libspice-server1-0.14.2-lp152.2.6.1<>,ԉ`Ӝ/=„; 7q?åcE8(9;ِAqNG[vza&齕/s wbg uǭL'+Bղf_ZMGԝRE-0l)s"uDBI<j_a@*0A:gfBHhA1T .{8׳.S_'XWu,osdX>{K"2;R2 ݐ:>䔭m2|M2cSgb->C<?<d & ?  =CHh x    4\t(( )(( i8 p9 : >6@6B6 F6-G6@H6`I6X6Y6Z7$[7(\7<]7\^7b8Sc9d9e9f9l9u9v9w:x:y:Lz< <0<4<:<|Clibspice-server10.14.2lp152.2.6.1Library for SPICE-serverLibrary for SPICE-server The SPICE server is used to expose a remote machine's display and devices.`Ӝlamb14#IopenSUSE Leap 15.2openSUSELGPL-2.1-or-later OR GPL-2.0-or-laterhttp://bugs.opensuse.orgSystem/Librarieshttps://www.spice-space.org/linuxi586[HQ CgA큤A큤`ә`Ӛ`ӛ\ \ x\ x`ӛ\ xd9be8b2f77cfa61f8f0027c110f7ea5d749d7a999d95d7c8f65f407fe9066a9be284efb9d25c25965a7fa2861db3602ee139aa4f7ccc79604c223b5e60d267bffb55cdaf113b6dc54e8d03e41984e7b0e49faf7aa3443e386148d53eec031f724ad2ad2f17f0995457a4a0ebe74d61a1f3628e7f2a476f05bda058389182c732dc626520dcd53a22f727af3ee42c770e56c97a64fe3adb063799d8ab032fe551libspice-server.so.1.13.0rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootspice-0.14.2-lp152.2.6.1.src.rpmlibspice-server.so.1libspice-server.so.1(SPICE_SERVER_0.10.0)libspice-server.so.1(SPICE_SERVER_0.10.1)libspice-server.so.1(SPICE_SERVER_0.10.2)libspice-server.so.1(SPICE_SERVER_0.10.3)libspice-server.so.1(SPICE_SERVER_0.10.4)libspice-server.so.1(SPICE_SERVER_0.11.2)libspice-server.so.1(SPICE_SERVER_0.11.4)libspice-server.so.1(SPICE_SERVER_0.12.2)libspice-server.so.1(SPICE_SERVER_0.12.3)libspice-server.so.1(SPICE_SERVER_0.12.4)libspice-server.so.1(SPICE_SERVER_0.12.5)libspice-server.so.1(SPICE_SERVER_0.12.6)libspice-server.so.1(SPICE_SERVER_0.13.1)libspice-server.so.1(SPICE_SERVER_0.13.2)libspice-server.so.1(SPICE_SERVER_0.14.2)libspice-server.so.1(SPICE_SERVER_0.6.0)libspice-server.so.1(SPICE_SERVER_0.6.1)libspice-server.so.1(SPICE_SERVER_0.8.0)libspice-server.so.1(SPICE_SERVER_0.8.1)libspice-server.so.1(SPICE_SERVER_0.8.2)libspice-server.so.1(SPICE_SERVER_0.8.3)libspice-server1libspice-server1(x86-32)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    /sbin/ldconfig/sbin/ldconfiglibc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.11)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)libc.so.6(GLIBC_2.7)libcrypto.so.1.1libcrypto.so.1.1(OPENSSL_1_1_0)libgio-2.0.so.0libglib-2.0.so.0libgobject-2.0.so.0libgstapp-1.0.so.0libgstreamer-1.0.so.0libjpeg.so.8libjpeg.so.8(LIBJPEG_8.0)liblz4.so.1libm.so.6libm.so.6(GLIBC_2.0)libopus.so.0liborc-0.4.so.0libpixman-1.so.0libpthread.so.0libpthread.so.0(GLIBC_2.0)libpthread.so.0(GLIBC_2.1)libpthread.so.0(GLIBC_2.12)libpthread.so.0(GLIBC_2.3.2)librt.so.1librt.so.1(GLIBC_2.2)libsasl2.so.3libssl.so.1.1libssl.so.1.1(OPENSSL_1_1_0)libz.so.1rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.1`_{ \P\y\N[:@[:@[z@[LZp^@Zp^@Z`@Y@X@X@X[@XOX$a@WWVU|@Uq@TBV@T>acarnold@suse.comBruce Rogers Bruce Rogers olaf@aepfle.deBruce Rogers astieger@suse.comBruce Rogers cbosdonnat@suse.comcbosdonnat@suse.comjengelh@inai.detchvatal@suse.comtchvatal@suse.comcbosdonnat@suse.compsimons@suse.comcbosdonnat@suse.comastieger@suse.comcbosdonnat@suse.commsuchanek@suse.comzaitor@opensuse.orgcbosdonnat@suse.comcbosdonnat@suse.comcbosdonnat@suse.comcbosdonnat@suse.comcrrodriguez@opensuse.orgzaitor@opensuse.org- bsc#1181686 - VUL-0: CVE-2021-20201: spice,spice-gtk: client initiated renegotiation denial of service 0001-With-OpenSSL-1.1-Disable-client-initiated-renegotiation.patch 0002-With-OpenSSL-1.0.2-and-earlier-disable-client-side-renegotiation.patch- Fix buffer overflow vulnerabilities in QUIC image decoding (CVE-2020-14355 bsc#1177158) 0001-quic-Check-we-have-some-data-to-start-decoding-quic-.patch 0002-quic-Check-image-size-in-quic_decode_begin.patch 0003-quic-Check-RLE-lengths.patch 0004-quic-Avoid-possible-buffer-overflow-in-find_bucket.patch- Update to v0.14.2 stable release The main changes are support for Meson build and graphic device info messages allowing to better support multi-monitor configurations. * support H265 in stream-channel * add support for building with meson/ninja * minor tests fixes improving CI * set char device state for smartcard, allowing Qemu optimization * improve red-parse-qxl.c interface making it more consistent * add some instrumentation for streaming device * QXL interface: add a function to identify monitors in the guest (spice_qxl_set_device_info) * add support for GraphicsDeviceInfo messages * video-stream: prevent crash on stream reattach * make channel client callbacks virtual functions * bumped minimum required glib version to 2.38 * attempt to have a reliable led state for keyboard modifiers - Removed patches: (The first two are altered versions of what is carried upstream. I think we're fine with what upstream does here) 0001-lz-Avoid-buffer-reading-overflow-checking-for-image-.patch 0002-lz-More-checks-on-image-sizes.patch 0001-memslot-Fix-off-by-one-error-in-group-slot-boundary-.patch- Use plain python2 for SLE12 builds - Remove PYTHON=python3, configure will find and use the python3- Fix OOB memory access in internal tracking of slot_ids and group_ids. (CVE-2019-3813 bsc#1122706) * 0001-memslot-Fix-off-by-one-error-in-group-slot-boundary-.patch - Remove celt051 Requires directive- Upstream disabled support for the celt051 audio codec by default, do likewise in the spec - Note updated 0.14.1 build dependencies in the spec: * OpenSSL 1.0.0 or newer is now required * glib 2.32 required - add upstream signing key and verify source signature- Update to v0.14.1 stable release The announcement email describes this release as follows: The main change in this release is the addition of a new protocol extension in order to support streaming the remote display as a video stream rather than going through the QXL protocol. Together with spice-streaming-agent, and/or with more work on the qemu/ spice-server side, this should allow streaming of 3D accelerated VMs in the future. At this point, this part of spice-server is still a work in progress (multi-monitor support and various features are missing). * avoid performance issues on Windows 10 KVM guests (boo#1109044) * add new org.spice-space.stream.0 channel used for passing an encoded video stream from the guest to the client * add support for TCP_CORK to reduce the amount of packets that we send * fix CVE-2018-10873 (maintainer note: we already carried fix) * fix cursor related migration crash * fix regression causing sound recording to be muted after client disconnection/reconnection (introduced in 0.13.90) * fix regression in corner cases where images could be sent uncompressed when they used to be compressed with QUIC * disable TLS 1.0 support * CELT 0.5.1 support is now disabled by default. If celt051-devel is installed at build-time, --enable-celt051/--disable-celt051 must be explicitly specified * drop support for unsupported OpenSSL version. OpenSSL 1.0.0 or newer is now required * bumped minimum required glib version to 2.32 * endianness fixes * (small) leak fixes * usual round of code cleanups * not directly related to this release, but the upstream git repository is now hosted on gitlab.freedesktop.org - Removed patches: bb15d481-Fix-flexible-array-buffer-overflow.patch- Fix potential heap corruption when demarshalling (CVE-2018-10873, bsc#1104448) Added patch: bb15d481-Fix-flexible-array-buffer-overflow.patch- Avoid buffer overflow on image lz cheks (CVE-2018-10893, bsc#1101295) Added patches: 0001-lz-Avoid-buffer-reading-overflow-checking-for-image-.patch 0002-lz-More-checks-on-image-sizes.patch- Correct RPM group for shared library.- Split the sle condition again for exact features to allow their override- Enable smartcards on sle15 as the supportlib is available * Condition it using name everywhere instead of suse versions and join together with lz4 - Format with spec-cleaner - Convert dependencies to pkgconfig style - Install documentation and license file - Add configure arguments to most of the options to not rely on autotools automatic behavior * Also enable gstreamer and lz4 options - Drop the not needed python dependencies, they are needed only when building from git snapshot- Release 0.14.0 * fix client mouse with virgl * fix frozen display after seamless migration * set human-readable name on spice threads * add sanity-checks for ORC library as it can abort spice-server when selinux is in use * Close TCP connection early when client did not send the correct SPICE magic bytes: this allows VNC clients to gracefully fail when connecting to a SPICE port * Add VP9 encoding support when GStreamer is being used and misc streaming/encoding improvements * Improvements to replay utility * Limit (deprecated/unusud) QXLMessage size to 100,000 characters for improved safety * Improve image quality in low bitrate situation when using the GStreamer backend * Added GStreamer support to the video streaming code * Fix old migration bug causing migration to never end in some cases * Added lz4 compression to the spicevmc channel * Ongoing code cleanups * add spice_qxl_gl_scanout() spice_qxl_gl_draw_async() for local virgl support * spice_server_set_keepalive_timeout() has been removed in favour of unconditionally sending keepalive probes every 10 minutes * Added public spice_server_set_keepalive_timeout() to make it possible to tweak keepalive on all SPICE connection. This can prevent unwanted idle disconnections if proxies are used between the client and the host. * Fix important memory usage when the webdav channel is used * Do not disconnect when the client requests an unsupported compression type * Fix potential race condition when using multiple QXL devices * Fix display glitch when using XSpice * Improve help string for 'replay -s' * Fix small leak in MJPEG code - Removed patches: * CVE-2016-9577-buffer-overflow-in-main_channel_alloc_msg_rcv_buf.patch * CVE-2016-9578-remote-dos-via-crafted-message.patch- Added patches to fix two security vulnerabilities. * CVE-2016-9577-buffer-overflow-in-main_channel_alloc_msg_rcv_buf.patch [CVE-2016-9577, bsc#1023078] * CVE-2016-9578-remote-dos-via-crafted-message.patch [CVE-2016-9578, bsc#1023079]- Synchronize with SLES (fate#322402): + bnc#894069: disable smartcard support for SLES + merge changelog- restrict suppression of obsoletes-not-provided warning to spice-client bsc#1013916- Obsolete spice-client (bsc#1013916)- remove ExclusiveArch (boo#1009438)- Update to version 0.12.8: + Fixes for bsc#982385 / CVE-2016-0749 and bsc#982386 / CVE-2016-2150.- Update to version 0.12.7 (fate#320079) + spice-server will now send TCP keepalive probes on the TCP connections it uses. This can prevent unwanted idle disconnections if proxies are used between the client and the host. + Fix important memory usage when the webdav channel is used + Do not disconnect when the client requests an unsupported compression type + Fix a few race conditions + Fix display glitch when using XSpice + Improve help string for 'replay -s' + Fix crashes in corner cases (buggy spice-html5 + win10, vnc + SPICE port configured, USB webcam redirection over a slow link) + Fix various compilation warning when building on 32 bit machines + Some fixes for big-endian machines, more work is likely to be needed + Do not build static libraries by default, this can be reenabled with --enable-static + Fix small leak in MJPEG code- Update to version 0.12.6 + Removed spicec client code, it has been superseded by remote-viewer and other spice-gtk based clients + Unix socket support + LZ4 support + Let clients specify their preferred image compression format + Allow to record and replay a spice-server session + Fixes for CVE-2015-3247 CVE-2015-5260 and CVE-2015-5261 bsc#944787, bsc#948976 + spice-protocol submodule has been removed, spice-protocol must now be installed when building spice-server + Remove write polling in chardevs to reduce wakeups - Remove upstream merged patches: + spice-Don-t-use-48kHz-for-playback-recording-rates.patch + password-length-check.patch + cve-2015-3247.patch- bsc#944460: fix CVE-2015-3247. cve-2015-3247.patch- Don't allow setting password longer than what the spice protocol allows. password-length-check.patch. boo#931044- Replace xorg-x11-devel buildrequire by selected pkgconfig(xlibs..)- Update to version 0.12.5: + Added Opus support. Celt support will be obsoleted in a future release. + Addition of webdav channel. + Force use of TLS 1.0 or newer for TLS connections. + Reference manual. + Some optimizations improving CPU use. + Various bug fixes for race conditions, memory corruption, which could be triggered on client disconnections, migration, and cause spice-server to misbehave. + Portability fixes. + Code cleanups. + bsc#848279: fix CVE-2013-4282. - Add pkconfig(opus) BuildRequires: Needed to build new opus support. - Add spice-Don-t-use-48kHz-for-playback-recording-rates.patch: Fix advertised sound playback/recording rates in public headers (rh#1129961). - Drop spice-glibc217.patch: No longer needed. - Run spec-clean on spec file, remove conditionals for obsolete versions of openSUSE, enable parallel build and drop obsolete clean section./sbin/ldconfig/sbin/ldconfigspice-clientlamb14 16233153560.14.2-lp152.2.6.10.14.2-lp152.2.6.10.14.2-lp152.2.6.1libspice-server.so.1libspice-server.so.1.13.0libspice-server1ChangeLogNEWSREADMElibspice-server1COPYING/usr/lib//usr/share/doc/packages//usr/share/doc/packages/libspice-server1//usr/share/licenses//usr/share/licenses/libspice-server1/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:16488/openSUSE_Leap_15.2_Update/0bbbf904e7190908364c7950e098f310-spice.openSUSE_Leap_15.2_Updatedrpmxz5i586-suse-linuxELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=6d31634f778ab47de9d7e2cbd6bd05c686fac54c, strippeddirectoryUTF-8 Unicode text, with very long linesASCII textLPPPPPPPPPPPPPPPPPPPPPPPPPPPP P P P P P P P P P PPPPPRRR"R RRRRRRRR RRRRRR RRRR RRRR R!R R#RRRRRBɔ%eƎButf-8a7001c1d105baa5028e6f4b6c18dfe43e15b96e83457ca7da1b905177f13a212?7zXZ !t/V]"k%'*\T%TD`@2ɠz_99'݋v@n9,<>.~vpl%J'v||W8؀16^`.+>EX:&P4ER;}߶# 3ݔhO^庑oY#p 1(׺kɬaDA|vlW z鲵eXu0S%}`DFw[n!ũBM6OѾDm"ݞt-X7L|ƟΡ'8p{:0nGx3+J$Z͖銇G,nPOȁ~ #zBEd,htAXX=͏}.;~֊pt8r9DM5wyoEyI0 )e+60k\Nzg 3qL\;t0aU<<3іK,RxiF/1,[ڑG"yb6P,tkDn"gJ{u׻b@8gd 2Մ䋃M )6Ȧ? o _놦y|m4ò[V5]\b+:z#EAHYw 5Cj#sm]' Qգ:(m_vbo{ tzA"oR͢0C39bpnl>Jt0spu7lmOܡQ#˗-ҟ7Zb{p(sP}9XHr%rNlIO@c9Xz*dsۭ4#| ZI-S,3Ї]cU^絡zDti]UdC$ #6:cC:*Ic3*CKJe*iTZ6\0Ĵص|xnGQ$zn5|8_5D*٥=fFӓWeo6fR{7$2C'6;һ4Z`yF%_o!m)^*UK<`U%ɥoRm=%j[/z)ミΖitNb+<2!(y>YIg:#GLWuAp2Ԍ#͜z~.^~+4&GeƱݮI $9$ x6eL!Ul mxa1f)y\ .=e[r"UFud٨RH׳Qz{PJa~T'$ݑ?U@/:Tr clL&UQ=NJK7.W1, 3P H7fL r9R߭>BI!])Z/icZ&r^b|%8XR^ؖJr 9eVI'hgFV wyp3&x{\+/-pDd[qUn퉉F+Z{|Ô6@KZRKA&aGS6Y [s o:Jl yORhgzʅ,I)P;#w?ݱ確yr}jFV^xn>21i(/o AlOɌJz.SqNfnJoQ ay'_FfFjoK&. حNєɾ9R08 fym{nyd@mȀ>q54(^m<ܷѓ}i L7ELQZMnV^g;W&PIJ H(l崧SÔ6åV/\unwLJ΂ Fէ .6ls9χ:Xe$a2c9Z#d.+Kwrtw_wғ)OTo2ilWaW8i)T%vu~y0*}طIh£9$ivr/썜aKǧСeQdGqՇ&cѷj2surQ?A) @%'P1h7{2l^124_za[{0$ķrf{t)cɼmMv%>Xqu!}Lz;J/1dnI]4h@H]Luju75$!j:MUmHclp=^|EoPQ-Q-bqZ2k~+<y0NKӦ,kZa&,,)6ˁn r0Y K|Π&m'^jFnȈ dW7?)zlyZYd \"Ũe{Dn%wryJ;`8 TЮJ'䋄aNPP/ģ4r `DP-5 ڂ1q m1O;&q f@Bov5*b^9J)b;c  mg#&x\K)@Qqgv5gc2"rgŢfaGKz0᳧7x3 e%Dpo= ܆-bYBQ;HgTB|WEݼzS@M9:RQXXR X[H$D[/ꦐnxT|++Ra'؀n4^lskf[\#}!̈́>rВ8mTl'/2wn@m(0~q{N͔ \|Co%Ò,AsIɆz;-oIfR!qObb\oNO.RvYpR-jĂϘKc v gGhX&%cs!IPnx)uœ[8!t!<͗7 JٝT}VT5} mƉ7G(T͟r];mqT*VrPr= ҦL͙A,b"N]:`| %,0f>&^Y/7-e)<@P̀z<M f{=[%$bx]_[(DlU&6+H1Y]FtcN<G7=GT '/ DL9]-GgX2&xē[aH 2R ?e_D< (D'Y!zy? T"Po?DToҼ=2$_0MEXADpۮ+ȓgc9٠[7XZ.fzu ý9>{8v "cnngt3ӟ Skߎ _wGXw}^ßA]kf%kfrY=Drօ8ː&V}//kq~p1xv]|3d %!>`!E(y`n,@,Cer'ܡ9Dϑkb Eu\Tכ]̌$PC^}XIiw&yJDmT'*ŏsQ|^0AsPj( + H&J 7RL.+hSґ~yΒǷA!xx>< 785b.-h($6~cA`K+|hq -sa\l㔡U5)B(Tl-~f9ccAze,zߖIep`1VZQk4hă7^ )<+:IleFJۮ}g~noU[gS~ `<%㟁|O04rHib3^o=ELC2MFpPOK 1g-eEc?L[id0Pen8Rtʁ/IQ9KޅsJ2Q=&,Ub6ZvNI/d Yl ek6X/IudT\)fan %Gfʭ@K]x)> ufVn3hT߰z8+P۪d4>2<[= /j?սÈjCm\,1Ct̍zHCfXLh|ˋhࣸ1r'f^JjGhNSSY΂DXC֭,ҖvqRgߤ+ur)?;|΀78Cʗl)4nEd@27><~+Me""v9wS׷}#z(LNBNSA$(Ux 30/fA;$]<|!!rfRV7j7&vl1fRCxUuMVAlj F D;T+#jv_2>NkDl0􃇵56JR=?iF+ΛgQEuZVa'|f);鼈.NȾH&&S#&CJPaX{]VUqxl9ƜZx&10۪k,,wHW;~4f1ZLOd; w*b2i~w32>HLBK Jp V6e67Xb=&-xl?qhȬC L;ʮ]Mw {SP j%s _u2pJ*NXţB-7 `nn"VUtwkeXOj_uiȺӸ8y r99Ӈ6IMX\Mivݬ/X ^*5H\83 3d%|ͽqfje[] ڎKRyCӤ<",{dCuYŮ6Z{CMp47MΪo߹p^au{B#/7 x B0.o,Yh$ g$#ٍ:Uq\ԖH6ӘͲ$OM?8ԩ2An#^I*F+Iޱ"ѓem74㸪K.,z(b70&'Jف];ߎC:,Q/~}3Y- D0X/,Qp_S 2o#ه?vd!Bˢc˜g @nS. H(}tzنEv~c:|!^>|KJ;\ Fv*X+:2n1u$f ṃyTfo .f Lc:bS9s^zUMlVi=?~w ߼eQ+jW5ŸbśxR+>P\!RB˥;R;OΫkIzNr*@8u $J R+YjXxĸMI䵺 Q[lMҶ-,22u3=ް-\srXI(;n+ˏCyrm!7xMY؜ؗiX0S_,q\!B+ >'Ik{Ι<أjWs]mFǿ޼b|'ࡁ&*:[!D63|ݯ1D:!oŲ X+/aP8I7iV3ba+C:/6vɑa00~IZ?+K~)mQ xޗ7zµ^grew zOCd6\=I8~#P&b6LI6gܫޙ8AKs̬eY@dnut6wק_uTle)Cϐ pDgnN؆)& #3=? iiE[9GP|^vpPSI(;߉We>3#S툓nUlV+oM !TZLM7FGS wX;{bP*n']ۜ+[[9 e4Go!ƪҢGg)j`֙oqYN ׇؘ0X PJ!xϚgCՓga4v"<6~Ҿ`D0Wf_/b\-A_ $V5Y}߳gUrǧ9L\\]lZLK$cMB]Hby7@8,y]~ LVܙVBpq!rD1! BP%XdX]&a]cWmy95Qf8Brv4!5quu~.a^{C~s7)*\-iOVGTc93GluA@3 2' 92=7vBca-, -CcQ{GkbG\u8PX1~Vi5GcHy3'Fy5ħV9_l@v-pvNǓ\:m߬rO܆5jپE plTfJQxQl)4l9ޓ&$ F2)mV} aP,3v|}CբNSAW"%.nZ_z֗dO)%J<[m+}hb&n[.:~S=IlΔ*2ጓ$@^7:ZQY>|sWՔ^9(vSPD-jV^t[ Wuta}Jdi濚|j5 .ܻEs 0@އQ}O+cn~=_Т*g Hа}tt@](37ؤx1@OD@ɨ,}X`I{ }6:4dT, PC>k lr]a2^hۀcY2 اMtU;J8N̎f ߚgdoc_DH,/zm1h R j_ QH[}*Z$vrJ;TyyA.ɬi2yDZvܒyqbJT&bݢ.q/rAegT^(ar5i]~ TC5Ɩ :,GIJ`Sm )#6  bo5`+blQ~U/bd# cQ(:n ?c/c|*}/\ PY9_)I<-MK[< T]NUȈĨv 7aP +.rFﭙJiP03_'2 2r}ȯ?8Uw/cf=:~~ Kqt(c܋*c۳׀(R($ȉyvB ]qrY 0 M gљ_ pR]yubtkJxɢ3dLA`=%EQ3oK;BC7l{_?]C1!A0a+(v2OPZFu ^z#~t!C2V HkϚ*̩!)(Ҩk6ROEge.W 6XbơXCx9?7f^SRcKlrCj>s}{ 0 \\| C`ecޖ(L7w7@EUsN{ EyjDC(Jװΰ~~V<6xHSr@{Lo .f]@p&SXрPAՒ0Mm&Ph qo-[ B8UcYs@Kmioln3+]'vf.B̜KqXf% 4#寉[Z BOZO0!$7Mg>p(@؜= iz0őI50:*|`Aw!ΆA07+1 wH^ O{$Q@u~&49ʮK}bU=]*KWD˒SE ii3 Ȁ`r@Ư4%]`W+=}}& Xp~Plb"1-DER4rF?Kq̅FDO ؗQ[Y!#  Ś A H{ڬ~ @:\y{ο92Z3̲ sc\~+RP_ ,-)w2d>o`-!ߠ|4GwUݲ/7aGGB:TH/caS٫NHl wɗQ-@8]ݸ"hUSt^0iI-h M86P]Bj4')k2Gh~r-S#9jyS[?|^K z1 w1_V(oɒ.apL$~&I+-&qVub2/O ^+aE10Q\'>,ͱ.:[G_5~YLPK?^ɤ?t4j|F!_PsǾ)j7d>.%@G g kQE aO)E plW2xu2[̖A^'kN8i`n=wmLr @!P7y9{я թibh? Eѿ忨0~a4,ª %q}&'&x-%'C'45^D< w &q# !q-dS75 16X=Uw) w;8+h|՗(dkgCRED?ߑ< F.dpR)92۶jl> ĒJ+~V:7!LgEYꟼPsXYa!WuH8)P*.M_n^+R-U'd7dg~rԞ#fU>C$~SA} Avߡ qEÁ+'\'1!t%O|RQ^,qO|PfNnpICv1RpQT|AإCvP6n0t`)LhmӆgaDʵ =Aٯ59G#кd_yCOKO *#8SKƽh;rFWpLJ2Sl%K!fll|M}= NŀeڭIkKJYM<`n%iBOik(KаRG!UxҬG?;c7h<Bk VbԠO"suK$^zkbGಆcՅ,rǰQ"˹Wڼ Ox(M30KB_ *o^ RvsD :\ D>" %4ǽOľЂl#QPq‹ M3"8Yt)86o3Y] z9rz%?_x#6r{}Á>R+]iEr_O0k:LTU7O}d7i:z YULo0 d[Ewb!Ub!AwPlgr$qN[Y/)6^}^ Ӏ Rq,$rKwguoD0ѝodf/R *d| Sĩ{iP|o WKwZH\#7"ē' GYk{;q-߻lWrnMHu*%W CSPIhSKW<[%B&% b!Oc> ^:Cr()q>;,AW^ٰK2( j˚} aT jf2R>tw* ,B\#_NeHLLx.hy?K_,UʍKf)E&JIj1Gn\}}c'j~ʯCDN)MUw:s1S׽"@k2K~]DlG¬>F\959s~_ 70ۮb)YwW( ̅w);nլ>9U.%[XfI벑Z2Hkc/A XSrGw 2ob )U? n8I3l>q.xZV[tZ4Tθ"YTnOHŞҏ; +H%U/o&&@sމJϗiI/(o'(?ME<.KҾ\j&}xsXI2xЮVF'v-$8n%d̛^<F؍3~\ѵc-%fnYȥfSE珧-75m& 8?3)agTSE` {_8 =X܏ þ'0TA<]3#Hvq  <ƃ{ %DyPK"X4yť9r,ifY+@yfRn^G}}q o+k1\7_VypsrJ0Nh `~RA0>󍶍 k& v(΄pQ"/߀^a7 p#>elmo;nd؊c~Κ{Yk/猏1ie &ЎWS(&b3%9 (%R, m49[k"FJsY2=Dv깯pk`g}jƎ J^?5^֢(e4֨EL U)W&>@3se%]x ʹ9BeϪ\b풀S ʘd_y;v66_k&D )M Q0,ɓ3LsѥP&]\#oay@tK.z_[y+r"҈FLCR~U:#{O7Sc058ݭX4Ẅ|rlW NB$G]qV|;"j &|8Uv*qb7("Llo;Z4z|N_9r䤅 nXq5%l*;W/$c2]wv |:i#)<feԎן:r}{?|P}#}3OJgM0r zoXLrv't'xkòWF*d``QonVJ/AD/58k9+?y'\aܺ$0D# M ekj`wd@* ?gvUC0o bl4/t=El((:*m[9{G# 7q+Dot]\@@<{jt;DnmSUh?v/X0`5?ӡburaYu%"8 NϴoבSF ]O.BGFc tCr_4Lg>~1J\kO^+@$X8oQC|0؏qMZu[cVs!Ӵy*QTgǍm/ [-v EuNcoAxWF";g׈DFL"峂ͳv+E<4b7Oa@p:2])`KɆs5D%;!eQ9Yg3MhoC-݈p@AZsqbA*i訞w\Wsu)g'때C˗+zW`0"VtYQK>O b1HsXZA2=-q(meys>|hb ?9 ʐ-KN m҉㌻nIbЯM j۸WI@LWsk0)i8,Dn2IgP!#&IKLKER! O oyEa0xt鈇EۣNq$̍Q1ym"^ hJ$Fvtԉa?6U}bzl{dv,Iҙ\5 Gܕ@bЁK*+Q1*XUD_ q_Z+y:]k'hr`$⎅㬔s0U#/KV!ӥj/TI"v$]OaBWGH e 5| S.:NMW,$Z.X_ G w$AٓfƄrrē0t,2Lד\1M%'9c㈛`y1QF+Z^~W ioao7Eƙq'η._V蹭 i'(8X/W}vnkzvcLfǩ4OoX/[^ld&Xx?9={sym{19뙐R0&,jуeӀ=/cK*Y2 T/I`T u0]i}2(Vh- o *li$rY!.^u;mxfD,5< {!mZU1>N5:/߲(S'u~\R> $o?d}wŪCiLs+V*^5d||zEn1Zd-cGm&a8<0/\^7E`PF47 W]0CD(Z:C90ͳ=Uc*!^qV8ۑhOwEDfl} nٜD:n}ޥ| i0"DhzibmTY_Vl-\ +tk uY Tc[WMB?v?`תAЍϏczY]YB+G?賒#%ғ6TxJ$}3󃡧N@k).2Bxag]V]hboui>KЯL/<6L$IЛi{gB)]5(<,?R{;OhxZjrܳ^߇*E5M(cGvءyR 5Lj(2XPYќh \nLAZ%ؙ# IIb%vϯY0OJ%aL$+r Ŏ'fu=[cY2MsDXbaO bC_2OR̐  {uciRݹk ῂx83,nwF snS#i葈RsVI/pJء)2|VL :H[cg9-%H{dzsaާ;.ԋFojĴ]rȽ TkSs;g)0,Fɭ2eQܒS:4iV\W$+/`#QpVu]>H5yO ޑb3\ŲupKRNӐJs/_V}6jB[Ŋ+qIbtRMU{(~7r(+ooxq*i]$p i~)u] H{A͋MyJé)I|FU.PNKO/6"G4"ݼ *JsI.j`H2ӻn0R*-[3i_ݖ!__{EzDdBtr_XB`Km%s=!)#kS~FKw}G@)vwB)V iSuKo)gS"G/`g1DO=:v: E7;~HxZ(i.A/T&I۪`J[+N4>;"e ,qcFok×ꔬM" ?a81[R}N`7 V"kHlsK7Zb$ u{w S|I#|~O$t>',TBi=xCkVQSjZi2N5mN9 P&;ԶWa}o~jGKF);[`QR] .[+so\jZurbAJ^k  d ٿ8Byqvӡ0 < #'y[{I"X]VZ\1'h\_*neqNld(i:!lYr^S)dθIu)QCs8 Q 3wL؅)%f+f)wɩ//sFEPKb} JB|i@ x~VGB+ Af71Pc}>=Ȟe㿁~U =ڣ[ jQFh/I֣ o\_ɢeE N2K#&< M"6uà2ށ`3 6 2uP8tTiL;L]c>jeh!EİGHd~/6*D^MW>y}GI;+GaG Í}Tk ,9h +o_mo@VNlc7pvp[vfbi G+j*lm`0x!#Jh +#@+6 G>ةm|n*#F;8lnz Vu*3V(! 0@42}=2qBCjMԘY ~^0+}I31Di &AZ!W;S ݣw>b;>nU!]cS Wrs^%[iw\.9Zv;`D7 ق,0쉚^,01C_]")Wfjv'ٟ 7P(`|@bK<:>68,p'` \0e?k!A &QOpy aI ۴EK}ٔ}\(*9!}G^Y\POԿf)jMz5gqۓ@yRXUόצ*&l뛜tj1=<[P6""S*| #.8B*bO3x_û.)hm_Z0#)Dϣ"Ҭt5 q1Xz$(?"UI @pxzDe1"CKfk &۸\PTF< J߭  YZ