gSO\;^c/Я>:g{@9Tǝk9H&+8NUGm\b_ͰU(h({2V=cYNÇ{ rcwOC3ڇDH`\T{JPTko-n l`1}pUcZLvik6hM9w1V %yE˂-_$5a.R8%G`CK#$FwD%f &b&i5a#U̼5G[uU$` o$ CX۾N]MmAi:Q*4<aL\QIFchtV„W0%kA%< 4~>`r/Ve@ɁE} n,U94 PL_!x4tur^mm!u 'gϭ:otķ3Rp'kBPdIUԷy/|u$$9[\d[B9+IK9sJaZVV{-#,$P(r3U]ezA7n)半ܚfG"M`~u񞭋eap|D7 볅\x#؍*Z%\8{$З;DpWٱVY1- Fq;W~sRveJ8Kƶ=1Ρ1 & S4wVxOKl52璊rCv%p 8L&Z¦Ioq=5̞3A]so8\č^^4q#H}5\`БcH589cmnq(^LS$){kw0Ӌ飯"h©wʹ(coq + 1MIN9 N}lh_=2}{Yr-PD'jGEd *ɧ>iC4O5pJD3PoV4=PK{Mf9(D<4p!LҾ;$yPKz <1eI532,Q(XfT}o>q2 %.ܴ1^'\4Vro?N~# PBԀhEy[A(OZtV Ϧޏa|BRN4`/tU Ҩ@m}3AzPSԎC0p'-iy0*Mܟt3xlV)4Ԓ%vK:ƉAuۡ /XIG $ үr}fTَ* .XЅ9L6pKpc,e=}ΠB+HxFmILjQD-ܦhO(t6-:Hgm76x "\ HI쇜c'OTR_+z+YS QAyHQ0QBr?hQ?,f  O/NX~ 1i7 )_/Tד-q[s|͋lD$Ajp|6FRF+y$Σ( D,$L6N&ogC!{|a\UXo1YF 2I擓Nr[p93',c;;YTDQƈ1dWbR]VZ :$QGIN*8?@I,\(S6է 'Dh<;<`TkMwR}, /3 su'2: ߞ8Gi9icpG:.s_d[TR5cYF͔%)Jk` _MР"o. {n}JF4X|Ho$"N1sNؑ~U;˵jlOnqQ|f*kDےsf3:?5 KJܧR=d I $g̝Hr1x?8JYlt|9&zhwQRDX`-,xD;MJYjV+ķLu&}&VUx4Oޢ1k@≌( uTDΉl- lhnyHVP#=(ix.%Z*H$H¼JS; 9@4ǰ, :=w:O0eQ4}Iδ'\YF8'%ӈ om)q郸Is<}ōMpZޮOZ0̩UP|ig2OrXkT *8:IV:XVTȆGYR杋zYhIӱMgsˍb 2;Fp^ jWY?8]Ro6h:!(~wk~l ٿϝ' |i SudWpSU2\gZߢ&?dV#o/wd'sMf Fz#EX+VO"FE0S1@Bu#-b.FENJ&BU`9 @x7jK~`-b^=)i0g+A`-ޣv.nD՚6&GR=SXs~ Nʹ{^?tg4mG_k}n˓$Uؔ^Qz 9dd4¾iM.m#XC~ʽ?nlBT5GFXbѳb}wacip9|OnV|i5C0D2A3/O vX!4?Ҷ4+^{5Wٗ,]JgYxS-ӈ}-:cQ`Kz}eb!Ģp 9 Ir OvozCs<(W,@v P w"YyH lL|d:mţyJdM {$;7 "1:9a!P76ln7*٪4L L J=Qo\j'&! C#˓;W/gRzW/{ۥL}~<^p7/!0̳1jt|+$ptFE $Gŏgs 1eZs @?X"h{5c"$G(f.~ŰAKHOn Rەs#vF.gcAށ2tf"< Bf} !`VͯטT'9=TrܨR"VXuWd<$5<%xRBݐgex8 hipMuTc+UXwdggE# BT`s ̧@_z/-nܤF* ZУu|f!XLjҋ Y[^h¿*@^ԌBc5b[z\'OJ ~Ds^0k,|Puj"G=ݣbPЅ qR2k2QH M|hG3 xo#rq'qo]6S%\aXF!*)~nk~A&6Εi0u1@ Q9jwѕ?\?2"Z1%*E}쎏 }]^ Ǝ2\GnkjmydF N4My{;2k@JK'[څM\6M V*V+:7ojk]w OުVrwO#<6 ?y ]bHvL\A80= r.ⴎ#pY6=æjͧxrxpܰw䀐Qo L^KH>YPRJDT,sҽA6D,i+ڭN<%ȝd*EwbqIG, ?yYrTa+ r;Sbl7HXP60QQud d;/Ul6\[]ʦp7}æ3^!)Aaz:R!4m8I;' Q1gDN.+7J>fQ4Ҽfg9Nb̜xVc*JQ,ߊ<=dc&񻁮;|I4uE4_`>֤0(D@W);m1@@it[D,hs[Rns-hhB< @ҟ@ jŏ㷸x@/L+&#SΠm;ΑRa}\rG|n@?aZr W_sAQac8+UMЊ7!WUS;xs1Zطa$=]eth'v 2m9#FX56Z teme0]pwUJP-# 9glŒu{-4fS3A 9yY .nQo[nu k$_'ș8[ơkYc5Q#-ZGQ"Ev;e|-!nI5p^MCw:PuH(ȴ4RO$.fiDԚo0X0"goX9߫fHGvʓbڈAAЊ))lƘH6GK3"]'|۪,cJG$2_ϵz-{wzioȀcs5%yevruj_N>T sլ %\m(ON'̓V!']{g,$CŘٰbْ`\E F3J#(-P.eg[ZMKـ?U_I3U*u#5R/T^yil],u.'v'Z0q 7|i)WlEfOC1X7gHr J pC-x\L\ѩxHdW7-E~))`EU4yJ~ e7baziH#8$b / = @߈B&2Ft؈iu%bjxZ[ %S8[`6qn7#:&f]&/ v&}0eЌoSǚ.<رM̷f\Gi)UQ@-b#m]DžߐXMZ)KsjeҎMm^ _`ܾ02hgeĔ B+0}SIÝ@^I(ˏ~@i EqNV})&c&r}|?HA;eO ̢E~Q.6wooS:T|t*9qԿu1>Ζ96׊u GB?"īOieR%}ohV9\K$eO[9hHMFBè2%Ax /qSfq+wLfɆϷ/6 Q Е7~!}WW4-'W8a'ó-.mh$X+u"_7ՌBk#i%>׿"T* 2f# \)OiWӄ6zH[hlj H=9bJfq bS^5oP4g0s%"S<׈>5&2dYa;4??Y}ZW!Dj֑=^3l-qfYKPHR7i$& c?գvq~!Bx~,͡KvXM ؿ@6wQ[U_sƿU˰0I홁 ͊0뼥뀄a uflK[[-SE-+ )5p#i{JGBöHTq&2ru]H1z?8'R}"EKKɰh%nC#ɦ؝}qpS=Kju5 -~ PB_P3]emCy)tza#\ Ub,)BXͪL,y}M~ #[v>x{;|\gP&UԙZBI;,Ks[`i{m+tN¹3bәlPw>bGmY(&>|Pn9&j$dkҢ[cf+40sY RZ5EO0ZD-P_C95S9JcRZM&-$-rӵ7ҥHq/蒚^K1Lr;%ٲH{O .]0?+:VٗjgMIq5c VUp.s'٭o-|-b?CwrmoBj? Ѱ7v`:K:2Y*L2 b8,S0C<1Ⱦu$LEc)%;AwK{(i:ϝ)x)8(ę%$J wrZДNUX><7bp.B/ LgKkQ ndj0v^iI7o! FCD9chٱ|ll!hiLO{]qC8g*hn6WŖIکֿ5}nB^׾d|12&^F7K*56ix9Y75850Ѻy#oI *IrlbrXiP=$`L&f|llT(R=^ 2R"s^%PX29%NpV'@cq k)hͨyx#6,BYi_pxm^zфjT76lz3L9o{CGe|)Hy*VĆ my."֯ U:pD^+8qyÇ!W~>Ѯ&kt^ZE{턩 B%p(֝]a[cw*6c6`[{$T׌i)Hbɇ40fSv9$ d* oT/fEVQMшTg^#S쨏! 43F T(/Za8CmD 2[ 0675$pJҿ+$tee>rYY=FtŜM=$2awՒK:s䞬; r\^O={my"*av_DQ=j+b xW!)RﲋgaDPYXCnql\JgѾH=WHJ9;K/K$%GK>yKFR8X6]<_xp$ŖrnciǪ0^㎏PifTIj!ɣZJי潸Ωb)0bd @{{Z+"9\;RkՑ;l &ԋH z8'ߜn%L!$.([ޅG[SmB?@mKRUwg4Du`s&L7)iVPTID~r"*[΅dÛFH"wXյ|hB4}"PS#/J'"̉, irWr6*b_'-tr|B7t2'ի$tԾdro 2Z&rS8ߪN N qmL4F-GBFB%&DQ7d+mmXy*B@*ƮЄ0eB r!epR:UbIǯ\_\[a! N{f)Vq (Cd\#'! s%_Yv9? I5=[AAwz 9X#( w0i٠Zf?|7$cF0ݷtFEw6R@[˖pe>&& 8:4^c.GV Ј8J?-ߦje2a{DŽWdu»RKCQ ++#qnz*B9/S1":0&GF MZb?&7\mkY;xوf}`Еq3TO$kョlCNdC3 = &|[kαW8ʸ̸>nF\9%P 3Wl=-dsc!ĠHbbʦTN us(j{[[)5EԧzN=A>yQV!0a&!G L>S5%[jO. H|ҏ9:<`P,EZ;I bx"3Y:E0埬8Սh:67A$=RMB $c^y(9~X{018SVוȕXtgx>8 NK՜@BQAOO(32cw4Iu=#1zc[Y,f`2nO^RZm:Vl_UɶV;8!AlCF*I I (wQ~@ ~Mbby75ٳ5Sk|ܬK=v+*T&4c4x*BHSmђ5n-׊#Xυ693<>X(s` pwqٗ 5a1#p>](sd\`E}iwc-~<3I<0VF01(ЂEpD*] Ϧɢ"u;M$BqP{Oyg`֣VBgD R1m[C qQBhkLW*'V " [M VIIY,RuYKCaQZM.vP]Hd-B^2 |SOY4^>O>E%p<< Y^捫ӈ6sd鰻B#dL .L'8q~euL(]Fp1 c.EF6~W&;eJ>+*6<\Q M1hEB"?HD?oq]>"PH q2LzP6%G&[Y!hkVړmB.)d A[lOnzRH51ޥM^NIlL1DLCvz38Z2c!'+dpvЮei&[& OѡLq$;,7T7H㜃jw6UL5?.p ^#[y?XQb2x"U8s#{Ėme{_{BF]Pq4%9HO j">Ht#Re !]n mx<(V0MuA3q3+]istؕKHEmBJ,vq$Fb!QAGJh0^Nf6*hLtꬊP@&R<^uXtŹm0{ ӎZW·o36 {QL^O#ߥX~/{s{1a#̝eX 0B6_C"&}Y ќ賄 er),Jh;SFPs}rU~dB=$j`% ^$ nxD}f%l|HD&36376KZc>狽v )RBl+d +2/m=״;UĝʊgHUc3}R`_8Vg]9CƉ ܧ ^q>S&φ:ALqQŗ]t_YO/6r8MQx^v%lC8tj"wJC|(-+K0͗a_5:DzYEU]'`C"#s+҄Z?`ٽJm i3tX<|WEaq 7|mcp?_@\T0#r˓LF oK<_c>(U[Lxߜ&3腩I&738Gp,AƆO{ō(Tx35ݨ U}^mŀ|)֌x]lV.Ds9w`ZdjDIZ!wZ4P}wfZnq?jƇE%0/MPoR! {a_CԀ!GDHy 'J2JfHYKxbyau)t3KRF̻{n6.ޒ,a H{r㤾Wr&:aM>'/ֈ"`Emz!_! H׮No!an ,}5e$sГӊumM; P}1Vˮp. 7<0$( Jm#?M5`'=}BT0T\fv˫[q Dq5[W]Z,?!o; eeJI1v'(Ŝ ip<ūjW)DH\d' S[pYNym<א1;71]h6LMHfEtƅ,/Jhzm]fh$X#EԶ/Pm/?8Yo"B꣎iAMƽ`Ʉ0#(%؝9pCI"GB<7 J0\K'=6Wa'SP&N2K s :(& }",nЎZjhfIWި\ &)Zسi%!F ZEfW4PYEo5};Ũ|L\^r|KlGV7A)ᨀyKCꇃV_7zg[j`3]RX5t@B?N)vݼycvJQƠN,<*QQ5'(߇l.>gllDIwR$$Fu;"l؏ٔiq$A" NR὘ Ǭ}kqi|wm 6FT|fW9C@扲Rm:Cs_Ⱦkusu[/qGuiBLgY=aFe2~{+WaCLϮ5lJmeeIf*}E§ϭ(cW޳艎~m}'œVkTݩ훋P#qHbQ"y{#ޓx@ݖ"7]mL3I^Td}v$1hX1L'yj~N7=:R5bx^  Mny>FQd4\-! `mR;ZF <7DW>&w9ɒ@aH6v3i%c<},4_#ھvm'$O)!r?SJ>\@n\Ajm%Ckx$RN`^Oø%Y[ũOvQX6?[OԳ~}ote-nbdmJK=xSi%-gYgιU]g ~CX ~'"h# kD2 `_P<Áq;{ys/ag=>@Mړww'IX++$dzu۽`k8\ZAO]-\[J bD"R|ݎ'UT5ˆ%UDXJf*7/ dPHD[.kZ%J69m@2c[ZބnsV0QHSpsJC\kBtq"bOJ7É <.|rTW"dijtaj]zP@qx]vOdh4n4lK߫EdCf Z/z'0U?G*?Jw|Ғ0Zwo ۰ìZkQKS8zЄnRjK e x\o7;̊ ՞8`;At9W1rһAil{`셟Z)iF^eU M`3:"ȱeJ?= Tr6ïjT#Q-9·-z33n?jx.կ9˽AЩh0W/|O20* ̻d?f9.ʙ{ZaA^1,x;0J#AIr8l DAz S)D7CKU_KDncn.8ӆ:4|y'(?*<AU{o!p[n3OC`);^EDi5Fzě_)hc7A:&YDȀ(0|?/'@0ZVC}XP1Ӗq5jg3Fz&s YVOyPA>Rޏ7y?O Ӵqj^v$uwAy{܂ ^!I+ڢBLČ\K\q!tB;\xFAIOƶ\ꑚ^4AO iheag֣phW ^"Ԟj\ErA0ړ<8`X6١>QxRpd5=E%:\j]ht9, /PO,I hA/]Tlcw`qV\{&'no)S%. 8އ 4 cG5X-*옓-/#M^uܺuΓWSƒOFu)-b$8)(YuOU?".h:'ԍǨ@o6,,fp. B5~D{X|uT1ɀڕV;YR QhHG;Y(k(K{wN_*%*7e`4Z'PzD*!9!V /No迀أ=-wF&K*Z4Sܯ Scܥ Lr׃3@: ǰ<"tH!_BmR[n@Pz5I|y޳3 yygIz" MUb~kc+\)E3/ ޸viY./ؼ/ȤmO(|Q|1~C\,6S:"}[*@80-n,UEw̕ДXg'(oeo#@/$]\J]Et7ũӳ`Jki1pJj[=:m&- +rlݠ"#!؄g1QdZ- Pu6 B+Qof]`::/B`3;=x Ni?t^/]j+>s?ɆohHZ9WNi9:Ֆ4]4X ;sѧ0 H[5XX4.d7/is`_"C;/C `u*r,FkJ| q_:].X770'i\_ -SHZ P#GiBg 5_G<̙4Ϗ8YChe@\[2(RRZIF{V}d*,p-ėG{Dj_"9YeE\sl JQ.^Ti[ 6I.ne)>[P7a)-hF0 p2;>.5:@*/x;.gpF8f_ !@FtJh6BqovWFaˬ+ݯ7D%IoIJ_agn6pa6f~ß{Xs1njwX^ǛT*!h I$,&w~ѝ6Z鵠RȲ1/fEM^&9-{Cucs;49I@yJ>5mSa^R5u`VՇUgpͣ1`-x^(A[M<U糆2uL- 8*;Z, |^u(N{PN'uEd%[07R. ]=ʺ#\xa`0HDf-\sPzǨNoOW+7:ڇfi :@v(h 0\AʺFT \s99W9t{{7#R=az.B=GKzFFHW=8mncެ}Ȉ;umnN|~;B"ߔl".W5qe`8Nc2KOr">u@̾^M%tPl!2D/{+ qܪ7VD5lOO`=s%"h4W4?;/,i.^&ǮP )X̧Q )n%jUF99|hyn)R^6nM! :Mb7`EcצG̺t4ڹav VHK]TOV(\V*{fEm?!$T6uo$6{JC^#):f׉8B]ص6v|׿\UM O$jE֙na` +Ҿ'li8+V;(FOAT*b)Da8"r֏`Os’IJ){k$a{pkAidh=%9pO RvRQ0y\?|dF~ S>(~Cp]5tTsecfl<!;5Um-7{s?,2 2_lQ( _`7[Wk\%9>ұ`]"4p:b^w8VN1`w=)+YM Aϭ Kw3 ͗0f@Srk?X9 <W&sMTYbw 0 \j*5 m9;V֢p_o>'+[s%T 6[:`cF$Aa#,%@ T.Vиlcu&DzFe0:sMDT;M@tUPKj&[z@w%K0CN$xicťjP dށC7:#|jqMGƍU@-*b7OܗP?3km:"ωnkuە簳dqv\4)dD=&0I2u҃ȝDG~<ᆒlXT&RV)3xG{hK_ʈ7Ei[bZl*1I{MJnd?hQ2h!rs%{j2PLG{2Z]s!gCaXzI$誝WL343K>,TѴ_h=uF_ph*%kWRi]S{AjfA'uwQ0=&:&R c(b>]]9?e|;V@Zm ?"_{e o V' ~$6 [\|nU~llI[Z*qU+? oo‰pv]J7`QM"S Ђ(B$YnNZM"Sgm:Đ 6Cv,RΙsڛ,,8e@UB^!o4kţ[u所ӗ6PwU9j=b/MW 咒"@}|ؒ]Ȗ\ypW8ѳ?7|ga^chb^ʸl;U-8念2["-d֔vzWwjrkZ:3% Pit9VoOXF'=Ԯԭ0Ctqv dnxwYJ. Hx2e)#n`3i[Ja0 9g?4,+:Mf'@HyN riL8r}"rqn.:i -z}xtB%`?Z$[&2Nh'o;I|b eF21`G,]|~ ;}\~/Ryb Q C-_ \u~3:BԞOR bC3a0YNçFpƖ}^m)ziz؇Ɇsz3XHv%@B!&g>JqWPڦYcaͥ5돋oa; 0U GMˢ SދeQU~m+/{(ߪQ\hRoAd&0 $yb>Tmt4bQG{YSo e.% Sv[H@#o΍C!>S:]_eYVwv jʻ)kkb *]TA^fqa@ Vb, <@24*EzZ3\;嵄#>C:'#MpYCEᘫm0sG>e"$!QdN޸wČp~]2 bq0;/N&6S@WۤR) *V*$lҡbKgp?y>lIWQ Yb [ ϻX=!f !PQ*yUXd?-.78Z )aMWgl4ҜYd,E/b d. :ZLշbvL_-*`Ҷ9X92˳-~YT0굫|uRQ}FNTq 1{@aJpzV/aURcV"bm/t8֩/ь-rGi&Jer$W7גg11,%#3d)gx\ pbpQKeܶݢxkL0- Bf F޲}+@MWrbPђbY~49Ȅ%mX^ӒO8#"bw^F0.{pH{"HEjHȮWuTV Z's[ o!BK0HaOr]qYq-H/7~-nmj-$~b(]Yl$hNE" oNJ!K[]q8&-T4wM،'POԥ? LJ `ݩm}\>LN܂(_AԖ|]ʻqerrO$:֍MBKН]BW [,Mײ d/F^(4I`#󖸀ڣvJ %iv^ͤKyԧZģѠɦ&W޽؟KFÞY[64Wy/FQc@' 'lOnHCy󗽅g Vߘp j|[B6C*FU> ʴ\@thjAZxރJj\̉Zq?lC[Lg 1`r鼴 uڒJbҢN\tJ'sMk#EӰԺʡqdƍsC1(BSuw$i8|@Zv\!c8jg:]nT\ Bţ}ggS%%(R;)mGk/)wGWud~6=ƊcBl%NG(TuA3)HP=5uewh%"AhX)fЩZo,I #eћ2u{X_'ȯdqvUAju鶞xqM c27<Ԗ@x]ˣqp:$RրEْBMnG>K,Iq5F埓zͥBѵNZr6tB Wjjl58Tϳ_x/DbH9+8\LO:^@&ŌѰQEJCԭ1tS#K*77c݆NR}O?Dp`ʮq7J[4 Ҭ٠lĺWN/3jS l2WƙE4gDgvN1;3g֯X?U!cGH'%K/HtfQ,8mrGӶ#oq6r+K؈K(X_  >MNZj L91 o?h]aN;g)@ZliѼJ=fpuyR;4 9`4M[I;1L&㕲a:灎KAb-~4-h~'t !0\ :J[cy9߄\ }P2ƔrYXfaLv\^zy|9}1|/0ԇ -:dXMGaz-x͏Gm=yOR~{xΠnUNMQ'%|&*5 P5<!7KK0yWڦ0X[MXcJo<\=I1[sTVnwj@=AI|WmO+YRG\?&>9DjM1A#IhSO`cV.Sb#MWfLƽt{?޾~X%cC[8 <{aĩfs\3Qȼ*m ݱ z*#ϻ57rZdJn wJ=4 "3"'H./٬ -U+[4vfeSbR%jhj^˗2܁Z ۣmg2Γ|#wI$d-;9ίl|N K"G:pPM$oG72~,4)iljp)^i0s|A8AkKtVjQ31Qـg]d`'\-\OoJtHEswnyqxr4.iL2ȠGvޕR׮<8BkVw"Cn m5OOOvz'}d pjGBC)̄|#ΎW5m6 [0غmIF Gs!z%ە!-d6 zorNob /'vϫ贬H_#7OtSȠZx*ʴEW@ɬ?qX).=r(@/dlYURSi4$|!|ߖڄ9P0UFP]B6p1!U2e@ײKCb/k%^ fAłoo9,Ꮾ5- L0}f)=٨Rͭa)=x4IA7RͿ]bu}K뜞?P{vj 9k2 J@E-l+[7P^//9Gitr'%rp7i.3>T(kV%<x-E?Lk‘5Y$,!ܗi-33ԙ~Vt>݆0U WII#YosB!;k}t*YV@>V0귦miR.7A(.c"7 i1.cZ#ǹ2(arG64$a xC\pMozHHM +x1b[nH/ 06ET}G!տwFFWr[Ss2:DGG{va90\ظ 429v[Vf_xdeɍ)b_3unwb`/vѻ0+%h>2DUlubIEF37/+u`$M~aip6%:Cb5 ̹3[u!`J+Wl-ոh`aet-p͍J+~|FXHՃeji0<̯دڈ )+5}budށlwj&$;$SܥhyeBD>&eQIsLj;)P8`Fl@ÀsXJ#@  +cLji G01Sy({wy4G셲6(&ָ ?7**dʴ4p\'d{hpz[CFu}+8 ީq²ve|P T>OsXOD[76X@+`ţOر'ǂKD#jORw?!yVPfGA.HdsĒOzmjnUx3=n=Q ,L9C#%pWS`^⋉5aU*pz -wQ2f6jܼ,rs >* jEK r>N!m3vq o}-h T#~DJk<;V)6^G150ƾjC̃'4]&zPJKi b&U%Z^^Hu.R3 r-f~68;4Qa؀[B?qLZ [O˙ys)#pu=T4$;Ϳ|.V"&0e*S*|(<&`0"^P V9>] beV* <~ѳN͜F0zJTBlV ʜ)}˴\1&5o@E,NJso.r>$Y[#}B+T @rn.-K3Y[h^E 4:²g6lRPƤ" ^ YXM/^3ޤQ $V! ^"{]D-lgMue 4yY;WMSGP20J--;K )7a T״Q21MDɜG'sW="=rIg ^? #1$Ȍy/t0–CB7^5$Bն9}y`!{BpN@T)IkVhƔnbƻDfȌAd:+:0rB&M1Ysaxa`;v \A/0rSPTIwaو="8vKh^3Mh$F? :._y D\p'\pb8RybeGHzUFjN-]'L<}DZ eE*3Pw3U \k`ǥ|T/ߴؐ Ow52+1 XLۓP\͞Sw{17wΝgԀ-/"&?*_HRQڲ\\0886%yU뺈|}b&}ܾnaxj9K݃*g&Img á>.P0M4̅jbɓXe B%Hإ $~T:Q978"L7Q\FKbBvA&3I蓘U =Rak\t\f>=Q,C_n#bsvœt?x#D^M˛n_*vL1MsoUɁ[PtitF)q|Obn"D%N̮\w}oq<$4ѹBy`Д?!yVIp+oKǁ4TrQ x//J krsTJL="K(tCoB#)V ˟2z(EMn9u4b g_dJGrJMV#m*CFW0WRKb͘oٶW4Za:sœ{=|Ie#AB#2xR/4=TB9~fyitغ1rWw@\IDGׯ%0ezrK:eu4}UNM T"66ϨY2*\ɵy#0ARS6ĒhhVY6fb%mRxF蘏si$=;<*us\i '&4b[~KZrԍ8n~qm"[Oswzq8wG/9 b=œDs묨kPƶ^`-9! g*n~P1d2gkoc3~=3ԈD! m[f~Qi}W `[` M[pIPm&Z3rjuf9$W)ӹSׇC?-r?Hu,Pyd}z|u7|n'` ismlZ㞙mN"#k0yy?J;HN?e"eEieԻ+̣IhTKʖ8=+c(B#Oݡvkl:^R;A6ʃßWSv\XTPY ޘHWҜxN"L1odX-"-+bnV&X:OW٠ ԉm Tl< 43r =£0& m|ߓi"bN"#ührxŕM#F^1kj^߼Y X"*AygT.3!B RJ J;ظ0B݈Xci9YL?z+3i)e-yWM!Syq ˜x공%,l42QxSwgx dݶ;_ڼhM 2|]^m w S_ߌbCՎb`WkJG^f6be+}r{Њ\ [n6>MÇ *ey*`ݶ~ i0(!9 \;KL3Ua;Tٿ1Pwš(=xSR{6&uሹ o+Q }7`Ҹ,P_nn.dLyFhFo@Oty#[dcEQ"B!F}1K΄!Pʫ"zn&[ahd°#+m34:zJj҄aWfMa-=݇Mi#XIBgpcRFòo-nw/Zk|lKݎ- ֓6 nņҀYf)w+JRݗ~}r#Gf\ *[ٞJ(0@=ָP<6q&W[?~c63fl!jW%j<)-IrM lUcW iZ,E&-DF5=ǩQЫ)V|u3߰il,80x .W)UtzPo,Tv(%LDȁIʷ MeW{S)4iL3-)n"T8KiF rO!69Xgfy$wU@JlP O,nAvq-$ T (K ,}*0pW=gr&"dTkbBK+Vzwɚ̤QtaoZC[W$~oUòh̙6#i)IUv%:Ġ]p6h|h`ܒo4qIͱ`UXxӎ ?*c;^P ^ͽrJ;6|KX[-Odzfrq.4pXr ~gn:'GKگ%懣k3 W.q#(٤͹\MgVڕ{WI44UZ~jq }SH[LGZ=k*M@zBЏVWN87jm4\ #n$(M hԋ[؞)6~74EVޤ 76?"M6Co_Q!}" aJ[8xB5[yFΞ^2{u'we;d,q=F@3'&Ώ\n$tYI퓄O;WxF`nR-!&uYckc3nɢ A+> tKL%@-G/;k`lN+ yʤ}?PZnVݳpP܇jl5bJQ'w"` aՏ"qy&ӊ|gƄ&>;x;i?n&KOB'J8 l(wTΙ~:s|kS@˦>靾m>B/vKi+\E-s"^f].6r`'}TYJנo&0.G;,Bozl ۫3)(䵤&I/cNIFʭ\6ث?=P 0g$BmRe=H8\qL9F)48!Dc~En= ^#q"%]3f9Z)[kszG[g{ Y22/|uNpM Ȋ2cb2$ w7Vn^өuT&4]:ZPW; G2oW@LY YEKQW,&Le( GrrpyM&8!3QQiRmǧ(+R't; :]lJ-HFly?"()"=āIQxy\xkg ԋVq|iRu{}F볜x:r?d\\FH$` YIȣB2BCR=_D΄i6u=ǸrRXj=ɊP;~=9u=(ZoSdq~/7'^Dh{,҅Xv9=:g$8瞓 .r/wr2p[^N|ifCLQ_tYny*l7Pbث&c\Bж)$>YxOd-R*|$SIAo",%|/VQM'."Kf1;nX=pg0|&a- :o>/ /[y%"9l=oP%̻ bfT5z⸈, TbD4+j)q5EԻnn 8~ѥ| ORDt-#'o #LU5 ӽ7tS@4ւ<10̬Y>=~WMY'* e,,/VOtl خh%O@7zIc֑f0Fh̭Eڷo8'T.3?5r!RlhS91K!ζrR􋭺?g.'j/ALDlC~uRv-:b`KXE](rv5~]uYvtQx2iXYV[=^WAE(J?vVzSݒ?jcJCRܕ ĖVj'n2 3q~ ){뙿 Bs覆#2~erQeWrNo˜M8 gM5)<$=: .Ȅu4標vr?k+m̜+# ) ?lj EFWb.C)@i}K'ʹ٫tyO'l@}8c`H&1MۯoxCSgs넁+5,I2Û$ ~x@b46W~gO}P2-4 h~l#F$7kze11":7 '"mtqDezE7EE{2 ap:j̣qYʊr8s̢e{$zf(hQrpʗe* $5 8vTTƯ*ӿX]-GUcs_(1F/fȟl#w=e6oB5=+l`r^OZw-lJwv4TKȖ$QǤ{5fFk^ΓE%,njq+!ЫttF7a͑,_'+rRc ABuo2VQB+G%DPɑVI0ZW[΂ҭ C<$jƯc~m/20}jX碣hVqzГ|lt7M35 P_Ȝ0I&Y"յ8ER/.wGo?и;= % IVb=͎`K ~9G -gϳɨ(Err㕥W9HkMm{\.7B&$xH}(7_#^솨P8٬wMr9qtqm-Lw}6- Qx%@ލ4}~ toʏ|d6]&NW"I|oƂi\|" `]B([4BG[hL& ,8w@$GKgq6];]1G:w(?/dJhSQ~)%Sfhȍ&fCZ6^J/l{,yUƂNHɩ6Ö”\pmpJ[r+r;&fxX0cD;vCxu)SJH4yhl'1lLAܻt$ |V`8 4nC ɅvOic0HfsXv,C%_WzàBu3]ʏ=acQ.tRbb'B8$;w"v*g)Lm9 IPMѻi OL02gUuܗc^~L浟a.?|vWmUقڍT{']wqq/XKs cGZ ŸciNe-vd~C0 (ۚjQn(6(r{9=h/jg3W_L})zU(.BYh /XKFsjb7+(7{kIfЙh]L?Bj5l` 6񵆅K?gX[Ҕ TjSgshϧ !6h\60/Swf/yiY:a }TPHٺorbË3Ӫ2 ug\UvbҸwQ1 ]<~BoW}Ɖ$ m$bX|NO_%kɅBio50wNzY?rBr^ua cN%Zl\3=lvs}n!4{ܦ*Z:HM2|aӐB"@ir1AkgV/֭Xwm{\Aؓ&bfG2mBLm8Y++b4f.d`P%y:^!]NeioZ"G!f)DmPIGmɰ}SAV(_a˒#d_91Imh">EW~LDSElU; wC,ZȹX Vސdlz,-S!q"Dl_r[\*ϸїX-W3w8&MDZVi B:Il|%=f UAagz$M"{M z2(K9'~Uok}tM+k6*Tž]7H.q6VIncGZ4|ض̦$܋wV2ΐL }T5Y]+s89)MԥZS$(v|xWi])yEHFJHY/XD0a3-e(U1k뙴]JH(^X$~bNOD(=D1iYbvG*"( _A0~f\#{vJbwJgb̆Aոݏ-Ü dMrmn~O 64|j-pGfoJyUUNVe5vҺLk*1]zc7y>^>z ps\Dj gQ_B20J3(9Hx '-=j[-a>K?Yt+jrxt)qs6@r;KjTWk!Nzw;Gj^RFI$ Q_GMu{&5uNux"ab<9U!91 QEbXȍ12/X$R{ɦ[|8Uhu"(k:ð>fbE_ǽ[ Ҳ<N/ƒRMNp]GU"gxHh?[bڍtWJfҋBAZXBrz{,a DtƉBnú^sĊH>w#xR_u)zƺՕ1#C8~t7ٝe.x [tm)C,2nҼ,.+o2ԮMD]OnB&sc%Ae{pN D $ V99w3|Ǵ` C6Y.Cu $ݕ!Ə D?S<6?|qBO>%:5!UXdОgW%Rfdx<hЅC{H?/$ xiA)=pۺ(5LwѰ<˫+#dcuA<{;bC{`:oKG=B`FHQ%!Qn/Z}#x9r{@Õ$=VÉWơ9$Z!ѵK C~"H8پ*&;sjje0?=}薓"9ޙK';H1dr-TQ[hUYEWam9`2Y%kyױ]&yyyL'NCRg7t џFW酸1nv8eF"Rd{q$3C@0 ,Cy"{.vW (V(;;FK;_26X*Cyq5\"q3JYe=}xцv5iBW\!] t4ůxrZƱٚ/ķħ`;B:oj:hc"%V[I%V^Y-e AVi~Bqe,L?٭} >JiTRA38W02|4TҖ}c7lGku 2*6qxDij=Jjd |nOUhxQ4PP%=}z<~cΌ,.Ȓunb$FtNQ hxel*i!*I,V \+}Uy &b'%DKmLTޣR,d׫]vK;=րWՀhhыܬ)ѐY+mٚ=|,y몋CÔ<= Uބ ~">,!w?K&p6?{"d螾;Rlj/@: %;W|jo?qF,%k|e{a3r(K,!-Yvoж&sJ4DfW08X;/ DcxaIU]L |REʜvp0ZqD'w{ժ;{9 ꁣ;7$j\[Sa@= O J8kzVUs5Y [b~ΠP?Z'Jc#al*ic"wA7AQY6^/i^xoCppޢ #[6zϾ|BSNSM&F/~>x m迄qZ2?o|mvo'Pq5pɞo}XI PU>$ƆSfnͰO.s>Tui 㠒Ƽ )Z;N)FCT) br;#q0sKX]E S,qj˜}~8-q57TucCxb0Pˎ7s0ڱ{$g hG̭n0k@Z^ Q_3R׻^Z c,5F6_lt}Y@{72eVF`/ltm_u84S@ "4fgYSepiv ^k 6NRSes'ˣu%KV |hJڧD 6=wb{`&S0b p*O7 WPƊbuZO_0KkiVIP?l{.JS(Y2UVkbI`U6qi/WdszhCtտԕ *&?|5ׁpK"[!LvK%ߙ9mыR_|>&pO,BEv'أf,z./>)g~MhO+[ ғꏤ.x=۪",ft{BĘK'B^ꐗ#1.=ܮ _<AKT"{v^}Z sZe:5٧W V͋hlzNef: EA ċ4у굖nf!> &*, ؛ZWqZ4Uelk4YW٩$  ^Ծv4־ sMSNAv|^ U0=o6A90fKg|H#ᅡ*}AۥYoYDߎpDT^no~z];@~hhCb&G6>HɪDB#LMQ᳷̈́y̌uG\dϑ]&#?.iF>gN#Y2@D= tju5XʆM V] ?ƽH:o+_ѿ+ML2#%dH(o r{[;bi["}]te{!+0|}@dGuVxI&"y>B Ŏu+/j-qCm1pxDKX>"w-( %VhwX5_=S$S2$g*kbCDno@$5]Űż'. P}nh[iP@V[uI7@;t;I/.5q8b!@:&$A^Ml:шwY{_D YǓ3! |n#ݍθy_2\ 2ߡ4&رq mfWq0yU-h&9=a35wÖ6U7ƹ`9# =u?8^3ֽC$L "r ГȎGR2ׅԏ·%!TUԗ*-y8ff#{ ˜XWk9Idd!b<_՚̍`?Yt{``PHc Ca*]}h9PwwD\q"3Gu8l̈́!-g(,`d7vPVUq֛|[ s< ,4X-O7G}+wшo$0osle]H{:,MX+`Pj}zp9ypMF{f6_l7TL?v|ĊzGD' a'\widzPAȍv:RDG` %aӣQLr=L .nQ6.,ƖdpN6??w4 q2q)sxۨ0XH !=", &Ww|s6(U(M<) r:\ ;ŃAG,;qe HR xuFx[ (۔fUMv'NP!}nm3&*\2z(G!Mο혎ж|VW,ݍe"13q#*E\K|9eHJ^Ə'*DP`㒼͕Қ}`zD8+ Q@=8ךY7rQGM61#A9ޮ>q`Uփө+f|d}=1pm%wi/k(H]}Kiz5ES "]=R}?Z-ޔ5*䁬\ۭ %(w\D |wf@`sjyюs)WsP7(n1YAHUo5UUEu#@qE+ZNSFi7MK(X, s)|?9V˒S13ߺl1={nQ/etpH=oBzf gsi"EĚR^\bܕCK<KkhgX?-U:;E? gzI>?LK2՝`\ mqkR0Vi$XpYh^8hjr;)ۊm݈=Z"S?~6SxNP'> 3sp6/?gUSK[AL@@]]PY1  ͜G@cEoib¡Xy*.f-K'p Q,gzטEKnȢ'{T(6 pr qT'>.ǝNqԊI6]U23DSQت1 ݓmI¨Ak>9ja=P=\ .&~P 50bI-[w=b(v.,IttHk{S=8~(!/TCiFC=-^$Is%oah<#Ԧi/Kh{Ox0;!8.:n9uٝoi)/D]*ȩh'`eg~$UV%8^Pml+… k4X^ٽmnëoH Z)ۃb hdή`lE}ySڋr^vU?R8j;3KoE3'%!%E-:sp@bV^SCe eXk¬Yu8E@im-D%Qq㺊m1 csa}V曑Ifd:|ۢ;eی;Ot _bM L1FkBg2ݯ;1Y9jv.TڽO54{xLt9Z9yjyE4ᰆŇ1e p C/ ѽ#*_҂36E*V\5f(f~si~Q=!|cf85*` $gb{871 R 𛆷?&ڷk*1Jq7cA:Q 2 ذåb(j-s09(N-XJn}FI ](%/mpLQbQP<&b愻'@/Gqg3 n76]8u%e/V]/nFb# v&ߩ$q)WisjP[ i:L{ M}Nl4<)%)y{1Wˤ;Xyq'd r[ilXZ A,r]->.VdE>)MzE=PNwa<,8MuAF7Fl7 h?Cpi"}6 EYA?eLorתmUD54'xjBQpf39#?h?8c; *_0p:MؚsOthY_y#%Beq?W_8e啔g-Lv+3X֟LݢYF'N0&ڒ]`v2Yk+Q\|^`:̀.!{t?E GFNT!WW&KD%gӠCHRZ!Tft9[r_ͤ–46*)Kq)tK%`S@dTݡ#M"${ZorƤ%ynX9يyo}fZDBϡ<;S"od.RcR`Y+?/gcU H^[0(=xA"{EEer#*_8l OG?;g[˶.V(}Xt~3ݷ4}<1"ǭ.VZBZ$e]YK Ƙ@A)9v6;! vfc]l?lq"x%Q'UxGN ;,NN)@K8*Z9o \ym9s"HhF.DYF SFlw-^YE/%#wq%0{G/GKYIW >xϥԶPl;)i7w6z|')ma ;<ȡIv%1W" PzbD>7?VPE-|}Hv0°C=rьhDCS&=?StVz 5\dŨ:%V~B1 : CƄ{[R~/ZT`oWZ8A2x^KЩa7\Jx6d8Ձ2wS&v*ly>:P;:0+Xy&5߱v4dTKiLN J#M~8[FM-_ ojekT̒N&#=xrr*.Wbz#4WUxٴKm|Qv;3 R[r,ۄfbCc(}dAw_"b i}YdA1Foai=!X_k'cY~L9T[z|ct2QLKp:\DiAU o)c ? q?pT2w :Dlv:c0Ywqn7k| },ځIbCnV2VMSQ ]JG4+ "q/9-X >E+Nc@xPBH,@6FZk{p ~e.?r><060<~kRd,˯Ww"aBHC-sk>>hJo6L)N{fxݹр)O0Yߴ}1|Q]plzCݬƺl!Htnqepa(_m8D,S:h $9 nҵV&d)A]47+Hi#-vȹ7 ]~J͚k 'jq"[Ǡ9Ժ-9 D p ߳P_0[ћGե<&;I*<~1,1S2h48yoj9|-SI>ț(4R"9v 6lJ4yM4w*'cG0R:oޛY+ߎ MKu-.v"aJ^_v 샗--Ғ90HjEb ҤH{9A1NmIq7v C\beLp2&"0,u'e^,|kddp3;M3Orߟ^^G4-&dXx(x`5HSϖT.n%֠\J B(Z$obs_(MR;|A'xìP"'g%̴>/}ܞբ!tWcLa[8*En\}}I"?25(ڬ >cnȕjKw :D,pe_nP,$bw%KŪ3R?S\Ʀ>4ުN=Fր)EX#:=9Rkq$4OVhGr,/|Im0I1&bx ~.KBh*]?ݎz2\G⣟#tX&I#2<ή üYh3>]b`\kwg<P88<=4_~v% jloJlC^pxm(+.iMv Gf-ݮWqam~.LE|s9B'BsMqUegʬ2[.Yº>UN#K|tk68iqk^*4Tz eZkdwE[Mka"22^1 W>)T M ,#(qghpߟjMRݙ67dpk,J}t՗Jfۍ*`kl`Emȃv3mU/4QHIi>ѺFOe}=? ^% i??@"WQ{WX̡3\Z.܄I*#EO^Άb U5<Nd+mdF̐ǵ(>I< %Ԃ\>:z*k"ZwL]?rW>N>ogpSN9悴H#̘Bk/*1LLKkdnjEB#;3* EK#d1cDͲFI\_rYgv.k]qMϊ%bKFS,(D$^ENR7:qQ}GLdMs;t W:v=O9ykxG1?m @y9M vR+%̗g0 6v+7c3ho}eFO:^aܓwXƹ7L7.5Qؒ 3L^ SP~e IaЬQ-p[j]d>Yb =? [CcӍskCV*`m4,I'28uѳ ѥ늯ݴ{0YA,{G GbHof YAJ- }e"8E}#h8`LiOS7'r7JZ)K! P|gE] _&W͵vicrQW%\ETgWqj9 )ePG}h>D- ;jx4>UTط|z\auca~c.2,l% Yui~{tmϝ8@V{u?7 -4fo$'KPJWu!) \zMר٭ |+X<V(:>t(6OuĮN1Ѡ 'aƹ{./n#C=~HR;Qڴ,n3󞈗V72V~.JYXN=]N{|8ho>D0Ҁ4*cR'@^U%u6b4u*`T5[:(nͼR,:o bXZ-,(3lT,:iVOV9瀷8|chI ؎7IR #E7S"~fZ@p*LuZ`}.Ħ4 Z| ],(=u%`8&)n< ئ)X"49Wfsc1 idyYM<Ql{sh*`n|cr2lthnJJxSà#DW\,<FCv+hЗ.05Z(Xx$i$7kYP ,EDח$*] wB42 a_ˏlO.*Di.KPd'BA;G:X…W/u갮 8n2r[!թmsy'4=_jo8gs3*88MWaBb&Q]cǧ؛v=墙 cOoD_F\RbʌkDyh")nA#Hjp>6IC Caiɓ"@ODR#-)%N*z>ο&qq u( $vbJ!hª: ;һ/PqcUA VIuP9K\žn nct2h$K v(=pZ𗚓FūNL5n%hHHZ,gMtB׀:htF<Q+z67$kB_CU$$M?\ hKET\\ IJLP5ƜGd$-3@@p,V"Q!N xw`i\oKEs/%;A=@v!]hQ0A![8ox D {$˻>;PAٯJh64xrt];_F`T  C}5ȗო{$ @}2Btt#0 wb;c 2sϯ,욡ǿn4HHFudF5 (&[XISjS_|Evh3Ƶd1ļ*m/)Ɲpm 1[1x_ڶDzr"fuΆ흵׺rtm1+-[V2ԧo^'uXwc8>GF% q-YW$V!`\mڎ#*0@8B3ߔZLSˆ3 ~C)"$ڶx-Ӑ$ΣEUIDQ7x#`~=rcm]J>JkN&M-0emPa4ؚN_`z,4Arv`|E#1M%kXhA:TY0s{Zz3:څz(S9CƷyښ[L"bIl{z*FBQ hk/7zN '"EFf2 I#FI"oGYgY!OiLgR~d.6ӶLh˗#i=?P'Z] 6煦qA)0gsޢ289ӑ$w0厄0V{hRe?rD. |_ϞNO9<$-IT@(2Zj9RJL+ 7>v҈i$*qЦ>5R@ tJp^L /hxxB QD)K{s1=֪g..Gd-4dJƒEK6)T<L (3`s<.~#d}ra)]Nպn4uCVz@ ~2$(pL:QXؙ3ؙb aն,wL M.N*r؉H>D\| (sZ !f g(q? wI伭٦JٻkI<:k;3ؖs3_Wb BADjgpH{zD\ťdɭrubeb/ɐ`׿;uހunc\av' {B8|n?RFEVʛy'ko zt,TQuZ"+W#fjHqG!@n ///ͩYQ݌@?$fbjG:U+7S7 ;3ze}Q?&pIzPCDuP(R^C$Z'ݭ=[Fв5 8()F2Ƨ_ oمn$B uj<?F3cpLT(ꆝ((.fiIZҖ&EX| lo0u(Ɋ3R8hBB80qHF>%]^G;TQ?}: ѐ7D}a dCXmY=9A@,m+rΏBnDEꅈ_%cl?"h"$ вEx&Nsq_ȽZE}aHg/X@ѥ+ȇ)d<"l*p,k`Ve:4%LJh}-kw2Oa1ہ&0&LY0@Q%XY @h5<v;g@g":wf^5n/X812M]S\k)Nk DEpB̯*/ }ƿIϯn|j`)5Y/vH~N <А]U@b%M'?8BWN4xGC;g(/Ds*>ϼy u;~COԍZ*>7lY,QBd0`g%jS% LTЅ}k[26ߙYWm|55?gh'4P!UP305fPyiIA5@ &xAb|`;1rin}~b`]-Gr&)*jIP>ߵ*. ](JS!'ᶡ} Ա-h6 ֢rG KQk'I ryay#C^ lb5إ!ǵP;NodrhtlIpஇg@# _~opCE)J8DD&+ KQ-L(fL'FT%ĸ}"ݮMEE%{y:kqE;E/4-ʧIN&vk53q~ WcصWnӘ 2Ղs.[nqFflt 7c>'M6󘀀mSn`,-? 4f2f ]f>)4JDĸw]V6(I`u}C jWr/@)?AW@9k_ʸ ,`5FŧCgĽmn2Vj i.'-Gʊ9IHw |gỗX0ӫS"x}IPX oXbVrzdGT_hLc>{&S.t.vRvdskdk Jrum9QJ"D#JѕflM945VI:aW`eBdo }}z2~0kDL(گ:m_Znx._3ܪTb~@uݰ Вpǖ)]"biOs7!klMuU}0 %P`NX>F= >a%f'BSذ9vL5H ,@t˓o = zӋȨ|VQZ?4-XO [: RUa.:ʃFc}rY_?Mů f|F}ł3D|R Ӊ]+ʰQNV8oUJ52ᝉӠ?"ƫ#1 @-?=q &k>rv_:IyoPzb4; >ٍh`r w 7} 2-HcVz%)&Y@ӼXElz yd{d=32BfXAƃU/E{&kO2*R=nLcʌ싂S0; pPvb:T6\LͤCKk2&l?Tqqtγ䍿δyz"֗YlX1 i5ډ|W/}L(- YhkH79_m+f~qnLV9Lf15Ά_ :?ӏO']4KLif֏UcWG2:7PxS>@%7Ilp,_j$Tǿ˃-yuֵZlH:洵 ȞQU8CbX'<㝻'k@lC P*s)=vڞJ'O}ʇU=wI$\;kRyͦr>H+4r^tSTބk!r<^g3Ve~KL.g\/ /єtȪDQj ,Z!P9ímEj(/.&xe4(Z28#) P"l6N_L 0$xq|CxĜRrKtR-PRq2nqu"U,\cs[1g~ Gye?5;KTxegH\l/{$(_G "r{)f"c&hS2iIMD)}m|V2Z_(Z`̪lq3ٮq\bv`BH'))h0Y "[HUp&OvUv6l~2ѼY b~!@h"W{`h5: f)P>D,yLSZ>UH>-F\yɆmQYǍl9 )EVL[raMCfۤ&eqa7b-8H}? 7 QVHF3QIJFz7w],O3 6QQqF_̘Fh$ ?tR`$xK_ i^}G@1OG:tc)Ϥv=KC@ɛF&KVM$`6KJplV˚dZ27v O;@ntxs(BnzL3UL~{c 3mPX>J{s_oVN<։۹^۾=$ly@~&M03x|\J!-cngOׇ{i|=gQm rQb sUvߕ ` 1v'B/ϛyTx_GG({4zlMaVSy5ۏM;$f39^Yyڰ)d4#z]-gX拦q+@j@m;zI\(;=hT:z~_d k{o )K@I"ZP|gA3)5[#߳|+hQ&)z$MYDr34^YMMÎQBjpƠg$C~%A/])6f=L) o"G(5/+IC+])x{q0f W{ /vt=-%;Z(,ś"RJZACQ/RpɀtfW>"[sEuE@{וX Ӷ*5oeTHD&t.ָYOCH l<̤Dj)Vf[t{):-FUzS,+iQÐپCK^b/Yhx~ԻnHQ1m kJ1YK1a3,YÛ_;+FP n]8Ήxg_I;H{a=96MJVw0HP΅B#k Pcs˻pc:x㭒lJW'ubgeSn,ud>S>$I= 1|g 1tBZ>]r/`I xΆ,fV:skl+8 #R7ws=H?aHB6ZzF3ֱR_,tHS-%hH7\Y^w=jޘMxUa%e|ms+-X|OhOv`緫EpO:l*ߐW2N""/'T(xGte'0dَCod~0 :nzH躬 +cj~mt8~I. 6t]BP4JqU繚D[}!©P/ +T|M|Us|=j9OD]sۃK? Jf 0g`U _ѣ9*R >[b s[>JeڿQ=~^ ___l^ 1Y}/H!*JLu(Flq ҧL⅁79m2 Bc]M36:z(W/~.dC9,S~)xqdUy9QYj/~t0IRH+#'$#.?>{EIt0椋IwP WjgU֔H_+z z|ݎ.jaIisYM `|:NHmf!=3 ɍV2U$5@SlIK$\^kT~ wPJ|\۴oODHQ?.14i}LJve^K4O,^"R\܏ t0-t~>R}mE AYIϵ!9i@~;5U59JWa*:h.\Z(e `8/_yIq9myKE\O SЭrƕV]g ;>WA `Ͽ)s h.cz6̩VK+ IV\Բ!YĪYTBZ_6yq=69[/xLVy9W8|xG]ϫ6͇ ,h^ N}%U,bC'Ư2QxM)~ս)X.9 !ݕgc V&Ao,|Jɗ뱕P4Y#"ТŒ}P:^cݺ_]Ô/ER\3t:߳BobF34}/UL/f3 rs~2YgMTWAH$ ț(D̿0hACgƃViu`,#~xE†`LJ5'W4WE"sn 5Uq. 8X^sxE"?Å%яKxLc&beٹ~IRqkTl [}l>XB&jNŊQZ9Fn43d\󢓢L_H8w~Zw]HjU؜9Ѕ 6pO<\akId߯ll]QR 3tgMRqa[+ݡ)5g2er|jh tݜ1[Ƙ߷tĭqͤ;quYO*T/U·i9rbSl "j:Xdz3܍xtAT . Dwx'.GN%,HX61qK(-mT޸#MEh\(Fք-}҆L;ѭ+fm0oAhLnZY2!0KRK!>gCNyH({vU7H9@-*qKd )1Cy4vf2%s.U`K,n2KQ:@I)DlEaύ@@!6%PMuxA7z$M./Um7e.LU*=8)۰Mn:sqJj&E4T!$l'FV64pt/|_# =D{r 2y;:p#rjEK⼸ ;{A+PGL_t -JZP?l s/^9{F⯐q-3PuG]G_or5W&ƵK0%\2 M:29c8Gp&WR 2jZGmt/1 _*&RDb xZTBf&2 Ȟͽ*1> lQ(oj^c}qSxd]/~[`3A.y^{sB-r9JF@K0ҵr9?v +"2Xt!.Z'V{ CRs_`taqzh5}ݩ75uOHu0.h=V={w=*$+ iƅQͿ")4O& *7U̙IG#!Z#k`QW5IdR%Hl/.Gt;zye%D\D͚{3{%U?ֿlR=^62F>`_/ӱ6WX>ھ51QZ,N" CZDdTQ1=5iV1&lXPy$H>}z6ud)gS^DV0i}H q͓_<_@`<A`J& *cX!ObC`BUŨ@w9!`bBdt=gefDys?Nڗ>.PvLh;9LNh@gf*̇gēx=(ޗ +ln!k k95jt~HQY\I5bnJB2 xfLBcόOQ=^CY\(Pd\l0@|Ug@ >̞_ڤK 6^@k5)a4cE|D0q`n:R%ԣME[u'[ƬOvOS?D,|+Zqhu߄pJ6Λ㷶h/ʗN>yP{` tIljK-;[ ڬɛ<==+pCI )XL\5{ Z*Py3861g%gC7ȌCV[mS#Dbn("Y%\G6mq{' *иotmyM?/`AO6+p͈M0\6ѫ-MpJSg]=?Gғ2L!-_UP~[R]Aw)(j^['w_EF!$$骚g˝t(WIÑpw:3(ޥ yδeVY+'31^RO! nETŇV2%I"1g:eGޙh6RwHĊ17UQ6F~v NT`YWи,Pp*تq]6tox[&-n^mrж4];ta\䡬*!Mp#hgzlhB`W&0zHɽڙ|1Jn1_^( izҢA4cT}0yhoYHyQ?j|$8"6- *}anM n3b]fUZ0LEq[l׌PS3$T?]l0wPh1e=P1Ezz4JIG )] vt1!wfoNW|sSlF%P%1w9!F7|TR$=5 xvniׅ%!|9!3`s~!<2^A^%] >x9Z̡5B2.CGmU<+Y qDgg-Ol.rl7MNyL9#JhH [^Bw hdκpŖ[H k4ܵ;Xڝ2,g8K$>&FnUTT=7?GE(s8FvGj(f *iLQ taQ;&)7#2ō{$uw&X59{S(]`+KE͘ij|x,o*`qՅ_LЊs ^*? x*v K1T[ OxuT[{UI C (@̙mNdghlN3m`IGv};`K稄 Q c( |o'N3U7\b_,Vk?l43 `0 aL|h_.WBi}= 2AZ ;&>_eVlp(!Fw|od Qy[yNmW.tli*PO;l֛)9ܶ֙m5JO5 `?,us%([3QX:nv\Et,GJ h)2C DA?~^}MD.ײ,5 n^]ê(J@Xnhm|eL':nÔN 3:i"s-VXU[Vg.2:(e`P)5Ij!#z+#3]7Lޣj5;)н&H1 Lw7ԒŜr<\ϰ.!1\l)Q-?<2?z7hQz՝<՗GDZUYF7>^XȁBW59u`_?3p<#Q3PժavT,ktܗE7/Ex7J™ M1D(EP- Q_SG+Ip(D쵄@A yTp. +#dK,ʢ䱤0{.Hl = #mq6P|>1Ԟ]Y};q4ʿjÁ D+E 6X"AԴsP ]Ζ<ˋ:GYt`h~%PIR^`ߟ[}^7Cn,jgx*~?Zy s9wX9qqz/q(Ap Z@!xYlRZJ;gO.s'mI6o99ђֈ͕V;a˓=3qS_ wAq;nKwgҔ7zg?l0O`BqB _d&u<'Zj;!eoy:MŞӶ&fu1wuz\ԖYRlu{j4j\b> i3~2چcwxٟ^=:=9 B[R U?ovB4CgTDߍ.z`t j%+Ppn1:ɶ)͐Mo-Ⳳ8|K%^7E~5NSNج_כ^=uӶWsp؅6'kC?caR-,KtEg3B@/UVBue3 fT҉j lmsug$ъ1$B?X{_6?g:{SyPDW# tרQ~{G5#tȽxpi7nKXL_IM~@#ZN0aHV>#KEї$S{3o¿ZP o2PLx>yԗpK (@b`zOdNF܍3 1̶5 u#2/odF ~+ߥ?1QMVY`ޥ-SJTDQnUL@mЇ9 d;]nkinFӴ) v`*6C G>p5\cȲh|ITLqRoTPlJUbu&!,+M O\^Sve 0)DJ3z =sk3J-TjҚ_Izq(L UH`IP{g ln]gYÓ('Ր NyfH c]fLs{asc':@|vW][1"=|kOfw-?~J\}UFwS53LSl{A2?Ŷby)nn!uOmcyz"'S#6vmUL*f{-]P^s; 7z?b'" 漹a~@9tc[J}T#ldGRK]B'=u#fzewP|-1.)`aL/Hz%p A(l?]orE,:hXmqnƐbT8M]F ǠmF!H;cx!zL*C,'_^nu j #HO>F [όvݞ~ax.n)-ad-E1D&4W4:lm4LieY@rClqo+ʋx˼$ʇV;XFd%im㳩 a:FvG]8*|F2(x)ct cY>"K4ҨHZj.~E,OucUڇk"I^8M/3[k/}ȭ@”avÉdөm3IQ>*c9 PkЫo۠e՞1VzrTFA`E瓎9C!P׎оxԸ 5ݿ{?Ca{_R2O]G㾨G J:5,jJP{L.n;%h& o*5RӷxȠ7\ O@wŊth,<`Da,<dʙN#J"KϫV¬cL.<%7h߼RM+E$Ȟ-SI vjaBz2~D.iB۵$y^.6=1{X5$*;7,x\Mޫdo)>ȑ: ^8].UiZ>%xySjK,aH=Zҝ+jݘ#[ ٛ drFYnn v+RK V@ '@+}=} 4eSP++ zA]{|6ER~LP&q YmA2repW H2ݡ95 ~ b>Z$rҊ7*;aj?Xxw[Lkr]y (CĄ2sO3!Wbڽ&ڲXs[g{N YJGoΠ]‚(}wcX;1W0[jDi6Fd\ˀzrM+u| 6-d*5YʰH@QjY ]7+<<ղ)]N! ˷o٭垒 A .YXF0,h%<pG-`.BtQĈo`")HԛV,lDi \_U$\\Df_::e,.#/z%Ei|N[g &/8TS1l&q Ե2ݳ373'>Ȼ% wrXg>=jK=N vbEzGpV+, /p3w `IЊ[ N#1uR{Wna!s{m=;U!$p/ !}=U9̼I8`l6۳h晴. tz> `Qyo~HN,"U=Z*1 .ZHC0Y$R}%}w$J>-!y *4HSQ x~\$y,nQ(\> IM5 Oj9 È wcA.BCVo,6CRhsg.b (p>31iDtpiRͩrvmݣ%$ D#+zz)xwFQG&+O+k>\̿U ɉlP$3đ@! VA^ed l#c'EqQ& #JWi-$BT 8S+.$j樼0V~RABՐ&?".T'cC JHo pB>bj>tZ)vNVK(K 2!q]Qj{HΈ+X(Dr Q&ᯤnFU^][XMx $*_~, -.ǎ't["DWB ۓ:44h>mn2}D$^;K%Nlq'lXwb>R :("g2؂mxNm8| nmWX0lh)@ùR\:RPA.q9mEԤN8\mvC-CŜO*(cvbi!ɲ/S׀T+1)ƿEWhA1b*¯?j "dl[d` B5؀'erUڷ.7鍶s#(z?זo oˠSz9&V(d pޝtW'CS` ȑ^΂;U'ْXR&}grvUxjBoe`BhZﴶ5Hr xZ+#^ QCVo'zkyq>?iIڠxY93qe(n\}CP#?V3f,] XK5=S(A5 Q\Hc6UCn CT]T]H;O7Ň7F !ª:,rQYUK  /(np|cPz,.v,7gg*X߉I4T4`94t<;#;$i~#cB*q؆i4LF%'!jWdʼn4 {SUYT/T˶g֌ֺ6O_IȦZf؛՛`Z.f 7,yN_DauүjYds|3aҺ}&a ܴ}܃i QdHJZ /Vz37뮣} Tf6+Di{ST1b Su] 4h-9#QyȻڭBY.tIrj@(GI?m3jl.Ѐ# kj':T߾HpvJ$~pg)͝n{I'?[U@L<Ȋ" \GNee2 U}k 1f!g/Cg~^;F}IIewqm4پtim8%͎=qdjB4|7A< >=>'̬L #;xMrw9;LtA*IkYev&9b-,$rG+ 5waE?I SÁy/a-M1%PE]~yMA '|y(SX4N']r+_|h07kL/-lhr&S,|S>jq뎽 NPӂ} nh{nՆÂܮ*?Z7pF__Lbi# !`2ބ™Wȳd/3}M OaAH3݋Z07pUd[+sNy-aVb~,X KGzrޤ/E/YuXhehO ȓ6[{:@`\hEё>XMH*{W sܤ8ȳJоZdd۰4Kf}zLx?_f4.OIM)C+cUQ| d=3U,DE޹;<#KpQAр/|zYVapԻ& HkCdPN;R =slri[k#!uH熫/.@Rdž=: I.a ɈiQT:Yoƒ0cZ3\Mh{iu#SckVjU痭a&C. .^annoru?G ҝe aoPS_DlH\pqTɸ$YtSpeڶKLO!%o;*ufDZ2o 3U;.QKy+*'^qb:F.UIS,qݯ:GlT"TOεQXS0}*ǚ?Ź/[ipp fᾓEUJ[KVgAv6_VS=idLtoܼGV*rODlB6+U]vK]=DT+Gyj&K<X,uvE{LtrhiAZSMAJi6ڌ5YLH/ >U`[  T>]fx-abذU yM"` lh6<6M_Af7wvap@m&Fu5ϱzaM)TiMmF,w{C+4@uk16Mu=ENGA3䜾;*eI<9Ie[fa*Nמ/u׳(qKmwYJpMpi[ȹ 4eyS’2LC?yb8zUysr-BHIT.)Tp}E常f_opl4p?tPo]n-N ^”3Op9}"1Ҵү"D~II0t~.T(]_hhVVmsyf~/뢥1dqb&~X3Ѳ6ziN0 ޱ]n;'47WpѮ cڬXNS4cUIC૕JL5'e5yt*>4h/S*Kf;%WsNiL {l[3Iκ6%A}!jѻiԌXߑtΕW+ TEh#q1)a >OG|%GaߋLgQG%;" JVVҏ׿o3[YWƮE'7~0 C"cK9LWu kgnHjEA! mxjהQ\`u;OQJ9w8 @hYtҸ:v|GIi.7@!^XF(2=Yu "H~ FUĥOUfcy+b4g EWwK'ez7;-+&LB+eʺ)_tG~&Sj/)d1`:Y Hݷ!3|70j:|FrKrPެ%nl9p:Cjŵ hEMG29mNΉ2BZ" yaƒ-K?{ZfX}7GS yύho|GA$q(必v#S! 'krP4=성" Ģ=?%̩ `qjl~Y@~j*W =+N*@x)̻'#SZ{NuyS΀U^K? hU@_ zX5rMQVY|rIV5Rpz+[Cnͤ[p|57bP3--{Z+At(t2 |}Ψk') aՄi<'Ky?UƒnFYwU!0M@d:o8u#ׂXt[ q.3<<4ohP% `.Xphl]U2nOj)d$YpqY_ô;y8/"&F9e+yƀ!GTϵ|=/=P6W9TT+w -l$S o] Z\ͣuEǞkT,Ŏ1է-5W5+ȏ ǽ~"GB_AOd5k:Uj_P#A9ň9CF_y- Z/2ޙ~+<=1FloY EBaJC(qwW0HN=D$ E+LW gcboxvfjQjbK%˫4t%6 '\NPas݆&q^]wm-%GcZ|8{ }y>ksa k(M[ C Q06`Ӏ(|3> R;P| u1^2Tٵxڕ@ܷP 5hI'<ܹ Xz:ͱ9OZ# ?Rv `ϥI@9|{1m>AJK!Ҽe]m1"=i3g{#T=~Pm~:,:B [ F8dOP:.D`vnp>uO;b/[(ن=z s9fFB"k {/{Z/.(<_ǡ<*x7JQѪb ~ eQ yֶ_35^L.+Sbv/k6VydLyhZZR*ⱷG a|I77ϝI|8Xч$= xFe5&r_ vvp76k# F[Mk'yy ̰^썳t,<=F1ztO2{~7Ux3m-riu3_<yCʭ|PWM?@`)ki=t E`8i5<2 ^h3ШT :nEA "9 tBޞеgY6m C n̕e w&-MZJB_֘ږy O]bA YZpa k~r1m eD­rivi׈Co]ܢ7u 螫6;M?+/x / 9+-_laHWl'tseCl\³k9/S=sʿfnk_4DmBCv{:7@)6L(9T^ne(LޝջW܇_ 55+P|8?MEKb>R rw5_6]'{S dJJ+psW4}, ˹5p/G7Dh['%3— elZ^62Uc:6HMB,C[)Z/[C\wSdlahrQyevvifVVxMwۊRf#l= ]lW;(HxɒfcI2'!(یZ6w%#`]oNY-+;GtDPމ?kkGʯ(8nR>ͷke?BZ1eݙH>q>Bx)d=@ #L}؅/ toF*2ׯY'wA<j,ݢc~ükU3C]UQ%Kl_Opw'=~|1a̍T%ی0m vuU.$.%he ˡlr-qk^#w3K7+ִu7F, v!F/ppy }wȀg^!m>2LYiRךĉDm,_heΫ yļٵ16)pȚPs )zh${*9hY1H|v7JQ<mVBm'~{SH''T6o_?mDv/+{?ήrnR²X&ijnZ[ͨ2UA@,՞jB]9X GN bp^Bw|Z)1:Zs.40 0$̍ ^"]:q \%᳎*wiʨO*/fb5V_C^ QVlШ#Dˇ ޯ/)U+?F'YlQQrh˜g}9Ll$ի/9XNZ+YuSsU5mh-~j Uq n +/KȂ]1G8|tJ;mLҒCvH0ZkE,1l*o )4Cg:FiA&@pQOjfW8PPzX[Õ\*B-^ 9@¢h#Jk[$& <z}mQ/~ڄثF!^;wadL|I#LlMbN~A+B<ȇ9S槡i񋨃,r)Vވ gn$~azgM (| WHZT 9L(0UH O!3? r-wa۱te?[Ŏx;]A_RS%{/'`-7 BaԝZ>dr36otCYsBN\r=1&H% :N?a~!_=ף igjea;+27= *k*{sӱ3M=L{5rfTmE,F̹(vR{>~"i_tÌ 5NεTRmbf1&@,F33tmmRgޤӪA BRx75>Y{þLs56}^zѻP ^X5₯O[tvܥESpxt {8܉okw,//xeGɃ}#?Ufk\w ފ \kgjܲG-;֬N\_-s~џ#j‡ZĮiz= "E5t~=!0s~a bf؈keCm@ĺPwB2`#3ڀN}Bs/֨"+]!/\X#ūx.= U07Ç^cU9(TF?eԕEsd A( pNБK-9 V}8Z$zGsn!\3bY6T`qyAFAQ)jw%1e^wT;?Xf .}TˢݜqQ`=g+שUa<;- YG*'i.b,{_CIP)*nHbN;1 .!:G.73Ko_GZdC| pĥM!z$X~Y쬔j#TTM  dzY_RB *d'%WJ>iMRrb98X.&NXO]ꭸ0'Rk a3i>VWv"s&Ci_/Nyp !'6Yn)2ZY5PJh]~uX^8P5_9JqK$nkp$8z=ZJ>U+5@vg s_"U D2l3}DxuIa+ד 6*4+!>w۔X5lTaZ RclCOnO;/dRY^39<ınA~ěg*{pl%w8u~ر&cita\G 43co`9&uDdaMR.ܽbO:2wP#n6ث}]*AхR=VMJzJQ"UI0lXvj͠i=]~lyz%d׵WG<>sPJo)p T ߃z /c]_uD:@`W{Vi!-TaIBLYb0 EȦ"SIh ܥ*vNGq\H&SaWP ̧2C’>pF@ \ {4x jӅsDE5U G-]LnZA?7I9NbbmӉJiУߞ>Lw+ѩ|]LY))M^meWiY()I[YPRpoi1d(DYc סoWmKM _? /˹_KsʣiC:cx.]wy/+Ү[oo<Mo CaYk μyH+O~T-\a0B?O[/iȨ?}@;mv(/8BBv ~,Tu{Rޛs+zf c[6:%Ϯ!` *~E^)D8٭s8i*9 DZ`.H[MOA7b=bA LՕ G| 6^,,-$S~;'7vҵc^h#goGvBZK+ڿ/ؗ'#Zxn6& yBʔ-%p->&cjTktN\{L62y]Ik/B]O R6o "YG1TIZ_B6H5z?0_bfx~OUڍt\uxT%Rq$=5M腠|DGxʛ5QAC$I@آ(],ktP50bZ7mdz9O.d{P΋uG-f0 Н4ٜG:fjܬ*I'/# kwxp0 (tƝ`h, 4|A*JlGШ+3ʖ_ xkVCfihe4Vp ;WtZ+AMdOrjqRI|8P٪盏6;ppY`O7!%^SkOԶ=hwO)zu훌 E!NG-dE|R+0f ;&L3U㩓ߖiF4. X U)ph@3==RuV>YG >ƨZm+ǜ@ՁIl׌1Nq }ߺ?5^ ܿ|B_6 ׯ0gol(t^XΉ&7IR'iS)yçlBxWg2>' GLiF GD9!I+2M*~,5"R| 99`[!ٌ| z0ǬBVV !Ku"]MO:!!WݧÎġ2zD|? #C,)tvsnZEsE ^}5iCvќrփGlAxwSAc*2gR,UWiqs_>'b`Zn7jUv?ye5]Zf|rGЖ&T= 5v&4\ULh8?gj,w >g mgNmrAGP"8ݵ35u7EHFB Ոר,e"Z̼hǪ^ҝ7.1L(8MNYgPWaH= p9=ͼ&塈8K4+5d-Yy$ @U 55Gg#)$n-bBK,T,.CHC q#{RV1=>kc*]觵zj:s:} ;P5A8*)|6al&1W@MU\\jJ@>-jEM0Ňŧ=kJ 7)4QP-QAYo ~@L3Цpxc3wpߊM& /A9v1Zʒ0اKh.Cܟ"I畂4߅sW\Ԝ(] ߅Ck@;#+ʜY$ OKζ'[nkujPkUc rHC<&^%y&o%  J'I8u1x1dW^oXrzp"O)um(Y%$.TfE`_تs~ 3-5-"G]dYC lB&yKK뽳.|m??\&6 oצT# g,2kE29?ޙcaAڷږL1Ս>R a915'?VtCs#I$fG ף녻q8gq~I؊Iqh{$x7O &YlF+4I/#*-Fe&N8tezwzfEG0YG *i՗\?xtEՍ2 .lBY>)K "ot a]8>)X|z l'8V):8;\&+{G4’ 2)wTcBjh͛OP5 X+ :;;=]V[ ֲ\} H.? bрtFHBj+q3G_bl's:GDz&a:c-\KMq~f%ŀ;8 4f$_>d?۰Tx U -,"- _pl)d_d8`9AL$}]nȊ;!e !)O[l&'*VaŻגn5W ip/TvgkfT[fujMƝf҉ɷy`xXOt*w>U(o+K5QWk5{ C|%CKAp@yWQWSתx̦H\l1!(OZ M@ 0+H"TysLjy3jx?s__^ /s>RaȼW.]|ީ&-Uď:I#`k[Ok/(O!lǖN6V-]u_'Weǭw椈ILK"[5wI֤˄bOg\yK!XI%clxc!g%ՙZͤpbTe.r j|Ltѳ{/5lʶcXgLZs e^ <q0;FOͼǃNI_&a"4}B95N*f*Y86Sl y* )|@X0x1}o&}%Zkd#I*,.FM⅓_g;f{T:,q{m&^qD2vH3?C3L%wCe6yꮾ4`hR$!;8i*{ *T^z(nM& Xyߟ5>O,FawIP bq˷/Օ>iG%dR]§~ٌ{OyYWGD-k-{48 3Go+USNX(9v]bs6mt)7+i}#颊훒w?tYp](MZ)k}Έ6BV"nS/70"to@E+ZXHJD>#h&\>z)&VFob![_xdà.rǻi  l>(?E#+D\vncöAZN].I(aٜJq[~6__%k(? N`Y^=Px60ox DGKKb<ڑ|~4^FR.ҏH!|j9ZWFGj.PJENAVu\qKB΢LU-n-E@OOؚ~X#W'ѮF$_+3f(Fѹ'nx90]t @+KYŒ27(iCn7xw` cՌީ@enIɨ8/zVk~j:!`OXz{^2[L9WxP\ǃ)M.3>Gú`FS6X qdwftZq'5yZ#Pĩ| +ڙ${=DcVqN>j*rbZt0{6$;(ښAV:[a *@y #ЙpdƯ]| ۍ`F@T0c:_p*{J(D%EK NK5ar1kYb?=\:F1FhFΚоN$sE\\_o4{#5FOo I{*zAHW {IxwNdOͺi1,.wksϲl(5f"hHZ_͐UQL'[nVđ"3[/۸;zv K)6eiOEPg,K^dCƸ,&.`b5em_Qu_vЪf\ô+$`w|}#pٷzc7nG e\ V_E hSh8osK H'|S@b+SVO.爫EVYcb%nMfI8 xׁ,58Jmo9U~~Q(>^nJ`^f2(:O{bS+(vݤ@3j׷A Tx)KY@3'ɳت kAkȭF=.ThQŻ@?ݩ8q~QZ7wr,YRNJ$̱[oc?R\yl,\jWXW-+fGA.lk`]dø0AZԟ|Xąv7_lf%=$=@pH{unUJqFL#ͭS8 j'dN_,A'ݥُF"^T@}ro7]t 1.'*sj"Ң12hO+Wk' H*V8 \+gNm]d%-2e~A +4 n="7_;,itf.>#S^SH\'acRc˯vKɢY񋜣D+V6G*0Gl*\.#`~_2ڰˬSah#kq!H<71%+c]VGk{96PT*R&7c}`# : ;/j<*E~O$dGms:ޫm~\RIo]K lOa" wWs\~0mDtfg)hrK-D!Ojs+A6Y':M.XW`UX9/Aha=d{c>+Ub% 8N^h˪9H!ZoTloM 5Jj{_6`K.i7z*ZbT"_3ʃ#Ǎ+6o% 2=b@C2]`1i||ܣ> u%*`ΞKH#㸥O:P]!mtMhDl}pNcFnV_8*uq>О84_:eps^[>]!Rq2}\elWH{#r^Ж2ٖKHOP)[Jڌs5>5+? F('ǀJ,({O}wIo_F~XGà=LjOR6L C㈓0`>Ml >6t6t#eb\Fp}@ [  s6xa`i|^1&tt߯%xX|zKCajbsTRv&<0856xƴڔ$E0#> h6l{>QmyKNܾ[x /Mo aON"/K_%&lf MkϘ5]domasƌae=ë̛ɒ{0[. fh'~%KM iӂY]^u=!.[] I.~⧱H-tF3s\U1fhmvTIcݛ͇/j5cB PQk) 5\L/[*|'["wi~y.Pl@n.,FHf_BK<\ԏLD\iUM᳢+sb()C_Ej"2\[gwv@rؓԑFh_Ɔsk0Y[LZ :Mzd% a=QegvZq:^W0֟D*E+ehZ0N~Ns=LSȔ4z{-\oNm 5 L~5϶ly^߲Y!K]1w7ěJ)\ !- Yݙ2"'I@`BVi<P~S--$ҭK;h1;rSJ ?HU 7Eh)Il5˚?Wc(bZ*n1ѷA u`2_Mjpƭb27H) |#cg ؐ}e?x+WDŽ"`Py+~@X? B5߱N5,fa]~2Κ>K— 3 ;0 2&O7^Vq]Qye|_4c8 A80;&3;]eԻq*܅P%|.Hd|hEҋES* Dκ³<A8Jٌak/1'а~$';|PCQPJ$ 75)5~y0gwLɸŔ+pG/30ul! j$q">`} 1=rzk<53GKՏoKO\j)X 0Bq|ǿ2gwr"<_FNÎ8 %:r2Z s !N|Mw}#ˠ`7ȅ.u)4oO`M#4^-U;Tf3.FȂɃ.mWxLY]PH8\\V'I\^s 9tGF<}jC-ԋYP:p{X*h;_bGLDLA-:5^@]ryfTco/Ռ]1/5OYf = [fLb>l2B&"^9XŖ;@.ap6gXwĿD6/!{a.दo"Vk|4_]FQ2m<֗QqiVۗ:c4{ rz?IO]МIxG+Sn%5DwyN'?:WimEeVexȐ^A2eUi‹0WӴ d68:ai=uXj^Wܰ<&=8~[Chւq 巗Co .&]{rݹJ53KmٲI m)gf<0[q0 />Cz͖ 1$F]!B|Bz'ωT#Jťs'ft%n- >/y(Ӓv:@(!wbuf}O3_Kҭ;&[x[\EkB@"w+΄EĮG*1D?_rV`@/&F,ڲ{á%56䱢`Cҕb9㓘2M!!p gl{Ke7 p;UB̉W/26rܠBoem\}1q!/'1xav6𤡚I[{\8Q1W5K>C`3{FuGئXHK7-հV&3àeϜ,r" Bk@w]EJ?L2Duǒg̱<H n1Q3IsfH?W+ Pݑic @~tdbkf'e._ /CHsv k`ܴJ5\k!lƝabM:I*/275mqŠ, NSa$!ePxI!luF5opX5"o7bq'̶&=F F&w!%,q{0r]1[Îihp(Ǫ0+Ņ6&Z!oXlŨ87 >huoae/YS#͐Q_d[βlV\9Ö.Gl).UfEefJ3:Gͽ &f?POxMxn`JEU]VչriQ&BlL 2hݖ! j/8s' w f 7 =TP-;Tt0 5rݓ4.R81mQqe[ |>=\nj+û](2[;ٲtUE> 3n{U5IM` GitqX(8sϊc>s+v}$  sk&0}._;+ C աCɲ y}n]bXvP7_s<{@w:e伐;6f)}#NTE$GNKBMvYȍQo4faCj٥],&2!*DfmB{fzd# 7hYB3GS$ ѱUF(6;;$gud$Eyv|)zBIs6ǭY#2x Xn7gI4_-X(PLuΈvZ3ݖX}M8B$ą\̄?\edCJYfUXzfEi[ sPM P#[ћiGi&Y?I;E?TQbb\dي,dXu٘,$mEA+umKTJ3i!|HV޹%u.`/u6%USƴLLYv}U29Ar߈7vm"kz/y8-{aA1> w NVSW kޡqpS@J 0BK}ޠ~JX %./ |"0J:xNFʋC*SB IUOT#ph$ 񰑗7L܍ "=bL'Z]1&ڽPꜛgRݧ J>#cUKF)8e7%ye]XX)tBY FlR*s7TВAyeRQ}dKp]q':7R.|VX4d i=hH,o`.&lp&8u~mAPu>qrоWZ;r՜IŲU]5k:Dq>CLd0W6N..#mOo fNcL97iŅVD=q{^tNܮRC9q̒pt0/&w5 S6Ih\| DMRyaWF- 6ropw&5 UFkxN! [!m(18k`c,Ӄƪ>Tox faJI%H#tJJP6\1Eж_ }=}O,RPV":4`tOIMc _BۚSCzCӾ+h[J!H$oMWy%PE YUwȉx`2f_ױs%ꞻ%-1RDH707iT(kñDgQJڞcGr+%0H{խb>e@.ȺbB єZZ;W(OFwYzd`e|>xkFG7>% R;*~H,~$h$SPBb{ọ+0>9yV*\hX 6jO}&™^y[zmjˌi.I5+ Zbo!xWy-EPi荩_j0?%Z.V/T T__ $ysr-"' c1DǨZ7lSD1p/AT)o#[b$)+wॊePS:!cLF_ WIHc&Gߔ7۵xvg m"0NUOߊ;0"ZK0ݝ|n"[~E=cu.W<Ƹ"G1VWoh7zo1.<1| Oi+ћ8P`Hޤe@B?Xe7PqBHgi24|v9¦{i -`#8O|WåHμPa?: uWAS}0H[ɗʳ'q;)|Yvm@9<|F[ܙ \VbF<8ՕE c|m#4lOX)WfY/;2vcgv$zD~v߻Y;aL^ HD d:yQ3>9g&5mbD>ez3Rq l\DB OP`hƉ&&;[R{JHy:p/j2U6Sf0Fo6<ϐlt/+H$ԟlu;/(*%!`~>пPZ@0(;fHvSZ#YfM/GI|plDA_NSa{f&UEfUSf- #a߶xhaߎt >l ԴTi`+kLL&F bUPd%C+)茳z =!lKlw[}SU8<^j_b=kThJXfMo(8BqD ;,=~ňs WPt}Ѝ_QxbybL`9X0bvUš/>&w Q /6Lmu'g Yjf Lg z]״S~uKD.-eBg iH8V66 F;Bf,<>UlX ]F^IЇn @ʹJ`S->x|F8+RdsrF0^ P|NA40N_A["b:F6u3025{Yh5e( /4f>La^ȇ^" o^!-Zaxd@VD)~a2EҮ|o,Aˀ[Pŗz)˖<iLl͍l/Z)GPiDBcÌ֨_ 8{im!njֲxjRGVV 4z~q%)VIcۿ|P ]Թs_T9C&G 0yzO_]k^H)Gv)w#9^QO0Rdl`z.jvlխѲh|56r0HS>u>d3e'ܜ[bEŷگίS$-D@Mh^+]v3FAz#VSO#={/y/ߕAFwQyn_lMl1_5 ~+^^:YN /(cG^IZr:~{Oo!]3a۔{uIV0 )b4=58'hZ JY3j^;ro*i'Wk'Mi޲9x(BL.+MMD UeHR [<~=$ H L"nI/zMu.7qrʣJe=ψs '-"f:Mn.8]:^mYf7@ j.+l5t}|m^O tUGBÊ%{õ4RLgڠE/-fG@bP6iO D̵]Lk cé}47 U#DanE ;ҀK`ϰ%qwZ~P*fSdWk D^m 'u%={yhbGVA>hBmZ67eGdzĶ<7 {(' 5WȞBhfQH3;>#IgrZk@./eR yS\wDDp0XT;~ŤWȰ+#xyF>(0)| CEg;h 1f .ހX!"PReӜv6@6͉ɣ5C<_ȪG0jA|?ld] P ciɱ4gzx" ҩ5ԣ0b&\7@,Vc"@[w('nW j v$ WY `ԥGlBh]tPW>_mkt\/7㶆´<F OD0r]l"vU7Ĺޞ!RdʢΩI]u>PܸO ج@Z*X 0@|p5z3yI*[[Ц|did_j׻OL?25eT%Q !($]lqPP.bŜ݂≠#Mס2q(sM;8bn()B0l#3q !GGϪ]cȏjP+(*;ܧ PqS܁pF$CD^ y[fPCIP]7ֹjkqF>mDo<ޔ|;W%T ~h:!#_i06ȓ~Х`⤡]Oy$6Y=&LꩫjwmVgXiְ9EurƵT~k| oGĀ~!g @t]8W&sd@dzF o@?pՌ%ag?J"kUnSzmvb&f@I6Jqv݈a,V+Ol-"T2DDŽ?Obyz]'ޏwW)THm0X2=a!sX?yGS$F$iP $BDe d m+C>ZQӚu][3Ή%eVFp*L9aԢxB|e&Zfe5zY%%=>`h#:0ab %ggNh]ti/*oF,ؖ?ԐY)' q]0*ɼӫ54PHl,.-ru;SkIcYщcϓ%|klK,9=u#3۲FWx3"c@  Zƿ2"/ jJbAr%MVѵWaT ~g etY gݳM@U$xi>PJQBY~p`4$:@_=ԝYf ^UD%f.GYA5(n1)emZ(r LjqT|G֬1aY69-aw1oQX9#]n.%/bJeL|1]tGp"F?kg b$9fJSo%CkW06 yUku0@}{̉m51&S_HG|M<3H~WXK1u @fjRM"1T(ŝ sՠ*j0ECLq!>EqnۚI+?5o ;q4e7pYfuvg8e6&O+0b(|<pV#F=sD_*:Q+b{ˎ+{+tX`3!Mg­~ 73h-ke|2v>?}EQ g? c<:Tq$oT f?)/L勐'wioư⎘y r ^(RgrS'k"eglQW8ƆiZUoi{ݣ?yHjȂ0(Vra7Uq,0b vd~\W9{N7 ^ J h~k)>h m0]#/\*ea7^S[;Gvt N(6PS2w)-$.|,#F]pDCA 9W~ a{ `#zpA"hV;mFL (J6s9`O;O9d !.+p &̕7θm 5}-Ӓ{'C4D5Jfb+ n[qI YfJR8L7Fi;KʱvJ"l&3)X%L Tu[wU> ܷL@ieO(<ڥPo"mN2 >liKVݠW)B>j%dQ8T[7~MU%M'Wi蝱%m'~N-PѪO4pN3%{cPέr5F$BU lXjc~]%cɦ_k%/ҭu D Sq:aoVVK;5_naR 2.,0hi-H5]IDLQsnb5+}=e#&689=n`gXÑHIM|#'b=Qxs%IUb<M 5NBON6gý/&N_Qшn}pG'smcULz6OB5e_TDp@i]=VU<T#xB>o )@Y2ޅeLHx=vH_QyDfFJk 6NO7 LʭAXER. aN738  T!ȯIx,#7%}p%2ł zFKKE8kXѿǧ:|Lmh#f[[Vadr?, ^"=8W "ж V>/[DsrXaJGYQ? XHx _Y# E]W.DwĬ1={37ՂX'sB28g5_q]Y L[#G[{S}ʅ‚MCdWC7E,U}CH׾5EDcMMԘbJ/ $ORoj2l?:8WkX(\XbDL_\"~G٘9+0mFguWRk{Ngx4FvHYܶ#W8IW Tه~ː>$SeKx,ϾGnh ^ƙHԳT:a6˛f_`NF؃ib qpϺ)Pzt|BPk>Ze a_0 ]Ih"`e'Hk;c&d:*VuCqU@KN:tQO1lkzRFZr!Tif/X^<[mc;ڶ< =qSOs< "MrV+\N9v]xb_l5(^k'8 ẑ3p,gobeZYŸ!qEġ3suN^KeEMfc|^;0~i"6gWMXžDٿ{m|1gbOدa'_*jl@gRs;oY$q#ݤ]b,gJ J}{`ȝ[!.vϊ.d8.4FS(FARJs.6E +f)wQ,*k[]kT%H.RY7zZjk`0_\gO?a7{X,UBܨ@~Vy\?/&0p#_@ #C/1[G-BBzG ņ$Ϩ-[ ?8?yXdRSމ0ўU.fb׳43=?2DYO' e)l)缦1g6jC=E`E5]X,rʱ?Qrܪ%W[R߭r,@򻈔Qp_ޱDI`T,60]Tk|ᕹ 댬n2(_qG"W"35zAn^ w\-,ᄇˑl(,_I/nuTZGI.BB}ٽ0ΖH򓒳lܭ7a}7 x?bãF ޞQHoʌOߞl+y #0Fr]1DlK:T4cfm/jOQrT oab~:%!$Q9fpNn (lp Qt-~1ha 500iIІT( % 2f8dY7| ֚usPAuOM:$5Ӫ(ʾg?++7p 8[@`Mf!\dL#v.=5I^P&i/wEC'Z1x]:|{NcH~f!;]#R/ZNj` }UMv-GzbWQ xFo}Jʾ.e{jэPJ :6Ĝ h=p.I1./ 4+bM o\خYS D8fap?]Oz8/'71NCohz? x.eItb#Wx.Std}b2^ Cv3ݾ{RVV KدX.z'_צ8;lvuBkh^S\t2XVR_;$@!t)~ʗNCm,yZr+-B(S0I{4V'<Ϗxɚ'V Q?D HV#T^vh@ɢvhrBRz5<ՠ [a5f)U5(}H2Ϝ-S2ORh]RR6"|fa{ h9j ''V1A8mgtf2܆% CF8 HS ^ Md욬"n$c${@*.E ]ByZ,,,熎"0 L<(uaQ{vK\Qi7Lv̶F@ diX"ަ(O;o{x&`B$23[BZx{J?1'\N h'S_75%#Vՙ^9|_wC*F`lc;y%tVH&5QXW3 X~ƠRLh׎ ŒW\C!vP65um-EŖLC\Cظ΍XUSerދ&ġ`ėmWHvU>Q0@ʘ`寜{:*Ϸy_D&{g[vŞqŠ?送=JOW/_5yq`AYD;)9=IRh|Cllu/;>-t-\ݍ&y)IJT"w1?yPo55!kmȥ~~;Æ/nxmh#t/ȈD6F0m&9.7}OKó1!M(T*|W[J"򤴠TZ*0. -s6Z6 *>\ҝD?셭muJ=/ R27H3 '^1՚Vɀ.CԚR$,k{jA:$%euD1棖v >CxhǸiMЙfh#!EzATt\q0B"$KesVֈԅу-CM?}р1ׁ*LDe`nKfMʟA)sX"YQ 겿qze@7#Ng_MX* AV;sW~ fķ?.5'+̱,C?64Pg:N8X䃽m h^~pY€ c/qJ\M drVNImP=EnԆ6 o/:  ~lS[A`-*kP\h94-[|&lnw1L V| vMĵxM]i G/4  Sځ8|'aOA;*vJ4O8M4\' {dCޛ Q3j>W@Y #McwV\M&`=j%=:)Qc_@4tiS1AmO؏,Ǧ6 q{!j79\3R*t#^/ KE{/4E E+[sk/U@i1$t8f1YW^Cۀ?ɡ ?W⦭(>Dg _vTARcUGIފ$%' GOq`ݜfD9h}!٭႟3e_ICGr.Nș/145`;o|jt3*D 𞼵v:IM~_ r'Xgnolϛua-Wy.lF,uDbsSb )e5= `6[ꢞRD3rl3|1fZOiR̼fUjav.үTaO6;?%,pQ<Ɋ&Vf[{9AXQF) 6qہ*2z8syN!àT۬SAۧ$MHΔn3%fHگa]ǥv:{{m[2mҳCۙvn?P%MJ@Px]0'\IJ0؛cDȁ$ẁi:%y.>✠ÂiŻ&|'[lTѯTqalzp+tku<2,ЂDpC u 3ǩ}<9Ԋ@;2)ף|dVZU-)+يSXOu?Nfx`1gM:2:SF2$S1[]ެyz+?0_۾܃@[ ض%<<, lq?b[$s;4Z*q`Xa1J¡@|nTDkw6| )4U;Acr n$𓎨?lgk7:T\=DQĞ~D̵yuϒHDS1f/[U[D ɪa3:m'ƪ 0XT̨VR:v| v4gt_A$^?- OqA𽩮VOsRs%LŝZIam1L}o jmC(fM%FpnLT6 )0\lTIĊ[/@4FTqMR Ty 6ŦgXUwVӦ&"}5S=b} ,K.XSpٲk#c{,g~hH~t6TG/11ꑶ~NJ:Y\ fo7g@Ͳ\3^ B v,nA,K`K5E&F%74Εbϣt +q Z~|)s=֓{)=@g IUovYLW.%❁ ,H ]o=^-jaT{G0cèA,kܤR}8(YưQ4wGf&B^1­GH-WDfr:CJ4IPk|#%9V`'l¼WisHi?4#8k\79a^l-äa-`p6c Ò$G^ *{> Z.ע;t҅i!Ʌjj6MU-L£."6b1(|?|E K7#H f8n!,,fhړI}5s 4xϢzm1I]G`]C' *I+-QL#b! aC3{A`c V7C"\hj"hϓHۈ2xY<8G/EUtNJTWHӗQ@BBͤ3HR%5ov)r(cX|s bcwE𘶦F%IL,LT|M/P7m&s <ߤyK$BWsTGϨ _ݶ+}JFzf[qd!Wu%|ä9GX)R`#}Tsv<؂F4$:'l'nY=u:ԁ>$6WG߿.ΑYa^ge{*6. N>$ '`oƭb}zn&!} UF-k<{zl]>j*2N@CڎY^)@TRV7];000!+ZFdNڀT "8|R@Zr8vtHqG!kM44^<<zUP}݆E-Cr6[j*#1:DThqpꞝ5ffBHlȓUElSJ^U$TxSS ޷nR0Bg^(J,d}sxsBE>J,~& Xoq\DXsԷAC'a/GwFE fT)7Ov'jK >ο Qi4Pi7Z'mxHiJ;q 1%Y2NDjdxcfcj(oSPOo1=ú^ i~B{[zBCC3Y3^0~ pI2cq̎b(uT^@0nc{u W'f7.rgk5O׌l_n3YdWf=g&}QqfI&K 7K.U|ji*' `PC9WW#&3~%ƭ.@ͧl+o~yۘzpJݪγ,#/P>9(oʬE{}!>Z_yyBJ6Zb.'jUԗNʵ! PAT*jӆ!]LH]#vg&((YJϛ!> $u]=Ԑ eKc(QIFߡ?y4h`L&6[2̔ o+E~YHL$P#?dzn^=痵g!c#2ajp]#걤Ǥu2ܻ#%#ÉgVuHS l1Sj̥%ZItlTOTn'젱$4Lx MOل[%Rޛ2Zy]'Zi^kW(P"΁/9VF[Udw[h> $phZox=+Iu|UBSt=([*i"exm0ʼn(-4x @/I=U&B>+ kA, #@6^\?WX|w3 ˭<@0 .P~o񃗤4,-`ld1-C*f{!5u#Gg}W=!$$8 / T]}y;jڴxL;[G%-'D?_iT.)W(M~\򒮄d- j۶ X/ ZX{ɔY^yaWV#1 do,c"U|2xjݪb!tkZ#dndN#E[EéS;2$0&$=)fiTL}a,(ڐF?;.<|C(Ij߸bFI*uL. fA]e9Ŋ].e1. hwn}v[n1G8EX64VW93\b:Mcb+H#zwIqO"<*ĸI'e{1!he㵻w7m9ۻeA0k=qPBImNimXdfAq' $ ExYgsZYδ#Upy(&t=|H}f}tdWo?oCJBJ`!$0J9 <g~h|R]p߿vݱ2'~aB=q9bef h! ;ضŻr32eRf(SLtf00J:gKR458Q\Z Krea@[AlFNVTe K@4r9Ee=0j7wd!O!Vr}<|5އOmLp~a \.œv(ZvIe~;сą24YU':Wն.m<ܱ鈤k<ƪ@b>/)i?I^TPLu^pr24EGN![`O6d?宇Qtg Є.msCjJ\);~ I}i;C#3,kl}4Ȏzك lnޣ]%f7+dy6D.C,<:ܧ;?Fj|.n$W~\Gꇗ v~/!7BC葍vc$u["'6$h/sf7 &N"6|&ɵ7zB?~4 HY2Q5 <oo F_x!ىNµMc ' |2} DѸkfMɾNA52,j%zb!l1BOWCw$(_-G/%Q" f[(>ٞ "y^ rl(K L+.x8>E}%mn`n0Dƚhtz!\,$fD ~%HTDc,;Hȷ1lėze_LcsֿF*!_: A$?hw3a @+ eZ⏩R0ݨ}e?`5C >CZů3 ho@$ĸqb?cDQM4ׅ3ӈ*jf%G 2{:IHsw'B)6T烔}|C*뮚F0Vbt fzŽt-jJo7+MSd!1lUx+E1GkKw8!:I$pVlB'mno!hPӾ+̤ǚ"$GPʻ<[fXn f'pBԱ@x .n"q2iU@ :Om%@kE ~Fj)ҿfv^jJEsˈ E<Pڔ҂ (Fm[^؃RRO\'DEB:ix`[9)i.B4 q#%a\-+(a4) ORƳ7p`w;J]6r\eZ:Iv8xCqMb Pkd[#U ]ImBFL}Ap.,m7Pk$+y^2@*oeƝD}G`ue>w83]72Xlw"PrL*aF`ӷt#f{;zj|T(F.crLJ Fdt$bzt L_'b+ܨ. SOT?=\.CsgKɡ >%KJ`btOX׵-< O6 b*Sn[}1No 37Q4[o MwnVH xjyHDk^<1ڸ;]LxWѥ%pB!H-E9Vk+\1RLQf>a\[?kEN`4W{^9987:4í1r齚یna$6t7dJũNl>JC6]zU/6K=b"Fq`/e [y1U92Ddҫ/RdOD t<u79 ;;x ][+Ã/Oiyմg$.WUd,&;szBGT*lm[f*sajwv9H73M_tde&g&;u鄈u"EGDQ!M8GxUY$:!`/,DƷuͺa_u&%U&gJwT|: Y4s'.ESƊ^Cd &ۛ,mN.l I2x,2;`ճŮl/%5bG;L${{9G tlRU\yWbyOROCLn3R/A+19fӎ:d$y!mDD{mA-!^<.w`hi.ccűuT$]/Lj5Ȱ>n弢lѲqe:RGL2Q!OV%nyerj,PqίP6q kV½gtOƒ,v| mFS I09'`puy\z FԖa13[Y*w/U+>"HQwLRT &B@(2zCl"}qAkXOXo  욣3K}x K7`jս)  x1qSI m$PkK`Ն ~XmSIҟ6 `nOqf13iVi=UX5OCR2̭'"U<8²b&$y(,r16^V}-yn$y3=Vjhi +ќ+qQe̻⌡& O~ŒgNc uFџ؋`wcu@ e Vy#V؇xZyE(fdx 3N)*x}[V5kxQ}|c]35NC Yd ;?@!z |iioaX\(ZbϦ w [EA(0<`)t&ByyjYFR olB?ׂ vOT'k.JrR%T4nmrȏ{dA1[ۘQVtgzMlPvww`tM̲] 샔\# hXq/TOe31S^Ԯo3tDm$.\|#oX$OEbcD`qO).2NHT/AF vz<B`ދP6Vqݔ;HUYJld䑯3`;dYnKu05C$C!`(+7Y>})4Ȣ x '2y-'!3t Dž7o2Cxɷ_6td7PoG&z Q#P|urXuwiZ3gBwn~o ҿ[C.$!}a(8Ӯq691İ0 `d+Rc[e*9}A1UYUլm`[ lIHmtm,R썺J0uMwR0׋ .?.~IS=*Xbnvo5ra,]]b “=4vY p‹}l1jA=0K\3zu#/u R+߭x:ҽ q_ww@+0v]uϻ".#A:!HR('qUG [_=B kMʋ"%=4[Et )Йԫ!*j=V1.xGsTT^9C^ U!_xOMŔv9adZX3ʲ(e.h޲ԱQr8j(ѝMugk';wӝwa \(,\B$Pz WfwO:J +ϥhgĞѴLk \Ȥ0}Mp5>X>a⤳IΑx>n$0شDr*r@!^z^&̙nh?_ G]^5Z7u]a=?y!jނ71a1ph55.p'D4-ʭO#-IUFH^LF%M^)IndSvtj'o=-zDI-fpfpP]oYdcؔ q9Gs?8i<e^`uqrO$=}2kp$UtҨ(|!&! [Nzl÷p>Fuga >*8 VLѓ=liR\o9HG(^3{0Q .\d7jaq uըէ/)޶Ӧ^:\ɱ~1+ 8ǰdT6& ZMb sZCV=KXK+[-Z mpC8:mɿG 3O waQsmHL X|Rm<_|EÔF"j=yQuxFI'henH@Df[ :=K,<,MRYP\ۨ)Dʏ]p$]T_ܗrAlB-H'%\2?2cb%rZ I \pNȑ gR)5Ͽp%'QXjH"څ9ץ7 &I)|P0}W +()9 uej 'ho!Jh"O N_ӣ^8TxWz8Uk47Us@$Ycjq .iE?a28 BTGkM};NW tQ $9 PP2z,BثkБT}֔87F)KJ'~?TnTfwϣks ]M_?7q8JMP4CԊl"RH!:E?|t0Se[,+ 57\uDG7" -j vm~B{ lڱ[& a sfFę_PV(w zS<98gkWB+ Fŋ96/e9'?̣ 5kV3Nø=K^<um`Ÿۙ@!ŷ\^9Nbg,(H?* &ʿb~@ؘ_U'j#w7nԄ*440r Ъ^ͼ9i#Y RjI𞮰N/Z3BQY:9QiHs:\y^__\~4C5*9'gÝW\ 9NsFT' z,]}39s WM0!qFU[GixsV0Qy2 ;Iz@_觰w/i.$cX% @ߎ# Yte`c@*4%y?V¼_D'xM+Όk,mOpstHdo^nS}6\~ &0-ySK$w;=AN Z̈́_gJ`}$ɎC㐎$%h>~FǞh;]4JNb _ bPhYx;8S{IPe;s!f[>PZSj "銚J\bz;N. 4?u_f.@8 \:$-q!v"lo\> mT͋᪐B.l5?PegꥶcFkvh &idq ff]@x '^)bNDh4b){%mC=L6=pf/,%a;1\WTƌWhNaޕɒ{ ^<ҳA G[#$KB0tn !9@a05rBI=$@fd45z+ v+Eem*5 ]r^4BZ`ܘi*xѥz[u(}z{dU!m].BTBan,NRxDXUW5rg}BbDѩjƏS5>AaQ)xyyqbC\q$T<ޅ?f[=ly˻[^Eo.#W1PMn2[m7cjCgpyouB+M׺/AmhmHB-{IJ?,eQSB+f R}YU/ Ks[Zo&T~Pb9'P0w&2 :n\h̔RgR\pr"?L?V/`(DlKGs%/\ tډe1&B9 {a(h~Epn=ngܿ@G}W$X, +{+77wBj5{ahK=݋]omvkY2&*6YM9$T[qFe)#1::FV?\|T|̨0;0 HcCpPdu`k#djbj:6 %+1aϠjq!|f{NKg)֟p Ie5Z_bTF__,aZl@/2fL*MWtW /:@oEէZYTߑALZ[;=\jHKɾTh6FI۫a%?;ۇv"K+zQi" ^MY ]W1w_Bn\Ek$A`e:r<>l>aS>w(XT{13؆fbCR94T :y!>N ,{Fԧ4ʤK6'y;71?L9狭J3wU[gfU_jPGÍ֛Zg*3skd_(ߪ0mGGG'+T r9 DTa̍RZmoYPx%d @!F1Q烢H]^=sS~됻h YW8VTeޥ8;sʬ`5˻ZN2ndw Aa9qap7WR9߭F#b+foL-Ly<ۏP7iwP71ML(U{nn{#SvWYS`Dfl()NW9 iZci'+^i\-m%^a@Jͨ:,*NPM2y9jF' 5 r;M͢q3#u<@s>FmEXMPkGCٷ~)M lmim2^dͷoG_Y''I>3.&Y֘yqffԦ8j\4߿M{`!9>6|N4E6냊nSZ>,W:0PF#5ǐܵA)l+`.P0P~gk+`:2/C2Sڧ@)`w t(7Y ݽjVH9)oM)bd/Ds1CAKޜU#Hķd9yzO~#z[!ҕU`:'ڃz|/-'.*Lfsϵ<\p `lvq դ8wɨތ[֒Wc>ULOh1Nsgn0o d!@;Fz5Yykx LR:\W0Er2M+O ͦnCz>A+ ͚CJq ߌeJ 4&?r ehY~ : $n$;q} ZP jj.9sp ?&5aFܙ9ȂD(Dx Y> tdDm|Q]D;5( dtqF*&` 8&ycOZT9ܢ LfY}+enS9zYA2T'`AbaӪ Oh;jsx1JF jd5‘E%+c[%`1p,@E'ַ߱QurY+gm5B씿\n඀o{Ʊ/X_@1մ ;.F1+GwɌ x0+ȩP]^zX6N#WѨ*'u%x{ (y?'yA{pb8i@?8(G:ve qE&7)R6+-DҀӘeZE^M!572зnk@c0C+`bB {]? u[BxGA/cjOd(XS1O42Hf vS,۳i%|n sm/R>W |6mM8m[>O GyOY9$E0{YQXsC<:B E,p)@i-M+Qqy>FKyΆD3*N/AX9^a1lK64FFˑ%d>.,ʃwYm {ώ VASH`R\pn&tJ}f}r 5!$.Gʔ@ ,(!U`DoHP456OzZ7*RT~ۯE{BwO)7]N 8? isqx ^0:V~:Cs[!A}a-ZZ~/VJg_SOJ-Խ0/'n]XB歯%Ode1 ~`ccll^¨%eD4zqRGIa; P$X2i}\ Z)T%_& Cfc BT@ߴ~*.e4Tς޸iacx^6 f n!=!ެa؅h&F沱 M:8gH.R y 4H 4tQ0<<&B!^|3FEzIf3JqFZF*mۋNP(qF%z>ޭDr PVI|Ѫ)9 5{qK-oٰIƗ9d$$"|F|^xWA89S¨^-GIn)$w*U฻Y=Ҏ{ؖ=Yœ[;)6l3nV]beM (Ua %Daj&;A^UP1Z]T~ކ S_uMEwg?NR|~pFzmPIǦ>Cl0l6.&NfYC+)cF[0Ե!}I ,SX__s˵۴I"Z rG 1,h_5 7jd14C9<{7ga4& /id'ԽxuJhl͛Ò)Y/%q^48RG0FՓkq"8Wv$WYXy{ρp [RW,|hk~Bz^³>%@s#D}mNGڊEܻ*pJ AI dif|}+Eu2$#ighKJa/kll.ht?,{{%n_o?ɪt!%α=׫ؖRw4 yXTc!ʷib)&]q<@uFBRռŲČ10%|_43!\\fWVݒpk0 d>&5=qG:AO!Ms9c_\]BգmbY.A|?8-eɷI8޳;wS44& Xw/^PRvRxf) )kl*-ДwɅ\y+FiL[*n5?<0wz/Is3w2p;B%R(Vbob QU;@H EZ Fm+35лlT:u V=P_T 56-[]3 ]7m9,{CN(\koW;]g8OwO@*+g𞅌ܚ AATƴwޥwc=DSϴv1ݑ1c 6?h|\ޘD޽*EnE N O`!bEurPgSh=Y:z_ƊJs"횤RG}פe{s{q*zI\^*Rtg&mܙp 誖鶴ZT&LPx0RAP+%Q[t$>Ϋ3zoDlY#Z c3?zrʻT^&6$#*5qeݪ{,gn_W 5#aosp[d"4A$,B-a_27/;utO3WhJ 5,<^1>V;*jZ}\0KSyFDvA,o͓hJY[/< 6wtG>gXDҿ.@km\oɻMY^LJ8b&ӻSl9!_6:5= XI_.Y9,n CUX~q XTtXۗ._xj ;$iЮ,|5crK ~V r-Z6]&ڞRN͔O<5U 0gf\O'JK׈Y ]$/t,o+Q,(6|Vj8w[g"$'xjUb'UH _:=,T>@"}`B9g_%7"H`1'iI1a:/-_)#^Uq[Nt,Y@6EG%a|Qr٧UNa{Ul}f[$K!t]V51D#C" Okw0h9\y!*ʱ4} W3u݃p)Z*bjDEA![3ƦYݰRukkW k-SCJFGu((v%P*}?S-j^ar:O3zL52dS^N噤#xk'iĆcjVSt"i<; "yB0 ƏŶH;r#{S鱌P@\#,*펇Hk+s0]JQ yB"  xz xyPhMWAxOФtFf\  &>-T KєP )ds+S$KPq;P<ӦE;^U7'v<[4 ,Ad~'\\|ku6dwx${^_R'oZt$!(ǃxG<~T,qyAkHQJ釐e3~_PĽzǮc 51Zv4L;tXEܺ׾PxiA;XPg_(Eл ɫ;hh#@(ФPHiv?F7W.rEjn۴Ѳ #dZŠ G^,eUpUR+3z܌KJ{O-LV0o٨f[OGcRnZn, :@!C/ *Xv_O'K2ݲqNe\{'jAHoN,ۥ݉l-nLzΛhdTUz&{"]O]/&vTF+ՑJEzTtl<3L] ZQkj?.a8Q}'%̽7u "(ꛕ"U=?l<`A4]8r_c 7ܘS8ޙp:Gܧ}lcƼQytEBvcVxgMoaɈD(:.kLùݒ|~r)|s8| ;RRH#~T1?57SdE)Y 2'5a`A#-ޓard<Þ/Ajv +Q[ "fa-c*NE'0(X塢.(F%7 VlNA͙5zqĀ%%Bj\6;4ߺq!l+|J^?:i{zM~sQG<$紪1@sOܔ. O#2xGubc#`k5aZ&Wkq\n 3L7kV _5KiDnF/v 1Mk'9Ut 4[~N4 )KkNYY@ r*P]lH *3l[Vq ;T)*=-5A_AlVg鑼1Gؽ\P [I9v-+{\4htʄ>Xϥ&}0ǜb%y:VGa%n 9l8lvHxZxGa05$>daRI%TH1 $h =ɂi;4ĜVcrIGLo{*,s(ݟǾbn𾲤ڦloF>nAv#8u??N !cJxU7r2ʼ\wKLkS9xwVQ1|,3OstcF_xۺ&LG),盕PS%ll̳ l¦&aYSJR@Zޥܮr,{D+9tl:aK˓8emf8Ĩa ^FV煊Qx`Q^U3~O#dw31q97weTP^3@bC&r݋5C*Ј ..#YÅ%Wd?U;:c|p E2mw@aJ A;s}Z@5: a7QR7se'3-TCvjNi&; Ȭ\4h9`O7' }>Bl$  (mkv.[B) W/ew(f^m6L^G!!v HȄ @2ZJ}qʞ~yNː܁@s[ yLMʭ205;sc5u&sڔh/R5^D7 fUV w2Nc."~>%~)^YS1/|uv{CJ/*ڵCxM~X<*߶qc}la(WeY{2*Ґ$搠m]'k? #C̮h]>{Z@|nCw +Vk5g;²\z&R>ڼM=&R A<7]Ά3u7ۑ |hӎɢU\_I K-!:Jd,Ly}肘>mF>,*z 2#/(dQ<kL`q1hY^:z|k_þwoKJ` e3qH>A>8?+yw lhL fXH W*i񟨋s,Y[ݦs}x`G(~9D 8 *Z'yX}1k4xvfM[RpzN$רљ2׍G ֩+RFH1+ԚnƪH>fN-s z o4+ġtrwM$"+i2Wej1pLZPk:gbUMj|"e"u0<1s2ϔO[-ʤ۱BƩ^iɞQV y26|cdy`~z dz70X(E#r7KߖluMcm$=^+K6% <Կ!vxe{\+LT1W'b OUp"];؍Oty:qK#-Nݥ002b T*(!/ʾ$vY+\/!*MylhN7/$tZ.-l+)BKh&NͲ88S4Y#( O{%^tyBE&&h<w٫2 =5Cowxs )ETuMzhĠ};9~q/,}Ije$ ;&w B :k](hq%ܟ+|0Xfj< {nIl|}g\tX8.禄Ѷ'K)C O2-tBvټϟU5W7Ɉw΢_}C\Udrh"1 -;M 3EfcCp.ea+nأ9ή5,7zg˛b.GsЩ㹈Ow@ _@aNcc{Qlb9z(p]s\($x O&3QaNĒ++c4j7mC]`9$_y,mNvŕ|l,X8cj0~9 -Gi`^i6_qgg آ)W^/-XFz'DI2/M 1^IcԐo+~a*l﯂NVJP# _өI}1C h2E,vmmzth=K1^y4:_v$ygNA,mW7 kBT θIAne0 meOL4<)"ѩb~x_濐ֽUG.7l|I $ۭU81Iu,KI܅\ Z:O ]-F-n Ua-M2b]d+@0w0Lh悍>9Q(TqAYd3@H0;Bޛee8 GQn [#s& x;Y3a?⦺xV+[H$?3,* YM芗s(ĵ'.!dkpNzQYI2P+}Z_ JYſ҃yv:k[B7/-~4Wt4P\CZ ’|9Fb-?J%lnKE^7߾脈U5TgNzK{$.b?,%o%4,`ꃯLJ[́Ly@m~B#qY{/IDY}Zo`k?5c͜ad=ҹwab30^<}dOdW{µ4/$*H3n8rka`lWEF}Fa"(@?;yf`u<4C!o~ᕣk?v$ڋxR1$Seu9%q&pcSm=n%ɩ66zm2YBL%?l'vEOέa!:ٍ[U onO=dI;6*q 9(?\ gOušFoP&u-LFU2vYE*\)Q]| Q~&VgO=֜Ò^2 av[pc3y4]E .kޗ&klPiN$ nY'6r+iPlt3 J޷~z Q~dw6;g \:}K.O(FxX*F[D^C12uL*$7? -_ 䌀c}?@&A>)PNCKt 4&?`  j&~~`Z+I HJ968;MIɫ)sqbQk].W]ٚڷ[>֚YpdҥdP]uQqLO ZX˘}ub %Zd~CՉǴB=&[<+L=c!Ix $Mg]46e>](Fr*5 #ܚL /]TS XIVJ#aAښb5UGP!R)&/I6Bl)N e7}_\Em6'MuP1x,eiNq%tlW& Ds8ځ1,*mj;mg&V^G|C`5|HTV=gS\01(h8 `8 jLڒz2K齇PU^%R(N"w-nvtHpl[&qժeYgp3 nk91aIAτZ5!E}1zh]? 6u>ora0tkqYNCd '&\Ij/_獂&[= 4;jmTU-G9{~E|ŀOD7(kZdN{X^odZ֢cMA;%] ~4omnĽMG)ԧ] Ada[U 81,wv>([g>_6!-v '%§'U 3\^v|b5Icwc&plČ0srnS||q$؂gLvsJUwx* aX4+*@1c˩8*9P >|-/eN)FY"|PʚJprۯҖa! q8;~bĠTy?ۣHJ8C^KUڭ؁V$&/}Ǥ5yIZW4|&{'N%_kwt؝cQ"~19e$F `?F-9b"j͢Ak4́~zM+?&1tq5׶P% %ח{L 4~|4d$~r$x8^ ,@h=z(mt,K7 *RfH6{qmtX;i(BBjh"!/&|:Ųc9DƮ<&ciXf۽T? %ScS'&7/%-޾=YEp .JY tLZYy5i $'B ǒM%'t/:SMMSsɕ\ BX6-U9C,* 9&5f!*M]7@ z`Vj~ai#E@Gs졂ڔ &5 7§Y5ډ~+3g]?Bqooo!O~,+E%O'?=}Y Ŕ4hHf`*w .tKwLLap+"oʛrN5BTGV;I2q/P|}# >PG0fhRv2Z,]2ϙp< .MGF ͫE{X]r+"|D:-퍾W7ಘyeJ.ѷeqsj[kpp!7("vKR03neP`g|ȓ Uקh{DAl2 |bXRS#K*yXIHꂰDTqڣSJZGJcWӐJu%,? lu&PVUÏ70>q'-ĄRP E^)ڲ#w|uUL UxmUKH 2? $*x{'MƈKw lOۡF"uAEv׷Crׄ̚1 `oq/ 7, jْ /*]r9(:>IZwwtDg'tgo\ǤIc&! յh +h |4Yn@'_dc^e60!RXr9aՇbՄ!d4[u̓$ɌG1b@ɍomm`r=Ϛ ς#P-7ԕn\hPV?.󐫃|!%)6ncW;_!A516"+8Xg35V5\`@lh,YaK5"`ʛ*(e詏鵾17iX]\ (~GYp$\x"4-4f1ҷ_PfV-RXr]_%w/ދ!N6jS1]Nr U0v Wo[4^e͇T=?$Ҕ~g8*HjUg`]j$ϥ_e~(:XꈍfTdbrl{gqv\g袻 }/xԟ `ɟW@sѫ罚yAxgڝ}M"uR8VesM]{zӚ{0oOUE$V[{}l~l_}~IPPwJ烉(UjRhjcBvŒk[`GTn*vi4a,L= d.V.Yz`0[6}qgE,x\I2i#܂Iuad83 ^if%,;ԡE@7G˓h+)x17sLIj Yj_}G6JJ茨^Ǻc=\  Bce-QClⰁ1<7;tzƶu.dP9-"ɛi֠GIoH%>ܲGchΦ'}}탎S sdhh Ұ3= g Ir]zFs/\Ypٍߕȷ|?:0utH~& "b|e@R푺]K!l+>- &lxenΠb')5LԺat_UeH=7|oMe8t--UEwr 69 Poɶo~hX=X  ?Tt4J"(T-ܟ˹;U^(e(|fTVUjrIz$ר/W5BP7`-/^>UBP /!XtC=YHԅ ǵs^Z7ƩrczLgX$[Y=V8g1j>l 8g@H8F&@gv]`_֨YGVX]?j7?7]ش7dm^Ex ]fBnDNY˜4I%f"8-Jg5)n oB355SnlEi029`Vux2$GCM\6<#cDM*=,2q0o_YWs ,*B˜lP1tWj=p78H4 @|p7oSg<>UalaM{pLXn'TR`?iCl;@ N< 7up;u\!F:s]\$ʐ|w@gCA ܦGEh5Ikz < c\𜼡dv5K׿H+&i:׀}FmuZhƆhõi`ϐP[МS!Pnf K\-E) G0d,i&yw\RȆ Z"Ap@- J0V!{\6Qh=H%Dnx)߲Ddm%tk\'$WFJ hC FXܩL*W('ccFhpZxaAh~ǭB֍ږ|Ljm7; moB*e0@.X;I` mlrAAǒs8dTNw^5d{Y^& bIֵ>؀n<.*}ߺ&m/"rM4ZgK.E_eT#M[٧ [ZsK2$"uҬmh!qrZm~=;RTĈF+L!;/,9$wg68W"'2Bv&_b+XB.ğ^ (0CTTT]\:}B( }W)R5 bk)9sF/ˑd2vq֚Ⱦƃuz[VMK؍4P< IʫBzv(܏ۖ@a4ZiLbbFRbT4);(m[btt1|QJ7Fehɢ-%SMR#،+hkRR~tDBvZ<ǗIkie 5; 2}f|@-rmF!j}Ł |mKj¿=s~Tw(=Z5+"p < {i&~2Othu "{El^ѐKy6ܮ Rc/Ar͉-)Fʯ ؖ,QzwP3f7zl@5NAdqX{\w#UnjVteGk~"rD ;g9xT"9iS4.W:ʴK6)`!Wl\?%{2x tG=Sg#'3ͱpbXBk16@"#7M4/~=IQU`/1 Ufy d?ڸ$gtY]W eܲ z[̩4Haat?ȋkH 8oXS.iT9G&^}'ie|[T֢ؓM,>a|]>[.  嚽ȖԜdUf@X2n moȱUڟLL7huđ)PIT~BrR3.HnLw]3htxXb_,b SO#[s]腶 J>-C}[Dd!w"nj}_}pH۲/pGL SD$&5MD^JT5xA%s"`NFg7֠^5!eN[?"p=܂¥c.MPҸr8jwg,0 WYgs zLNe/4~l"5,Ho%A[n9XN^ꏭq Go y~c35|oLP)zp^T oČĄ YZ