wireshark-2.4.15-56.1<>,] BK?Kd   3 3Vqw~rPr  4r r r Arr BrHrOrW(WHr]^L^a(b8b _9c_:j_>BFGrHrIrXYDZt[x\r]Hr^'bcldef l u rv$6wT Z!*%FO45 tG3 g @0 $W) ;*%w"D  .~n! ] !w@.UD)2hL$9:>|;QD3Qk./yChR( $2 (m{$aERK78d ({\M#I 38wfs!IX+ Y   9<]/M] hAcz <UqF|,t )٤f u6!` $=?KRobert Frohl Robert Frohl Robert Frohl astieger@suse.comastieger@suse.comastieger@suse.comlszhu@suse.comlszhu@suse.comlszhu@suse.comlszhu@suse.comlszhu@suse.comlszhu@suse.comlszhu@suse.comlszhu@suse.comlszhu@suse.comlszhu@suse.comlszhu@suse.commmarek@suse.czlszhu@suse.comlszhu@suse.comcyliu@suse.comcyliu@suse.comcyliu@suse.comcyliu@suse.comcyliu@suse.comcyliu@suse.comcyliu@suse.comcyliu@suse.comcyliu@suse.comcyliu@suse.comcyliu@suse.comandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deopensuse@sukimashita.comandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.demvyskocil@suse.comdimstar@opensuse.organdreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.decfarrell@suse.comandreas.stieger@gmx.deandreas.stieger@gmx.deandreas.stieger@gmx.deopensuse@sukimashita.comandreas.stieger@gmx.dereddwarf@opensuse.orgzaitor@opensuse.orgasn@cryptomilk.orgcyliu@suse.comtabraham@novell.comcyliu@novell.comcyliu@novell.comcyliu@novell.comdimstar@opensuse.orgcyliu@novell.comcyliu@novell.comprusnak@opensuse.orgprusnak@opensuse.orgprusnak@opensuse.orgdimstar@opensuse.orgprusnak@opensuse.orgprusnak@opensuse.orgtserong@novell.comprusnak@suse.czsharms@ubuntu.comprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czprusnak@suse.czcmorve69@yahoo.esprusnak@suse.czcseader@novell.comcseader@novell.com- Wireshark 2.4.15 (bsc#1136021): * Wireshark dissection engine crash. - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.15.html- Wireshark 2.4.14 (bsc#1131945): * CVE-2019-10895: NetScaler file parser crash. * CVE-2019-10899: SRVLOC dissector crash. * CVE-2019-10894: GSS-API dissector crash. * CVE-2019-10896: DOF dissector crash. * CVE-2019-10901: LDSS dissector crash. * CVE-2019-10903: DCERPC SPOOLSS dissector crash. - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.14.html- Wireshark 2.4.13: * CVE-2019-9214: RPCAP dissector could crash (bsc#1127367) * CVE-2019-9209: ASN.1 BER and related dissectors could crash (bsc#1127369) * CVE-2019-9208: TCAP dissector could crash (bsc#1127370) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.13.html- Wireshark 2.4.12: * CVE-2019-5717: The P_MUL dissector could crash (bsc#1121232) * CVE-2019-5718: The RTSE dissector and other dissectors could crash (bsc#1121233) * CVE-2019-5719: The ISAKMP dissector could crash (bsc#1121234) * CVE-2019-5721: The ENIP dissector could crash (bsc#1121235) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.12.html- Wireshark 2.4.11 (bsc#1117740): * CVE-2018-19625: The Wireshark dissection engine could crash (wnpa-sec-2018-51) * CVE-2018-19626: The DCOM dissector could crash (wnpa-sec-2018-52) * CVE-2018-19623: The LBMPDM dissector could crash (wnpa-sec-2018-53) * CVE-2018-19622: The MMSE dissector could go into an infinite loop (wnpa-sec-2018-54) * CVE-2018-19627: The IxVeriWave file parser could crash (wnpa-sec-2018-55) * CVE-2018-19624: The PVFS dissector could crash (wnpa-sec-2018-56) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html- Wireshark 2.4.10 (bsc#1111647): * CVE-2018-18227: MS-WSP dissector crash (wnpa-sec-2018-47) * CVE-2018-12086: OpcUA dissector crash (wnpa-sec-2018-50) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.10.html- Update to 2.4.9 (bsc#1106514): * CVE-2018-16058: Bluetooth AVDTP dissector crash (wnpa-sec-2018-44) * CVE-2018-16056: Bluetooth Attribute Protocol dissector crash (wnpa-sec-2018-45) * CVE-2018-16057: Radiotap dissector crash (wnpa-sec-2018-46) - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.4.9.html - packaging change: temporarily disable upstream tarball signature verification, use hashes from signed release announcement e-mail- Update to wireshark 2.4.8, fix such issues: * bsc#1101804 - VUL-1: CVE-2018-14340: wireshark: dissectors that support zlib decompression could crash * bsc#1101802 - VUL-1: CVE-2018-14370: wireshark: IEEE 802.11 protocol dissector could crash * bsc#1101788 - VUL-1: CVE-2018-14344: wireshark: ISMP dissector could crash * bsc#1101777 - VUL-1: CVE-2018-14342: wireshark: BGP protocol dissector could go into a large loop * bsc#1101810 - VUL-1: CVE-2018-14339: wireshark: MMSE dissector could go into an infinite loop * bsc#1101800 - VUL-1: CVE-2018-14369: wireshark: HTTP2 dissector could crash * bsc#1101794 - VUL-1: CVE-2018-14368: wireshark: Bazaar protocol dissector could go into an infinite loop * bsc#1101791 - VUL-1: CVE-2018-14367: wireshark: CoAP protocol dissector could crash * bsc#1101786 - VUL-1: CVE-2018-14343: wireshark: ASN.1 BER dissector could crash * bsc#1101776 - VUL-1: CVE-2018-14341: wireshark: DICOM dissector could go into a large or infinite loop * bsc#1094301 - VUL-0: wireshark: multiple vulnerabilities fixed in 2.6.1, 2.4.7, 2.2.15 * CVE-2018-11359: wnpa-sec-2018-33: Multiple dissectors could crash * CVE-2018-11361: wnpa-sec-2018-32: IEEE 802.11 dissector crash * CVE-2018-11358: wnpa-sec-2018-31: Q.931 dissector crash * CVE-2018-11360: wnpa-sec-2018-30: GSM A DTAP dissector crash * CVE-2018-11356: wnpa-sec-2018-29: DNS dissector crash * CVE-2018-11357: wnpa-sec-2018-28: Multiple dissectors could consume excessive memory * CVE-2018-11355: wnpa-sec-2018-27: RTCP dissector crash * CVE-2018-11354: wnpa-sec-2018-26: IEEE 1905.1a dissector crash * CVE-2018-11362: wnpa-sec-2018-25: LDSS dissector crash- Update to wireshark 2.2.14, fix such issues: * bsc#1088200 VUL-0: wireshark: multiple vulnerabilities fixed in 2.2.14, 2.4.6 * CVE-2018-9256: LWAPP dissector crash * CVE-2018-9260: IEEE 802.15.4 dissector crash * CVE-2018-9261: NBAP dissector crash * CVE-2018-9262: VLAN dissector crash * CVE-2018-9263: Kerberos dissector crash * CVE-2018-9264: ADB dissector crash * CVE-2018-9265: tn3270 dissector has a memory leak * CVE-2018-9266: ISUP dissector memory leak * CVE-2018-9267: LAPD dissector memory leak * CVE-2018-9268: SMB2 dissector memory leak * CVE-2018-9269: GIOP dissector memory leak * CVE-2018-9270: OIDS dissector memory leak * CVE-2018-9271: multipart dissector memory leak * CVE-2018-9272: h223 dissector memory leak * CVE-2018-9273: pcp dissector memory leak * CVE-2018-9274: failure message memory leak * CVE-2018-9259: MP4 dissector crash- Updata to wireshark 2.2.13, fix such issues: * bsc#1082692 - VUL-0: wireshark: mutiple vulnerabilities fixed in 2.2.13, 2.4.5 * CVE-2018-7335: The IEEE 802.11 dissector could crash (wnpa-sec-2018-05) * CVE-2018-7321, CVE-2018-7322, CVE-2018-7323, CVE-2018-7324, * CVE-2018-7325, CVE-2018-7326, CVE-2018-7327, CVE-2018-7328, * CVE-2018-7329, CVE-2018-7330, CVE-2018-7331, CVE-2018-7332, * CVE-2018-7333, CVE-2018-7421: Multiple dissectors could go into large infinite loops (wnpa-sec-2018-06) * CVE-2018-7334: The UMTS MAC dissector could crash (wnpa-sec-2018-07) * CVE-2018-7337: The DOCSIS dissector could crash (wnpa-sec-2018-08) * CVE-2018-7336: The FCP dissector could crash (wnpa-sec-2018-09) * CVE-2018-7320: The SIGCOMP dissector could crash (wnpa-sec-2018-10) * CVE-2018-7420: The pcapng file parser could crash (wnpa-sec-2018-11) * CVE-2018-7417: The IPMI dissector could crash (wnpa-sec-2018-12) * CVE-2018-7418: The SIGCOMP dissector could crash (wnpa-sec-2018-13) * CVE-2018-7419: The NBAP disssector could crash (wnpa-sec-2018-14) * bsc#1077080 - (CVE-2017-17997) VUL-0: CVE-2017-17997: wireshark: Misuse of NULL pointer in MRDISC dissector- Update to wireshark 2.2.12, fix such issues: * bsc#1075748 - VUL-1: wireshark: activation of the kernel BPF JIT compiler makes system more vulnerable to Spectre variant 1 (CVE-2017-5753) * bsc#1075739 - (CVE-2018-5336) VUL-0: CVE-2018-5336: wireshark: Multiple dissectors could crash * bsc#1075738 - (CVE-2018-5335) VUL-0: CVE-2018-5335: wireshark: WCP dissector crash * bsc#1075737 - (CVE-2018-5334) VUL-0: CVE-2018-5334: wireshark: IxVeriWave file parser crash * bsc#1074171 - (CVE-2017-17935) VUL-0: CVE-2017-17935: wireshark: File_read_line function bad '\n' handling could lead to denial of service- Update to wireshark 2.2.11, fix such issues: bsc#1070727 - wireshark: Version 2.2.11 fixes three crashes * CVE-2017-17084: IWARP_MPA dissector crash (wnpa-sec-2017-47) * CVE-2017-17083: NetBIOS dissector crash (wnpa-sec-2017-48) * CVE-2017-17085: CIP Safety dissector crash (wnpa-sec-2017-49)- Update to wireshark 2.2.10, fix such issues: bsc#1062645 - VUL-0: wireshark: release 2.2.10 and 2.4.2 * wnpa-sec-2017-42: BT ATT dissector crash (CVE-2017-15192) * wnpa-sec-2017-43: MBIM dissector crash (CVE-2017-15193) * wnpa-sec-2017-44: DMP dissector crash (CVE-2017-15191)- Update to wireshark 2.2.9, fix such issues: * bsc#1056248: VUL-1: CVE-2017-13767: wireshark: MSDP dissector infinite loop * bsc#1056249: VUL-1: CVE-2017-13766: wireshark: Profinet I/O buffer overrun * bsc#1056251: VUL-1: CVE-2017-13765: wireshark: IrCOMM dissector buffer overrun * bsc#1045341: VUL-1: CVE-2017-9766: wireshark: PROFINET IO data with a high recursion depth allows to cause a denial of service in thedissect_IODWriteReq * bsc#1044417: VUL-0: CVE-2017-9617: wireshark: in version 2.2.7 deeply nested DAAP data may cause stack exhaustion- Update to wireshark 2.2.8, such issues fixed: * bsc#1049621: CVE-2017-11411: wireshark: The openSAFETY dissector could crash or exhaust system memory because of missing length validation * bsc#1049255: CVE-2017-11410: The WBXML dissector could go into an infinite loop. * bsc#1049255: CVE-2017-11408: The AMQP dissector could crash. * bsc#1049255: CVE-2017-11407: The MQ dissector could crash. * bsc#1049255: CVE-2017-11406: The DOCSIS dissector could go into an infinite loop.- Update to wireshark 2.2.7, such issues fixed: * bsc#1042304: CVE-2017-9352: Bazaar dissector infinite loop (wnpa-sec-2017-22) * bsc#1042303: CVE-2017-9348: DOF dissector read overflow (wnpa-sec-2017-23) * bsc#1042302: CVE-2017-9351: DHCP dissector read overflow (wnpa-sec-2017-24) * bsc#1042301: CVE-2017-9346: SoulSeek dissector infinite loop (wnpa-sec-2017-25) * bsc#1042300: CVE-2017-9345: DNS dissector infinite loop (wnpa-sec-2017-26) * bsc#1042305: CVE-2017-9349: DICOM dissector infinite loop (wnpa-sec-2017-27) * bsc#1042299: CVE-2017-9350: openSAFETY dissector memory exh.. (wnpa-sec-2017-28) * bsc#1042298: CVE-2017-9344: BT L2CAP dissector divide by zero (wnpa-sec-2017-29) * bsc#1042309: CVE-2017-9343: MSNIP dissector crash (wnpa-sec-2017-30) * bsc#1042308: CVE-2017-9347: ROS dissector crash (wnpa-sec-2017-31) * bsc#1042307: CVE-2017-9354: RGMP dissector crash (wnpa-sec-2017-32) * bsc#1042306: CVE-2017-9353: wireshark: IPv6 dissector crash (wnpa-sec-2017-33)- Update to wireshark 2.2.6, such issues fixed: * bsc#1033936: CVE-2017-7700: NetScaler file parser could go into an infinite loop (wnpa-sec-2017-14) * bsc#1033937: CVE-2017-7701: BGP dissector could go into an infinite loop (wnpa-sec-2017-16) * bsc#1033938: CVE-2017-7702: WBXML dissector could go into an infinite loop (wnpa-sec-2017-13) * bsc#1033939: CVE-2017-7703: IMAP dissector could crash (wnpa-sec-2017-12) * bsc#1033940: CVE-2017-7704: DOF dissector could go into an infinite loop (wnpa-sec-2017-17) * bsc#1033941: CVE-2017-7705: RPC over RDMA dissector could go into an infinite loop (wnpa-sec-2017-15) * bsc#1033942: CVE-2017-7745: SIGCOMP dissector could go into an infinite loop (wnpa-sec-2017-20) * bsc#1033943: CVE-2017-7746: SLSK dissector could go into an infinite loop (wnpa-sec-2017-19) * bsc#1033944: CVE-2017-7747: PacketBB dissector could crash (wnpa-sec-2017-18) * bsc#1033945: CVE-2017-7748: WSP dissector could go into an infinite loop (wnpa-sec-2017-21)- Update to wireshark 2.2.5 (fate#321770) * CVE-2016-7179: Catapult DCT2000 dissector crash (bsc#998963) * CVE-2016-9376: OpenFlow dissector crash (bsc#1010735) * CVE-2016-9375: DTN dissector could go into an infinite loop (bsc#1010740) * CVE-2016-9374: The AllJoyn dissector could crash (bsc#1010752) * CVE-2016-9373: The DCERPC dissector could crash (bsc#1010754) * CVE-2016-7175: QNX6 QNET dissector crash (bsc#998761) * CVE-2016-7176: H.225 dissector crash (bsc#998762) * CVE-2016-7177: Catapult DCT2000 dissector crash (bsc#998763) * CVE-2016-7180: IPMI Trace dissector crash (bsc#998800) * CVE-2016-7178: UMTS FP dissector crash (bsc#998964) * CVE-2017-6014: Crafted or malformed STANAG 4607 capture file will cause an infinite loop (bsc#1025913) * CVE-2017-5596, CVE-2017-5597: Two dissector infinite/large loops fixed in 2.2.4, 2.0.10 (bsc#1021739) * Multiple dissector crashes and infinite loops fixed.- Force rebuild of flex scanners to fix a buffer overflow (bsc#990856, CVE-2016-6354).- Wireshark 1.12.13 (bnc#991012, bnc#991013, bnc#991015, bnc#991016, bnc#991017, bnc#991018, bnc#991019,bnc991020) In this release, the following CVEs have been fixed: * CVE-2016-6504: wireshark: NDS dissector crash * CVE-2016-6505: wireshark: PacketBB dissector could divide by zero * CVE-2016-6506: wireshark: WSP infinite loop * CVE-2016-6507: wireshark: MMSE infinite loop * CVE-2016-6508: wireshark: RLC long loop * CVE-2016-6509: wireshark: LDSS dissector crash * CVE-2016-6510: wireshark: RLC dissector crash * CVE-2016-6511: wireshark: OpenFlow long loop https://www.wireshark.org/docs/relnotes/wireshark-1.12.13.html- Wireshark 1.12.12 (bnc#983671) In this release, the following CVEs have been fixed: * CVE-2016-5350: SPOOLS infinite loop * CVE-2016-5351: IEEE 802.11 dissector crash * CVE-2016-5352: IEEE 802.11 dissector crash, different from wpna-sec-2016-30 * CVE-2016-5353: UMTS FP crash * CVE-2016-5354: USB dissector crash * CVE-2016-5355: Toshiba file parser cras * CVE-2016-5356: CoSine file parser crash * CVE-2016-5357: NetScreen file parser crash * CVE-2016-5358: Ethernet dissector crash * CVE-2016-5359: WBXML infinite loop https://www.wireshark.org/docs/relnotes/wireshark-1.12.12.html- Wireshark 1.12.11 (bnc#976944) This release fixes a number issues in protocol dissectors that could have allowed a remote attacker to crash Wireshark or cause excessive CPU usage through specially crafted packages inserted into the network or a capture file. * The PKTC dissector could crash (wnpa-sec-2016-22) * The PKTC dissector could crash (wnpa-sec-2016-23) * The IAX2 dissector could go into an infinite loop (wnpa-sec-2016-24) * Wireshark and TShark could exhaust the stack (wnpa-sec-2016-25) * The GSM CBCH dissector could crash (wnpa-sec-2016-26) * The NCP dissector could crash (wnpa-sec-2016-28) * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.11.html- Wireshark 1.12.10 [bnc#968565] The following vulnerabilities have been fixed: * CVE-2016-2523: DNP dissector infinite loop (wnpa-sec-2016-03) * CVE-2016-2530: RSL dissector crash (wnpa-sec-2016-10) * CVE-2016-2531: RSL dissector crash (wnpa-sec-2016-10) * CVE-2016-2532: LLRP dissector crash (wnpa-sec-2016-11) * GSM A-bis OML dissector crash (wnpa-sec-2016-14) * ASN.1 BER dissector crash (wnpa-sec-2016-15) * ASN.1 BER dissector crash (wnpa-sec-2016-18) * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.10.html- Wireshark 1.12.9 [bnc#960382] The following vulnerabilities have been fixed: * NBAP dissector crashes. wnpa-sec-2015-31 CVE-2015-8711 * UMTS FP dissector crashes. wnpa-sec-2015-32 CVE-2015-8712 CVE-2015-8713 * DCOM dissector crash. wnpa-sec-2015-33 CVE-2015-8714 * AllJoyn dissector infinite loop. wnpa-sec-2015-34 CVE-2015-8715 * T.38 dissector crash. wnpa-sec-2015-35 CVE-2015-8716 * SDP dissector crash. wnpa-sec-2015-36 CVE-2015-8717 * NLM dissector crash. wnpa-sec-2015-37 CVE-2015-8718 * DNS dissector crash. wnpa-sec-2015-38 CVE-2015-8719 * BER dissector crash. wnpa-sec-2015-39 CVE-2015-8720 * Zlib decompression crash. wnpa-sec-2015-40 CVE-2015-8721 * SCTP dissector crash. wnpa-sec-2015-41 CVE-2015-8722 * 802.11 decryption crash. wnpa-sec-2015-42 CVE-2015-8723 CVE-2015-8724 * DIAMETER dissector crash. wnpa-sec-2015-43 CVE-2015-8725 * VeriWave file parser crashes. wnpa-sec-2015-44 CVE-2015-8726 * RSVP dissector crash. wnpa-sec-2015-45 CVE-2015-8727 * ANSI A & GSM A dissector crashes. wnpa-sec-2015-46 CVE-2015-8728 * Ascend file parser crash. wnpa-sec-2015-47 CVE-2015-8729 * NBAP dissector crash. npa-sec-2015-48 CVE-2015-8730 * RSL dissector crash. wnpa-sec-2015-49 CVE-2015-8731 * ZigBee ZCL dissector crash. wnpa-sec-2015-50 CVE-2015-8732 * Sniffer file parser crash wnpa-sec-2015-51 CVE-2015-8733 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.9.html- Wireshark 1.12.8 [bnc#950437] The following vulnerabilities have been fixed: * pcapng file parser could crash while copying an interface filter. wnpa-sec-2015-30 CVE-2015-7830 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.8.html- Wireshark 1.12.7 [bnc#941500] The following vulnerabilities have been fixed: * Wireshark could crash when adding an item to the protocol tree. wnpa-sec-2015-21 * Wireshark could attempt to free invalid memory. wnpa-sec-2015-22 * Wireshark could crash when searching for a protocol dissector. wnpa-sec-2015-23 * The ZigBee dissector could crash. wnpa-sec-2015-24 * The GSM RLC/MAC dissector could go into an infinite loop. wnpa-sec-2015-25 * The WaveAgent dissector could crash. wnpa-sec-2015-26 * The OpenFlow dissector could go into an infinite loop. wnpa-sec-2015-27 * Wireshark could crash due to invalid ptvcursor length checking. wnpa-sec-2015-28 * The WCCP dissector could crash. wnpa-sec-2015-29 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.7.html - Delete some backported patches which is already included in 1.12.7 - wireshark-CVE-2015-3813.patch - wireshark-1.12-gsm-dtap.patch - wireshark-1.10.12-fix-wmem-headers.patch- Backport fix from 1.12.6 [bnc#935158] wireshark-1.12-gsm-dtap.patch- Backport some security fixes from 1.12.5 [bnc#930689] * CVE-2015-3813 wireshark-CVE-2015-3813.patch- Wireshark 1.10.14 [bnc#930691] - The following vulnerabilities have been fixed: * The WCP dissector could crash while decompressing data. CVE-2015-3811 wnpa-sec-2015-14 * The X11 dissector could leak memory. CVE-2015-3812 wnpa-sec-2015-15 * The IEEE 802.11 dissector could go into an infinite loop. CVE-2015-3814 wnpa-sec-2015-17 - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.14.html- Backport upstream patch to support pkgconfig, fix libvirt upstream build failure Add-pkg-config-file.patch- Wireshark 1.10.13 - The following security issues were fixed: * The WCP dissector could crash. wnpa-sec-2015-07 CVE-2015-2188 [bnc#920696] * The pcapng file parser could crash. wnpa-sec-2015-08 CVE-2015-2189 [bnc#920697] * The TNEF dissector could go into an infinite loop. wnpa-sec-2015-10 CVE-2015-2191 [bnc#920699] - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.13.html- Wireshark 1.10.12 - The following vulnerabilities allowed Wireshark to be crashed by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. + The WCCP dissector could crash wnpa-sec-2015-01 CVE-2015-0559 CVE-2015-0560 [boo#912365] + The LPP dissector could crash. wnpa-sec-2015-02 CVE-2015-0561 [boo#912368] + The DEC DNA Routing Protocol dissector could crash. wnpa-sec-2015-03 CVE-2015-0562 [boo#912369] + The SMTP dissector could crash. wnpa-sec-2015-04 CVE-2015-0563 [boo#912370] + Wireshark could crash while decypting TLS/SSL sessions. wnpa-sec-2015-05 CVE-2015-0564 [boo#912372] - wireshark-1.10.12-fix-wmem-headers.patch - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.12.html- Wireshark 1.10.9 [bnc#889854] fixes several crashes triggered by malformed protocol packages - vulnerabilities fixed: * The Catapult DCT2000 and IrDA dissectors could underrun a buffer wnpa-sec-2014-08 CVE-2014-5161 CVE-2014-5162 * The GSM Management dissector could crash wnpa-sec-2014-09 CVE-2014-5163 * The RLC dissector could crash wnpa-sec-2014-10 CVE-2014-5164 * The ASN.1 BER dissector could crash wnpa-sec-2014-11 CVE-2014-5165 - Further bug fixes as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.9.html- update to 1.10.8 [bnc#882602] + vulnerabilities fixed: * The frame metadissector could crash. wnpa-sec-2014-07 CVE-2014-4020 + bug fixed: * VoIP flow graph crash upon opening. * Tshark with "-F pcap" still generates a pcapng file. * IPv6 Next Header 0x3d recognized as SHIM6. * Failed to export pdml on large pcap. * TCAP: set a fence on info column after calling sub dissector * Dissector bug in JSON protocol. * GSM RLC MAC: do not skip too many lines of the CSN_DESCR when the field is missing * Wireshark PEEKREMOTE incorrectly decoding QoS data packets from Cisco Sniffer APs. * IEEE 802.11: fix dissection of HT Capabilities + Further updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.8.html- update to 1.10.7 [bnc#874760] + vulnerabilities fixed: * The RTP dissector could crash wnpa-sec-2014-06 CVE-2014-2907 + Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.7.html- update to 1.10.6 [bnc#867485] + vulnerabilities fixed: * The NFS dissector could crash wnpa-sec-2014-01 CVE-2014-2281 * The M3UA dissector could crash wnpa-sec-2014-02 CVE-2014-2282 * The RLC dissector could crash wnpa-sec-2014-03 CVE-2014-2283 * The MPEG file parser could overflow a buffer wnpa-sec-2014-04 CVE-2014-2299 + Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.6.html- update to 1.10.5 + bugs fixed: * Wireshark stops showing new packets but dumpcap keeps writing them to the temp file. * Wireshark 1.10.4 shuts down when promiscuous mode is unchecked. * Homeplug dissector bug: STATUS_ACCESS_VIOLATION: dissector accessed an invalid memory address.- update to 1.10.4 [bnc#855980] + vulnerabilities fixed: * The SIP dissector could go into an infinite loop. wnpa-sec-2013-66 CVE-2013-7112 * The BSSGP dissector could crash. wnpa-sec-2013-67 CVE-2013-7113 * The NTLMSSP v2 dissector could crash. Discovered by Garming Sam. wnpa-sec-2013-68 CVE-2013-7114 + Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.4.html- update to 1.10.3 [bnc#848738] + vulnerabilities fixed: * The IEEE 802.15.4 dissector could crash wnpa-sec-2013-61 CVE-2013-6336 * The NBAP dissector could crash wnpa-sec-2013-62 CVE-2013-6337 * The SIP dissector could crash wnpa-sec-2013-63 CVE-2013-6338 * The OpenWire dissector could go into a large loop wnpa-sec-2013-64 CVE-2013-6339 * The TCP dissector could crash wnpa-sec-2013-65 CVE-2013-6340 + Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.3.html - drop wireshark-1.10.x-fix-packet-gluster-duplicate_enums.patch merged upstream- fix duplicate enum definition to fix build in 13.1 and Factory, adding wireshark-1.10.x-fix-packet-gluster-duplicate_enums.patch from upstream commits [bnc#843304]- add missing ws_symbol_export.h and frame_data_sequence.h includes to -devel package to allow building of external plugins again- update to 1.10.2 [bnc#839607] + vulnerabilities fixed: * The Bluetooth HCI ACL dissector could crash. wnpa-sec-2013-54 CVE-2013-5717 * The NBAP dissector could crash. wnpa-sec-2013-55 CVE-2013-5718 * The ASSA R3 dissector could go into an infinite loop. wnpa-sec-2013-56 CVE-2013-5719 * The RTPS dissector could overflow a buffer. wnpa-sec-2013-57 CVE-2013-5720 * The MQ dissector could crash. wnpa-sec-2013-58 CVE-2013-5721 * The LDAP dissector could crash. wnpa-sec-2013-59 CVE-2013-5722 * The Netmon file parser could crash. wnpa-sec-2013-60 + Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.2.html - drop wireshark-1.10.x-reordercap-r49436.patch, merged upstream- gtk3 version in openSUSE Factory (13.1) deprecates elements used in wireshark 1.10.1. Revert back to gtk2 UI.- update to 1.10.1 [bnc#831718] + vulnerabilities fixed: The DCP ETSI dissector could crash CVE-2013-4083 wnpa-sec-2013-41 + The P1 dissector could crash CVE-2013-4920 wnpa-sec-2013-42 + The Radiotap dissector could crash CVE-2013-4921 wnpa-sec-2013-43 + The DCOM ISystemActivator dissector could crash CVE-2013-4922 CVE-2013-4923 CVE-2013-4924 CVE-2013-4925 CVE-2013-4926 wnpa-sec-2013-44 + The Bluetooth SDP dissector could go into a large loop CVE-2013-4927 wnpa-sec-2013-45 + The Bluetooth OBEX dissector could go into an infinite loop CVE-2013-4928 wnpa-sec-2013-46 + The DIS dissector could go into a large loop CVE-2013-4929 wnpa-sec-2013-47 + The DVB-CI dissector could crash CVE-2013-4930 wnpa-sec-2013-48 + The GSM RR dissector (and possibly others) could go into a large loop CVE-2013-4931 wnpa-sec-2013-49 + The GSM A Common dissector could crash CVE-2013-4932 wnpa-sec-2013-50 + The Netmon file parser could crash CVE-2013-4933 CVE-2013-4934 wnpa-sec-2013-51 + The ASN.1 PER dissector could crash CVE-2013-4935 wnpa-sec-2013-52 + The PROFINET Real-Time dissector could crash CVE-2013-4936 wnpa-sec-2013-53 This is still configurable via the GTK settings (add + Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.1.html - drop wireshark-1.10.0-pod-characters.patch, fixed upstream - add wireshark-1.10.x-reordercap-r49436.patch from trunk to fix factory build- fix factory builds, prevent build failures with pod2man: wireshark-1.10.0-authors-pod2man.patch wireshark-1.10.0-pod-characters.patch- 1.10.0 - new or significantly updated features since version 1.8: * You can now display a list of resolved host names in "hosts" format within Wireshark. * The wireless toolbar has been updated. * Wireshark on Linux does a better job of detecting interface addition and removal. * It is now possible to compare two fields in a display filter (for example: udp.srcport != udp.dstport). The two fields must be of the same type for this to work. * USB type and product name support has been improved. * All Bluetooth profiles and protocols are now supported. * Wireshark now calculates HTTP response times and presents the result in a new field in the HTTP response. Links from the request’s frame to the response’s frame and vice-versa are also added. * The main welcome screen and status bar now display file sizes using strict SI prefixes instead of old-style binary prefixes. * Capinfos now prints human-readable statistics with SI suffixes by default. * It is now possible to open a referenced packet (such as the matched request or response packet) in a new window. * Tshark can now display only the hex/ascii packet data without requiring that the packet summary and/or packet details are also displayed. If you want the old behavior, use -Px instead of just -x. * Wireshark can be compiled using GTK+ 3. * The Wireshark application icon, capture toolbar icons, and other icons have been updated. * Tshark’s filtering and multi-pass analysis have been reworked for consistency and in order to support dependent frame calculations during reassembly. See the man page descriptions for -2, -R, and -Y. * Tshark’s -G fields2 and -G fields3 options have been eliminated. The -G fields option now includes the 2 extra fields that - G fields3 previously provided, and the blurb information has been relegated to the last column since in many cases it is blank anyway. * Wireshark dropped the left-handed settings from the preferences. This is still configurable via the GTK settings (add "gtk-scrolled-window-placement = top-right" in the config file, which might be called /.gtkrc-2.0 or /.config/gtk-3.0/settings.ini). * Wireshark now ships with two global configuration files: Bluetooth, which contains coloring rules for Bluetooth and Classic, which contains the old-style coloring rules. * The LOAD() metric in the IO-graph now shows the load in IO units instead of thousands of IO units. - packaging changes * drop wireshark-suidflags.patch - fPIE and -pie now set on SUID binaries by upstream no longer require or call call autoreconf * wireshark-1.2.4-enable_lua.patch refreshed with upstream changes to wireshark-1.10.0-enable_lua.patch * drop include.filelist, instead find files for -devel package during build- update to 1.8.7 [bnc#820566] + vulnerabilities fixed: * The RELOAD dissector could go into an infinite loop. wnpa-sec-2013-23 CVE-2013-2486 CVE-2013-2487 * The GTPv2 dissector could crash. wnpa-sec-2013-24 CVE-2013-3555 * The ASN.1 BER dissector could crash. wnpa-sec-2013-25 CVE-2013-3556 CVE-2013-3557 * The PPP CCP dissector could crash. wnpa-sec-2013-26 CVE-2013-3558 * The DCP ETSI dissector could crash. wnpa-sec-2013-27 CVE-2013-3559 * The MPEG DSM-CC dissector could crash. wnpa-sec-2013-28 CVE-2013-3560 * The Websocket dissector could crash. wnpa-sec-2013-29 CVE-2013-3561 CVE-2013-3562 * The MySQL dissector could go into an infinite loop. wnpa-sec-2013-30 CVE-2013-3561 * The ETCH dissector could go into a large loop. wnpa-sec-2013-31 CVE-2013-3561 + Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.8.7.html- add verfication of source signatures- update to 1.8.6 [bnc#807942] + vulnerabilities fixed: * The TCP dissector could crash. wnpa-sec-2013-10 CVE-2013-2475 * The HART/IP dissectory could go into an infinite loop. wnpa-sec-2013-11 CVE-2013-2476 * The CSN.1 dissector could crash. wnpa-sec-2013-12 CVE-2013-2477 * The MS-MMS dissector could crash. wnpa-sec-2013-13 CVE-2013-2478 * The MPLS Echo dissector could go into an infinite loop. wnpa-sec-2013-14 CVE-2013-2479 * The RTPS and RTPS2 dissectors could crash. wnpa-sec-2013-15 CVE-2013-2480 * The Mount dissector could crash. wnpa-sec-2013-16 CVE-2013-2481 * The AMPQ dissector could go into an infinite loop. wnpa-sec-2013-17 CVE-2013-2482 * The ACN dissector could attempt to divide by zero. wnpa-sec-2013-18 CVE-2013-2483 * The CIMD dissector could crash. wnpa-sec-2013-19 CVE-2013-2484 * The FCSP dissector could go into an infinite loop. wnpa-sec-2013-20 CVE-2013-2485 * The RELOAD dissector could go into an infinite loop. wnpa-sec-2013-21 CVE-2013-2486 CVE-2013-2487 * The DTLS dissector could crash. wnpa-sec-2013-22 CVE-2013-2488 + Further bug fixes and updated protocol support as listed in: http://www.wireshark.org/docs/relnotes/wireshark-1.8.6.html- update to 1.8.5 [bnc#801131] + vulnerabilities fixed: * Infinite and large loops in the Bluetooth HCI, CSN.1, DCP-ETSI DOCSIS CM-STAUS, IEEE 802.3 Slow Protocols, MPLS, R3, RTPS, SDP, and SIP dissectors wnpa-sec-2013-01 CVE-2013-1572 CVE-2013-1573 CVE-2013-1574 CVE-2013-1575 CVE-2013-1576 CVE-2013-1577 CVE-2013-1578 CVE-2013-1579 CVE-2013-1580 CVE-2013-1581 * The CLNP dissector could crash wnpa-sec-2013-02 CVE-2013-1582 * The DTN dissector could crash wnpa-sec-2013-03 CVE-2013-1583 CVE-2013-1584 * The MS-MMC dissector (and possibly others) could crash wnpa-sec-2013-04 CVE-2013-1585 * The DTLS dissector could crash wnpa-sec-2013-05 CVE-2013-1586 * The ROHC dissector could crash wnpa-sec-2013-06 CVE-2013-1587 * The DCP-ETSI dissector could corrupt memory wnpa-sec-2013-07 CVE-2013-1588 * The Wireshark dissection engine could crash wnpa-sec-2013-08 CVE-2013-1589 * The NTLMSSP dissector could overflow a buffer wnpa-sec-2013-09 CVE-2013-1590 + Further bug fixes and updated protocol support as listed in: http://www.wireshark.org/docs/relnotes/wireshark-1.8.5.html- build with gtk3 on 11.4+ - disable zlib makes a sense for 1.2.5 only - turn some features on (python, gcrypt, gnutls, plugins dir)- Add wireshark-suidflags.patch: Allow to pass SUID_{C,LD}FLAGS to introduce -fPIE -pie as needed for suid binaries - Add libtool BuildRequires and call to autoreconf, as above patch touches the build system. - Export SUID_{C,LD}FLAGS with appropriate flags.- update to 1.8.4 [bnc#792005] + vulnerabilities fixed: * Wireshark could leak potentially sensitive host name resolution information when working with multiple pcap-ng files. wnpa-sec-2012-30 CVE-2012-5592 * The USB dissector could go into an infinite loop. wnpa-sec-2012-31 CVE-2012-5593 * The sFlow dissector could go into an infinite loop. wnpa-sec-2012-32 CVE-2012-5594 * The SCTP dissector could go into an infinite loop. wnpa-sec-2012-33 CVE-2012-5595 * The EIGRP dissector could go into an infinite loop. wnpa-sec-2012-34 CVE-2012-5596 * The ISAKMP dissector could crash. wnpa-sec-2012-35 CVE-2012-5597 * The iSCSI dissector could go into an infinite loop. wnpa-sec-2012-36 CVE-2012-5598 * The WTP dissector could go into an infinite loop. wnpa-sec-2012-37 CVE-2012-5599 * The RTCP dissector could go into an infinite loop. wnpa-sec-2012-38 CVE-2012-5600 * The 3GPP2 A11 dissector could go into an infinite loop. wnpa-sec-2012-39 CVE-2012-5601 * The ICMPv6 dissector could go into an infinite loop. wnpa-sec-2012-40 CVE-2012-5602 + Further bug fixes and updated protocol support as listed in: http://www.wireshark.org/docs/relnotes/wireshark-1.8.4.html- for openSUSE 12.2 and later, build against lua51-devel instead of lua-devel for Lua support (bnc#780669)- update to upstream 1.8.3 (bnc#783275) + vulnerabilities fixed: * The HSRP dissector could go into an infinite loop. (wnpa-sec-2012-26 CVE-2012-5237) * The PPP dissector could abort. (wnpa-sec-2012-27 CVE-2012-5238) * Martin Wilck discovered an infinite loop in the DRDA dissector. (wnpa-sec-2012-28 CVE-2012-5239 CVE-2012-3548 bnc#778000) * Laurent Butti discovered a buffer overflow in the LDP dissector. (wnpa-sec-2012-29 CVE-2012-5240) + Further bug fixes and updated protocol support as listed in: http://www.wireshark.org/docs/relnotes/wireshark-1.8.3.html- license update: GPL-2.0+ and GPL-3.0+ According to the COPYING file the PIDL utility (standalone tool) is GPL-3.0+ licensed- update to upstream 1.8.2 (bnc#776083) + vulnerabilities fixed: * The DCP ETSI dissector could trigger a zero division. (wnpa-sec-2012-13 CVE-2012-4285) * The MongoDB dissector could go into a large loop. (wnpa-sec-2012-14 CVE-2012-4287) * The XTP dissector could go into an infinite loop. (wnpa-sec-2012-15 CVE-2012-4288) * The ERF dissector could overflow a buffer. (wnpa-sec-2012-16 CVE-2012-4294 CVE-2012-4295) * The AFP dissector could go into a large loop. (wnpa-sec-2012-17 CVE-2012-4289) * The RTPS2 dissector could overflow a buffer. (wnpa-sec-2012-18 CVE-2012-4296) * The GSM RLC MAC dissector could overflow a buffer. (wnpa-sec-2012-19 CVE-2012-4297) * The CIP dissector could exhaust system memory. (wnpa-sec-2012-20 CVE-2012-4291) * The STUN dissector could crash. (wnpa-sec-2012-21 CVE-2012-4292) * The EtherCAT Mailbox dissector could abort. (wnpa-sec-2012-22 CVE-2012-4293) * The CTDB dissector could go into a large loop. (wnpa-sec-2012-23 CVE-2012-4290) * The pcap-ng file parser could trigger a zero division. (wnpa-sec-2012-24 CVE-2012-4286) * The Ixia IxVeriWave file parser could overflow a buffer. (wnpa-sec-2012-25 CVE-2012-4298) + Further bug fixes and updated protocol support as listed in: http://www.wireshark.org/docs/relnotes/wireshark-1.8.2.html - adjust wireshark-1.2.0-disable-warning-dialog.patch for moved lines- update to upstream 1.8.1 (bnc#772738) + vulnerabilities fixed: * The PPP dissector could crash (wnpa-sec-2012-11 CVE-2012-4048) * The NFS dissector could use excessive amounts of CPU (wnpa-sec-2012-12 CVE-2012-4049) + bug fixes: * Wireshark crashes on bootp filter * Wireshark > 1.4 does not correctly read Association ID for PS Poll packets * Radius-EAP broken since 1.8.0 release * SNMP incorrectly marks SNMPv3 "discovery" packet as malformed * Widgets are not properly expanded in GTK3 * Find Next Mark duplicated on Edit Menu * DVB-CI/CI+: fix offset error in operator_info apdu * Unable to correctly identify IEC 61850 MMS packets * WinPcap doesn't install if vcredist_x64 requires reboot - remove wireshark-1.8.0-gmodule.patch, fixed upstream- update to upstream 1.8.0: * supports capturing from multiple interfaces at once. * add, edit, and save packet and capture file annotations. * pcap-ng file format is default * Decryption key management for IEEE 802.11, IPsec, and ISAKMP is easier. * GeoIP IPv6 databases are now supported. * large number of protocol dissectors added and updated * support for many capture file formats added and updated For a full list refer to the release notes: https://www.wireshark.org/docs/relnotes/wireshark-1.8.0.html - drop wireshark-corosync-packet-dissector.patch, no longer compiles even after updating - drop wireshark-1.6.5-netlogon-aes.patch, applied upstream - drop idl2wrs command from -devel package - update header files in include.filelist - refresh wireshark-1.2.0-disable-warning-dialog.patch - refresh wireshark-1.2.0-geoip.patch - add wireshark-1.8.0-gmodule.patch to fix linking in factory- Add all known headers to devel package in order to make it actually useable and allow building dissectors externally- adjust wireshark-corosync-packet-dissector.patch for source changes - update to upstream 1.6.8 + security fixes * wnpa-sec-2012-08 / CVE-2012-2392 Infinite and large loops in the ANSI MAP, ASF, BACapp, Bluetooth HCI, IEEE 802.11, IEEE 802.3, LTP, and R3 dissectors have been fixed. Discovered by Laurent Butti. (Bugs 6805, 7118, 7119, 7120, 7121, 7122, 7124, 7125) * wnpa-sec-2012-09 / CVE-2012-2393 The DIAMETER dissector could try to allocate memory improperly and crash. (Bug 7138) * wnpa-sec-2012-10 / CVE-2012-2394 Wireshark could crash on SPARC processors due to misaligned memory. Discovered by Klaus Heckelmann. (Bug 7221) + bug fixes * User-Password - PAP decoding passwords longer than 16 bytes. (Bug 6779) * The MSISDN is not seen correctly in GTP packet. (Bug 7042) * Wireshark doesn't calculate the right IPv4 destination using source routing options when bad options precede them. (Bug 7043) * BOOTP dissector issue with DHCP option 82 - suboption 9. (Bug 7047) * MPLS dissector in 1.6.7 and 1.7.1 misdecodes some MPLS CW packets. (Bug 7089) * ANSI MAP infinite loop. (Bug 7119) * HCIEVT infinite loop. (Bug 7122) * Wireshark doesn't decode NFSv4.1 operations. (Bug 7127) * LTP infinite loop. (Bug 7124) * Wrong values in DNS CERT RR. (Bug 7130) * Megaco parser problem with LF in header. (Bug 7198) * OPC UA bytestring node id decoding is wrong. (Bug 7226) + Updated Protocol Support ANSI MAP, ASF, BACapp, Bluetooth HCI, DHCP, DIAMETER, DNS, GTP, IEEE 802.11, IEEE 802.3, IPv4, LTP, Megaco, MPLS, NFS, OPC UA, RADIUS + New and Updated Capture File Support 5View, CSIDS, pcap, pcap-ng- Update to version 1.6.7: + Bugs fixed: - Malformed Packets H263-1996 (RFC2190). (Bug 6996) - Wireshark could crash while trying to open an rpcap: URL. (Bug 6922) + Updated H.263 Protocol Support- Update to version 1.6.6: + wnpa-sec-2012-04: The ANSI A dissector could dereference a NULL pointer and crash. (Bug 6823) + wnpa-sec-2012-05: The IEEE 802.11 dissector could go into an infinite loop. (Bug 6809) + wnpa-sec-2012-06: The pcap and pcap-ng file parsers could crash trying to read ERF data. (Bug 6804) + wnpa-sec-2012-07: The MP2T dissector could try to allocate too much memory and crash. (Bug 6804) + The Windows installers now include GnuTLS 1.12.18, which fixes several vulnerabilities. + Bugs fixed: - ISO SSAP: ActivityStart: Invalid decoding the activity parameter as a BER Integer. (Bug 2873) - Forward slashes in URI need to be converted to backslashes if WIN32. (Bug 5237) - Character echo pauses in Capture Filter field in Capture Options. (Bug 5356) - Some PGM options are not parsed correctly. (Bug 5687) - dumpcap crashes when capturing from pipe to a pcap-ng file (e.g., when passing data from CACE Pilot to Wireshark). (Bug 5939) - Unable to rearrange columns in preferences on Windows. (Bug 6077) (Note: this bug still affects the 64-bit package) - No error for UDP/IPv6 packet with zero checksum. (Bug 6232) - Wireshark installer doesn't add access_bpf in 10.5.8. (Bug 6526) - Corrupted Diameter dictionary file that crashes Wireshark. (Bug 6664) - packetBB dissector bug: More than 1000000 items in the tree possible infinite loop. (Bug 6687) - ZEP dissector: Timestamp not always displayed correctly. Fractional seconds never displayed. (Bug 6703) - GOOSE Messages don't use the length field to perform the dissection. (Bug 6734) - Ethernet traces in K12 text format sometimes give bogus "malformed frame" errors and other problems. (Bug 6735) - max_ul_ext isn't printed/decoded to the packet details log in GTP protocol packet. (Bug 6761) - non-IPP packets to or from port 631 are dissected as IPP. (Bug 6765) - lua proto registration fails for uppercase proto / g_ascii_strdown problem. (Bug 6766) - no menu item Fle->Export->SSL Session Keys in GTK. (Bug 6813) - IAX2 dissector reads past end of packet for unknown IEs. (Bug 6815) - TShark 1.6.5 immediately crashes on SSL decryption (every time). (Bug 6817) - USB: unknown GET DESCRIPTOR response triggers assert failure. (Bug 6826) - IEEE1588 PTPv2 over IPv6. (Bug 6836) - Patch to fix DTLS decryption. (Bug 6847) - Expression... dialog crash. (Bug 6891) - display filter "gtp.msisdn" not working. (Bug 6947) - Multiprotocol Label Switching Echo - Return Code: Reserved(5) (Bug 6951) - ISAKMP : VendorID CheckPoint : Malformed Packet. (Bug 6972) - Adding a Custom HTTP Header Field with a trailing colon causes wireshark to immediately crash (and crash upon restart). (Bug 6982) - Radiotap dissector lists a bogus "DBM TX Attenuation" bit. (Bug 7000) - MySQL dissector assertion. (Ask 8649) - Radiotap header format data rate alignment issues. (Ask 8649)- Add known bit for Netlogon ServerAutheticate2 flags.- update to 1.6.5 - Security fixes: - wnpa-sec-2012-01 Laurent Butti discovered that Wireshark failed to properly check record sizes for many packet capture file formats. (Bug 6663, bug 6666, bug 6667, bug 6668, bug 6669, bug 6670) - wnpa-sec-2012-02 Wireshark could dereference a NULL pointer and crash. (Bug 6634) - wnpa-sec-2012-03 The RLC dissector could overflow a buffer. (Bug 6391) - Bug fixes: - "Closing File!" Dialog Hangs. (Bug 3046) - Sub-fields of data field should appear in exported PDML as children of the data field instead of as siblings to it. (Bug 3809) - Incorrect time differences displayed with time reference set. (Bug 5580) - Wrong packet type association of SNMP trap after TFTP transfer. (Bug 5727) - SSL/TLS decryption needs wireshark to be rebooted. (Bug 6032) - Export HTTP Objects -> save all crashes Wireshark. (Bug 6250) - Wireshark Netflow dissector complains there is no template found though the template is exported. (Bug 6325) - DCERPC EPM tower UUID must be interpreted always as little endian. (Bug 6368) - Crash if no recent files. (Bug 6549) - IPv6 frame containing routing header with 0 segments left calculates wrong UDP checksum. (Bug 6560) - IPv4 UDP/TCP Checksum incorrect if routing header present. (Bug 6561) - Incorrect Parsing of SCPS Capabilities Option introduced in response to bug 6194. (Bug 6562) - Various crashes after loading NetMon2.x capture file. (Bug 6578) - Fixed compilation of dumpcap on some systems (when MUST_DO_SELECT is defined). (Bug 6614) - SIGSEGV in SVN 40046. (Bug 6634) - Wireshark dissects TCP option 25 as an "April 1" option. (Bug 6643) - ZigBee ZCL Dissector reports invalid status. (Bug 6649) - ICMPv6 DNSSL option malformed on padding. (Bug 6660) - Wrong tvb_get_bits function call in packet-csn1.c. (Bug 6708) - [UDP] - Length Field of Pseudo Header while computing CheckSum is not correct. (Bug 6711) - pcapio.c: bug in libpcap_write_interface_description_block. (Bug 6719) - Memory leaks in various dissectors. - Bytes highlighted in wrong Byte pane when field selected in Details pane. - Updated Protocol Support - BGP, BMC CSN1, DCERPC EPM, DCP(ETSI) DMP DTLS GSM Management, H245 HPTEAM, ICMPv6, IEEE 802.15.4 IPSEC IPv4, IPv6, ISAKMP KERBEROS LDSS NFS RLC, RPC-NETLOGON RRC RTMPT SIGCOMP SSL SYSLOG TCP, UDP, XML ZigBee ZCL - New and Updated Capture File Support - Accellent 5Views, AIX iptrace, HP-UX nettl, I4B, Microsoft Network Monitor, Novell LANalyzer, PacketLogger, Pcap-ng, Sniffer, Tektronix K12, WildPackets {Airo,Ether}Peek. - update to 1.6.4 - Bug fixes: - Patch to fix memory leaks/errors in Lua plugin. (Bug 5575) - Wireshark crashes if a field of type BASE_CUSTOM is applied as a column. (Bug 6503) - Filter Expression dialog can only be opened once. (Bug 6537) - Wireshark crashes if compiled without GLib thread support. (Bug 6540) - 80211 QoS Control: Add Raw TID. (Bug 6548) - SNMP length check error. (Bug 6564) - UCP dissector bug of operation 61. (Bug 6570) - fix bnc#741187, #741188, #741190- update to 1.6.3 - Security fixes: - wnpa-sec-2011-17 The CSN.1 dissector could crash. (Bug 6351) - Bug fixes: - Wireshark window takes very long time to show up if invalid network file path is at recent file list (Bug 3810) - ISUP party number dissection. (Bug 5221) - Ethernet packets with both VLAN tag and LLC header no longer displayed correctly. (Bug 5645) - SLL encapsuled 802.1Q VLAN is not dissected. (Bug 5680) - Dissection fails for frames with Gigamon Header and VLAN. (Bug 6305) - RTP Stream Analysis does not work for TURN-encapsulated RTP. (Bug 6322) - packet-csn1.c doesn't process CSN_CHOICE entries properly. (Bug 6328) - GUI crash on invalid IEEE 802.11 GAS frame. (Bug 6345) - ICMPv6 router advertisement Prefix Information Flag R "Router Address" missing. (Bug 6350) - Inner tag of 802.1ad frames not parsed properly. (Bug 6366) - Added cursor type decoding to MySQL dissector. (Bug 6396) - WPA IE pairwise cipher suite dissector uses incorrect value_string list. (Bug 6420) - text_import_scanner.l missing. (Bug 6531) - Updated protocol support: - AJP13, ASN.1 PER, BACnet, CSN.1, DTN, Ethernet, ICMPv6, IEEE 802.11, IEEE 802.1q, Infiniband, IPsec, MySQL, PCEP, PN-RT, RTP, S1AP, SSL - New and Updated capture file suppport: - Endace ERF. - update to 1.6.2 - Security fixes: - wnpa-sec-2011-12 A large loop in the OpenSafety dissector could cause a crash. (Bug 6138) - wnpa-sec-2011-16 The CSN.1 dissector could crash. (Bug 6139) - Bug fixes: - configure ignores (partially) LDFLAGS. (Bug 5607) - Build fails when it tries to #include , not present in Solaris 9. (Bug 5608) - Unable to configure zero length SNMP Engine ID. (Bug 5731) - BACnet who-is request device range values are not decoded correctly in the packet details window. (Bug 5769) - Wireshark crashes if sercosiii module isn't installed. (Bug 6006) - Editcap could create invalid pcap files when converting from JPEG. (Bug 6010) - Timestamp is incorrectly decoded for ICMP Timestamp Response packets from MS Windows. (Bug 6114) - Wrong display of CSN_BIT in CSN.1. (Bug 6151) - Fix CSN_RECURSIVE_TARRAY last bit error in packet-csn1.c. (Bug 6166) - Wireshark cannot display Reachable time & Retrans timer in IPv6 RA messages. (Bug 6168) - ReadPropertyMultiple-ACK not correctly dissected. (Bug 6178) - GTPv2 dissectors should treat gtpv2_ccrsi as optional. (Bug 6183) - tshark run with -Tpdml makes a seg fault. (Bug 6245) - TShark/dumpcap skips capture duration flag occasionally. (Bug 6280) - Wireshark improperly parsing 802.11 Beacon Country Information tag. (Bug 6264) - Wrong display of CSN_BIT under CSN_UNION. (Bug 6287) - Updated protocol support: - BACapp, Bluetooth L2CAP, CSN.1, DCERPC, GSM A RR, GTPv2, ICMP, ICMPv6, IKE, MEGACO, MSISDN, NDMP, OpenSafety, RTPS2, sFlow, SNMP, TCP - New and Updated capture file suppport: - CommView, pcap-ng, JPEG. - update to 1.6.1 - Security fixes: - Bug fixes: - TCP dissector doesn't decode TCP segments of length 1. (Bug 4716) - wireshark 1.4.0rc1 and python - spurious message. (Bug 4878) - Missing LUA function. (Bug 5006) - Lua API description about creating a new Tvb from a bytearray is not correct in wireshark's user guide. (Bug 5199) - Character echo pauses in Capture Filter field in Capture Options. (Bug 5356) - White space in protocol field abbreviation causes runtime failure while registering Lua dissector. (Bug 5569) - "File not found" box uses wrong filename encoding. (Bug 5715) - capinfos: #ifdef HAVE_LIBGCRYPT block includes a line too many . (Bug 5803) - Wireshark crashes if Lua contains "Pref.range()" with missing arguments. (Bug 5895) - The "range" field in Lua's "Pref.range()" serves as default while the "default" field does nothing . (Bug 5896) - Wireshark crashes when calling TreeItem:set_len() on TreeItem without tvb. (Bug 5941) - TvbRange_string(lua_State* L) call a wrong function. (Bug 5960) - VoIP call flow graph displays BICC APM as a BICC ANM. (Bug 5966) - Cannot Live-capture VirtualBox network packets with Wireshark; pipe problem. (Bug 6002) - Interface list in Capture Options isn't cleared when selecting other host. (Bug 6008) - H323 rate multiplier wrong. (Bug 6009) - Inclusion of config.h is too late in lex-files resulting in wrong definition of _FILE_OFFSET_BITS. (Bug 6012) - tshark crashes when loading Lua script that contains GUI function. (Bug 6018) - 802.11 Disassociation Packet's "Reason Code" field is imprecisely decoded/described. (Bug 6022) - Wireshark crashes when setting custom column's field name with conditional. (Bug 6028) - Crash after applying "expert.severity" field as column. (Bug 6035) - GTS Descriptor count limited to 3 instead of 7. (Bug 6055) - The SSL dissector can not resemble correctly the frames after TCP zero window probe packet. (Bug 6059) - Packet parser takes too long for this trace. (Bug 6073) - Wireshark crashes after repeating "File -> Import -> Cancel". (Bug 6080) - Decoding of MQ ASCII and EBCDIC Traffic Flow - ASCII shows fine, EBCDIC does not. (Bug 6084) - 802.11 Association Response Packet's "Status Code" field is imprecisely decoded/described. (Bug 6093) - Abis interface not correctly handled in gsmtap dissector. (Bug 6097) - Wrong decoding of RLC/MAC EGPRS Packet Downlink Ack/Nack (3GPP TS 44.060). (Bug 6098) - CSN Ack/Nack Description wrongly handled in gsm_rlcmac_dl dissector (3GPP TS 44.060). (Bug 6101) - wireshark 1.6.0 and python support: installer fails to create the wspy_dissectors subdirectory and . (Bug 6110) - Wireshark crash during RTP stream analysis. (Bug 6120) - Tshark custom columns: Why don't I get an error message? (Bug 6131) - New and Updated capture file suppport: - Network Monitor. - update to 1.6.0 - Security fixes: - Bug fixes: - Wireshark is unresponsive when capturing from named pipes on Windows. (Bug 1759) - Crash when sorting column while capturing. (Bug 4273) - Ring buffers are no longer turned on by default when using multiple capture files. - New and updated features: - Large file (greater than 2 GB) support has been improved. - Wireshark and TShark can import text dumps, similar to text2pcap - You can now view Wireshark's dissector tables (for example the TCP port to dissector mappings) from the main window. - Wireshark can export SSL session keys via File->Export->SSL Session Keys... - You can hide columns in the packet list. - Wireshark can now export SMB objects. - dftest and randpkt now have manual pages. - TShark can now display iSCSI, ICMP and ICMPv6 service response times. - Dumpcap can now save files with a user-specified group id. - Syntax checking is done for capture filters. - You can display the compiled BPF code for capture filters in the Capture Options dialog. - You can now navigate backwards and forwards through TCP and UDP sessions using Ctrl+, and Ctrl+. . - Packet length is (finally) a default column. - TCP window size is now avaiable both scaled and unscaled. A TCP window scaling graph is available in the GUI. - 802.1q VLAN tags are now shown in the Ethernet II protocol tree instead of a separate tree - Various dissectors now display some UTF-16 strings as proper Unicode including the DCE/RPC and SMB dissectors. - The RTP player now has an option to show the time of day in the graph in addition to the seconds since beginning of capture. - The RTP player now shows why media interruptions occur. - Graphs now save as PNG images by default. - TShark can read and write host name information from and to pcapng formatted files. Wireshark can read it. TShark can dump host name information via [-z hosts] - TShark's -z option now uses the [-z ,srt] syntax instead of [-z ,rtt] for all protocols that support service response time statistics. This matches Wireshark's syntax for this option. - Wireshark and TShark can now read compressed Windows Sniffer files. - New protocol support: - ADwin, ADwin-Config, Apache Etch, Aruba PAPI, Babel Routing Protocol, Broadcast/Multicast Control, Constrained Application Protocol (COAP), Digium TDMoE, Erlang Distribution Protocol, Ether-S-I/O, FastCGI, Fibre Channel over InfiniBand (FCoIB), Gopher, Gigamon GMHDR, IDMP, Infiniband Socket Direct Protocol (SDP), JSON, LISP Control, LISP Data, LISP, MikroTik MAC-Telnet, MRP Multiple Mac Registration Protocol (MMRP) Mongo Wire Protocol, MUX27010, Network Monitor 802.11 radio header, OPC UA ExtensionObjects, openSAFETY, PPI-GEOLOCATION-GPS, ReLOAD, ReLOAD Framing, RObust Header Compression (ROHC), RSIP, SAMETIME, SCoP, SGSAP, Tektronix Teklink, USB/AT Commands, uTorrent Transport Protocol, WAI authentication, Wi-Fi P2P (Wi-Fi Direct) - New and Updated capture file suppport: - Apple PacketLogger, Catapult DCT2000, Daintree SNA, Endace ERF, HP OpenVMS TCPTrace, IPFIX (the file format, not the protocol), Lucent/Ascend debug, Microsoft Network Monitor, Network Instruments, TamoSoft CommView - update to 1.5.1 - Security fixes: - Bug fixes: - Wireshark is unresponsive when capturing from named pipes on Windows. (Bug 1759) - Ring buffers are no longer turned on by default when using multiple capture files. - New and updated features: - Wireshark and TShark can import text dumps, similar to text2pcap - You can now view Wireshark's dissector tables (for example the TCP port to dissector mappings) from the main window. - TShark can show a specific occurrence of a field when using '-T fields'. - Custom columns can show a specific occurrence of a field. - You can hide columns in the packet list. - Wireshark can now export SMB objects. - dftest and randpkt now have manual pages. - TShark can now display iSCSI service response times. - Dumpcap can now save files with a user-specified group id. - Syntax checking is done for capture filters - You can display the compiled BPF code for capture filters in the Capture Options dialog. - You can now navigate backwards and forwards through TCP and UDP sessions using Ctrl+, and Ctrl+. . - Packet length is (finally) a default column. - TCP window size is now avaiable both scaled and unscaled. A TCP window scaling graph is available in the GUI. - 802.1q VLAN tags are now shown in the Ethernet II protocol tree - Various dissectors now display some UTF-16 strings as proper Unicode including the DCE/RPC and SMB dissectors - The RTP player now has an option to show the time of day in the graph in addition to the seconds since beginning of capture. - The RTP player now shows why media interruptions occur. - Graphs now save as PNG images by default - TShark can read and write host name information from and to pcapng formatted files. Wireshark can read it. TShark can dump host name information via [-z hosts] - TShark's -z option now uses the [-z ,srt] syntax instead of [-z ,rtt] for all protocols that support service response time statistics. This matches Wireshark's syntax for this option. - New protocol support: - ADwin, ADwin-Config, Apache Etch, Aruba PAPI, Babel Routing Protocol, Constrained Application Protocol (COAP), Digium TDMoE, Erlang Distribution Protocol, Ether-S-I/O, FastCGI, Fibre Channel over InfiniBand (FCoIB), Gopher, Gigamon GMHDR, IDMP, Infiniband Socket Direct Protocol (SDP), JSON, LISP Data, MikroTik MAC-Telnet, Mongo Wire Protocol, Network Monitor 802.11 radio header, OPC UA ExtensionObjects, PPI-GEOLOCATION-GPS, ReLOAD, ReLOAD Framing, RSIP, SAMETIME, SCoP, SGSAP, Tektronix Teklink, WAI authentication, Wi-Fi P2P (Wi-Fi Direct) - New and Updated capture file suppport: - Apple PacketLogger, Catapult DCT2000, Daintree SNA, Endace ERF, HP OpenVMS TCPTrace, IPFIX (the file format, not the protocol), Lucent/Ascend debug, Microsoft Network Monitor, Network Instruments, TamoSoft CommView - update to 1.4.10 - Security fixes: - wnpa-sec-2011-18 Huzaifa Sidhpurwala of Red Hat Security Response Team discovered that the Infiniband dissector could dereference a NULL pointer. (Bug 6476) - wnpa-sec-2011-19 Huzaifa Sidhpurwala of Red Hat Security Response Team discovered a buffer overflow in the ERF file reader. (Bug 6479) - Bug fixes: - Assertion failed when doing File->Quit->Save during live capture. (Bug 1710) - Wrong PCEP XRO sub-object decoding. (Bug 3778) - Decoding [Status Records] Timestamp Sequence Field in Bundle Protocol fails if over 32 bits. (Bug 4109) - wireshark-1.4.2 crashes when testing the example python dissector because of a dissector count assertion. (Bug 5431) - Wireshark crashes when attempting to open a file via drag & drop when there's already a file open. (Bug 5987) - Add the ability to save filters from the Filter Toolbar into buttons on the Filter Toolbar. (Bug 6207) - Adding and removing custom HTTP headers requires a restart. (Bug 6241) - Can't read full 64-bit SNMP values. (Bug 6295) - BACnet property time-synchronization-interval (204) name shown incorrectly as time-synchronization-recipients. (Bug 6336) - [ASN.1 PER] Incorrect decoding of BIT STRING type. (Bug 6347) - Export->Object->HTTP-> save all: Error on saving files. (Bug 6362) - Incorrect identification of UDP-encapsulated NAT-keepalive packets. (Bug 6414) - S1AP protocol can't decode IPv6 transportLayerAddress. (Bug 6435) - RTPS2 dissector doesn't handle 0 in the octestToNextHeader field. (Bug 6449) - packet-ajp13 fix, cleanup, and enhancement. (Bug 6452) - Network Instruments Observer file format bugs. (Bug 6453) - Wireshark crashes when using "Open Recent" 2 times in a row. (Bug 6457) - Wireshark packet_gsm-sms, display bug: Filler bits in TP-User Data Header. (Bug 6469) - wireshark unable to decode NetFlow options which have system scope size != 4 bytes. (Bug 6471) - Display filter Expression Dialog Box Error. (Bug 6472) - Updated protocol support: - AJP13, ASN.1 PER, BACapp, DTN, GSM SMS, Infiniband, IPsec, NetFlow, PCEP, RTPS2 - update to 1.4.9 - Security fixes: - wnpa-sec-2011-13 A malformed IKE packet could consume excessive resources. - wnpa-sec-2011-14 A malformed capture file could result in an invalid root tvbuff and cause a crash. (Bug 6135) CVE-2011-3266 - wnpa-sec-2011-15 Wireshark could run arbitrary Lua scripts. (Bug 6136) - Bug fixes: - Unable to configure zero length SNMP Engine ID. (Bug 5731) - H.323 RAS packets missing from packet counts in "Telephony->VoIP Calls" and the "Flow Graph" for the call. (Bug 5848) - Malformed Packet in decode for BGP-AD update. (Bug 6122) - BGP : AS_PATH attribute was decode wrong. (Bug 6188) - Fixes for SCPS TCP option. (Bug 6194) - Offset calculated incorrectly for sFlow extended data. (Bug 6219) - [Enter] key behavior varies when manually typing display filters. (Bug 6228) - Contents of pcapng EnhancedPacketBlocks with comments aren't displayed. (Bug 6229) - Misdecoding 3G Neighbour Cell Information Element in SI2quater message due to a coding typo. (Bug 6237) - Mis-spelled word "unknown" in assorted files. (Bug 6244) - btl2cap extended window shows wrong bit. (Bug 6257) - NDMP dissector incorrectly represents "ndmp.bytes_left_to_read" as signed. (Bug 6262) - ERF records with extension headers not written out correctly to pcap or pcap-ng files. (Bug 6265) - RTPS2: MAX_BITMAP_SIZE is defined incorrectly. (Bug 6276) - Copying from RTP stream analysis copies 1st line many times. (Bug 6279) - File types with no snaplen written out with a zero snaplen in pcap-ng files. (Bug 6289) - MEGACO context tracking fix - context id reuse. (Bug 6311) - Updated protocol support: - BGP, Bluetooth L2CAP, GSM A RR, H.225, IKE, MEGACO, NDMP, RTPS2, SCPS, sFlow, SNMP - New and Updated capture file suppport: - CommView, pcap-ng. - update to 1.4.8 - Security fixes: - CVE-2011-2597 The Lucent/Ascend file parser was susceptible to an infinite loop. - The ANSI MAP dissector was susceptible to an infinite loop. (Bug 6044) - Bug fixes: - TCP dissector doesn't decode TCP segments of length 1. (Bug 4716) - Wireshark 1.4.0rc1 and python - spurious message. (Bug 4878) - Missing LUA function. (Bug 5006) - Lua API description about creating a new Tvb from a bytearray is not correct in wireshark's user guide. (Bug 5199) - sflow decode error for some extended formats. (Bug 5379) - White space in protocol field abbreviation causes runtime failure while registering Lua dissector. (Bug 5569) - "File not found" box uses wrong filename encoding. (Bug 5715) - capinfos: #ifdef HAVE_LIBGCRYPT block includes a line too many. (Bug 5803) - Wireshark crashes if Lua contains "Pref.range()" with missing arguments. (Bug 5895) - The "range" field in Lua's "Pref.range()" serves as default while the "default" field does nothing. (Bug 5896) - Wireshark crashes when calling TreeItem:set_len() on TreeItem without tvb. (Bug 5941) - TvbRange_string(lua_State* L) call a wrong function. (Bug 5960) - VoIP call flow graph displays BICC APM as a BICC ANM. (Bug 5966) - H323 rate multiplier wrong. (Bug 6009) - tshark crashes when loading Lua script that contains GUI function. (Bug 6018) - 802.11 Disassociation Packet's "Reason Code" field is imprecisely decoded/described. (Bug 6022) - Wireshark crashes when setting custom column's field name with conditional. (Bug 6028) - GTS Descriptor count limited to 3 instead of 7. (Bug 6055) - The SSL dissector can not resemble correctly the frames after TCP zero window probe packet. (Bug 6059) - Packet parser takes too long for this trace. (Bug 6073) - 802.11 Association Response Packet's "Status Code" field is imprecisely decoded/described. (Bug 6093) - Wireshark 1.6.0 and Python support: installer fails to create the wspy_dissectors subdirectory and . (Bug 6110) - Wireshark crash during RTP stream analysis. (Bug 6120) - Tshark custom columns: Why don't I get an error message? (Bug 6131) - Updated protocol support: - ANSI MAP, GIOP, H.323, IEEE 802.11, MSRP, RPCAP, sFlow, TCP - New and Updated capture file suppport: - Lucent/Ascend - update to 1.4.7 - Security fixes: - Large/infinite loop in the DICOM dissector. (Bug 5876) - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted Diameter dictionary file could crash Wireshark. - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted snoop file could crash Wireshark. (Bug 5912) - David Maciejak of Fortinet's FortiGuard Labs discovered that malformed compressed capture data could crash Wireshark. (Bug 5908) - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted Visual Networks file could crash Wireshark. (Bug 5934) - Bug fixes: - AIM dissector has some endian issues. (Bug 5464) - Telephony->MTP3->MSUS doesn't display window. (Bug 5605) - Support for MS NetMon 3.x traces containing raw IPv6 ("Type 7") packets. (Bug 5817) - Service Indicator in M3UA protocol data. (Bug 5834) - IEC60870-5-104 protocol, incorrect decoding of timestamp type CP56Time2a. (Bug 5889) - DNP3 dissector incorrect constants AL_OBJ_FCTR_16NF _FDCTR_32NF _FDCTR_16NF. (Bug 5920) - 3GPP QoS: Traffic class is not decoded properly. (Bug 5928) - Wireshark crashes when creating ProtoField.framenum in Lua. (Bug 5930) - Fix a wrong mask to extract FMID from DECT packets dissector. (Bug 5947) - Incorrect DHCPv6 remote identifier option parsing. (Bug 5962) - Updated protocol support: - DICOM, IEC104, M3UA, TCP - New and Updated capture file suppport: - Network Monitor - Drop patches (fixed upstream): + wireshark-1.6.2-CVE-2011-3483.patch + wireshark-1.6.2-CVE-2011-3360.patch + wireshark-1.6.2-CVE-2011-3266.patch + wireshark-1.4.8-CVE-2011-2698.patch + wireshark-1.4.8-CVE-2011-2597.patch + wireshark-1.2.17-CVE-2011-2175.patch + wireshark-1.2.17-CVE-2011-2174.patch + wireshark-1.2.17-CVE-2011-1959.patch + wireshark-1.2.17-CVE-2011-1958.patch + wireshark-1.2.17-CVE-2011-1957.patch + wireshark-nfsv4-opts.patch - changed spec to resolve rpmlint warning regarding devel package in non-devel group - changed spec to resolve rpmlint warnings regarding macro-in-comment- security fixes (#bnc 718032) * CVE-2011-3266: Wireshark IKE dissector vulnerability * CVE-2011-3360: Wireshark Lua script execution vulnerability * CVE-2011-3483: Wireshark buffer exception handling vulnerability- security fixes (#bnc 706728) * CVE-2011-2597: Lucent/Ascend file parser susceptible to infinite loop * CVE-2011-2698: ANSI MAP dissector susceptible to infinite loop- security fixes [#bnc 697516] * CVE-2011-1957: Large/infinite loop in the DICOM dissector * CVE-2011-1959: A corrupted snoop file could crash Wireshark * CVE-2011-2174: Malformed compressed capture data could crash Wireshark * CVE-2011-2175: A corrupted Visual Networks file could crash Wireshark * CVE-2011-1958: dereferene a NULL pointer if we had a corrupted Diameter dictionary- Update to version 1.4.6: + Wireshark and TShark can crash while analyzing TCP packets. + Updated protocol support: TCP - Changes from version 1.4.5: + Security Fixes: - The NFS dissector could crash on Windows. - The X.509if dissector could crash + bugs fixed: - Cygwin make fails after updating to bash v 4.1.9.2 - Export HTTP > All - System Appears Hung (but isn't). - Some HTTP responses don't decode with TCP reassembly on. - Wireshark crashes when cancelling a large sort operation. - Wireshark crashes if SSL preferences RSA key is actually a DSA key. - tshark incorrectly calculates TCP stream for some syn packets - Wireshark not able to decode the PPP frame in a sflow (RFC3176) flow sample packet because Wireshark incorrectly read the protocol in PPP frame header. (Bug 5746) - Mysql protocol dissector: all fields should be little endian. - Error when opening snoop from Juniper SSG-140. - svnversion: command not found. - Value of TCP segment data cannot be copied. - proto_field_is_referenced() is not exported in libwireshark.dll - Wireshark ver. 1.4.4 not displayed "Granted QoS" field in a A11 packet. + Updated protocol support: HTTP, LDAP, MySQL, NFS, sFlow, SSL, TCP - Drop patches (fixed upstream): + wireshark-1.4.4-CVE-2011-1590.patch + wireshark-1.4.4-CVE-2011-1591.patch + wireshark-1.4.4-CVE-2011-1592.patch- security fixes [#bnc 688109] * CVE-2011-1590: Use of un-initialised variables * CVE-2011-1592: Crash in NFS dissector on Windows * CVE-2011-1591: Buffer overflow in DECT dissector- updated to 1.4.4 * security fixes o The DOCSIS dissector could crash (CVE-2010-1455, bnc#603251) o Crash when receiving a malformed SNMP packet (CVE-2010-3445, bnc#643078) o Multiple buffer overflow and dereference vulnerabilities (bnc#655121) o LDSS dissector overflow (CVE-2010-4300, bnc#655448) o ZCL dissector infinite loop (CVE-2010-4301, bnc#655448) o Buffer overflows in ENTTEC DMX Data RLE and others (CVE-2010-4538, bnc#662029) o Freeing uninitialized pointer (CVE-2011-0538, bnc#669908) o dct3trace buffer overflow (CVE-2011-0713, bnc#672916) o Off-by-one in dissect_6lowpan_iphc (CVE-2011-1138, bnc#678567) o Crash via corrupted pcap file (CVE-2011-1139, bnc#678568) o Crash via SMB or CLDAP packet (CVE-2011-1140, bnc#678569) o Crash in NTLMSSP via crafted pcap file (CVE-2011-1143, bnc#678571) o Wireshark pcap buffer overflow (CVE-2011-0024, bnc#683335) * Updated Protocol Support ANSI MAP, BitTorrent, DCM, DHCPv6, DTAP, DTPT, E.212, GSM Management, GTP, HIP, IEEE 802.15.4, IPP, LDAP, LLDP, Netflow, NTLMSSP, P_Mul, Quake, Skinny, SMB, SNMP, ULP * New and Updated Capture File Support LANalyzer, Nokia DCT3, Pcap-ng- updated to 1.4.3 - security fixes: o MAC-LTE dissector could overflow a buffer o ENTTEC dissector could overflow a buffer o ASN.1 BER dissector could assert and make Wireshark exit prematurely - bug fixes: o AMQP failed assertion o Reassemble.c leaks memory for GLIB > 2.8 o Fuzz testing reports possible dissector bug: TCP o Wrong length calculation in new_octet_aligned_subset_bits() o Function dissect_per_bit_string_display might read more bytes than available o Wireshark crashes with Copy -> Description on date/time fields o DHCPv6 OPTION_CLIENT_FQDN parse error o Information element Error for supported channels o Assert when using ASN.1 dissector with loading a 'type table' o Bug with RWH parsing in Infiniband dissector o Help->About Wireshark mis-reports OS o Delegated-IPv6-Prefix(123) is shown incorrect as X-Ascend-Call-Attempt-Limit(123) o "tshark -r file -T fields" is truncating exported data o gsm_a_dtap: incorrect "Extraneous Data" when decoding Packet Flow Identifier o Improper decode of TLS 1.2 packet containing both CertificateRequest and ServerHelloDone messages o LTE-PDCP UL and DL problem o CIGI 3.2/3.3 support broken o Prepare Filter in RTP Streams dialog does not work correctly. o Wrong decode at ethernet OAM Y.1731 ETH-CC o WPS: RF bands decryption o Incorrect LTP SDNV value handling o LTP bug found by randpkt o Buffer overflow in SNMP EngineID preferences - updated protocol support: AMQP, ASN.1 BER, ASN.1 PER, CFM, CIGI, DHCPv6, Diameter, ENTTEC, GSM A GM, IEEE 802.11, InfiniBand, LTE-PDCP, LTP, MAC-LTE, MP2T, RADIUS, SAMR, SCCP, SIP, SNMP, TCP, TLS, TN3270, UNISTIM, WPS - new and updated capture file support: Endace ERF, Microsoft Network Monitor, VMS TCPtrace- updated to 1.4.2 - security fixes: * Nephi Johnson of BreakingPoint discovered that the LDSS dissector could overflow a buffer. (Bug 5318) * The ZigBee ZCL dissector could go into an infinite loop. (Bug 5303) - bug fixes: * File-Open Display Filter is overwritten by Save-As Filename. (Bug 3894) * Wireshark crashes with "Gtk-ERROR **: Byte index 6 is off the end of the line" if click on last PDU. (Bug 5285) * GTK-ERROR can occur in packets when there are multiple Netbios/SMB headers in a single frame. (Bug 5289) * "Tshark -G values" crashes on Windows. (Bug 5296) * PROFINET I&M0FilterData packet not fully decoded. (Bug 5299) * PROFINET MRP linkup/linkdown decoding incorrect. (Bug 5300) * [lua] Dumper:close() will cause a segfault due later GC of the Dumper. (Bug 5320) * Network Instruments' trace files sometimes cannot be read with an error message of "Observer: bad record: Invalid magic number". (Bug 5330) * IO Graph Time of Day times incorrect for filtered data. (Bug 5340) * Wireshark tools do not detect and read some ERF files correctly. (Bug 5344) * "editcap -h" sends some lines to stderr and others to stdout. (Bug 5353) * IP Timestamp Option: "flag=3" variant (prespecified) not displayed correctly. (Bug 5357) * AgentX PDU Header 'hex field highlighting' incorrectly spans extra bytes. (Bug 5364) * AgentX dissector cannot handle null OID in Open-PDU. (Bug 5368) * Crash with "Gtk-ERROR **: Byte index 6 is off the end of the line". (Bug 5374) * ANCP Portmanagment TLV wrong decoded. (Bug 5388) * Crash during startup because of Python SyntaxError in wspy_libws.py. (Bug 5389) - Updated Protocol Support * AgentX, ANCP, DIAMETER, HTTP, IP, LDSS, MIME, NBNS, PROFINET, SIP, TCP, Telnet, ZigBee - New and Updated Capture File Support * Endace ERF, Network Instruments Observer - fix lua error at startup (enable_lua.patch) [bnc#650434] - apply nfsv4 patch from Fedora (nfsv4-opts.patch)- updated to 1.4.1 * security fixes: o stack overflow in ASN.1 BER dissector * bug fixes: o Incorrect behavior using sorting in the packet list o Cooked-capture dissector should omit the source address field if empty o MySQL dissector doesn't dissect MySQL stream o Wireshark crashes if active display filter macro is renamed o Incorrect dissection of MAP V2 PRN_ACK o TCP bytes_in_flight becomes inflated with lost packets o GTP header is exported in PDML with an incorrect size o Packet list hidden columns will not be parsed correctly from preferences file o Wireshark does not display the t.38 graph o Wireshark don't show mgcp calls in "Telephony → VoIP calls" o Wireshark 1.4.0 & VoIP calls "Prepare Filter" problem o GTPv2: IMSI is decoded improperly o EPS Quality of Service IE decoding is wrong o Wireshark mistakenly writes "not all data available" for IPv4 checksum o GSM: Cell Channel Description, range 1024 format o Wrong SDP interpretation on VoIP call flow chart o The CLDAP attribute value on a CLDAP reply is no longer being decoded o [NAS EPS] Traffic Flow Template IE dissection bugs o [NAS EPS] Use Request Type IE defined in 3GPP 24.008 o NTLMSSP_AUTH domain and username truncated to first letter with IE8/Windows7 o IPv6 RH0: dest addr is to be used i.s.o. last RH address when 0 segments remain o EIGRP dissection error in Flags field in external route TLVs. o MRP packet is not correctly parsed in PROFINET multiple write record request o MySQL Enhancement: support of Show Fields and bug fix o [NAS EPS] Fix TFT decoding when having several Packet Filters defined o Crash if using ssl.debug.file with no password for ssl.keys_list * updated protocol support ASN.1 BER, ASN.1 PER, EIGRP, GSM A RR, GSM Management, GSM MAP, GTP, GTPv2, ICMPv6, Interlink, IPv4, IPv6, IPX, LDAP, LLC, MySQL, NAS EPS, NTLMSSP, PN-IO, PPP, RPC, SDP, SLL, SSL, TCP- Update to version 1.4.0: + The packet list internals have been rewritten and are now more efficient. + Columns are easier to use. You can add a protocol field as a column by right-clicking on its packet detail item, and you can adjust some column preferences by right-clicking the column header. + Preliminary Python scripting support has been added. + Many memory leaks have been fixed. + Packets can now be ignored (excluded from dissection), similar to the way they can be marked. + Manual IP address resolution is now supported. + Columns with seconds can now be displayed as hours, minutes and seconds. + You can now set the capture buffer size on UNIX and Linux if you have libpcap 1.0.0 or greater. + TShark no longer needs elevated privileges on UNIX or Linux to list interfaces. Only dumpcap requires privileges now. + Wireshark and TShark can enable 802.11 monitor mode directly if you have libpcap 1.0.0 or greater. + You can play RTP streams directly from the RTP Analysis window. + Capinfos and editcap now respectively support time order checking and forcing. + Wireshark now has a "jump to timestamp" command-line option. + You can open JPEG files directly in Wireshark. + Many new and updated protocols. + See NEWS for a full list of changes. - Drop wireshark-1.2.0-asneeded.patch, fixed upstream. - Rebase wireshark-corosync-packet-dissector.patch.- updated to 1.2.10 [bnc#630599] * Security fixes: o The SigComp Universal Decompressor Virtual Machine could overrun a buffer. (Bug 4867) o The GSM A RR dissector could crash. (Bug 4897) o Due to a regression the ASN.1 BER dissector could overrun the stack. o The IPMI dissector could go into an infinite loop. o CVE-2010-2993 * Bug fixes: o Wireshark crashes after configuring new Information column. (Bug 4854) o Crash triggered when changing display filter from right-mouse pop-up menu via packet-list. (Bug 4860) o Wireshark crash selecting Inter-Asterisk exchange v2 packet data. (Bug 4868) o zlib-1.2.5 cause tshark to stop live capture. (Bug 4916) o Crash when adding SNMP users. (Bug 4926) o Wireshark via ssh -X on ipv6 link-local address fails to allow capture. (Bug 4945) o OMAPI dissector fails to parse combined initialization messages. (Bug 4982) o QUERY_FS_INFO for Macintosh level 0x301 - MacSupportFlags decodes wrong. (Bug 4993) o SCSI dissector misidentifies ATA PASSTHROUGH command as ACCESS CONTROL IN. (Bug 5037) o Wrong decoding of GTP Prime (GTP') packets. (Bug 5055) * Updated Protocol Support ASN.1 BER, GSM A RR, GTP, IAX2, IPMI, OMAPI, PRES, SCSI, SMB, UNISTIM- updated to 1.2.9 [bnc#613487] * Security fixes: o The SMB dissector could dereference a NULL pointer. (Bug 4734) o J. Oquendo discovered that the ASN.1 BER dissector could overrun the stack. o The SMB PIPE dissector could dereference a NULL pointer on some platforms. o The SigComp Universal Decompressor Virtual Machine could go into an infinite loop. (Bug 4826) o The SigComp Universal Decompressor Virtual Machine could overrun a buffer. (Bug 4837) * Bug fixes: o Cannot open file with File -> Open. (Bug 1791) o Application crash when changing real-time option. (Bug 4035) o Crash in filter autocompletion. (Bug 4306) o The XML dissector doesn't allow dots (".") in tags. (Bug 4405) o Live capture stops when using zlib 1.2.5. (Bug 4708) o Want to be able to apply decode as to Data Portion of Lan Trace. (Bug 4721) o SABP short pdu (packet_per.c). (Bug 4743) o Kerberos pre-auth type constants - MS extensions are wrong. (Bug 4752) o Check HTTP Content-Length parsing for overflow. (Bug 4758) o Wrong variable used for proto_tree_add_text() in ptp dissector. (Bug 4773) o Crash when close window frame of gtk file chooser. (Bug 4778) o text2pcap expects \n delimited text (instead of \r\n) on win32. (Bug 4780) o Wrong decoding for BGP ORF. (Bug 4782) o Crash when Ctrl-Backspacing the display filter. (Bug 4797) o Acker AFI field incorrect size in PGM dissector. (Bug 4798) o Fedora 13: wireshark fails to build (linking problem). (Bug 4815) o The NFS FH hash (nfs.fh.hash) incorrectly matches multiple filehandles. (Bug 4839) o AES-CTR decoding not working, (dissectors/packet_ipsec.c using gcrypt). (Bug 4838) * Updated Protocol Support ASN.1 BER, BGP, HTTP, IGMP, IPsec, Kerberos, NFS, PGM, PTP, SABP, SigComp, SMB, TCAP, XML, * Updated Capture File Support ERF, PacketLogger.- Added corosync packet dissector (patch 4724 from https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3232, minus "private key" setting, which doesn't work with nice random binary keys in /etc/corosync/authkey)- updated to 1.2.8 * Security Fixes: o The DOCSIS dissector could crash. (Bug 4644), (bug 4646) * Bug Fixes: o HTTP parser limits with Content-Length. (Bug 1958) o MATE dissector bug with GOGs. (Bug 3010) o Changing fonts and deleting system time from preferences, results in wireshark crash. (Bug 3387) o ERF file starting with record with timestamp=0,1 or 2 not recognized as ERF file. (Bug 4503) o The SSL dissector can not correctly resemple SSL records when the record header is spit between packets. (Bug 4535) o TCP reassembly can call subdissector with incorrect TCP sequence number. (Bug 4624) o PTP dissector displays big correction field values wrong. (Bug 4635) o MSF is at Anthorn, not Rugby. (Bug 4678) o ProtoField __tostring() description is missing in Wireshark's Lua API Reference Manual. (Bug 4695) o EVRC packet bundling not handled correctly. (Bug 4718) o Completely unresponsive when run very first time by root user. (Bug 4308) * Updated Protocol Support DOCSIS, HTTP, SSL * Updated Capture File Support ERF, PacketLogger.- updated to new stable upstream version 1.2.7 * Bug Fixes: o SNMPv3 Engine ID registration. (Bug 2426) o Open file dialog always displayed when clicking anywhere on Wireshark. (Bug 2478) o tshark reports wrong number of bytes on big dumpfiles with -z io,stat. (Bug 3205) o Negative INTEGER number displayed as positive number in SNMP dissector. (Bug 3230) o Add support for FT_BOOLEAN fields to wslua FieldInfo. (Bug 4049) o Wireshark crashes w/ GLib error when trying to play RTP stream. (Bug 4119) o Windows 2000 support has been restored. (Bug 4176) o Wrong dissection on be_cell_id_list for bssmap. (Bug 4437) o I/O Graph dropdown boxes not working correctly. (Bug 4487) o Runtime Error when right-clicking field and selecting "Filter Field Reference". (Bug 4522) o In GSM SMS PDU TPVPF showing wrong. (Bug 4524) o Profinet: May be wrong defined byte meaning. (Bug 4525) o GLib-CRITICAL ** Message. (Bug 4547) o Certain EDP display filters trigger Wireshark/tshark runtime error. (Bug 4563) o Some NCP frames trigger "Dissector bug, protocol NCP". (Bug 4565) o The encapsulation abbreviation "bluetooth-h4" is ambiguous. (Bug 4613) * Updated Protocol Support: o BSSMAP, DMP, GSM SMS, LDSS, NCP, PN/IO, PPP, SIP, SNMP- update desktop file to use xdg-su [bnc#540627]- updated to 1.2.6 * Security Fixes: o Babi discovered several buffer overflows in the LWRES * Bug Fixes: o Wireshark could crash while decrypting Kerberos data. o Address display filters hang Wireshark. (Bug 658) o PSML - structure context node missing. (Bug 1564) o Wireshark doesn't dynamically update the packet list. (Bug 1605) o LUA: There's no tvb_get_stringz() equivalent. (Bug 2244) o tvb_new_real_data is prone to memory leak. (Bug 3917) o Malformed OPC UA traffic makes Wireshark "freeze". (Bug 3986) o Analyze->Expert... doesn't show IP "Bad Checksum" errors. (Bug 4177) o Wireshark can't decrypt WPA(2)-PSK when passphrase is 63 bytes. (Bug 4183) o RTP stream analysis: Wrong jitter values after clicking the refresh button. (Bug 4340) o Wireshark decodes bootp option 2 incorrectly. (Bug 4342) o Deleting SMI modules causes Wireshark to crash. (Bug 4354) o Wireshark decodes kerberos AS-REQ PADATA incorrect. (Bug 4363) o PDML output from TShark includes invalid characters. (Bug 4402) o Empty GPRS LLC S frames cause truncated data exception. (Bug 4417) * Updated Protocol Support BJNP, BOOTP/DHCP, DHCPv6, FIP, GPRS LLC, IEEE 802.11, IP, Kerberos, OPCUA, SCTP, SSL, ZRTP- updated to 1.2.5 * Security Fixes: o The Daintree SNA file parser could overflow a buffer. (Bug 4294) o The SMB and SMB2 dissectors could crash. (Bug 4301) * Bug Fixes: o Wireshark does not graph rtp streams. (Bug 3801) o Wireshark showing extraneous data in a TCP stream. (Bug 3955) o Wrong decoding of gtp.target identification. (Bug 3974) o TTE dissector bug. (Bug 4247) o Upper case in Lua pref symbol causes Wireshark to crash. (Bug 4255) o Incorrect display of stream data using "Follow tcp stream" option. (Bug 4288) o Custom RADIUS dictionary can cause a crash. (Bug 4316) * Updated Protocol Support DAP, eDonkey, GTP, IPMI, MIP, RADIUS, RANAP, SMB, SMB2, TCP, TTE, VNC, X.509sat * Updated Capture File Support Daintree SNA- updated to 1.2.4 * Bug Fixes - Can't save RTP stream in both directions. (Bug 4120) * Updated Protocol Support - DCERPC, IPFIX/Netflow, IPv4, NAS EPS, RTCP, TIPC- updated to 1.2.3 * Security fixes: - The Paltalk dissector could crash on alignment-sensitive processors. - The DCERPC/NT dissector could crash. - The SMB dissector could crash. * Bug fixes: - Wireshark memory leak with each file open and/or display filter change. - DHCP Dissector displays negative lease time. - Invalid advertised window line on tcptrace style graph. - SMB get_dfs_referral referral entry is not dissected correctly. - Error dissecting eMule sourceOBFU message. - Typos in Diameter XML files. - RSL dissector for MS Power IE is broken. - FIP dissector throws assertion. - TCAP problem with indefinite length 'components' SEQ OF. - GSM MAP: an-APDU not decoded. - Add "Drag and Drop entries..." message on Columns preferences page. - Editcap -t and -w option parses fractional digits incorrectly. * Updated Protocol Support - DCERPC NT, DHCP, Diameter, E.212, eDonkey, FIP, IPsec, MGCP, NCP, Paltalk, RADIUS, RSL, SBus, SMB, SNMP, SSL, TCP, Teamspeak2, WPS - updated to 1.2.2 * Security fixes: - The GSM A RR dissector could crash. (Bug 3893) - The OpcUa dissector could use excessive CPU and memory. (Bug 3986) - The TLS dissector could crash on some platforms. (Bug 4008) * Bug fixes: - The "Capture->Interfaces" window can't be closed. - tshark-1.0.2 (dumpcap) signal abort core saved. - Memory leak fixes. - Display filter autocompletion doesn't work for some RADIUS and WiMAX ASNCP fields. - Wireshark Portable includes wrong WinPcap installer. - Crash when loading a profile. - The proto,colinfo tap doesn't work if the INFO column isn't being printed. - Flow Graph adds too much unnecessary garbage. - The EAP Diameter dictionary file was missing in the distribution. - Graph analysis window is behind other window. - IKEv2 Cert Request payload dissection error. - DNS NAPTR RR (RFC 3403) replacement MUST be a fully qualified domain-name. - Malformed RTCP Packet error while sending Payload specific RTCP feedback packet (as per RFC 4585). - 802.11n Block Ack packet Bitmap field missing. - Wireshark doesn't decode WBXML/ActiveSync information correctly. - Malformed packet when IPv6 packet has Next Header == 59. - Wireshark could crash while reading an ERF file. - Minor errors in gsm rr dissectors. - WPA Decryption Issues. - GSM A RR sys info dissection problem. - GSM A RR inverts MEAS-VALID values. - PDML output leaks ~300 bytes / packet. - Incorrect station identifier parsing in Kingfisher dissector. - DHCPv6, Vendor-Specific Informantion, SubOption"Option Request" parser incorrect. - Wireshark could leak memory while analyzing SSL. - Wireshark could crash while updating menu items after reading a file in some cases. * Updated Protocol Support - DCERPC, DHCPv6, DNS, E.212, GSM A RR, GTPv2, H.248, IEEE 802.11, IPMI, ISAKMP/IKE, ISUP, Kingfisher, LDAP, OpcUA, RTCP, SCTP, SIP, SSL, TCP, WBXML, ZRTP * Updated Capture File Support - ERF - dropped obsoleted 3 CVE patches (see previous entry)- fix CVE-2009-3241 (CVE-2009-3241.patch) [bnc#541654] - fix CVE-2009-3242 (CVE-2009-3242.patch) [bnc#541659] - fix CVE-2009-3243 (CVE-2009-3243.patch) [bnc#541655]- updated to 1.2.1 * Bug Fixes - The IPMI dissector could overrun a buffer. - The AFS dissector could crash. - The Infiniband dissector could crash on some platforms. - The Bluetooth L2CAP dissector could crash. - The RADIUS dissector could crash. - The MIOP dissector could crash. - The sFlow dissector could use excessive CPU and memory. - Wireshark could crash while reading a pcap-ng file. - Wireshark could crash while reading a PacketLogger file. - CFLOW decoding is wrong for IPv6 fields (Bug 3328) - Buildbot crash output: fuzz-2009-04-24-2891.pcap (Bug 3438) - packet-dcm, corrupt DICOM export files (Bug 3493) - GeoIP map should use random temporary file name (Bug 3530) - Wireshark crashes when range_string is the data type (Bug 3536) - Pcap-ng breaks VoIP call data (Bug 3539) - ANSI MAP legInformation BER Error (Bug 3541) - Starting Wireshark Portable 1.2.0 gives error message. (Bug 3547) - The title in the TCP sequence graphs is too short. (Bug 3556) - USB Packets in pcap-ng Files Not Dissected Properly (Bug 3560) - 802.11 decryption is broken (Bug 3590) - SMB2 Error Response doesn't decode properly (Bug 3609) - configure.in uses deprecated autoconf test for gnutls detection (Bug 3627) - Radius Malformed Packet error message (Bug 3635) - Wireshark could crash when loading a profile. (Bug 3640) - Analyze->Decode as... menu item becomes unavailable (Bug 3642) - btsnoop: Incorrect error message for not supported datalink type (Bug 3645) - Decode error for network-id in BICC BCU-ID (Bug 3648) - IEC 60870-5-104 dissector decodes nothing (Bug 3650) - radius_register_avp_dissector() can stop RADIUS dissector from working correctly (Bug 3651) - ANSI ISUP Cause indicators with coding standard=ANSI fail to dissect. (Bug 3654) - Wrong field position in PacketCable Multimedia Extended Classifier (Bug 3656) - FF Protocol "FMS Initiate - Version OD Calling" field packet data not unpacked properly (Bug 3694) - hci_h4: Optimize column/field handling (Bug 3703) - BSSLAP Protocol Not Decoded In BSSMAP-LE Messages (Bug 3711) - Description of tshark -t dd missing from tshark.pod (Bug 3723) - Problem in packet-per.c for ASN.1 PER Encoding (Bug 3733) - [SNMP] Crash when dissecting packet (custom MIB) (Bug 3746) * Updated Protocol Support - AFS, ANSI ISUP, ANSI MAP, ASN.1 PER, Bluetooth HCI H4, Bluetooth L2CAP, BSS CFLOW, COPS, Diameter, DICOM, FF-HSE, ICMPv6, IEC-60870-5-104, IEEE 802.11, Infiniband, IPMI, MIOP, RADIUS, RSVP, sFlow, SNMP, SMB2, ZIOP * New Capture File Support - Btsnoop, DCT3, Packetlogger, pcap-ng- fix asneeded.patch (patch Makefile.in files also)- search in /var/lib/GeoIP if user hasn't set any GeoIP folders (geoip.patch)- updated to 1.2.0 Bug Fixes Too many bugs have been fixed since the 1.0 release to list here. Some notable fixes are: o Type-ahead search now works properly. o Several bugs that affected capture from pipes have been fixed. o Many Lua-related bugs have been fixed. o Several memory leaks have been found and fixed. o The "Follow TCP Stream" feature could show two streams at the same time The hex dump view has been narrowed. o WPA and SSL decryption bugs have been fixed. o Readability problems on 256-color displays on Windows have been fixed. New and Updated Features The following features are new (or have been significantly updated) since version 1.0: o Wireshark has a spiffy new start page. o Display filters now autocomplete. o A 64-bit Windows (x64) installer is now provided. o Support for the c-ares resolver library has been added. It has many advantages over ADNS. o Many new protocol dissectors and capture file formats have been added (see below for a complete list). o Macintosh OS X support has been improved. o GeoIP database lookups. o OpenStreetMap + GeoIP integration. o Improved Postscript(R) print output. o The preference handling code is now much smarter about changes. o Support for Pcap-ng, the next-generation capture file format. o Support for process information correlation via IPFIX. o Column widths are now saved. o The last used configuration profile is now saved. o Protocol preferences are changeable from the packet details context menu. o Support for IP packet comparison. o Capinfos now shows the average packet rate. o GTK1 is no longer supported. (Yes, this is a feature.) o Official Windows packages are now built using Microsoft Visual C++ 2008 SP1. New Protocol Support Anything in Anything Protocol, ATM PW, N-to-one Cell Mode, B.A.T.M.A.N. Layer 3 Protocol, BACnet MS/TP, BSS LCS Assistance Protocol, Canon BJNP, CESoPSN basic NxDS0 mode (no RTP support), Charging ASE, Cimetrics MS/TP, DECT Protocol, Digital Private Signalling System No 1 Link Layer, DOCSIS Mac Domain Description, DOCSIS Registration Request Multipart, DOCSIS Registration Response Multipart, DOCSIS Synchronisation Message, E100 Encapsulation, EHS, Enhanced Variable Rate Codec, Ethernet Global Data, Ethernet PW, Exchange 2003 Directory Request For Response, Far End Failure Detection, FCoE Initialization Protocol, GOOSE, GPEF, GPRS Tunneling Protocol V2, GSM A-I/F COMMON, GSM A-I/F GPRS Mobility and Session Management, GSM SACCH, GSM Um Interface, HDLC PW, FR port mode (no CW), HDLC-like framing for PPP, IEC 60870-5-104,Apci, IEC 60870-5-104,Asdu, IEEE 802.15.4 Low-Rate Wireless PAN non-ASK PHY, IEEE C37.118 Synchrophasor Protocol, Intelligent Platform Management Interface (Session Wrapper), Inter-Integrated Circuit, Internal TDM, IPSICTL, ISMACryp Protocol, iWARP Direct Data Placement and Remote Direct Memory Access Protocol, iWARP Marker Protocol data unit Aligned framing, Kontiki Delivery Protocol, LANforge Traffic Generator, Layer 1 Event Messages, Lb-I/F BSSMAP LE, LeCroy VICP, Link Access Procedure, Channel Dm (LAPDm), Local Download Sharing Service, LTE Radio Resource Control (RRC) protocol, MAC-LTE, Memcache Protocol, Mesh Header, MP4V-ES, Nasdaq TotalView-ITCH, Nasdaq-SoupTCP version 2.0, NAT Port Mapping Protocol, Netdump Protocol, Non-Access-Stratum (NAS)PDU, PacketLogger, Paltalk Messenger Protocol, PDCP-LTE, PW Associated Channel Header, PW Ethernet Control Word, PW Frame Relay DLCI Control Word, PW MPLS Control Word (generic/preferred), Real-Time Publish-Subscribe Wire Protocol 2.x, Remote Packet Capture, RLC-LTE, SAToP (no RTP support), SERCOS III V1.1, SIMULCRYPT Protocol, Subnetwork Dependent Convergence Protocol XID, Teamspeak2 Protocol, TTEthernet, TTEthernet Protocol Control Frame, Turbocell Aggregate Data, Turbocell Header, TURN Channel, Unreliable Multicast Inter-ORB Protocol, VCDU, Wave Short Message Protocol(IEEE P1609.3), Wireless Access Station Session Protocol, Wireshark Expert Info, World of Warcraft, Xpress Transport Protocol, ZigBee Application Framework, ZigBee Application Support Layer, ZigBee Device Profile, ZigBee Encapsulation Protocol, ZigBee Network Layer, Zipped Inter-ORB Protocol, ZRTP Updated Protocol Support There are too many updates to list here. New Capture File Support Apple Bluetooth PacketLogger, Daintree's Sensor Network Analyzer, dct3trace, Pcap-NG, TNEF (yes, those silly winmail.dat attachments) - removed obsoleted patches: * help.patch (not needed anymore) * sigpipe-block.patch (not needed anymore)- made it compile with --as-needed- updated to 1.0.8 * bug fixes o The PCNFSD dissector could crash. * the following bugs have been fixed: o Lua integration could crash (Bug 2453) o The SCCP dissector could crash when loading more than one file in a single session. (Bug 3409) o The NDMP dissector could crash if reassembly was enabled. (Bug 3470) * updated protocol support o All ASN.1 protocols, DICOM, NDMP, PCNFSD, RTCP, SCCP, SSL, STANAG 5066- removing --with-ssl and adding --with-gnutls * per Wireshark documentation "The SSL dissector is fully functional and even supports advanced features such as decryption of SSL if the encryption key can be provided and WireShark is compiled against Gnu-TLS (rather than openssl or bsafe)."- updated to 1.0.7 o security fixes * The PROFINET dissector was vulnerable to a format string overflow. (Bug 3382) Versions affected: 0.99.6 to 1.0.6 CVE-2009-1210 * The LDAP dissector could crash on Windows. (Bug 3262) Versions affected: 0.99.2 to 1.0.6 CVE-2009-1267 * The Check Point High-Availability Protocol (CPHAP) dissector could crash. (Bug 3269) Versions affected: 0.9.6 to 1.0.6 CVE-2009-1268 * Wireshark could crash while loading a Tektronix .rf5 file. (Bug 3366) Versions affected: 0.99.6 to 1.0.6 CVE-2009-1269 o bug fixes * Correct use of proto_tree_add_int_format() (Bug 3048) * RTP dynamic payload clock rates incorrectly determined (Bug 3067) * TShark fails to properly close capture files when opening new ones (Bug 3172) * ANSI MAP digits type decode and bitmask corrections (Bug 3233) * Two small patches for ipvs-syncd dissector (Bug 3236) * BGP capability dissection failure (Bug 3247) * ANSI MAP fix for missing MEID/MSC ID number in RegNot (Bug 3255) * BACnet PrivateTransferError shows malformed packet (Bug 3257) * Windows silent installer is not that silent (Bug 3260) * Crash in ASN.1 dissector when using 'type table' (Bug 3271) * 802.11n SM Power save mode value 0x3 label is incorrect (Bug 3276) * 802.11 WME ie displayed incorrectly (Bug 3284) * "Copy as filter" from the packet list has been fixed. o updated protocol support * ACN, ANSI MAP, ASN.1 BACnet, BGP, CPHAP, GSM MAP, IEEE 802.11, IPVS, LDAP, NetFlow/IPFIX, PROFINET, RTP, SNMP, WSP/bin/shetherealbuild82 1561119804  !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~      !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqr2.4.152.4.15-56.12.4.15-56.12.4.15  !"!#$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$%&&capinfoscaptypedftestdumpcapeditcapidl2wrsmergecaprandpktrawsharkreordercapsharkdtetherealtext2pcaptsharkwiresharkextcapandroiddumprandpktdumpudpdumpplugins2.4.15docsis.soethercat.sogryphon.soirda.som2m.somate.soopcua.soprofinet.sostats_tree.sotransum.sounistim.sowimax.sowimaxasncp.sowimaxmacphy.sowiresharkAUTHORSNEWSREADMEREADME.linuxREADME.vmwarewireshark.pngapplication-wireshark-doc.pngwireshark.pngapplication-wireshark-doc.pngwireshark.pngapplication-wireshark-doc.pngwireshark.pngapplication-wireshark-doc.pngwireshark.pngapplication-wireshark-doc.pngwireshark.pngapplication-wireshark-doc.pngwireshark.pngapplication-wireshark-doc.pngwireshark.svgwiresharkCOPYINGandroiddump.1.gzcapinfos.1.gzdftest.1.gzdumpcap.1.gzeditcap.1.gzmergecap.1.gzrandpkt.1.gzrandpktdump.1.gzrawshark.1.gzreordercap.1.gztext2pcap.1.gztshark.1.gzudpdump.1.gzwireshark.1.gzextcap.4.gzwireshark-filter.4.gzwireshark.xmlwiresharkAUTHORS-SHORTCOPYINGandroiddump.htmlcapinfos.htmlcfiltersciscodump.htmlcolorfiltersconsole.luadfiltersdftest.htmldiameterAlcatelLucent.xmlCisco.xmlCiscoSystems.xmlCustom.xmlEricsson.xmlHP.xmlInovar.xmlJuniper.xmlNokia.xmlNokiaSolutionsAndNetworks.xmlOracle.xmlStarent.xmlTGPP.xmlTGPP2.xmlVodafone.xmlchargecontrol.xmldictionary.dtddictionary.xmleap.xmletsie2e4.xmlmobileipv4.xmlmobileipv6.xmlnasreq.xmlsip.xmlsunping.xmldtd_gen.luadtdsdc.dtditunes.dtdmscml.dtdpocsettings.dtdpresence.dtdreginfo.dtdrlmi.dtdrss.dtdsmil.dtdwatcherinfo.dtdxcap-caps.dtdxcap-error.dtddumpcap.htmleditcap.htmlextcap.htmlhelpcapture_filters.txtcapturing.txtdisplay_filters.txtfaq.txtgetting_started.txtoverview.txttocinit.luaipmap.htmlmanufmergecap.htmlpdml2html.xslprofilesBluetoothcolorfiltersClassiccolorfiltersradiusREADME.radius_dictionarycustom.includesdictionarydictionary.3comdictionary.3gppdictionary.3gpp2dictionary.accdictionary.acmedictionary.actelisdictionary.aerohivedictionary.airespacedictionary.alcateldictionary.alcatel-lucent.aaadictionary.alcatel.esamdictionary.alcatel.srdictionary.alteondictionary.altigadictionary.alvariondictionary.alvarion.wimax.v2_2dictionary.apcdictionary.aptisdictionary.arbordictionary.arubadictionary.ascenddictionary.asndictionary.audiocodesdictionary.avayadictionary.azairedictionary.baydictionary.bintecdictionary.bluecoatdictionary.bristoldictionary.broadsoftdictionary.brocadedictionary.bskybdictionary.btdictionary.cablelabsdictionary.cabletrondictionary.camiantdictionary.chillispotdictionary.ciscodictionary.cisco.asadictionary.cisco.bbsmdictionary.cisco.vpn3000dictionary.cisco.vpn5000dictionary.citrixdictionary.clavisterdictionary.cnergeedictionary.colubrisdictionary.columbia_universitydictionary.compatdictionary.compatibledictionary.cosinedictionary.dantedictionary.dellemcdictionary.dhcpdictionary.digiumdictionary.dlinkdictionary.dragonwavedictionary.efficientipdictionary.eltexdictionary.epygidictionary.equallogicdictionary.ericssondictionary.ericsson.abdictionary.ericsson.packet.core.networksdictionary.extremedictionary.f5dictionary.fdxtendeddictionary.fortinetdictionary.foundrydictionary.freedhcpdictionary.freeradiusdictionary.freeradius.internaldictionary.freeswitchdictionary.gandalfdictionary.garderosdictionary.gemtekdictionary.h3cdictionary.hpdictionary.huaweidictionary.ianadictionary.ieadictionary.infobloxdictionary.infonetdictionary.ipunpluggeddictionary.issannidictionary.itkdictionary.jradiusdictionary.juniperdictionary.karlnetdictionary.kinetodictionary.lancomdictionary.livingstondictionary.localwebdictionary.lucentdictionary.manzaradictionary.meinbergdictionary.meritdictionary.merudictionary.microsemidictionary.microsoftdictionary.mikrotikdictionary.motoroladictionary.motorola.wimaxdictionary.navinidictionary.netscreendictionary.networkphysicsdictionary.nexansdictionary.nokiadictionary.nokia.conflictdictionary.nomadixdictionary.norteldictionary.ntuadictionary.openserdictionary.packeteerdictionary.paloaltodictionary.pattondictionary.perledictionary.propeldictionary.prosoftdictionary.proximdictionary.purewavedictionary.quiconnectdictionary.quintumdictionary.redcreekdictionary.rfc2865dictionary.rfc2866dictionary.rfc2867dictionary.rfc2868dictionary.rfc2869dictionary.rfc3162dictionary.rfc3576dictionary.rfc3580dictionary.rfc4072dictionary.rfc4372dictionary.rfc4603dictionary.rfc4675dictionary.rfc4679dictionary.rfc4818dictionary.rfc4849dictionary.rfc5090dictionary.rfc5176dictionary.rfc5447dictionary.rfc5580dictionary.rfc5607dictionary.rfc5904dictionary.rfc6519dictionary.rfc6572dictionary.rfc6677dictionary.rfc6911dictionary.rfc6929dictionary.rfc6930dictionary.rfc7055dictionary.rfc7155dictionary.rfc7268dictionary.rfc7499dictionary.rfc7930dictionary.riverbeddictionary.riverstonedictionary.roaringpenguindictionary.ruckusdictionary.ruggedcomdictionary.sangomadictionary.sgdictionary.shastadictionary.shivadictionary.siemensdictionary.slipstreamdictionary.sofawaredictionary.sonicwalldictionary.springtidedictionary.starentdictionary.starent.vsa1dictionary.surfnetdictionary.symboldictionary.t_systems_novadictionary.telebitdictionary.telkomdictionary.terenadictionary.trapezedictionary.travelpingdictionary.troposdictionary.ukernadictionary.unispheredictionary.unixdictionary.usrdictionary.utstarcomdictionary.valemountdictionary.versanetdictionary.vqpdictionary.walabidictionary.waveriderdictionary.wichorusdictionary.wimaxdictionary.wimax.alvariondictionary.wimax.wichorusdictionary.wisprdictionary.xediadictionary.xylandictionary.yubicodictionary.zeusdictionary.ztedictionary.zyxelrandpkt.htmlrandpktdump.htmlrawshark.htmlreordercap.htmlservicessmi_modulessshdump.htmltext2pcap.htmltpncptpncp.dattshark.htmludpdump.htmlwimaxasncpdictionary.dtddictionary.xmlwireshark-filter.htmlwireshark.htmlws.css/usr/bin//usr/lib64//usr/lib64/wireshark//usr/lib64/wireshark/extcap//usr/lib64/wireshark/plugins//usr/lib64/wireshark/plugins/2.4.15//usr/share/doc/packages//usr/share/doc/packages/wireshark//usr/share/icons/hicolor/128x128/apps//usr/share/icons/hicolor/128x128/mimetypes//usr/share/icons/hicolor/16x16/apps//usr/share/icons/hicolor/16x16/mimetypes//usr/share/icons/hicolor/24x24/apps//usr/share/icons/hicolor/24x24/mimetypes//usr/share/icons/hicolor/256x256/apps//usr/share/icons/hicolor/256x256/mimetypes//usr/share/icons/hicolor/32x32/apps//usr/share/icons/hicolor/32x32/mimetypes//usr/share/icons/hicolor/48x48/apps//usr/share/icons/hicolor/48x48/mimetypes//usr/share/icons/hicolor/64x64/apps//usr/share/icons/hicolor/64x64/mimetypes//usr/share/icons/hicolor/scalable/apps//usr/share/licenses//usr/share/licenses/wireshark//usr/share/man/man1//usr/share/man/man4//usr/share/mime/packages//usr/share//usr/share/wireshark//usr/share/wireshark/diameter//usr/share/wireshark/dtds//usr/share/wireshark/help//usr/share/wireshark/profiles//usr/share/wireshark/profiles/Bluetooth//usr/share/wireshark/profiles/Classic//usr/share/wireshark/radius//usr/share/wireshark/tpncp//usr/share/wireshark/wimaxasncp/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:10485/openSUSE_Leap_42.3_Update/7bdbc19d19e720f91d2680db6c6e9277-wireshark.openSUSE_Leap_42.3_Updatedrpmlzma5x86_64-suse-linux  !!!"#$%&'()*+,-./01!22222222222222223 !33!34!!33333333533333333333333333!555!!!555!!!33344! 44!!3 33!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!3333!!33!333333!ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=c0990bb6b88095673b250fc3e328684a6a1262c0, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=3a081301dc3d18ee947e2b3e2e9a9f85d6b3038e, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=61501411b702aa0418811e08c0d360c217d3bdfa, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=b6c72643b16a3f8252c4e2f5db300047292418e3, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=4f0182977c43f6bcfad27341cdd0dbf3299c01f0, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=cb6b5af7308651768c10433b0f52b5e401421429, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=8f32b3284142136e0bf88bae8a6d228454512ad8, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=eac69a2baf9b5408cb6489e66ecc94f21d8f40d8, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=12f614dc1affa18c6dd91b83d52ebcd60b4e2582, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=4466d4e5e758f3a958a8c3c2f7e0d1a456a4295c, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=2d239e11775ca89d7cf47254c4c176adc8b867f8, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=4be2224a6c89c03c3dad512d0ae00ccc80762f1c, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=5a152ea71f72e3d4e19312ca2e9e07d45c17f8c3, strippeddirectoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=75dbb9cbc7ec34ac8b1a369bf360d78a30cda172, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=0d694092f669deafe33f2ceff0a932d231223978, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/l, for GNU/Linux 3.0.0, BuildID[sha1]=78e70e1e55754d5e296b05c30b5df9861e9d1ba1, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=d1a647ccd0fff015d4189ec81eb4dd0cfaf73c89, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=f10a5f64e76fcf2306d953ee3e6d0949750b688b, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=eb75cdbde07ac47e178e11e5b8d881e08bc8df06, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=a3a56f024f4b2463813558afbac45ee23f609fc2, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=804a6839339a4f8795b62be935af02f5dfc04bef, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3b0afe590783a7ec7b7e7ea4c2ccf2f8c9b36900, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=5bdbcaaca6bd8b2ac9a8213c741aec89cea7c2bd, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e7277c532d74dff629e522715d574e520c11a86d, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=8c47986a5a7d2713c74ad22f9aaf40454ebc4cca, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b14e773c829e660268062817eb0c25a26e6b60da, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9dd8069638e773a285a2cfd4993699f974d8adab, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=854dd5a9a17c22660605ede4a8ae855f1953892a, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=e65aa2f957ddeaeffdec59373f47f0cf24b19d69, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b697f77f6dc937af59057633392f06e7ad605543, strippedUTF-8 Unicode textASCII textC++ source, ASCII textPNG image data, 128 x 128, 8-bit/color RGBA, non-interlacedPNG image data, 128 x 128, 8-bit/color RGBA, interlacedPNG image data, 16 x 16, 8-bit/color RGBA, non-interlacedPNG image data, 16 x 16, 8-bit/color RGBA, interlacedPNG image data, 24 x 24, 8-bit/color RGBA, non-interlacedPNG image data, 24 x 24, 8-bit/color RGBA, interlacedPNG image data, 256 x 256, 8-bit/color RGBA, non-interlacedPNG image data, 256 x 256, 8-bit/color RGBA, interlacedPNG image data, 32 x 32, 8-bit/color RGBA, non-interlacedPNG image data, 32 x 32, 8-bit/color RGBA, interlacedPNG image data, 48 x 48, 8-bit/color RGBA, non-interlacedPNG image data, 48 x 48, 8-bit/color RGBA, interlacedPNG image data, 64 x 64, 8-bit/color RGBA, non-interlacedPNG image data, 64 x 64, 8-bit/color RGBA, interlacedSVG Scalable Vector Graphics imagetroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)XML document textASCII text, with very long linesexported SGML document, ASCII text ,8?GO^gv       R RRRRR R RRRRRRRR RRRRRRRRRR RRRRRRRRRRRRR RRRRRRR RRRRRRR R RRRRRRR RRRRRRRR RRRRRRRR RRRRRRRRRRRRRR RRRRRRRRRR RRRRRRRRRRRRRRR RRRRRRRRRR RRRR RRRRRRRRRRR RRR RRRRRRRRRR RRRRRRR RRRRRRRRR RRPRRPRRRPRRPRRRPRRPRRRPRRRPRRRRP RRP RRP RRP RRP RRRRRPRRX)B>9wireshark-uiGeoIP2.4.15?]"k%b [Ž7$V\$bvgP sf6Fy#/ijPyT-jߐx|6D\+>s%[QIT[_]v_%=g+bә&30f4T//p+\¢Iƽ0 FҠ[;@ (Qxڑd}k2b%D;tԩ + w*N͗Q@(G #jlq0^^u}Ġh`Jk K9I7t v@dGSQ~g> ,@0.[fx7rPt}0Ym$"&Dl6n9,Sj [ͦh&^<2jT i驄orQJxipZ+tX2}R-4gaXRmOFZ#z=#KsbFX#(PG^=vSޡoW]Ē#Б L[얽{E2qݹC& {v3@i9]R>kc"vḺBJB%0mn/O^ ]E;'N\"E`jB4fQTr`2Y/sAnsPM|75zݭUz/i2k,]:[[FBNV`ЧǍi2 9h[ U4!wM$ZEheXfV9鏭Z 3SXc"/)7tLL9tЩ[c|9cabczTyZܓb"ۯ 1,"p1CSd 5#fP,es,cQR|<]r q;j҄l"A855iE~vW6G(nhLWiw#l+%YZƭ.iԭX 9TmVF9!ۊ@) 7)#vF@/&ޏ >aEVMA'd]wJX Q {T5:.#C:y,Fm4Yrrv Mƥ< GpڶE+F)OTs1v;AS!gu*zd )uyi]>i7>)l_î@O9eLUS pǬ> TGqu[QE1Vl!@ 2C Qa|꧒с$fQhexA \yCuikqѮ@RI𧼋gk&bJY$ѢwQMF"n!`gNZju=h_J5Aj쯍i}"֜0 ϡp7yE2D?[Solg@"=]5#ee r5.8@r$[V8wegsDƣlcl_|%zg r>>v/Ե )|TǾ8M%z^AܵnfmiM|OtX\Fp6>p2SE= 0i1L(e9GY~̩+zUHGq#nNPXChs3ro >z.0!DM@s5S%PP̹xQQs;0@ 7 [TNhh c iL6$֥bw 6D6; Q7EW/s~c4g' ~*0ӨL_&7*W], YjShqQL 8ˬ~M$=-v&X@`:ck\)27r>/%FTؚ|et)&{UdBYQefQj7t9!1'V-?CF8C y+Vhۿh^]Rdz9^AS4m=` Cd\]äؼ﯃+BJI1Vū- ?O A6tX\a9Md"0%%$ &v/1@q; b'l$mNP`?֩s=f>Bbm3}ضBJ/ M}D"pX'RJd;QE*-Z-ˉ˕ r#?`x$*J_хs3`9(J'v͑ZNI>%VLU/Jr)4u%e5 wӉFyc3 lg7$ cA_V_iPC"ګ>20:U"߽W6,5t(eVŞg )doDrj?\|;΀^1Hc6dR<OԽ)TP?rh/Z͗V{uM_5Кl6˗|PV:ʷWoK.`Lȳ4(Xo2'M4!o4п뇓uG4X]9@S_ Ĉ;fvmF\kd2fgh3$'ΧSMBӰE9k,TrgygҌY:go^˞zM%!1 EJ1\"_A}vN@)F#Hz  MQl OIa*|!;,cD}$*9=E)%["eҫD򋧁 b] `'8 ^ą^ / >(n5{۲d*W.=mG8ǠԬbв/pii2L>O{ з xxJj= ݯB|'pCd2ؾm~{k c|"y58v=p[ Du rdmMΫR9by$BBÌp39ˣ˦<ٴ{eGTkN7A ֡)E;sm:Vo)?) Sd8YXoCw7XGXL>eڇp:چdXwP$qH}sݖŸrF z%%S}=ߣ=A Bu9z-uEԘz37vQbVŨDFr+ S;ƚܢkEoLNDF7.BhdGyzjm:X(B( ,䥔移b:x+{4PLOvꓠɽk,BM]>7wNQ[I&59G9@=IT m~4!Mj-bN*,ٛl)*fmY3%8{8=XW)F`: 5\:LUycJ#s+%K a콩o*p1 8q37V~hTNDf?傳`Hט[ﱨO} Oq }k K1~R;ťNNP5l#V}@jv$yS Kvc^"q#*=0)e¸V(^ 8DX_f5@V1[u^ROE';ݼ 7d-ƽMﭮ<㖹D.ϋ_ztw*Wt褣0gNÿ=kc]gWazYKxxZ >x5U';AgD[b)s7:e`S뀨|nL/R$8xu&-<E9Wh`lTX7%tGQ3}A97#=lc;} 姲%EyveY9KH6-s'g\3_OVqյċ2 cU3hX,N`\b\@erboh>ZLs 6^GXXdi yV2s"[܉`3X-_=ݴ̾rgb|Z(:Yz1kGb%~pzBJ`)%kJT<󪚮dY/i=0߱ )IIz 9D531ϚC22(NeH]2"D۩9 ,`4)tՖ@ڂ]/SbíRC?Im~p\m6_عf s+H*SLEr;Bp3aT.X/S@<毙&fB7x-rJ]̫^*FkCmϾ&u&+Pzuqyܵ{O, ͂RG'6O*_<3TLw Z^FsܫòL:K1alzn. /Wt,iyu S^ L?;Fjrdu\*oBcy}/z&mAd^F<{ 8L_]z]"4VQ=h#5` b~vz,t->K]y'$O$e\ 0PqJ\<0T_+UMT_eR\d~?jLaWku'aD؇Lȋ1ep민 aN[GAE ǶAw}ܢr3 >)(arm=?BaF3nl%`9V匭s;0[]!}Q.B MUp.oI}\ܦKKuڒ꓆EKTZˢ^%ʿ@-c*u*w+ {:>Y+XO[H3InZc.OA(kU!T+dQh/m ڿ~d*TP1ꀎ-ÓcI/}vDxSф j=fX(^2?!V=OqJ@@/w4C K߬UbkC^m՜QU7"h5{vD x*&u&weBh[:\<R;>dtzl>41D$ITAu:X9SmMI-JOI#-'AM0d/(]0,<ʳ_Cl$_{a˲$>] PyknrH()`&,x L8G濼GKC.~"ӬBI\nA?Zx,Nj/`f76EKG[[kIRHֱe.2J@TۥhĐu#RDWm@ z=rvH6ISzm;< {6wWjEl_B1d֟WVam*mFuNfKP%VS+c n] NCZܟlcNuSl0nmչȭ>)gw nKjZp&&r@I4*.o}5TfN٣;'fK+!X;2XL^ʴۙ PEͳr`75M%cS'-p!>0U%a@^x3Q(@;4*\w &(;Es#VR /{vI /oS4W4L$YBSsPp![4h){{!:5a/pXĴ AH-}*몧4A͚ڹBZ2SՉ;G>逃c|v`Htx hz SPeRrwhCTVS07Yw۲bC:x:gՂD#TJ*7~w6W<~Hw&- ?? ?IJPtŒ'Z7J]>rt l2VU=&/u1yYE%om3 l5wAJ u"? TAC@4E)Z;.oBSlť!<7C m8<<8í8֕.!}Az:ޅI=B'׉Wtuj*K4T,<~Mt<2\7O7~ xꮗhG vx4$5P/x`+d%鶻r|vMd-g#Rj=̨2|͞*)G@ID : ݍVaeN̊qPVNTUtKxk rϤLzx嶺DjYgWmL=rw`T|R;{ٮKL7T*t1Ɲ.*gVBt:$=%8" 5K+ymr&}_ր1q/ٔoj$A##_BI@_? l\h]F'~b&L7Jb-[7} ]7絙D\'ՆP#3GO5Ә<mfUDo7 N&~!q==*LFA)xEVh+猌D݋;O܍ +|&~H ,Ma#`F"S8fl.!#S鏝ˆ![ T4ybIlu⽼+EJLeQhSK^Վ7uDm Q9Q喐"0bG< <5 ܮV*F\ 4qы?&tA!'|H4QiÀ}ڷ\2K(0=l&r:w%=f^DJӟT)}'$PoHyxL& |=K;xvnV =|09R"r$!O@蚼|yQt5zT96kߗ9}ơȰxB'T(OIc9?8~GIP\P,7n4QZpL)qd G JwfA=M>6c pMΔӃ4W*sjAU%YPƖ:SC H}sð{P ߅%e+-!ύh1x3#?YA7wߊ |(mYmXƔEWL-ő'Ɲ@<5U tʹr Rga\*\+L"rvTTd$~P[`E!$_2/GXb*C 1ɓ)뙚dYF)z6yIWQdA,=Iuv=~ONsNtw P&N3v״8-m[X%󑫍%/ta7{) HB eWtɼh[x*ui23Ȭ!72LPD G4ànB~=e jkCl2_Nk5V~ziajl6)'E#vx%v!l%FGC-r9"'r PHXuڍ9Y UL%)Rk-Ē+]F;ljwqO%`^lqt۷K<? K b G55?Avq-'䑑6oÇ"٦I2(yh$!}%*/(ȮЇF)҄L(mϱ£BǁAvcZ;٠ vglHqce&1u%ToZLjgԎY/f(XsmXs_y͹'̑@.!pBd̡z[x@ؖ[z ߶uĘyg/К6̘C~ܡ kֵވg 1b;<9G~0(T/;+LYYSKxQ_o0./w̻9ZI6J9k?5Z 6e Cyd੷M1s biREy 0mH6R_WƺZ/"G 'uz{(l:e˅=ʸǹ"C@oaS,dJ2-@JOQͦ}Dۈ8bZ-ޱ-~PYD9_nE! -']t*mڽџÕ[갃Cor5E}M#V d{~ BonbYUZxg@lXp&&v["x8^kX79c oP{/!;1q\'qd$]LGP&pEi+qr޻,YJr2wXR:Xƾ1߹)]ESI꼜ZrQpCԓPutohh3оo.O2aҎs&I>H」 2kxAԚA 9loꝥo"Usfcy{#/]#`=y Ֆcy4 ? ˈp7'V܎\KhlJ]_)eոR!ف%f+?@+jއ_P;Sry"W&n;a!@{CEp5MF]&0e׮T#zfH;tBpέHu8Os+gZIOrI,щ9z>loooU WᬨI ΅ؿ;hc \o;bM a:]0ᩞh\kv@333hأΠtW%*%A5K^d|IuɢfSvFE(0=؅͛B3D-p=sv^†{Q7u:n+uU$O;sq(>W\f@q:<$XZCe/a޵;`=Dw-`9IxJ TM%P$v}=>*"zaG/>?,`_05Hߜ׷0ʇ~.}d g҈ߒ3&(ȝl d(&y `\|3(:KݯK / 鲻`KVcHðaʼnQLCHmie&54 S"֍}KD~>@q܂]!1R`(1x_[EM v卒cv6/0p0U"loՊ)!U45++$f|'yY4x}5´aU(?NIB%@[4*D4<;E9jqj=p?PX~.-=*.rkm9"012(RӚrdwnsS(p &H!Z:(OC]:FsHЄҼ 51 qFݶaUb쬎k#eOV,TtC Һ;~fx킺`AMHqvoWI/ gBؓqDBĹ(T=hC(^>k6Tqda:iHW+l3FP2M Ὅ"dGWն ^l_sLW ‡'c^wl=+7jH79ƫⱠl[ecoC= mm'7Ii&Ht? #oӑɘo8] 2諾EF"_MNLÛ* 'WcH]x\~_ agm us3?Hgʦ!W꠲`rWk׿ōHarw)­Z1iI'/`ha';b7 6Y1MnO6OG@k~PTȄi"ULOVU3Ӆݶ{EF:4N >9d@}90;1ٔ9&[ZmJ w-+!?ureӤ`j`#=~|0aI}y7a)e>%D8Rty$QEL *j\YJ㐽UWOqVLń+|Dd)R$U.:lIdUuY/MoLjc)rxY%C E';}KM0(cmS3wdrZAi(3(`uGR`ZԸKB1!ILy&#!:30}9OoK7"9/J}$Rn KںCEG,)Z:hpP Q@YIKw{\C /f?)Uv:E3t2-+IÍF~N+g\/DS5:" 9"K;G3#čīj#'2-;g2>u _`byOchf0VtP"_7}'@#33G kːP}ѤuzV]J%fbiǬ|IWع߾´mp$?jIY(ޓH܆lC82H40LNZCKV޻OlCUw$hk1gʓ"RvCAon&H3=yj!\_ <oWi8gőVE+xEb{}C˥~I3'+x7genbl0rآFΜB4^IsMdΤ4*,-y<Y ?P _R; p5Iϖ%w!_i$Ջh~Ts.ޡ6f;0xd*cezE=g.^yrk tbH_흼s=}~ƚ rRktw d=aG 5\U8^kG(SDZΜ$:lـ~Y=noQ7l;9 Hћx ) 6fb-H~hU&ܘ_Y tR=)[wY(],ڠEQ8\=jQ1E ^*). y EZPM욠1J4R·zwnړl WOp^m (. 'Kkkl퓆2ɛ9)gxNꆄgqRɡvyGfZ{OwjzZLds}04y<5 $ߢ5?=y#%zWJO*[G#RvU>E١F=,'n9hLm[eҴsC2$&QD;$aD%e}795?@ҿ"o}N^oXs+]0X6ۉ'*VW, xHiJP ,feIʋ6ZsRm1kuxqo4& eԘe թ)3Htold{մ\W|Xz: IE޹B?C3<2&#[wዯ- m,1.Գ q2czqkG@0O d4-Wxm!K-4(YeyV"e0}v2Azjћ̠)%u㸤=`<<%qt ~ik> PPHc[p6hmH>D3v>u4m9\!숕;=$1Dz&8?$Oht2]li_'Ԯ 2-VS d8(Ɋmaպl>',e~$l uHs@VZi{r 9B O5^{מ\,3OXuY{0x'KYF.LR?#zq3$SvYhkCLl-j?pz0Yh|ǠzBkdۦnIOEp/}5F.Rl¢oYLYY  BɎ˥5N Fr!ljధwxa~u +L/֤v?3ٛMh$H_0,k=t[w]J1 :EQQfBj9(T+4 _ II^UCNcQj*f Q5 &r,lO?GQo@|*UWƘ X_ _ųzTyzoKWȸ`mJaFm#Y;x` Mt;p3"{ۢ5zsq KPZ|5E-k+*k>6Wд, h%[Ϟ_ӑv7@B6Yq”άv'|lqn:'o;j xn6@{/z($|gtS^(HP/#  2T 9ӆq1=Є; *g m{l^*p!,tЌ$HbM2tQ#;>qhG`Eѡ}q,QDZDz-wRz< " G+*5ghu9o%J` lW6Ad"\eӆi8.b'&u#hb9khH+&Xup%4E=׳g7W rn+jnȆ1P=YVZ0 X hcF$pDs dbBk-s={"49H$ ^A Fsq`;pb* u`~xѷ(DSHg!'dJp PIr{6rQz! qz*}#.}e2 L"?vu)NuX\=uMu |n i@l"T.x7N֜JH >& 7 :` 5ؖvj='(7ib"ޫW3 >!ZL.DT?&01ү}/oŲzS&]Mđk?v\`YI)8Σ#FHr^[ąZt@{Ոv zGsV{'!k hg#W7L! LIƗā ogb"DP"pPI8'ސ3 RxhRPx*cLG݌O}sTݯ~aU94}zIvtX샆BmY-US7]PB+S_.l#X^Jy+sxkc}:\E] ep7\1Kck/+΄ Lv˛h"jF#/GZTVl>0m?v>He`nK׳YXux' QyMu[QmJ4}ו-arT$ 6w}KZǤ4L'X\1|n@)W=xaXeؿ} N㼻"!EBkUgdkum }P*uGvSSDzS^!0|cXa1oG& Dn2uZ[c3 !3Jr0m#TvpbD~,ɖJ3$w϶g1UZmx(9G& "T3xX+wȄCvTKƈU#O=(+L|w J;ohDc$8ڨQ?7=@mq֭!=_'n%p4s4ijatPS@ TvCK͓. ɔ#gC=usyFoi$! ec~قzaßb@b(-pʁ}nKUen;R2ZL(!g `^󘟂Qm̵J9澰ktwFHK*}G]\A.@|RGT*?#P*F[ꊘ < ź~x`1r T]voyu+Tg=jBB{|zź'`,zsv?@XGD*0hX~]y 47q2ln㡏;AzTw7Dq9!~JJkTzeg ;}3{M~kF}d|Ky)bPQz~هmD5Ql$ ?l{:,iIaKF0ѱ`1ƖY XTW>f`_^uc mJX8\߬|K![ڏ~F^l@4lTZ\6俜$d^=m e:Uo^rYQ֭ $N^e +rY's +Gpru%fz^`m&sڇ"qs#~0hȮpk%9[c}.=KMHx#+dEI]B ]"^rXH{T82[c9K:-^yT44Y \3O? Z9Mepj><>H/dfck*Xn}eԤ4C,81ާ/VNDjp?f4{J2?f(uqf~87߮5.} ke83Gʸ9 y<}.V,uS;fA^a`*;ɾtfeŦ.:'m#9xR!OR]ɐ6{hMc9VCVRIJ!s07{\jn*'iu[4,_O{f /U+8ǛbD!jŸ>^*IG)+H^JXBPFkl4Ek Ξ/%U<+G Gv/Vj+֑oS1,lXqKw-c3m8EETfP:bָQ>=#4TbO/@e7u慧2 aƍRiE tApr\*)-Y!U%%p,)f⤠r"A+YxG^ǥ:a8 Db*OE$μ T<䫠Hȼ߸5⳨<٥fӏO7}e;r&UU}oW܂6"O#&>ZezBkjc΅ iTG )n£k2d < x+7Tq*؈Ee*@XoFKa~>pzx%(9B.BgE+v";dk)<Ϊ:SP=HD87?P~_UU LQSnDɺ4"Uq okM %^wN)!.^Km6nqA))bV530O rnd0oxv0VLsmCf7Q&?SY4 i#颢Ts!onM_R]9I|*P6D^g'W:=DDʆczn*PN22"v̬"p{iI Qđ$O^{i&` 28{z7:kְJ(^ K-}:DN @62:H4P[M+Cy:}Ȉl/Zo(=BCG>kshޯ@9v'{^h1秦W*%셲mϷ@p]"73 D0#}ġګwt苠Wp7|_'`%2˼aJɢ-Ed4'?)7jv/ tPZn ^(`3 h[+c3oϤd#+ugT, =9Yu>3#1y`l tYن@6 F;YK!O<<'2Ūc3aUC'Eʩv18SP;"ѿX}O8t eU)IQ틏IK4h~MEp2lr #~ _hEI 6֘d9e&.X<ơЖFL\p ڊVe5ˡFjP-p@v6;NI+p\Y~TwFLʵFrMJ`͞Qt;>RsB'ng S6f ̑DY4Xڪ6K5YM_C pfr.H lgB2Gz{Qg38{&R{4c_J#*jL :x 3O{31|>-xH،+,RяAM{S_ϋX+~,(YgZ'GdkZհnI_òA0*"CVK g.5jXZv_Fܩo WAc5sp[)0@Й03D Acί/6K`ͪx9/ܶ|59U<d{J17k/Fb;}V4-36m^H aZ6&UQ_!%!RG |, T\^ViORv`[p#^pD~W6°WoC 'P7ˤU?>bCHt>poV"{O; "*3axـgjʳ:H<'s-տ1QѨ= ӛdU s- gay0tsQMڧ!s<[#$L|PZ6eEL4#4Q_Hl+M.Dk\ y|lQstIg5D2;L,'59^XP֯L$Ěf@o.BNiݙ3)sJMᝆxH7(v$@Oz',TKy59+$bl0_--{' <7cvڟN/0*Zt i<Pim$DLQľ? tf¾uimU\~'PucM=8+Yʪef;VtGD`hE\EW-R-*Rui K%Snܻp%]`A7YÛz=?`ƻEc /,]ONi$^:B{G']<5f8R8Ϡ?iXJãߊ)/) /} \eRi(WHٙ&{v#f4C'_Zio"U;ihft3;L K ~T0ܵ {Mؙ/ s$BmU  휾V 2vm,$LçE<1}j4RXX77]W_*aL@0s+>Ϟhg,?nNg i2#rۈ?٭;<#i<@>L Ի;-Q|RG;kaOAT pOWw/P]MwN"f&QL.xāIdNH: 65G64'3E3_ Ս2BrMe֓eSa[3:>`6h!y Z2KF4Qm#?w%PF%^@fvBA(Hf)pׯ)&zQxerlտ猡v],aI_:8$=NnޭdE58Md ïvk6˲wl1/Gĵt&-b痖0:AĉM+/f J5#?~wƗo~0 sA߼,eU##@ ǣ= y|($ fm.dHڐ%1\uPsDAC\9_bGg3.2T 㠒z̡dF> 8ڴFRN(80D۰(HwTy9͂ʉ` N?h0ks޾4ΣCZj8r6Rqo÷2M&<0{:鉂&W*@&"/js`1q6m%"G`#b "ɴ-$Wj؄Y%ċs@mԜ;qkgO3,ë&Oeo9`$Y(R P|&i ٠!_BLr;w# ;cǷ,qGo"+A2(Kz zM_"Mr YN2I€I*B5iG\vOWvU J]uwCJr!5~3'7hP+)r3ot< uEkF+ŋ{\IZ[@%, (kʱ'Z"ԋW+k&sM gu <׳ر>އOȖIHS{`F*1T7Ԙo0N3^;AXtQUN~陾Pu5Ei iOÖP |I*, '+7 pK@~ܡv6Ri/!}w !s);:"wC^, 03Y.{D+{y҆OfnfCYG}"3o:. L;{&LMP>Fy7~v)m(-]pVROցO \ZO/1o/~bģ+@8/ P9GINRH$ujpuB`(wvG oM &h>QG~w }^c)o ~}5_`[gB JUbY&|;TH-4#q1Xv23HS#0bR4g0 >V:\>%5Bl˪j,zI)**t֏H9KJZ7W 9Aݶȡ!u<9r Tl5Gh3sݭ+Fn/u2JvϾ&bq,sԜ 4Ni#M=#;bct=hfHEAi@,L@܋1p T ԟZI@Dh0|^ 7V0G?37\Yb~-"OȜ9¢E':Ȑ&=֚H,^WUA94T$h$7;jy8(i*U¹BNx=t ZKt㼏ȳ 8Q۽4aXcF.9j+|R>9Et[sWK؞-H-],_@QZFU@pWR-::JXv{H8 e0jFMC.йEÚnT$a@h»86V1Z+)DCp]b _6w>&B%3~%J Nn|Bykɥ7S.&`on;~zJjrIz t_Fˈ9+@ (])9՛D( [':\7"ezk7p|Q[>\|\;w}l>w["Q3Ӫ#U[~k.m.+=h%^fmBvl ܰ-lюPi"m>r4T%bbinc~-tL*VwV5ƙg0"`3 /Xt.7I#V5.t1al|xadLmao_"ܤ:N\^rJV)")ڛʘ1Crkvў7Y߆C=RţPCmm(DV5iR)]KfNyCӨo2MZR/uI/0<_j+0FtlA"rê9y)8jr}]rfqy!9EoV"у"DSLWpDRķdjmڲYi [ul:¸AZ-~+;CfJVZ,R{ ǫocھ?9{_3jKH,oXuo4f@qԙJ0_7|jHrS7_0;1CI!`ݞǍg)}ԊkF 4Wa⒢8@[ȃPeMyCӾ!<1|I;fa!,Y]+wPf鰊dQ4&Su.n_h fbLij6 ]c۲eX3XMJ'ǂjh(*pxy8tzP&"G~OJ :'\@Sv2^j g8=R1ON} N|l7KLiV)iG3Cb;ML 8BDսk#Qw녱]\ZĔw`'GiT)-v]™ iH'9,.;-ߛP$gD$6M=pIkGPy;&ރYtv]#y8<|4C"_X`eVNO{:NQB]G'w Or%b/9ӂ3-Pb1,=96qܪt vnryfoy1UXg%|1tVt6=;nӪKS6-TĂBټ;J&2$nSKj&ȞEh/zT:`Ѫ Iog1Sxf5yKEgE<b 7[6ƊQTRėТbTfd_ud$C1|K ==EƸyEYqGi;cͫSXg->k-v/cwE*q u |bgmR3.~~cB1eyr A<@ї]-]j; m`?"[>5ԼSe9Gr6bW-h=~6-I;OCjL_J~t%F!}Dwpׯno<-nsk.娍p{ p'U}5n{NxGEL'A5F^SDnT'0%ԏ,y&ցyEfȍOSDICx^vuGPj{Ox+R&~{~%i5o<87U﹪B(nfE܌t#tE֟O~ԟ"/jR+4<ǧ/R!kF,!Ly^BĚDZ`yյm 6്\4'i&EDJM|QEܪZ"(/  _i[p@l'Qϐg .\'FyTx#12IBS:&Nٖ,{k#:p33Z R03$3hl515ԯ.$x2՛EH @j `_[^"WBZ \\-I*E.2@lUN>r1acCUUX 4!c=|y5H\ss*8M-``nYE+S䶪&+J)QbHE]^qB;B_|+MKc0N8+;҄M,hrkQ쎽~gribp5gWVvh*E[`8NJbL^/,V-o⠙q)-n[`[780Vg;H!dZ̊mq),1[fl&\X|Zt 2JF XAe|]4XaHb`\s+i{v{m ;g7|ҋq0$SQt f¬nV5/a:-#|=iq Adzu,*T 2?҄9oIBtK" 9\9 5Ï 0"k.Ut^C]\]N1xA{ ČHg;*9>mcV7 bbOU'eĒ |q$u+0C0v{%5l>3"*_6Q|3|ȕ\ˉLBJWS jߌPĴv VO=@m0 )R흞\ Ž2ud& duH Z9@i㷵Ƈ98{`(f mmY:hZQz&Zߩ܋NΎw0@E#ˣ6"~H\POEp(֫b؂u(~j1#)@XjFqQsN\7F/]N>)£!1ZWu%[0y!; `X5؇}m? e'wW#'TK=ӯwt+*5/xb>kfy)d =`yɽP4H}I?VCk0f&]"-vb'TUfー{I=<u(R\u=km Gʄ~G}0T ZNeC4&ݖg?>Qw_;OaC j)4y}O^?JènQ'wi8s !o$zCAGkC-=C# t$^'Zl]Ns}WC$,&lXz f {UEkΠ1q@Oj_"`hVD1PR>Tx ,gSX5t$"g"Jj=6>ItZ4^:% 쉠 CV@y5\[CQO8Y,Z`,4Jt|~ KX v nCbG>0v9% N@/l1- /R:~(D8`~!CE_pj1O|?(Ǖ$ۿ,5Tm~߼tոܙ֦L=;8 e5k%QkNH01M; <~[w86"u}[2 0F +x;I OTY>]%XLVY K#2Fmj/s7S ɰDqpPLz]ԝv _{D9w  fRZaPm\G)>4B'&dO_E:aFdf;NZÏrp\A."#q`g'el*kCWsC@\{-C.5XӃzj)㐹Ȑ0S]x"-7hrcy5GLL! c]߄XT<Np*đ 1Dp'1jVȅ_R| ˲xS`5<:';ѝna`Wy ZU'}%^\7`a42.LyeowLw Y_j\[nij5󫹖 ]׊&rc+]qگث`uߚ@t"hA>aCEcad& ~zS=}‚!잗"o ӯkkQ~o䅱0fE_HKU_AsO ؠCn-vinujV% &57?Àk jWCDCվbcMfGflF&LsLZtLU@֋>mÜb0S*E[e̡mӟv;@f{$9 }V"Ek¿4;`F"`N`ED`31f> ~}?SXI!=S@{b= / *F<>3љ$O n&J=FՔenLqcglURʭryEntRg@_JJNW x]BPõ*N0+݀ NÉBsd:Y18-݋*tEXѲZ|G;s3[9O p!fRT\,g5hAr?أ: 9/h>%EN'jSu"h}$' -?>R!>9z*rN@Nh۫3$DZ9,Qwb.Z>lx`_d>,& B`!@(KhlQV*.(MRoߎ,xb(Ő͎2jn,JDF#,OU8sݙ68C }7cHb`. xOI8m ʲuxRx%>!jn=F<}8k,ՅYSNqC#8C6k{=xoa.Dbf FO䵦2q3ѐ%ZKL"g(̐KtG$yYa_mm1 .ZiNqxpt=P.hш!?#N$Us楱  ljS61GW[3La3jnib"`ZC-{|XP2X)f !z=ӕq$*mLJ{8)dqDžG}]I6B5Bk,񯐘B"WUj2AwX¹7[ݑ``I߳8 JOaZbn%Y=%A`Iz%gBZ^y .xhh(JXTab,h T@ٹ-r|Ky_M#,X^\ 4Ltq0?ʰ# \~2vt- (/h dBKuo+":QP6 IFȿi2"ݺeO|3.?(EQHL\"KIydQIKA;To~ƅ@G R\.ۅcnbh٦E^vfW)<V7 FmX|bhH^t2P"{C7(S/Cז΢r$d$_&d-QN7 <&4tqO^R+ +*0?nvPitib"1đ G-u/PǺ#gE{ccmG%ڹQ%qEyV FH}\L狍r~94]m?|ƜQ.M,|H>Vcd wC:ܨ'0K͠=5@aؽ*u)mEf|X Z@Z` WYmK$RғFV v1Q&y MC/l;`\?'d 8躲"\D?j ܇XS RzQԘ*b&h08 ߁չHĈ6"VQNuMv \%t8,OL!i' V9U٦"L}U}#fe"*dF}F@zS$=TrT`) !l)K%enSQyɓj:1wVrD[l~ ]Ʀ#|gFJ&xS n/!Cx5[B'kd0K 2qFp0>P2^ Ni !xZV$])*s2@u4j̶1HYH>pW6JWhPY{ b33#鴪ܩKÚPSud|B+{N w~yP6M1bQ"(gDVIAA[ FJthTEj!GuXlsRL/$ =RW^yP}be0*b dUk)?LL~0@\-OL=iҦ` ![nJvXt5%$0vagAu\R׀{3`7EI F3 6]oaʢҔB~/!]L^0*C@Q4EM.BuvgZ$@L}h^D+'2FH2oɷ| нsJv;w _wI@ȚB+.+1l۽WqIS9x biթ/Z:(y+!Pϱeom֎^ǩ#ETN:$R?$v$@xȫ2yx v l/HFzxZ1ʤ>+U~w>M˯ FRKa܅,2gJ1vt"Ҩ;Ւt^2SwAlpX ?>Z(uqy`aW^ l^IWt9ox6cW`&ׇ(GWoeb,Ax @3+R buK]CC>>תױʔq)e*uAE'EoGO7-(؃z *p`?Z{۾8^ .fzT GINYIߝe0_oOjlBd!=nAi*rbp$$>V@%rQ 2Db>%'%vWÀM~m F:tԁ@[JH +WͷKBz|T7(̳R^5&~hًYHgQazrOlIbALEu!!0Rd<ѷ} 1MH}`HȘd绚;^2$cpQ}i¾ɞҨՍ1禋4J'=$S~8m]ǎ1M GɕZv)DA?a~X hjaݤѶ6T_ޏɯI6Z&|bBE?|>.C>X1<~hG(CႢCm(Xl+3^AD F>>Lj6^;RX),vp~ӗ=z͘UWfz j\ٽu.@<7SrG_9R% РWR95_W)q M1%Bqn'.?@ 畳7`lnTЎœ5KmjE.T9OKb,}bkb|=l^[l}N6aE( %rr<\Eө""9un=A"@!"~]hW'OW9`ZRquhqwҪ:.9!,I{襠{sfZQ)w +8/OF3 *>9 r,I!Í ?D\"T`Bqȍ<ɊF?Tmx vc7a,*(wPJԺQdM<m׺;_Q?ޤ`*GZb{.8z<ր!i"{˨Iǂ+0ٲ3x i4 i sUO/>*xVL@HpME l2Vyg6 Ռ˄Ι^\et>ZN0% ҃004K`*u?y:~$D WLimL4֑!0pE'Po4E\o Կ`B7?UfH|&8Ro~q *sN|ERfG%_W_iM׮Q/#YcMd9jN [PA\>VTG9LXsGHw)ICNq{q{%d*~w>G/gV HH:E8f)|x칌Q/hKmo(όz}*\SAN2h}wIQ7lzed}8?4QoۥJT*x-֯eP$VnKzl|7n8c*P䭦()**C23ѶXI*xV5^^fhHi.ju *_^lǢ]- q<֗(R+oLi.j~.dzc筳hYɮF3*Йrh*[xg:ɀFFUkS@H.M@6xLK2ى> ndjݷ)''h)dJ-lZ{ٿSYprNjNѻsMF٠_l* zuQGKVfɭ䞨3y10glI%CJB t-TGe=3iEebm8lǰ-d.ݜrꢢ vZ~%M&R !mug||Dzɳ`F$k@*t3 \rWID _^bУP\CM6wބ 200APPR u!jo[U۩ 0*c>aN85/[vv =돞, i7Є*,֫- ;F&f%_dY w\,bfσ8gyIpZf xGcMqrЈy lM7Nu YE I1D(L@fw9`D>DYQoDvցG ɇ5/ѵwp6&:)ךas (U[>߻hq+՗:o7]wIrWh-!PqUтnyU*0ox)<>|hΩ*"`6= .o|ѿ;xM8rp(!"i*JKr8FG@nzŷLBn. kM9MF(0*m,J n(d|9{SLID5ݸ%F/ 5Q?%O-]H*הFJAxmXqC[}nFo]YYm~1J0"QÀJ(b u-;R*x@¥ZJU] m}|U ! GsY'A1qOY;S0E Y;hf2i!MlbAipJ!joH&zj2E0ge0=)t̰VX;5mJ|L[LRg+}Hf3 91w^%ըNKlgTeKmUL""q؝2~O{cwd S/ߪ%\c:pLB7XPoa>3O{5#G9GE@S%#E!s |>sXlGp5DLpE˫[d&y}ޝE"r-z9e^L xHID ;g:"](3D.6^Dpƅ5(qق~]Gl6})T 8' ϾYLn0^MxF3enHixfs]Uk߬?nU&#TmOljPttC4Ez]S)vA/RdQ;̳ #<&^^,ɰ[Y`Րgmqf‘0 h쎄,̻ INDçǤ_*K0@I/`#Ix>W 5]Χ*)::Z⅀|34ծT IWW0Y&6|ݔ2ez.2ņB~z 4\u.r{B2rZ+ EM'Xx J q~t˘swRM3A^m}rsT͓ܔcw4%H%a>wbncB{tڌӖ.b?ưSIːHR0 e}Dghk V:JVrdm=H U>:Q:f3%zC=䞁 pI}J=*nO-޿0u!|ݏ|]9!ev@wś \L"]"zA?+'VEBWs(ZPݨ#wE%;e~Hl?X"h5B.) FjyQ+ZX2Q*کʫ&تh:!;U+8Cyh8Egi=jqj煳^~]AaJ Z[K :Nf߀y'}F%7gL얖aj~?WD PZ\ocO1mܹNW8u:ؖZ eW'|p(ywcMP ۗd#-/o}WL4(= h2զ!hX#a'Ri_3M oP6#-{kQx)8}F !f9 i~ cP8D$ESFKEnU#*֪DYƕN&1Q!ҕ$C0 :R^lMF{#&wNٶ{̺|N|:Bw)/z]YGOt{9EC5%.B˜8<6j @{ 1ll]ѸnI q>uh7]?b᫥ NA1)gcEZ-l-r;ΰjLGyH _8#xJ4KQgmpfnl#:p$0۱L|<9Gi r3%ᵛQC 1·ScXA^u I>|b튶8;c}F ?D37(gZ ćPr$? 'W&%[Rk`ńxJ!RM/٩wFl^eqGҾ%O4Wx۵pĒ_@i*O}~jYK 5|j:c v$%5ux7eAnj w_8^+SUP5& L Ge[Z/ `Խ;>)II’hk{C|*-V¬[MA<"y}*< oK{ḠE]0nGcIy1n&͖l}q:Q=irOٲ 6cYNRĸ!g9O{Jx d "6%p|i. % 2C(uDb@q/wv@H˝AVLH@0m|޴l 2qJ [Uor/\NFrL,b8;p6.T3oL9rM\=_*ĭ`{+~3= Z_UtLK"'̋(3-ې&Ie{-/猨/;uEKt#gQ Z/.pwsX|nj3 d6-y{7*JTϳT7jy = 5X*{~9)kbnkJjߓA1v4D-}<τ*e&K|оpn>21h 4VA0I1uYO xTU *i{h 5FuGIi_ojM8] Irgdt\TZl V emcV5q4V T^f~-;ߤ@Ge+A^lr 5V+M'O{k}[ 6^ODvrg ߄Hs-D_ixR#U(R&TÈo"p\<ʵ!PjagVH7{ |:@x'8I|;^]{>u"dْ|0msEyc{OamcP 9t#Ԉ`OO*ܸM#1܀:֎ya23jU Nć1y)_^w/w~}pivEA]J#O­\y*M IiҔ;|hTߤѠWjG.8oUv1sǡx&1`9M.aW o^+e@6. ӎG a@Qq{/FyZƶ_}.wԃI*K/Њb?j82_ciA䛙iLSJV(/ nt\++_ĪpiX\C"1Y9qB⾄Lp\@t//JhS-6~D ;lO>r|tjePN 8#˕i( ^5JKm\jRmt;N izG@M,!Y}jHӘM@u](H|xb6FY`gNCN3|]~] #-ԛ[.7 g`6rwC GDӶl[Tb͗2"=aC:3C-.(@oͶdWa<:yףR[Y($_M>kQ32N_wncOg0&Aͮ'yK+ wi.`rC7eRirT\s  㞰:Hkp@\Ե}UtN(Q0{AAydk"d<YDޕeΛy ɺbz4lů7P{"b%+:m0tgVΡV%ݻ `ZQc>z[|{3\. 9_vy=0۲@H!eoz]eNS48ix<FJAw/m&J*Z)Ic>I2a%+m({}  q?1 S8o:2.}pk|Z[S"+-3q;vAU$N^Ll6 #5)mq? -Og9F MQEX>5ٚ[j<7RF fߴ;ހtƙmW!Ia=Cۯδbe$(qĻ.j@)"2A3þ0S7c4>(\-.@ my#OHMPt7ZlX"];ıRSOǙB\l[i Bj&8ߌɴ<%@%P;./41C7Hl6LFFaG1`d2^ǤA_rIɣ$VTp]k饖M]mtDwFiW?tk IumQu6AW`lSSTƥ/7Y<9אNYBPՁ0L38m @V I0*)tRD|RKXe)ΙLM٤3Fzǧ=A7\p"G\P8HlA(;0ooy80ߕt}L09n.YNF}FDMA#T]Z^bcڑLjy]% oF ^\`gl4kt<ѷ7{i"p9}I%BY&N[ Ka#tX\|ONgVwP*h4 &c|pLؙMANl"hw\%ڢ6 tĜ%u[;/+6%}:H3{ X"Tqmat5[={RgWp1b  Tk+QaKpT -w/Z 9Eiz"N^u1cni>oӒJ+^3St7j+Skyǰę}]c:fhwq +wS4'3Ri7m̈́:#RD[谕#T(n'n3V 1f=%.X@3Mr,hR| ;R&]`m˿35/PCi)l0BK|U0KOg+,=XpaåHK.)fuGVI՟\X$*Mv:Nrcތ%ya,>uimS.u ;39[|5_ .lT\a! / ,83ՌH#q`_?(O7xԷ_|vk~c:Tci6gEI^6Gғ@oopLAо81bxl0W'{~ Q^%jɈPA&AQ[}sV;\*1m9uVD.ro+,_j);.9J^r%ƆZwU U9Q'p2VB3mT NLs;A i\f(Q. 7򖐫{Lyֈegc#U~WUsC.{´JVw* PD&Z`@ȘqTNz_pLNյܚld'ލe7ڏDJ]\j;GSMB u;o9mʜ'Tvۍr)c3L]12lQM"CA#.Na2 CFQ f9g\EJȞK=/ :>_IIgj2cBSjV"9)C3Y7B7[϶Y\J Wp .&>kQp>@+Л:қw MP;@x]5"LhT* _Cv\pl A5ʤvK&W0C{?-pLް_*bqՅHzLg 2QH$?=4X+ݏFzx4N,+ BVMtwch%bEՉZɜ-"+Dh_0+ 豇c;vxyڧjީ'eϣyk}*(![DD-3RI\?V˺ =T>ODžy2+{_5g ۴tI9W:Yﮪc^:aGNىq͐1q1IPtA1Rq#gz/!X+G&i8\\bȴci|אKt g[M@b-^aJ*!ÆX<ì0kVcGh . wE/د*,O($6S>z 05'{QЬ|g5hG #cqfaюhGLǔ{Xv~qPX@k=KFڿ[vN(qK޲{F׌4F-qFR?Q!6Hsٙe۠*lq3E oC!X%h|ג%$ʟYw_[2D~Q^Kq] Z5Z :aq5 ʜn(\ ڝ6Z*&`?zd<`<XW@bS~2z%nB"ǩ.95&%/)ƀ;+ tj[2S%o<ہEq{ W]8lP bfrרrR%F L#31q4YgR͍ޣKXVپydav:"C?dG$F5-X{Gn 'MΧ}GOOs2Kk?ZZ@KL{݈#?`=X " l:hߡ> =H{oI%d>q2;uD_wW^_?Bx\^9LY)3el>8ϠN$m5z:n-4A9-Ϗ;2lQpeA_?mPh"ƹLK}<_\N-Nb!">2+`~f޽kO@Qlf1U;5#- 6E"xl;ªXGiߐСeΞG=Inz;]k`54,ꓰ~ !}MH6>R) M$`.Ml&[As)Y{IVᬶdu`)Wsp'H)h)@:mS\ a KAFV7 + =Ͷ]'Bws;z/3lhzھs]Qu^sY\ef|''ה&bNQ Wȝ lq!u(VG z6;-Ўb: t8uV hw@Q"xȃJIږD'q^h7[tܸ:<@LҺ@zh nUi Ӌ@r3BSٴk ͽk](\e υ06a^m|\8֩eү*+{3w &3&؞slF/ pE`]X\P_5 id?z>22Yy}vpE]Du0y͠vqh6~5Ud65N٩ֲ~Q}An9^mzn#K-}:~_ņEvJ;;:VpnIy2)cb`^`EroJm\ڱt aRkZ.ξ68.Xgz ub,łOVxanؘ+mӦWz34xt׈2S{jM$ =2KxWVL]ܟE!#Wڳ!3=hq>-F.y1X,4h]N[S ^&wzg{#i6 QE R\'w~Jί@rrAiMtMt#?G*B3MK{#B};2h;):*$ X.vMHz IUTψbE z$5+ݯ~G류Ӵ9X8F/EdO*!PڂFa,Q"FD$*|'օ 2Yr92kLj \]lJ-ybNCT}idrΤ%bAG1$Wu!<݀TfC|LKs+=eyRE)36D2=[e0l7:}ʗg?PB](ݙ `$O-8S6S?R8l|pZtUC,_ԅ>TXΞ-8 ck]'DU&[|jWif)8lzn|jGiSY}m--(nx1 9KÌkR 8L#`c?mPd e?~b\*mY~ee6~+'T/D(.W M;ރ^.@ұ ]iqvkLS G)#J1Inqccz+Xwab#R5-XAg1[ 4+nj[h $\05Fc&XI y=CȈ;Ƨ-ƫ oc&86ypC0A*M޿o5"$avn"u\+ʺq! G0B;Ev ~ъ!.1U7,Jl3e=Gy9و{4? oj` #tS˱=_bh1O+ P@6 z?b<δEk^٨!UnKoCBOer^Kω=#i.lhQIF؋&za r.HD:aȘe'~ ")MXERaܔieO)Zxl> wE\8Z}r],cp y$p2xBL}F`mR *Pn+AQcbJHnDcZ|&~!JcȧN;Z,EQ\f>Ư*-ƅGMwB#HY`,n X:d Ue m: *IC:$";&@gk')5.R G(d05}j6FǫʂHU<ɉjhy}YZ][1@lL篊q8Y .cfnfP*5y'n_@fu[ΰ`]zuRvboy,O%9qbi'؃^HJ(>UHmHqF1jiWj,h~JH;&o8 /Xe t" Xiu≐*0I?fl]0z-ȞB(T[K#FߴȴI)p;JgKy#2D Չ1[qDž]#,xYᦤVzҏ_H CKCFFѦR}Qki弟$t(iU%U!Nk jëj!4P{kA;kCisCvIaID+72).W#kMs2[{v\g[(i$b-A }[Ô`6 _Gywzz ?ueGtY::wbR)NlwIMAe.Ѿk{=1 dvAK6Fk7RAx"?<6~+JkA`hlҘMi6q9%>QZ9ǶcY_l4#. Iz* H%F(\-*L)3Cl;]P.$kNaIgk|>R}5hLB$y ElݠPN*S[z0%1eՇpMurGӠ\~(Xm:DOLeL~<$v=Ō:< 0&X͖~#q~l< EiR0evbh!5dҺTKmT-x]ڢۛf2X^ ˣeH&ۨш?O#%(؁B azl)|ֳ8M_56-%8'i)9)[ wMoA#B o|Ie&ʹk^z67$s[*}*x%Aq}Agz,a".Y^ H0K9)FBMa3=ŗluUy@Z4$H%Y Rflf&ե`R@%S:L{VH^J gl%s=1ڒ1)u ]q(5/J"|mS_op?C\El:2CWWh簦=z ՋAV!!DvwkqPE^f*Bޡ'kC$lɝ?_%aC7>ʒ$7v C;73_Yyv +eiPm=2]E gVG>$cdORGP&Gr<-=ek0QSK;6+tv h`= +lBl@}2qϊ8G>O}i5C7`9y% G*hѿBEt }e\\fTaQi'C*q Bj& J>9֖2UR\%gf$K%;2< l;tlE%|#*l:_1cs$wA2w D E|?˧@poסB^Zߺ%m9 L89crEB:ahvuy'4>(w|+ .VpѬߺeuRyLq/uBaY QAޏ!4O[*oӴyO-pTh$"[ 1VU5Rl Y@kT |5}`|e\ 2##r$l+- U =R?<#``~[E6 IHqNN?hfxBf0?붓Iuir.l0gNrG"  D.KR2|߄V)@%vG'DƅޯY9NMՑ S&W6#HmtP,H]v{`z윛(SEN_nH1f3jP: S3Q7@Qw=[WOZuotҨ[Y%-ߵnfǔ3sò6*,CkhE}q9'B͢J"}ޛ™ND ݟЊ N(l:㐭J1Z? ʗ(L̠'[ ki2~ njus<k}PT`eqUx\Fj?z_6~a=& c: .nJ\!I%Pdtsݓ =;&44' 3VY:{GQ@6VpI^wlCZ膦}H{]ϻ:m28/4س+Ӓ.k1a(g)I{CG6_m)Էd9|Qo!A|FP|w_oXED ;\y_Hppqy HP憿+BXt+w$vwɦX`OʝAnlvifx{z" Wql%A#wauu-$y wCAE^rǫ}kuj46"h*XsSkVtp^T=q8~\#On\FdBP#@W ^\!tO9'q[{N4 ;ZCʲ4kXџϫsg=("2YXTv0p>jJv)Ն70 x;iHVBIT=a3Tr;e>~biIHm8GZ= TSL[Fκ?4aFRlB>Sc1 z_RJ|q7_D5:Qoni^@FK8j犍J苈.02FsFRv'ͯOˈWgQP-ӋTܹe (M0Lh4 @ɡ\z,D(ϒӰvP5 tb4Wd^ˎRȻ\|gp4᡺OBfn _mf54NÐiʛ9ya^YͶ%$1  Uyt .(0,Cm$a~[Q:eȄyPOzsxJBV- Fj2 vQ*y pQ/.f\OW 2 #pϵa֫t)@SV|ktP̹zsUJ% Oz>hC0#PEI)[asS3~/zzYOMXeoDpjP'(*UNJQM-.p!d#~0WŠӜm@M Qރ0Z%aYru  V?},5P2}r"}d쥳P@t:sxX@0#sT^ _ ^iRՕ`\GIA"b_UT@à`چ@XBSlA_Y"-33"A\D'P0nRD,+5z{'$sJZ;Ih|IÎ]swiK]KYb p,ɋ _⸭uC5'67bi2Bw(|շdt@YquD<Y*,Tu.hz g83c+uVM:݀E |t~2٪V6)5[{b's`7ph;׋/zF3dS,7˙ɉ)F'Gڒ},4TG#3E4{T,zAr Tй7`Wvxaҭzyhiϊw#,Y}6\ k0 /^3dAN5lCdqa p8P \cPERZyKyW7`[=AUzH/ ^-XjaV5ܧ{Pz7 4'5ZdoȢv{o;l60v."LGmbB/>Y(6mShy>T]e&ㅏ;rJ7h`4N"ȿ<̱.ylB~&ꁥ $C.Q2w7:M uWT~\]DdG^`eL2׭yT/Y8vD/!Am:@t_RاMG ]9kp[Bn^@!\FD3b􊿬u?qt*[WX;1绢Ov-]%*A@F̛BSErJbyMsHx~eDO7 A ]șB.g#FP.Z*f_0J5$0`fRB@cZ|AZuK K@dF= ]$i$$ˀt֫޷iivI/P&Oe4Xo©T1+͈?0 "v/fo.&g&i)z=D95}h](-BcrI@s8L8ch|䫜oܲq.LOKEaPhOe dP~UFZ9ӷ}@i!jvKR_;z쉤)lL򘮏5#%p,0(Rv~ǫb~.GK{5ԖaPڏwXts/f>7[_7NIowIOjĀ7|\)^Ŋ%b~eo]  +utN6u1^-1(FRKXd!+(!IŧV+R6d/9;6wzRLV7p\`C4~|eoO@NywN ms I :4.}X+S T@Fxd Ǔ %^}g) VNl1CƬ9k:/d7<]qT T?ts~r$Sm h雟9kejmg s1Qpw ƕWV2dcPo!U:~ϻCVX"VBeS&^ZmSAV#ʀ0ɢ^;ª!=[ o8g~ɓ5 k--5ʺjFܡh;,b P󡋵0{|1svѩ72X|q9Bw Kwq/adp^>.qK)a"|v#uш~z*_nDbtw6(TԮ H1Bwb@VR$lݷiL /Z=qfs ֭?v_ {BR[ҏ7+gb36&=+5`=y ĨnRy8CdpۀQVhqj)*h-3=$ tJHӽ:=ԨQ;$j$Le}ҕ#{ a&rљw 4%=soVTh=4.U^BY6%Z>kd_p&\p|l}xTfwy#vu[J1Oj6Ao՛qʐۘjߢYI6 3MÄߏ/Tz('Wf8ﴻ-[K1r;ԿɗڊJ0 ݹ CP{mK*U80= 'A8-c+hpclձ=B9$=s/gQVjS~&w@ˣoω8V ߖ`^ṏ~_g/|3NiHIj&氮y'+T<:QǤC.JI?'Qq! R_ݿ`F9v8OI|@~z^y-=x/(Fϊ/:9xpĄ'^ ciKBߗ%]p?53EXz] ̢xk8`ȯ-.;7 ezu3PNh'm  T?1mzmѳ^jDIAPi9s}iI%2eԵ![.aYVV扬7NYS%q),C@7^h,fao4~ڀ'{DSQ 5TOȭߤX ;]ǣHj ے:L n(&Y`;\!CLfq$y9Ү&aQ؞mv۰|C@yS_9CmCrZS'p6F UV%ln0ʂJyZV5īY.88jV4&asET;'ҧiPXRBUo^;3UnUa^cEB3UՐ%1ƑsP01Kl)%k829?dOQg{;IX{r0ntI}!WlNYd yRT˪Oum+U|8Ƣ><硋 OMordg:s)"5fږ̯9](OdaM,0>C/`N凒ۍJWj͢(> eZB @~$b@NΫRи4'k•S .+DDgFEJzy P;Mb*T@O!s'p3!% qr$6 8ю>kɩO{!Ъ}y@d<̟·{V)_V#6J.r`;bjԭ-gZ.Z~2P/MJpzcPL^YIr.5S'2}I橧a7.CMcGY'v/o[xUH5Yoj N`Reo뇷Qi0PskcgiӺ3c@.yh1X){ԦQ͗bK"lx*Avp?_rg eˡ,9Lq<"څad,&CLmLWGrO$Tz/S5%rL!_uz_7 ',[r{rrF$z`dvIPԸm(m&OB A5F t6IJLlB?PnT) Ey8E%<-la`ll3eItã@Bx&naP<3-‚j 2EMX,Џwq($2 X*>*Zӷ4꥓ɞBъW%]Jvh&r@tߟ\??SPJ8#@z !Wz|^=gKB'8@ >&ާ҅yujTi#¸D{/p\>ѡtDgC|byPkfCX=+J.l\k0)jQVm&jBBpd{3Uų,%1h9 \i\ 0.G^B74@*ŗl{Q,yj= r؏sAI5<˷F-)Lb 6::C,jV8 8U#Ut;CtbE+mhe_OXQv*n쑡\xe ^!P]%BX$j^VQ%D5ra&*'[, 3-5? H6pesO13d1oEkMLp tgGJeӌZUFO5L 컙]&P`nR[PlKp?{V&E&0sr¥~VaU曎3۷.Kޥ\p2n =\eh> Hx5P!!bnq-Q́2x?;`+%= [M/Y%$ 0NI'(X[֏mAalb7U *IG4 5g&f?^y2J2'GsyD& ٍ)CuJ+JE bNuhV/k6d>UMG yՖ qo4hşapȍ@>e7&դ'roև̩lοݎ1{-zdÂ|I:>lyPO(JCL!Ig/I#@PN6E}&|' a ~!]]Aٴ]XԔ$@4hHI}Mڮ:$8K bOcjWdϜb߫k7v-4Z2X>."4\cMo癑0'#y_zB-8wMi9S}0ӒqD W?Y.t0FK%QY#IЖqiB.L76vVD}>fJHO nK M'{zZ zzg^f7E!Hz)H5Ɣ 2VmN 9kV+# ٫ =-[(I۞(^k1-<u~_T 05SYf{Pƒ=#ytZc3 uAy SQb?Mi8P $%aSPLKBFI?q\[(>EgI_B{:Yj].58C)ޯ5K7㪆YW6(/xZ#;FT7Z`;UkEG:R.:6wVXOCGtZ TJp\oaӳ_݈a{c0trv*WQy͌L00=KkJ(oG^BS-Ƚ`XQp]ꖲ 1 gUr$;sK`IrRJ_UD٘OR%޳:ZpFĘQy*\FkE&oMEGg֣3^T)r،LWX%a5߶oEid-G#{ssPD(xՃ'#D3gR3 g 7[h&ڨ6䝳S>n8+jN)rXdt<@HO';s)wuz惼/I[%q4~MU",$_ļ9o?s_ήv?9M]ָo& jvI<.1kTwvhIl6mYq Xo[wYlBAOH%37yRQ+1&(vsȇS̙ anæ7^YFKIqaȺ_KKIkrK'GD橚 &F)$ 7##=c$[+ DouqpcV^B#[E t>QY%˜9_V .,oKfïY)(?hpD-z}ʩ֐qBNqesdhe7l-tuVBElXD 9WBפE4@"Fsc!\4/09kGY s@;2JgցX'mMN]M4Z8OD:<1i;6amj90<`gഇ#se$g?mfTփ 8: `8sW-IC#!oi<>ݢZNI Lr x )62W>4X!(h9S T͑EN %8(3j]{bzS>o B;NqboV|ܟ FJT!vvFJtꂄ4!&N'!1=ws ,Lq̚M"lm5C B_xطm݈"YZZL)X q_t/4<~>fY8+E=)/Bp܁ RU$VRh۟ ̫ :کidޥrR1V$j~^I*@|)ԕ %XQȥegѮiu#{9 39nZ_CKH 'nR? Ñ+G2=^S]V ШWuh(t`:-Ёiua{2@+,/ig{?@Nx= BYH2 >~W K@ `wC^MlXtPkr'1Ҁ>:mVumH%/gK>yi/A8Tr/B3V^TbG41|?ENѓ[6hka>D{ "~LU C -36!-{um|j24.q*t:ҒG) >ރPxw*E[]^Rr 0V5(:Ƈog2a_p\Wҥj C lW+Qixh5Ӎ)w}5J_=V!#A|w)cKVʤF{Į1 {K!4:@|"G)QؑLGAl4H#ڀ*Vr.{C^ՎLZ;It_ Fz!w'A&/0Os<63 15UF\L6S6 fe:~ǽ Gb)4M}"1|R/tdjh٧}/Nd̿_!'N ֳY4_j7; ^p K8jGrEt\2P7\ҫ܄q"i,o9=װN֖ab3ThvMUgTJ /)iFZIEbM@ rQ&]' Zu .47(s tNtvS2G?Tds>'v/C a9ut)q]O>$L'+wy(^>M23uuyQ0G6Yof$ۉb'T-2[*iR1`Ky]zU}km,,cTc˯7֞\4 66O s7_ Zfc^M'oi0K9)`>U2YxeSp<<7lɾVp0vT辉|m-1Qla:hEɁ#?W¥+"ཪ6t#=*(~Q_ /i%aaw73 Z![. 1Zp\cc8M\v8͵|aۣ"+KE>>y@xmaRaDی;B%&-+} YnO4M}Y 'sL6ͤv)Jvf g5n? Ay#ѹ+W5!CQD6=a:Mh0{f; pYݷKEVv/۳5SG|]sC"V/2`wV!|yk5 ɨTf]3v(7ro]|'3?<N)ؚ hmTN\p6nj`a,3}$Xs̨]z%,!yKU?z3^ ޹GG> h`TD@ ]FxMrnЈY](Y,#z*5ː}N">+m0x>f)H(p[H{^+-f|&#BDs_ʤ_O*/A5PЈ;b*V^ H|o05BxI-XJc]RUfWK*34kTR~JE )Bś5*v,ĐhM֚҇l$[|Ű84V=EfB`RRpfRu 8hn1_ O/zcIE!dUIש mr݈`  ɸ&^jbKȲoH :_r*˄4VT350aS5,.Ns{ח>/wހNHjF? HW&S/;qrh>ph 0yשa)575{lX<;;,8ߖ1_gh 2M< *<7Y cv\7~rAsHYJBӚĦLlz0! XNYl32TL(2 S_ݸ@,KeM<1f?Qۋ gF|av&_NMwt MtxS{Jn:>f3͛Q\H{?bYmڟ_O1a ~o\>πfpG)|q:w~/ĦOz>7ު G cFDio yidX)&?Sj)*ӑb8QI_?Zc( Ȣq1n z&+M '.[-8vӼ=øR^qyuZՉA\ zjr.~;?ov"`#Ƣ/f.ο>FBK}8qs2[F%^H WB B/CDcF/̃Uq},Ghϸ?Oe% [FseP=E:!iiuq"_q+G7fɓo Or' * :Vk[ۢHJ?RKBYbC߾gf`:6 3Wt# ('KZ;}3T>Suַc5aeJf6g')~v3VT{,/s"fV(7.6xS!_ Vh< o⒩KYGa>X7\ nvmՖ/Rki'1[A= ],,55y!ѡxNqjޱ1;܍h:'k)%];V5 ڷ6z WŰC07&Og/rV-ܳ]STRy%.Eeyo/ t+ i`mc8Ͳ*p"8*o3ҽO`k擸=#: sU(d>x.q0ca0_Pn޽^A{@88fy,:=edh<ωÃVX، d#}k"{H}1?x6G(l{K$&|@=OY#N2Msp-nM5l,xtpI2 =aoʽ7殐dGfU&#?_H^{`ۊсwժ])} (]a1͹o | bW]5 bdnN\b4[ӹ @BKȎ2РI8  _%68OVt-/Vŷ< U(H#;ȷs0wG͔ 5>bp5}]'"0 b:*4p+<p;)=8*|sly ߌy[cpF5`0x6A@Wz;9H3RRJ*|{=#m!K ~.Þ y&Bqx1/l?YӤ3ϸz|10c8&<7-9]#^a]=3+cO0L'QOZҽ9 gr_(uSǮ8xtTCͣL16m:5l5*u[Jذ8b&}|{)'1LȌ@`RDGK`pH5"Lm@Xr:C_:=9݄vheW1Z/tR /=\yX  rk1v/ڐq/\H 5`adD@~obw dj+p#u풷{6٭+ιtGCFaY[]%sO讼T*$ :co*haݸ "E!%LjScN(v܉yqBS 웮?߾@kV$n0ExCҋ.{ycs"v't2lXy*2"q1f4ގS\u'X)Lg7z3 nu7iڡA%ҽf%lnl4lԑxG+IMAC½8/<"oϒ|t 4h=5|[oY/Ј vU tR!}YE(Su =iFm r88`@'uNQNoVӅU 5h=Bt}I{Sajo`˳[[ד'A^S+,{VdytB1.NU= ~#G[x},&J~VEXNN POg{EsPK.wH0]&[+MQ%9: &,ve_ԌP/=!bt3]."8n cF( A i}8Y͐Ӫ1Hl;r>fsiUj'4CuCqH_0pMA+qȞ2@gyhr*,\j 'k~O  Sh  ,,&[":|Sh'_پZO2&dwc UJӦWŒ&=Kq#LX2D΍#?v݇ 'Ӫy eQ,6^rU ]3/3.&#J(HBQR;E|a;N( ,mQDLRn\#w{Vr%D.xYJf$']o0G6lOh{$Trk;V{^kbU#}Gޚ,!@|]qs̥J&6iS' .QKrx#8S $tǍI:b7m',yT)o6&>t6lrg,(D)tN0՞ǯH%Z_c;'6iAXwZ* ->X1Ahti؋ c L-{N[-GNq/" GMW3ʚF-~/lIhSE77ug3 ~yˍ  W,/b!ŸK^30ab˺t e%aɨ1r1|U" 2ɃTKSV^V$MoR#LH[ f> RAi;Em0ȝ@)h&_[J0TIJ_>}#JU4t*<2Lح%x?s+ψ&!Q%(}dp ^}#]~/dHWb{ޱ'K-_:P&/%k.?L{%^M {#nۺ/l{yEQ:f?8 |G,f$n/+2F%H2 Lrxcg[- |xon爫'$6տA`ÒQFL{T4oW}%aFhQD"+0޻ͱekkd.-/f@# =֐}ձv(5IxO~ّ{g}? հVoK)Rt>a=$GP LuwAfi|r+G،@>sQdcDf9Hκѳ7R^+/a7Mc1=u=?51K' Bk˘͑OStNL$γ]HkSZ\("f\g Y:7ީV樎~l N?s|rوzdDU؅)E,{#v-/䢳yg,˫umE-v"^/9ݰ-6+}QWB53[=`c[:Q,Q% cš QF6\P! %uV?#=6)+pOTK51m䈳"ŽSLtڃ]j!p" \;ߨչP]j½ ^nVI] bm^#*?7d Z'=0 >) mg jS&k*I(DM!`[ e4Y&{>xق#VÙ63Rʏ8mkv};kdlܪ.Ɋ#Lvv6Nݪ+0f0f4-(~ؚ]K>HI7M$L:զp%:_{lMGi--=veGmkQYbC]HhZj$p7&#r,>auR&eYO>(,X~GN^byy~-Â7 %)4q|03H) K:GĮ$@?@rzZYD6"Fg+Rnp: Ss7Ɗ "- V i~ )\ƆEvjb=ȗ;L/=wgPi]&--g5T#e -n$(D7U [ ^_E|~E]g8csu͘o5eJoHQaئ.ʕV9 $Rh)hiz[]DHC#&!K@OP-60O$;ҥ+YXn5)Cwx"=+n $ 6dY}:.gmsth)3ʋBUw)KE(qV#8ݐMvLMc5HA1sAƽ9Gn\Fe|0,]64Uw 8;n@]ESx7ftX'YxKvU&Ixe33M%G?Z]ݠUi2_۫dL9P6T«se1sZ+';Z@C$.X/Yoվ^xyzokשrd(6 <_H)xu"TN#b $&2\b%uER>H =Jؼ%)wH^ک +)o4z4pl/W !m0d_U h3Wpf> ]rZw>UvFnv,IԞS6j勠@Bd8JTaQwXp+$h'nuf˖P{ PwJ|-#q3bm!Ev{%,Ri\J+YzjJv9G N/d=m8FpAq˳Q&*S Ayg[-eE+, LBsd+!4 r[dw=oI+@W׀BFz?N|E5LY<! 8q,NOzvEyH@_k4RGX? YHZ1.Ö9[T866mv "i-B> $FNXE=37{H*\)pM]q+HjDǟ”yu<~o[>h4HV т\V/{@lMYN, լ&if?1Lt &&pbEx?&mn;QkT:*[Ht7\vAARSo ;-úSG| .>䩵\'rqc{gEbGEnz0[z]].DQ碇E8Tq8 ΁ ^MM䛫7c@$;-aATwTR@lù9P.yۖHn%_ȯ2kmP$9@S(`[Cݜ)|RLdf/qg@?sMt'~|?]SZ[q ϴhCxIMnd0P4d%0&e_WP u1OۜhcoǧtYF t! &;ꡲA@e01PZ@Юa33p( GcB]4NEl^}/- Rޑ( w띳٪EO'π3aµ%\}1!`!wlb4zF|ö!kשOTA.sŰ{8Ky$G; BOn[j 錐: <2Uہ;Bj5%>t %ӓoo˻9ݑǤ3 SF3FJ<[vbn%9q? [i]cVt\辞Jm-'EFL5Rc|k 3}ݨ U/Pw4<wؒ}z"Hb:LG4E˜`Cn!l\kY6luDLb84X*/ ¿]19'qz=bPp\7fP) q c< S5p~8j pQ0\7kozP`3 »iRxYjDLDepH0aa`0L#LĿՋw3:o8To}(-KF^MR +iY4ՓBXJs4SRuaJ)UF:miJI>HBav?"d;OO-aUօ'!,R.=Gkݹn n}XzM00uf}^Zt<=FԪ%߻ D9坥ьR"-|6 \VⰯh`"DEp!CiFS-lk.2eNp'F[UZ85<=Z0\y?K8ǎJ +biV^7~j qhRςι=y Ru- +t6{I;[ieaZ#'cL_{^F>qx66 i`*ZNBj$uC(p'``sZ4 -MOi")~K1F`YQ-”7wAOpp^9 A~01N ulQF@%/nE\hyYb6jci.4Na  */}t*yhnHjn#ئ⿰{twI*xK S&☯r{Ӄ2WGDax* L۴(N`isR%bBN@JȀ0qи6|%/e[MlNt i&G$s#m(D֎Zmk1C|iR 2"S Z_TQb LZ-V~֌k&}.&APpBXT2&eq5= HTE4ye Dg[ogm"Gme~J;AM{@h}wڰ '‚[ 7qԪg?f "Bgs~N4WWr5 ]i"; Lh%e9>DRXO tWy |Sq{zH^8cV R 6ZuRǯ%hY%W91V2,gvTVA_ hOu/h9GT <BάP|C_am[w5ZOcKgEYjP-pOn |縬윌6or+һge"K{ @{5ʚ65G1]coy[ h<%8KiLTPR0s͉`[aHWRٷӪzo@r0݄G{zEݵz+r;r~8"3XN4>쮞;8ኁqFvp7MVH0qݚo~!ޕ5D׆;`yi/I4&a< 䇑OhỶ;d]jebB!XUY*x+aDU , zμ؃1=)3Be].Iޝuk[PS~l#Z{s54z"# ź0+r8R<ľ<6kC]j Aig&^m13f bZVbCԩ/ .Phx2jU:ѹ+R,g[{; 5B v bǸi0et~e=Mh Ld3U6ɠZxdpk$OcQ_ʠLW߮e9"pͥHf+ "fw5vN=U EW*SR6ѩ+FӅ&O^F-^S܃ijDe+_XX9ȭyI)[wu=CF=\˨Lv_:?t4llV2pOAc4`|&qA$d@,mFn`Mhg*{5; 5a蹩T.;OԎv!$_vfH{Mդ@rҮQߜ&|LHMIqk42Ѡn93M a#.A@šoHȼ $TLz{` Q*IFb9\(Va=E ӆI؄'(I1W''c&Vg*qK\{t@krUҿ>)~a'ث }/GsʅCg{,PU%Rݥ*8͹Gq.hϏǼd:%u&Vmb>Y_4 c\Y5+sL)tB.1~qbꭻ ^ܯP:nT~87K<}qp주p^ IaϨK:=Q˨9U]Wؕg&(#EH?,aCR6bE.ɲT̥kpuZBX1x f͓-FYs%HPg쉂#5yKTeM*EDJt=%Nk%"+fhm[dhh& IA]ܲ47B=ʲ!qV?G &%ҴōaWӂ 3@p]_*@nuf@ijz N&R&UuQޣ62!sP흪-k>Xp艏E`[T/eBN 1l}J--]'8|:s{ءTfU춼'ɲulv]?>2ڤ2'?2 o1%&ßb׼1G1(٥Ny¤ր9'q̐jη%Mvcͅ#Fl_4 CHM aa%N&,iT[[fIM6iA*PUں%HdSj!e/VV46r!8Pa쬬=JkV_MhMKKK9L}DWSY${00Qr)s >zh/ wG!"`t4=Y6h~JA&9JגQ|̆ـ*1x}S MS%~}VfDEƌ}̨޴{U{IPppdwJA#'"'BLRޚ3g{L$a8A,%GXހ4#z=4a51+,Ɗɥ(RQ8FF)Tέ^ f7rf;o#YQ@?nVB/3J,Cd9h}3it l %d)jRT~<a/d9+WyV:6/Ocp5vθƝq}d;Xm\J,r7 /9QIQv9֕& FDmrrH`Yz,061x ā&WXI75S1o "4TG;ks5l JWŋ(JWbLFbI*vvW+qiąIpeaɒ&]"\]n4G-Sv z["<2 vA)@B n4M+h|@xݿ'qc'lU8b\j Ϭ|>POC\2dVf"sSo1 P]/ԶZ>ylK9d'?*I8ZָèW/*yX -@Nd`XhƤZ6¶`3tieѮb <e6.<"~߃rt H&= 6K!5/dl6.١1gA .B׮,Pݱb`IhߵjAHs3!i jv̅ߨxp>}`_ɊSlvsϓ,i3kz62ք_cZ5⣜{V7wiwYC.4nbP`ϗVPEo?Lݮ/=VϾ}&<%Y`_׷߂00'dRxY_Z.R:ϩkɌ=>GE39^>T|؎|(bO:|y7OoQ+kw2j7Z3XԂY#$~nHl/JTvn$˨I0eZhTn+Gfa薧ʽNdUhDToWuZc 2?i^f@`ؠC5G/NM< -~VmFV"vAGFksHSբ0+.o~?ĔmNuNO.%pE[uPUy\5]N`&n :N yOGzRǐ_GP75*::@d}bwK]"t ps1h`r-k E)x _E =ztWR5B3YvrJؓbBN'&:Ҹ3;4libe_.4Pq ZoZϾ̢,U6CՔTlPIc!fo/h..M?M7 vU/7jFt[ʛ l((3v%!<)h/Q M>)*\C}~;˒RO`G޸OioZ5r$P9٩,`ϖeqNPU'@Q'jSKoOm#I,;F?G9V7u$w{]=u޴:gjG{ᒅ ]<.1i^3]" 6^3 v+RT=qu7>? Qճrk3dC$h Y֝g3f(d)҈$|8t';# j9rwgg?*ѕhgۼT`oƧJ~KJk?:WHtB&f idwq:&Έ"2KM.KSiRY+*8\᭒N$s9W7Z:Dv,<{:͡вdӡd+cgm e-$FX@R˻Ab'ef\PiƖ%:AtCc^TC^l뮴ϑr9ʅ} J:), O݋>2do'RR㍢`;lMI;.+Q Tzŏ"qبS҉1Hg| xF㞒v+.x"N~oS"5:ܻghq8Tr{^IaS[o}mrQq^nRaPUXI"dtg!5JC/ze(g{Gu%;c̔ELrN*10(oTƝZ, 6#1=fE阚겏q׌@3sq5pɎX6v}s2ga) EW58-t4ОᖐדEP'yTIj(Sٔī&!OazQ{N#3ua!̜)ڠVַGC'S~ı+`dZTY&>S,\=q`>MgM༐Wڎ>m }x$Zi /ٯL)T$:wpTsZ,*~8}S"öJ‡910Skan3с8 {a`"Mƣh+|HsYw0 N)D1qfs iheci|E\^p,Pp{3on76fyK7=@0?nKl ~ TQhYY ,H⣟^\GRA%iʒP p&h@F`xpχupq EhXn~d+r5n,w;ilG>:ZS7(u+q P/(%'?duW%\-at8mPxT3$%:E/4wf LBޗc쓹@?޹[~H?͔²nt6<*dƎOv(ɘ֑ͳ㷶bZaቲKOI ..[bܢTzR?:s"0SAZ #YLx5+UÚ0N&Y rS}]` @H@$i`Dߏ:qz75$?BҪ-p}N8QWÅNə^T,{!`7KA;G(#ګfxY Jݒ3`zXfd,3-'L/~_wߵi,t*FMȜR{QrXiv6£bT@.7eRҾ !'uwE$v ׮t0`q_o&c@8:/JoV&YlĵMhs7c )=Z}=89>Iu]D>*3e h %Eg]qF2#ІɅ*xJgT~/)C6tEziVFhS'C[M }69%6f2ϩB!}RJgC4PBH}LOo,cwq򙙈j0J/@$, NrU7$QLӭ$)`ykF6W (ZggeӽK&JYqyps-?{@^IUFc/Fs <](P1u؜> s:/[`_r`)Y鿘^r9!Ǽa~9/k%%}PEi9θ"kp|S3 @$V n-WQ::-j0?jSљR:qsUEh)~8bs|O*m'`U:喹Z$UT;%cZ39ZBX)Xҕ2}\oqoیUB=} lo4gA0O7 >[yZaP#,#u<EL͇Ч㧫l+D>׏?DBkG,7.` 5 ]_Di} b$P^JGq0``p- +AH?oӉKWg8cm} P>j՘2UHE5:#ײK2]F߾ZK,pU.n )1y2[:\|MAjC}HiTI LA$ke&GaE*̲f2|OL]qx,S J!5j.Z1v+>8%얼[S6>.*8SKX r%# ʘRn㄰#$0m@mT}UPjdhƮgġ\ 8]z>mac|vx;\XYc%wm d8xiImEަ6}09kkx@G]3JNG\B(P5M[3N0:d(Z;%X%)iiD9VVU8}n5|oOqDﭤ+gsP`:d_XX{X2̝2)"vMoE;.WUߕ<3: p0L}ժ|Avbk0 ~յϽ*EtBWyn Bu |Cf$n=a*f2[9԰hfU-;Hq/#LUd$zŤ%P6l7/8̣>jwRƓ6C17tn_uQ7]r1z(f !K.}Nk61I+Ow(B=2O=b|MR]ƅL3Ի^O+G1PRllrcMОS3_\pLVEPLAL`5Y_׵,éR\J7U o:"0y)Jۚ婾SL]KRT1w%-z38$KНPF+me߳m/9?Q@`%aXkAF#bLK _* :%6 !S!ݑө4[LKBGOyzeW7|ܪ";%-`(Y`[P Y*Qy@O&~,}<0•{qe𧽎L̒;KfhND5a W[k꺤'&]gCAu(-* V4Y 2k |k@D(dLWRڇ1;& ,D8蜏dA:w[]r]M(Yw~6gra6pƙ,rKn!#wd ef.uJTb2vթrdY)*$tKVhKyg|Vf=05hj9}ň,/Y|"(^h߾r}2|%mG "1cR+nҧhch`ky: [~ESgFs- czq|ĕkU i{U PSgΠpp RggpI ~v[-Q2r̆du`އ%J*zrVz"vO.7EhX˨D_16 O; uF]OVU^)eVׯU;Ob(h!b i W )8)#YKg J]&W,]h7$f]9v~]vȕwpމqO_dF-'+Ty^;#QnVGt,:N`jnhKmԜR]B_䇎 0Fo@F.vl 9\,ER0o9*O7enƊ%*5}\ V /J)zF ߅\&Yr.!tVZBaQ{MO:|2b ZLuttwWm}klqpOPY.yd d9,Tnr]۬aViP5>Ga˺f4 }4nA{NļK< a ;WGpJ:*!q 2{w?vEf>n>i~_(@ t*}Uy/!~/]-h%&uuLsY6Ba'fNP]+yC%5uX">|,`y]:ٓ[i6}bdK@S4tCGr3._ht[\j_.'L%C\;1Xը]E'_{:20 @+vs "/RilkĿm ZB;9 sTy 0ߠ*Ю2qVGv qZ=Rl~Hpc,c)(D/g"jk1OnʞZp6ͷY2dA ,, Tdže޸kĻen(^ǡ*9Ǘ")r|ȿGlR`a9Zo !gQ @$. xroxc^ZM{8ˑ$ WiiF]9K,rHiA(8xy{=i+\Gpz9Ԛx(vW֦Ȱ\n<'e:?I  rS@QVQodvDE[y HUy [ ŕ/kN[?Mn8g:mQF:-NW:k qyjӑ&J(@9A '_-=e:#(~FR]d@OlNGf?R-xGfru>1(8 y9؀Ev8V&~5O/|tbaGXsʃ1#6R tId%OsKFͬZ ]Vh(mZ{?ھ% )q> yo!B(1!p牔n«js%^H:&;Bv/ a2@# g Ӭ>nL؎c|6͇=oڵLav~`0Ulm;bґgZ) ZuTЁZ,)LH% 59z:xczł] o vB‡x7#srTf&vcm+=)CPA養\XuX,'%1h՜\fMftexNo>d>{\ʂ`;Xթ" HcjGz&|ZA.U^l'Ezp:/~9HOcLa\qvF_^3!k QL7\/R_xx M Ktx+| U38Tfs2@?h%!=LQk6sc݉Omt,@f7:3PP7r];,sP9h\(Jf"t[Gs1:ׇxYG=%[ڤ#U|uj](Pnp3`o022@ȿmkp=6n,ٙAN|-fUxBۣc Vw€H4#-.8A)kڶԕ1A#isxΒn1󁇜NΎ_NBY0 Vō`n8qb,)He5Bay_q8Gh?t$0KcX3VW پ,Q>h(]f> hQ2G7JHe dgx\s[@.[1WU!y> Asv๕r76* G|S?mq5e5潣|X{VCID{ic4CITEQ']\/́؊L<$݌{AА#3iÕ4#z~&˖fa]}rLwO̬ȭDiԧZ˟[w2@bRӬĊ|7Q`%.ͧ>Hn~XɆcu#WAv` ;)uFpu On ;Nr~rٕNEJi5_ʤr 4YizrG7W\t-c=1~I>qxPa7ql!R劽(,-/% ;6u*ơ>AX\Xy%Eq uK wz(HFZ3׏j08,cgihWS*bIBk=EHi;݌uQi6]aIDԹg9VI}o@!~+Q)@JL$Ux |P&э8|!ⶲw~b(heWF3o4phu\Xy}b}(glE<$qJ.IZPω ,JeےvWqKK:;Uz{H>puZۼ԰, R2H~dd?2{b0 $ǭۮz/`z/~#Ob[{#I!ZɅÎ7 AV9TpjB X/cKH`)C[5-M-nʬYK"nQ0L2p+}F5B6P$.Eǜ!K{BB|Y+\Gd9>H#% l= NK1Feˇtuk,Ç:ɕʳۉ-\%õnâEN ݾ+17-Fn0FV1, u/%r!Ðɣh,z(F[o&f@b5"DP]"8Ǜ B ]_9߆rwCmu4J.0xAPU ٗ! | $֍X[dE& Ɯφ:6S~OВ2u =HU?~]f{Y ʎGO},W~#@_ɼQ'M1ϒ4 pM \GXϔn K"<+5>h^euz!rV.fF(y vܜu.]̸;]ccji/Cz&$X6d9_ Լ) D\5-< )mti'2{YCckh@\UbϴNdrP,z7C{#ݒj/Ъ_AvO)^eM֑Z#iD(:2cǧbRq*^ݑF 4'Ks%Vnoqz/TF?tLL\iKb)}`_]+ǵBF욽VnEio+޲FvvQ!YS)C땭6a+Bi+;c6ރ_O!@IP.Y3X>4!:zdXAdgV1][ NQ }]C|p|L:aܻ+m'Pc^0hoWT|rGi-gw愅O"͵fc7هBѾ ~q̡}` xq{޲B`kCz Xf*q~@ŚPV hՋ!? SkM.Euf^7nDx;l<a&O/I3>MF3 q661 O =L`3e:꼹VTAҕ;VlSλc;vS .TV(`C 7X$U.m./̝ةzJ aD  sxa6 wgfM4f0[b | 7f5{Q+rYqrCiZ~)Țz)XVB_! ;f)-a@ˑbLepZrCs=GأE,9ez*If@_br9&V=":La>[:u$OHN8D5°|R_?jzdʃgw=l\ LGEػaѲ"weV=~-*z5 y;UF'jT)CփބΓu[H́l-ЕaT'A_Zx솲mrJ jЫdj\";쁍"#(!m*;pbFo%gO"(MZ[|t燏) dVŬlG$/r)]NApA}SG>T-Mz'QCk>cX~0Jshln=QK^.^å4OG0MZ,, XKʍ™lfTm B4-Pr?;Wہ'bZ߀{ ؕV!އ7l0@;*fFqŕȿR 85> q7a%fxoE*? 7SC 9¡@jAQ[oςÒي#9]lnCQ)fy`1 jȿ .;aJ" ;{%a*&s 5mgEir ؐc!Ʊu,">c>hKhܭ4'\ZySg$k1|P[LDra.zV=oD&!8.^c-VMS\=[},P6!z<`G`X2IFJBNsJ$,} hVzƋG5jSE5tA ^{7 4T12q1*o0>\5Zv+WrTr['78M9&HKQ*uB=M@vL) iC ~s:+?~+C@[?MOtʟEVh!ص.rpW9.[NQ*9ͪglmhSQxw f1 \gaAP>]Ob_!|^*_ƈe'CdIRdj`^`+ r&#;kYxWhXx EbAtzӶyZ =l6©1FPfc#PA2߈ ?(-%ށ򤱤q ;,p^D9ޓQt%׬9uE="&%kȸ85~j^EߘQʷUsΙ:NNL s ˟>UR./yArS9~#: &!nR>Sf車Eb[ N*4.hhØ mS )&icɝ^YnS BYsG" [ S?_IsRp Y=ՑVJAB/뷲lG}9^;snp2i{]nQ빗%[Nշkg;:]aP9ԼQekS[rs/$Bq.,`ѹT,lR#:M˯Eq+%Šv tsr B)q̉ٿ"f eߝ-2Kb|dT'e$$=[eUf6O*  ꒆ0?JŖSk7svU^et,"P11 m&9<0/2JJ^IriTޔG= 8(Tv4@ = [` O3@-=R)֬>q7Nٴx9BJ4T= WV&x,=n1BaT,݂ кT؎],Ԣԭ8 u@z؏(sdӆ+ٌpkĖ~`3 /Mg%lƮ8zGӷt~fD~ēJ2KP "JFW?;bןk^S;[&X b`h^E^6 b40Sa!Oe-Xtt %lUSW-QګhfSHQ-܈WzѸ*b {oNj̣SB> qԸEZ`TK8VmTY TXg!LM$vI2j 7*B]@e]޷BcӶw\,_ӔrS[d,CPZ=SV ˀ ƅ[ClA))H\{S w6pYk՞½`U#ߖ"n$1X˕i/艝b@ga4Eؔ`i>bJ9g$5-QbH:wGF@Wq^i<̵ԽlX=5;uxJv&0[i6F"x`'Үï!S8g/ monk]\Fi3doez"iqKI':M:;MZBշgG׊S# Ѹ!y\ N@M0vy&bɬ,q|xzˎ\{iVa$-8ֹQX@F_EKCί;xp5|DwjPE%e[ǾP=܋4Z:aC[BW\ (SG!Հ2DӾr(b[#Ly#~0Ou" oxE=Xqƣ^z}<>eq(G&u?jpcW7/ J@ an 1.~ezC0qoq@%L\4~b7 )ݶ6c- izg]=M4aFfUZUL6鱅R5TpF!Y&Lz@\~k*ӟ~Kh E hQ _yĤfU+nOG~#wKg*n:&zy3Zʴ~1%Hݟ#ڶ&4쥅"@{ 8fF+C)$ hnK2<Zt:~e䦲Mzͧ[ҶU;HСmb%G;S} 0l@?!wzE&g!jdR ˿0 1b6AzlM1ĎEQBUXPZ|KV#LuSƐ0d|B:>p1<>6WtDT^f/Gv=aQI~),c05+x^} rhfiFP 50W'ep2,|:R=x,+~Kؚ|PZPUƒ*: כOctMПHM\< [LtYe*rl=7`p)ZRe60BtRǦ'GSVy `3㹞ick+H ˚8?qQXC/UR c;Ɯ"/‘;68PUtORC"և J[g2=}Iګ?y7'FŌqVͦ3cqz(QWn`oubw}G0|j.sAZJ@$z@!g%gr_e z.rMB tNH@x)&P" &{WsuhLk0)y.Y8S-"N?'G S)af6\j%Īܦ釙>.3XdW쏛%tRKEZV8:/Z<L^zBBh2s ;JBNZrĜ*- uȯt~$r=ka׼ž'7JbC(FWP0Lć+K+kJ6GP.rRZnt4C6&StjeIM} g9FiOݻ{yUSAzbW:CN4w~& 8j&tH,I!>SӾ$q_*vpPe>w lyӭNoѐIriaAx#r1ql5Mu\G U[%~)])NtƫrhJ(G|!*0Oc`7sy4ΩodGz߀U 1 n<K][dǗ-΢}P1aLgW^W{9zq (X c]SʝK62B1%\ .lȡ.of9壐p\ߊIfdp uF+Jcr ܙk% %bfrno$Acd /3rLkZsf_.#^X-AOS K#=(jżUS&&f/jRp3/Ugǿ%2÷?L2=jϟqNt/euoG86Qћ+M,N:Z4Bql[UM1) ZMIǖSbaY@q,3K`zC=bj>Wmb<둙 Nu c_72*īo~ qwھ5YSL;AmcĔd`N !Ywr`ۗ`cQQz[!NY"DMC#ڏS#!a\@)F%s._ȡ6`.:y~21ֺrD^7$6̈́Lh-y7%(u蘱x^+ozagoˡ| ]¶hÛF6BY6.G.-ԞYW)\$47!rŬi #MjJ2k kddD :ahC;`{1GMO,h@34WWUΜ_/e:&ƳRbi)6¿41P: ,WiП})\3o0|P'~H~!ðQ_d1WI2,'!?)- l#"X],+c_L=S筐"p0D4tTuUD7nT":bY;OpF)H_E쵠ϪډFM nI$.廙JnLV 0ÏGծPy0!~04(H@B7c}YxnD1p21EORԂU Vf4篬dp=ڣŋg YZ> )d!uw_H#VU#+O-1nL הAS&inϣTo!3-]]# QciL94ihҺYW%_>z k0ݟ =J|),5ҎIPsh7xXS3  {ԎL/☲K2qBte2xEOR;gchBR% 2;ZɁDcIQu5} @*s+yKN~"Xg UQ(-IT>-1?~AtYOkԸu`Uy~jxK^E?6 ZwILTѢ"Ҋi_ 4BA('LF?_vԖǪǻaq]91fI ZXڏ$%Ի_I=}X+4iq$V31+R"k@/f1L:ę6-)  <)õfD'RO9 <4pv 6((2`h 2O\Is=g" 1kSAu橎O>yHEnwVa5g;"C`H"[:|%%A58Cz.g%5-HQ3#ּ5C]>e|oJ_9:u <$ꭅ-DjKF% qAbb e﮼|^TrHNcI4oY$ m@>#1# D@m؎=DiXٰ/4Rng\:5yFQA#s'τQЩC}(ljGإqo x&5a @ai9ÌXzpջ,$-p\6|O7"7_ֵ^H8?i+]+6uHқl+ )Wngj4 eqN$BcD'>"[b9wì9B3z!#t)S3!ReXv h@QX2VL|㕺Z7ALsȎjCpinJL0 ˬn;̘e>b-aqm'U#'~`VD5y ^{ŖF`L)~U1s u z])v%#>+kkgX?-}K"/uEὥK*a{M| fx}I8]#wKfeJfoJzdi;`X~\qra 1=:_9sK]:"ZyӮJn#$˩*,D?J;TYb/$fWM C՛2N.C)"z/)'3[P뎞SKbjҡܜLy#J;Ǖ٧U3ٯ7 lfNpq8߈f"S&_Q=eYiYATF7e{j-Գk>&l+߉eзV1<>j)tn:ӷkUke7HYUz+?uN n`o+lhc qtWޒwA-[p;INh5'J76ìͻZ:+xĚ 'If dPVJfi 3s :}H?Kb0ukwc✜g~v&|N=@ïDYUN>*Wi ,KDz[0)~mi$Nv3ء,oQhCԭfU^^rt3>YQݷ yk a%HeY_Xi>zˈq*7<&3b9 1X##":pܯbvDzNhjEUaHh!~>Snb5*$pL7bt60;00*)ԵX}߼皹.6RW@m͐3ySQ=(w:GHɴDؓtӆ,+wFA/%@Iľ⟱SX|`34kAFO#4H_:er{\ok[˱:Np={ͨ͌-f`"0k,ï^||+([?^\b ^*r anQhi}?50jPTJUQpԇt0IF)tmbz7G gve -GHB#rW5~1u6|w~РP=!,rD eybL d 4ef\u_>gNS)ҎQ:}-38P/%~2Wׁgr0q𙋬:-YF?Ev'Q1qixDDti^`;8Q3I)M^bnY$Ft?WV\c`N>O*ޯyZ >nnRRsT_~e|Ԯ}IcM+)T~(YN>(X.O/Z e`%ګsaӂwRC?j0,<nVuIe!+*hv@hIÞ Jj冝.53Jjͣ護'ۂ] H_`fJ/W--dv4(*ȧV2C~bLk9~SGLc}UU13y1ybŒT@;. G7G1D8s }zlx zYK`X/ P -۩i'wn4 ;Ƈ޼t #iJ\ Vjd.ׂUl0"@Tɑw6!"Ωy9AV@H-+!G6U2MNMX'%SУ00 1d?qeW^k=:4^XHavCţ{E,{ԶB`A˞)I%\e7VCGD c{Ϧm?E:bY{NBs196Y:_k'5-/EI٠&MJ7^% OzQ^^ P$˔g'X! 63IFgb\F!.>T== b%5y !*7ך\v-[. b$z;ag0Ѽy͒G- g]MC)x ܜzVʬW&~i1%MzsL EerBCNH)k(V'سS%KD "f|bWuﺰ,9^.BdI>P7Lo9w"Ý!1.i-A2n^\cD.OXf!ZhKDqi=]%Tb.WEfv/,W_ߝTFI'dr1qw|G q Z".mh#/UO^fe!2_HR.i0c/iꢼ`f+\O=8[|8RLQ lRݶq˹ `⢜d ldv`/dDoVcAF\]RtzFHƚk,"`? XžZkωtmE\"{k߇Dx.,AK>jP䶩N ?ͣz;9 Bp;v1ԅ)mr/8S5xl5ZCdtPm*&n<0R_ צjbF O x;.bԟYhڞEA῏q%Ma@~N&ɦ6j<}^Vmy4 aVeJ$(ر-41#EԆpQΗ] N P=:'~ 'h(bfCR_w?m+d\nR(_ϨpsNJgZq0^)No"ifn@TfuVzs515Hd 0 k[.`N¢ER^Sצ-lS}L"X_ymFæ?0êB.{]7M0M ?+o>L K/ |9>FN? h=3j{-wC2Ā2ĸX>L|%FPBz3^1T=T p[~=fd<%x sOJd S];ߥ<\+cIE/P,ԓ '`u7! zR7rkf㎠ܥߠg/\\_qH/J%%:cˊC3"kŁ73]=LmC8t8zb?.z t[@^jN2cVEC+ reٻN<$뢏?]4?<ɒ\~vĴ5k?pCbJRAwF^hK+[S#:̿|c.v=",и!hꕠ_o&M.-Z'p:Xګ{mYT^JA& O3*9o]S "dq3/ތR=k45$q>" iy ̃U$> 6MO(I碌G>J4/5S@^u0^&>!d J fR>)Sy>2<1^,dPK"j1Dwam{MyڲdV;h&G}mh3FBjBPE1ؒҞwK0\h4`#oycmLhߞkf@eAۈfZr|"u!Y3/!%f{Kd8dt66{ի yՏA@2Ν!(zKc sVEdt:4z?` wઞx!lY"3:|qF|aP]ث#J$nnY#$ )k!vmSB `[gA1ւ&v )8lZ\0X/y-HJGd{[>-xdc>Kgl].gB8ചjd T.lz,$D+N ‘+gJ x%T) Zṑ$Se/[9uNQLfDk-;Ѭh:Hr_=&7HBoùE%յuDtIhj%-^U7d~*.I E( U *Oqac͗+-9H@Rם@-XE\nn;ȫ%(c:pE |:YtD0{ Ғu^mW[)tj[P}i`ɼE2_!Xރr7\0A<_2izbOhrWP)*ԮL0=01} pK'\qɘ>s\HO h+:Ix!GrȖq8NJ͘Rѯ1r#'(QIUU(#NT}{q`^ 0 *2tzmUbM@4w K6 1gW(mc~f:p98/ɧƆ /UY࠲/*i^i0J<>nYȇb8OǪuԭaz~dUiX f\/OS&^~fT|jddua =~lZ ˘ CG&\1u~/%él&JMDi0#6Xw1̖:@+"J!y2ܩP~A#rEb+Y]@рt]}?Iʦ{#&zˀG E$ Q=Ë Ε0bA=yքZx6:RT4u֕ @NGV0 ʍ߳gJ}[T-.ͺtQ7 )Y Gk/ޕ~th҂l@xL4˼$UZkXqIc_]&KrpJѬzsF!wQUU mT]zӪ!G:|M%cG0\&̕yχW"޿`Ƒ+I}G;g;CbONqڎZm 1"1#! W{0xJk^Q%7350q*#\ cn2!?>↜6K!xpoœwߧ 2P~Ŏp.'z w9x{j2x-y ݙ㑏7);c= ܁pmXNJsU̔v[ۣҾ߶bm4pI 모.Eя6*.!嵐_vDGEyn5嬩l]ۊe| NӇMa46 eT`GcaQΠU(y$lԨSwQ͗Z_[8hkJ kz%(;ǼU+m% 0US3FPfhk,擐CI˷ʀ/CBgxUSn1f%ÇA\3qhgKnpAG%He8]JUK@27|i =Bw8 7yk`]bV.Vwr O<`0飇!+Ieg|bϼ.ep3JP'to[vA[Qj;keS@VA%zj2~ ͏N )ET0x33:OKĔɞ"hz^qGGSI;ՆzD3@{h^6Zbf={6-D6eK*NFƮ:8sW 1 gcQiҎ FEZCUK#$Ѱ2EXAZS_߂ƭxBs貔{ө*#Ԟ+XUxaJO?m#=@٩n쬵y>W9 דH}iq ˜{9 9‚<4 ȱedk|\l^wRVebt_=);V=y䏶;soJLYcbT @aE&'g FLT~vpXP0۷ԔH@KFqu/w4EoQJ :>T."ouŷfLk& 7d=>F|YC@Rz]<-yX0c,;cQ8n2}ѾG3A$Ywa• n;1᪍ VLfS Q.k gVma$Ũ]~-2'Vsqf6;TĖ}u'lhzVm= c-lp<ƼYHhMىw쳛۶|U jv"?YEUFo=Ѭ|4MT4pR2S ܖuإLFA~a(ǡ#B;+Tfba`1+KO-ŧ?{4wAk!r=O,0|uB&҇~V1`[}KG?^;N_;M3A+#RC} eg:K—O$YplSyJE]H<@)FָČsIT>E-Q/jcr]Dw%O؟q;WP+H޸'Ő,SLSV\J =K).1|+Nad:>l60g^b`@r!xņu3YT Fz/]ran::/l!b1Z,M([zY{* =8z]!=m %?Bl u6߽w@J/w+iIIޛ9 ~6uA0ןRVq/%$e#[זFVXUɦpܩf\;Ò!Ge#"fGyB9Eךx s#4~g't&f0-x{#ϒr)4 XcȲX:MB͜\@"%} HFUWf` u. lV:_JLgʂdK|%4+:P"ŻIO :HjMN>|;Sͧ0 ;J*XHLd-*KޝLKY9p6#Evf/e٣}[`Xzǩ^}LypkeYwTe|7܊'s$6`^T~A2Kfyك+/ݛ'*̎ߛ|7dE]oaOOxq¢~4B2 $wͫ"ٌLc>DҞBgkk01AgZbo:0#C=#pĒ/ T5Yf<\Wiim1<(P~uFu6+vL7c*u#.|Υý]6܁&$OfLcͶ|xh!}KT_JXij3K8]8Z/@\B$ 9>RF+RLU1죗>r⯤L5_g"ʊ2zmFi=(Z{B;:2;}x1e ?pJe'A*JP!l<2x6hZ5\?maRZ'a)zb6t]$aI9 5Kru@SqFȌN5SSUoŜ8equ5kIH1F`~>Ak|W.,[ ~`͡cf+kKc84|u9-1˲C9(P x jͅBMK.'_݆D&Va@6NuOf'~I4g>)jWȸ{У=*/W_5P8 Ɠ(Rp9\eF 7;&wr?l!!?*g 4^~Õ鱆?4 ×wI#Pjhd~h*G͚>A#ؽ:g2e&)Sg9sz-:tWv\$7kdL:mFNpy!ɋyiׄ01n  0nծ2`Tb], UԏJnU9YMHV`Nca '%PLf^.[~3C`(\Y8T)Ns񧣶5Ğ|vaXa]7;侶& Յϛ&jpki/G06Ӟk&&+^1J̸ S'5c5W0Wj<~LA-GNu|dD"'z")|Dk 򓸨 &@;X(5'Z>P7|pBWd^N8sDE %˧X:,Y"sdM/Ը2i8 2f%AiZ߭:_G]A)'iTwew}y%f!JWZuk^;\%" \2;ҡ?β˅K/=r`]oߤcz̛]~hbOQ̩d_.;>łC\;G(HLx}d65MdtWcgts5%*W?+M*2/{+5C{JU,7:[/zY-3~a|o1r26E/D*̱*+?60'K ?0Zy<%z8Io_[I|_e@\_C\6 ։ N7Ɣ(HENMp5w)c<y ZU!sD]?P ڼYgeї{.AkwbV}Yj͋yuPAŇO}kK\t`xe~BZ!f&XʝC,5Y`ਘԍ^f-AW}gpdU\^$.'s͕::D"2#(tv,q)'F)lZX\Te}hycC`Gpd8chgvh (m{e1)Й.'gJ`F*져6%?8V\l4p^^t\:U*J3qY7lcC _]MTqPܪC=c#jئDmV5u^UҫfÄ3M"k[WkS;Mf vvK0@z)^">AstxY;x~49Amx)dBӁ=eMo jPQI?c 4Ջ ]'Ze![nփPnZcWTV&\-)v$c 3Bר@ e`~i}Y`zkGЉa4{eyPqǷ O=.wBj;Q:?ȣak/MiۄwA|DeȎeM%:|`ݞ- 03bvn Ar|ivgI˗Gf$mYxǂ3Y@ {PAԯWN%v$y` qeЋ0K|xWXl`'`s4 y}LTk;S nk$KFpV4g|mʲLNwO:\eb "T6v(?q_ۨy^ gv/|P|)#s{I js &x$rUQd6(L̴8/948)//p="@nKDh8g8sՁe,J{ s\=J]i*;'6?*5HAUx@Pk!NZ P! vjq"oydlTTΩ: /n;1"!ax.KkPB(RK|B9 ݭV:}\g`ٱ.[(d.8\WH+i~ɏR׎qiJi3Psp,\2;m}*O,e;խmT0jRd6CTp߯pSJE^224P!r8ٜcɽT<0 6z?.VD[DـG v gplND8%Qjgâ׊BK{A2 TC`lXPY"]-eXmE(̎A L8rEBs*VzXipUarDB'U%GAKXL4,.t.V2wQ;UNV1vnŶݞBz so \닐!zmv2Py%dɛ`65qBѫҰoo*KuEv1{%;A$P[NTݨ-6X(>UhYN4I#M GJ9@C4˗Mj>)k"`uU5 ?iXa[izAk7jlΐխ=U9'76#٫S]=Y+뷞D,Wyjv*ތ%2Zqa` ݏT4F2*cS2a_(DpK #g> ]vDZ;?ꗤj]:֖J fltOq9o漲ے '3NG7ejc?)c/QnwI > U6OSMYKTw;4}' wFxN֚+(7{ f|(60?\ w8&]Մ%)p6%_U#-)3PI@fLjax.MfHJ~EbHG>O+2 Cj֕!ŰH$ 8ZD.9,aZ.K=|HY3x_:Z&ώ[!|΢=pufdc*Hjg2ӰɯE(z$aj %:TYFبQO%ح6_ab6<DGzh gu  א4(:C{o=aoV&mtW̷CFӭF_ݙ^CM^}1H g>E;@MǽI1¡>0k0*#PsL R?Q"s Mĺ@0g0y_HW@O:V2EU8<0FlvYB[^\\=ƦW7cfvH%nYezguDz S~XNe(KrFdvzR{BJKjQO+hp)y؅aJwu {m\\*{@р.6p f㤣KN7pB5 \P'U T(b vkM U/6W|sV)Eؒk?mh*}9&dʢ5?5ɗә,CS2(pm[Hܿj1٫"BKU'.s0 2#*͠&~gcnJC8ǫ 堬XAM6V]f3֬Xd@{nB",t=&4 JM )_.;鿾I-mWe-7mp.(CE뢼, ޝEof+IL. h~y d ЋWdz'->} ˩8v)º>MSֱ9sP@pLȰNN#(iDFq|)kłCĺh>#A@UJN$|s.OC\s䃪$F:L%nW|7= fx~Hk2HN/AXiz9T K-# |QModxQ7q_y=;Qk_oY8F ؀8ߓmIgٺEsxD 䄠`«  Mأla"Uibm<JIj`khjwL8b uI'8@!g ,ɔW!B]MTb O גrP6gUqhj$oqi@R'4i7!DI`\࿰9.vyU1 &z]ADPOMcKM5ipCt٬@ec4Hb#X@I 2]X4i/M<ȒԿVC<|ᣩF7(7w a5`5esp˳&HwQDP&NQ7N/AhծQM9)gv5)J VMFhI?D-_J7KR/W)::0`, 30ZiSF <7E:igTݜ5Xzy4iv1=p甗a[ٚf =JeCtp@wNy>nd/1QPgkwYmɱC |TYt %U܋; cz,plؙY~BQKypڋRV) !Uto4棍,SAqqG9@]ӏ^FTɋڦOYA@=&/ $ӊnkBxx"НjdaZqƾ@0&aɓ靪ᬠN_9N'Gڷ eط.ֈcif@|nXRđmj':V#fͻ`Do ZDXt.qȭApe|/ p魩tSf>k6" H !-rT}GKrǼs [b:o"&x,uܝ%K5uY7Hyt &0g?k ̑%s|=B˘;d3Fuž?z7ƀTzƒ3M'$1-#˘y>FznD\&N>7Ԭs')^-&3bHԽ=~$+=/N+UT3 .&YO z $f<'9Vz$8>{q䶭%bĮ=w,KT& )~c˯oخ&/kj U^Wks@[\HAz'(߾JbݣpFKsk0 ?pҦ憜IqcPY*5a"Ll$ᶂNK DvHeVU Ňy2[)&"AߵʩSAusP&~21 EeEO~"6Mi6 ̱;־ő9΍Uo-7v%q"1MW 4̸ƀd[`I{I) hTϤ' ` -V\!Ab 'K*b3 cX޼ CZd"hejK$XvS|͗sh4K͑^  ׂܺ3.|67Rw?=Xި*w0?+Ŭm&"A&yP`RA># $c'hJ0ec҈د7u4 gtYn0;'-OrD&YsQóD&F4S<*ȱ1<  XWhcd)~\zun˂p'8EgYHbunYn>ŗ~'٥'mr*խ F70^QJѻACH* ;hzٷ•Y-m2-" %A3 sAȼVhf+QF!p>{zRp>AX#ZsOo+ `/H!dFOkVfh @6qW,{Bzzd8D:cQbo,U;Apv)^T,8|:uLh$CњDp;&5X0W6NDSBP7n ghEeN;{K3;kf2:F2M`o~X1\;6|עJSp~+UVɔ~Z)3=-tDbez:|ybkmrwk^UM$jLVSrW~3d"M KyF,{ljdVO+e6Ar7-KN\F\@ 殂5RVj( )!%J̹G޹ h(\5)_egwKUr(WE \Z,{?SLAIhO%;U1gTƙyZqceoX dj搕3eީW~ nϭm$&ז|.酛H!;wA[+_41 LiqM'ʳp'`p3²wdmshNK6 ==(("5̦y۳D-`jj!dINCa8kcza:{'ı Wx:k\8Kɔk FC$|fE4y_Ol9c| i YÚh87tiUvvw7N֨ 4X04ya(]Jx&i(öYN20 uBۉuyn:W`vwV8sV/Fnm[ypaSJ`m@THy{v'B e~K$ urc *B $#}_P|"/D؄Ti.$`kĞE(EhRl2jKGsTH}苎W_#>'b$\1-B2u2:\ ZGM 'y^hEDD.pI&kv ZN+yT&􇿶+}Mynv -*N6A9\&}/\ب-3k~C@gB%"7()Foe!ۺ,)V4at{W%ʟ ͝Jbo=3Թދ[KW=̗#0^u=);HM rg86l HF7|?G%FY# )̼x9~cB)*}O)L"gsV D`0JMH2\~cv2BfNxl7~eo>2a!֍A &"軮} ASȿvհEcҽseH *?}6} J1@-^8_IBϚy"479ƍgnK9dW^YH/34BX< |CY\9èD&Jr ^ :C:?᧬[jspD]]URNGU+[ѻeM ޚz`A t/T)u}p'Ra6([OKrTTfw:ݭHC %jŀdu_Pܧ*_]@>NynIGCtG#9~x 2tP=MbBAu. [z 1p:AZoT,e-|ֳO0a` d lqh@F xYcZNuqXh߾E3:BM{ʋ0hZ/ 뵮Nz7|J2)]G)'.$JHlZ}WS홋󔑠2a"J~*r Db?,p8|],0ñWkhӑd{=p^Ķ,_,@^r- };=Qsu! -6E`\W0HgZG"!rJ$+ /-,nST5n?ܮ̀cR#0veKUm> e~>UJfD$) t#)|?B&#y z;r,mǖr)pg3ĺBsPxK}Ԙ;]aO}ポXf #7YB暄Wnx7?m)[gy)OFH$B̊"g'=S4'E'HMG&iک3Z@:q`Bn6بgSqKd\tv]XzB@iw37Rs;Mk[@G> $e^$Ẑ萗-13W%g T+goE k[ETtrg RĀ̚Ҹev41F 5^(rq)3P%|) @ ^RA`" MN_V,PĢ${`1`f80c/`ȠI*zLF KtTҜwJZ\VSkKe_ ;[؂>{;Qh*qІ+Rd&G2\K|IL-K܈JWg6{~@FUA2FMp}L¾/[5TrqA7%qs|]5?` JA$OCNpT ^ciPnnnCt?_c-I؞4K[tb`4rӆ7evpgCItG6đq:pWUBq`fL>OD ث =pg8ϑ g+x{pԟnK>rsJ- Y@]5xU*mB͂@be{{LG^aC.tN=='Gr- w&(Đˈ+c -K"A`bjm8֥A)K7x+qz&Udل݁Oh!d1RҸ>bY~A@aq J0,ɴ@aަ2N;k۷qv}Ϧ(|f~.-7]yͿSexl3l6y:hNvUa>CUlצ JO.?Z{ wH]OY;iKXQSC}5;dmdQOȾFFN$ y鷋ϻ@2Yّtn%WU7g`O w4뇋YWGx ]\y(*8pc$ɨ"pyM4Z%^J}&Utyمh6ElѮE RZkhKzզL32[5vu9G4`+e;ۤr-f"2"bP~6<_QK!7PLb\'4IB@{ʢ 4x (&Vֳ_gmēn;j&F f9DENrTdpQ3 F`9ĪQL8rٗ3׾*h%tDgUS᫣B01v¾hI'tWxL>s*ݿ:y?cN4pt'x?-Ol۩?WpP4exSK@2^Χs F_W.c! Q$`8j\9U4ߔ'֏\BչA8-Lu4a _~lI~n4R\?b~]"{CEA>ɲ%R / ޠ3ژ7) )F %K!jP~DNTMT:Q.O={5R{է(CEUʋ2K?b힧l9]Eciu*'W;ˁ~nG2ZtFG8/R! R:1^1.>fL{Z゚̑}ChdK,4U7Nr?v poŪeZHERa.Ub &3PP HrCZ&_49V4 ߋ0}EXP'W^ä%`RL_,mJG8;w IZ+۞)u )"BEg \7<ط:6zj7 "0SA ۹i5Ԣ(kY}qe'QjZ+ϩ8GS㨬g7%;c=,\v%=ܥC  i|"TWT9:*%ǔAoN_[ vr)MOׅ:{]{X =pĔE>n0O$V5?ÀoQ0xp*v{W3_ӿr$.46ޢFt\7{ծ`~MZ7+ ud0r+R++OM1/^zeP%̞"E7CjèduZ#`gOy?<sٚ7 vDu|T?`rCdr\&Zԏt'WV%cJH u+zz9uU|QW3G=}t# '9Cт_( c,Y'r2+uΠSvѝf}s ,a=ں\p-6j_Rj HB<ܥON!Yeg#eD-ADoQ._'vZwUD{ݕ%տ1cDw-3L,,uhRV3oD#IOA4/\D:A(#~R'μ3 wu¦ ;0 5KJ1X:fó@ x]bx5-daQ%GU)0vF隄lGaMmX^cS8yviGInCO3&b!lZ?=Ѻ4fm{$_`gG}h5u,63oZ/^SJ@EMZ=5uԕ茓;Omkh5}dT=BqV'^u^XTހGSÖn'׻&׃Ehs^]yJx2r.ٙ{ŝbVwq-Xe;Q'SLCqIjP'L=7c|* >gPKޠ0l}J1g4s`wE(.Ht^ l3W Q?}'&ۂoC1 KʵjArϊ zQ=M=7Er qT/dfdiz!jI+q{~2Xi3 <2ƾ'ꔦ[e¯#6fr>Z)g$&c+N wb&? }U nF֔n:tD:rIxJJV{q8 q5omxDfCɝ>k7s@E3 1^Yy4D%[7ج8s/ao7^DM9J<371E)F!ȏsPͯ$. Ag$d%j2ϝf (Iz6^,Z]Z}읕A쑤=tlA7ty=^$YQ{brIcTD H/>If5$C!̲#o+kݑ6:v0u^=lqT m,``<37U=__qdK@rW>'-Ay ol{YM.A[-HN^J] ojoGjV^oпev&YDwunjGB3=\g<czgPOD;BOW&UAtS;0c;<@GvKAQi]VX8]abģ%Q!&FE2dVɋ,`+oߵ-sXzk5 5#=>ͮ4Y ~Ck1FݲWZz#?}I9HAHQ&Ն& {65cw: vtR&w7 '[Uͼf>v{Ȳc&uUd1z{΍EN|y&').쭺zr!&6 DW ,T[5RrԐyF/u\[3OG'llC4laCT5G?"p'Mo^<: 2`e|;a7|PVhu%Ƿ,D(l˱%9de +*P^a>He{uHA{lE|m.I]:Nr0e}`) $tJSȇUi&?,G`]wI*C3P^}y,E'&no?<5̛7թܜkm۞NβNU=!vjwuCWK[*}vvCAGY4NvWPa5iڞ57 |C)tYxe,"~(Tt7V#ImOw䎈RʁaVruzly+$uWHø*k~O&csyso |!-}jΠz,#\$VIڴe#d7啵-hz]f8]J\v|b9`'Y.x~]96{eDP|{CJe5M`8%+kXX7IAH!\gUr#zD{V W^}f\fOt޵Qc(@YV;A0GQ> i߹hi@yx:u W$:6:RȂeAGp87;=*Md`/1hʧa9tʗp}һPd7I(L:NjI{o*'3l&NX0XcwePjp@E+ B6ڽ,u'>HfMO/w1 y ߘ1X_>Qk(n&W "焆rJBKF+;$x.D=hg u + sT0̿0'c@+5J݄yWM) mohdt<_:ZںfW  YjM5_v(=m5~b$NB `\zjS- s?wσt4.$qh\Ub6 E:7~1"Yu.5":Gݷ_9`_Swlk;+LKMΚ. _@Lz3+K26ײYd*0X̸ ܯ@k8:)z/$W}B٪ ֕tQ(TN+ADkF@ȝvl+mP _q4+$9qM40`{y"Uja1:a3VUC8vԱkTץMMwɠOh-vwx4Di xtәD j|Hl[g?ĉ&Pknӏz^W=MZT R|jt.A~v{T"ǶoP:Aĕ/zXQ `I%/-:/lDѣ]ȝR҆AHTf9 ?ңPWu y9:+^vNınNHj9ޟc@:*ͨOV}0ƪX0Pvm֌I4֭GQڕE3@n8ǩҐV1Q,%UDAꝩenrj% %_ޢ4㔒:XLՓyJՕ|?3ULxG $$S3%J4%}ֻ̛x L_SPlPs̀G?,GnkzZ :S7 W-tm*fQ틘 Kg"q(] ]_ }^8M?Wpd"@a[!]աͪ_l`Ώ؍XNpULHKK_GiW /Aϲ7Yc zɐLv;t 9^(sfR": 2)it=1-inEs+uYy\6ZݙX5|pkd"꾁sk­PwCSa\:7l,Ue)AwePs2DE$;AdTB,}6%SD ZjBڽmrWqCmo&ۅo~W 5`3ĿvzmtQ#^~ɠҏt[.Dݬ*ma[rPX߃RP%l$2휀GX4MdK9G2uD<>-x2Ć )gI/3MrX*^q= %z1Ød9E>E&[:ǏxS3hm܋&S$_ cU֯_nTd!D$X;b^[{N[k( e{fjCj^7R>30Nᦌ[XX%`-C}KL2+]t_<4D+ޞ֟WQH3*+?YJCv 6X cxioou(?*ZmТD*;-CQNaĿmGÓHu!'L6m "?@W.%).<) vȷc5v fW!4p~v ě"jޮl1ͨ T㵪B#]6=*/5*W5?88/V}r< b0s83 op'۰W?nђ9D,֦]^ʿ{ő#P6c"`.WZC3q9 ntfeۣ.'] T;Sa \oa0$KbjD㈃ǜtc EyO yKy'4 ZGԴ:+Q`#sԭjo ^?ٻm-spf{iպe:"BKfrn(vpj<K"mYY+g15[+$!ʰi,<]+Q;Y.D1*bt"ѫSr:M9nC]wPRp!ޣt8:xhv of1#v/E4R a7K-6tӫu8T{e ARLAߕ=UtߞI;uAH!fSb's   wId ,DudXJ6~ @Va#^C MVfQ,C\ˣӋ۬p^#2ATu)Ᏹdu*k&rB!Ln|rtoB4% 9(;ARfps|OFeG *"|Q8l"S:R31&o+`[`V6@J} ` wPTFkF6"K C581H*!wmWTc$x\@=D R~!^1/ Y-sD!yaY%ype7İ 2ʙ(i=1FJ9:CE{LcduɧV LS;[zjsxqBt PxrȸhB,!cX!rRW~" TPF{(Tɾ c_藙Cy1e2;Bq'YH26sQHFQwh9 љ#ץ RTjC֕㮤oҥ@J?mu0IA:)6|Pa]Zk=N=Y$=Xͦ,4ݴ jPdOMB|mG@>?b*WWIq #Z2($96#瘆;LhzXY gj?Cb<}X#j`5dW[3vC{Jɠ; 'Ӻ35x N0G~BVOEϤ~IWnxe3Hcrr6RP[4ܑ>NbL*Ue:l@XV,jpCKh/Ȭ}y9Ǥ?_dJ4*'̚-?gT0Ia<$&(zg ߷ (nhmHbf% Bv' 2Ve1eT\2ڷdY3w*x:YDut`Nd@߳u+QӋ<+gnȾdj%ȄlI)֓J/.vʺZrRmq2(չlh^>@^z,}q-JzNZZ]T`.ţ(!\܇f <9sHmOgKBke銪 4vPpo$YK_Gws]AmG*)cY :;<=b& Pud%ߏ$BO;PҌ7Y (mW*!֠dpU&PGdRDrm,¹;d1:-9q6lX4-ȪA^J>@^ ne#]v94=K+