asterisk-pjsip-13.7.1-1.fc22$>2D$UVD TN>9?d  Htx  44 L4 4 4 4 4444 pY(8*9X*:U^*GH4H4I4XY(\T4]$4^ob™dçeìfïlñt4uĘ4vh2wh4x84yCasterisk-pjsip13.7.11.fc22SIP channel based upon the PJSIP librarySIP channel based upon the PJSIP libraryV%buildvm-04-nfs.phx2.fedoraproject.orggFedora ProjectFedora ProjectGPLv2Fedora ProjectApplications/Internethttp://www.asterisk.org/linuxi686***z :;;$|*D*)*l*PM(*L<|;p*|;\L*<m);P]* *|P+ :*$))lX"|lx:d*48*`d)m;x*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-13.7.1-1.fc22.src.rpmasterisk-pjsipasterisk-pjsip(x86-32)config(asterisk-pjsip)@@@@@@@@@@@@@@@@@@    @asteriskconfig(asterisk-pjsip)libc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.2)libc.so.6(GLIBC_2.3)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)libgcc_s.so.1libgcc_s.so.1(GCC_3.0)libgcc_s.so.1(GCC_3.3.1)libpj.so.2libpjlib-util.so.2libpjmedia.so.2libpjsip-simple.so.2libpjsip-ua.so.2libpjsip.so.2libpthread.so.0libpthread.so.0(GLIBC_2.0)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)13.7.1-1.fc2213.7.1-1.fc223.0.4-14.6.0-14.0-15.2-14.12.0.1V=@VV@Vk@Ua@UrU&iU&iUUTr@Tr@T TT5TmTmTeTD@TD@TD@TD@TD@SS@SSSSSSt@SW@SS@R@R@R@Re@R7R7QQ@QV@Q@Q@QvwQT0QP9@PrP!@PqP@P7@PP@P@P~PtPb@Pb@Pb@PE@PE@P?UP?UP?UP?UP/P@OOOG@O#O#OO O OOOtNOc+@O]I>]I-I-I-I-IH,HCH@HWH@H@H@HkmHQHO@H1kH @Gu@GGG@G@G@G߮G΋@G@G@G@GG{|Gt@Gl@GiGiGg@GcGcG_@G_@G^{G]*@GO@GB@GAzG=@G9G G m@F%@FS@F^F^F @F@FF;@F;@FF@FtF#@F@FEF@F@Fzh@FvsFvsFvsFvsFvsFu"@Fu"@Fr@FAF1F@EWE@E@E8@E7hE6@E6@E6@E2"DDD(@DWIDLDGwDGwDF&@D - 13.7.1-1Fedora Release Engineering - 13.3.2-3.1Jared Smith - 13.3.2-3Robert Scheck - 13.3.2-2Fedora Release Engineering - 13.3.2-1.2Jitka Plesnikova - 13.3.2-1.1Jeffrey C. Ollie - 13.3.2-1:Jeffrey C. Ollie - 13.3.1-1:Jeffrey C. Ollie - 13.3.0-1:Jeffrey C. Ollie - 13.2.0-1:Jeffrey C. Ollie - 13.1.1-1:Jeffrey C. Ollie - 13.1.0-1Peter Robinson 13.0.2-3Tom Callaway - 13.0.2-2Jeffrey C. Ollie - 13.0.2-1Jeffrey C. Ollie - 13.0.1-1Jeffrey C. Ollie - 13.0.0-1Tom Callaway - 11.13.1-2Jeffrey C. Ollie - 11.13.1-1Jeffrey C. Ollie - 11.13.0-1Jeffrey C. Ollie - 11.12.1-1Jeffrey C. Ollie - 11.12.0-1Jeffrey C. Ollie - 11.11.0-1Jitka Plesnikova - 11.10.2-2.2Fedora Release Engineering - 11.10.2-2.1Jeffrey Ollie - 11.10.2-2:Jeffrey Ollie - 11.10.2-1:Jeffrey Ollie - 11.10.1-1:Jeffrey Ollie - 11.10.0-1:Fedora Release Engineering - 11.9.0-2.1Dennis Gilmore - 11.9.0-2Jeffrey Ollie - 11.9.0-1:Jeffrey Ollie - 11.8.1-1:Jeffrey Ollie - 11.8.0-1:Jeffrey Ollie - 11.7.0-1:Jeffrey Ollie - 11.6.1-1:Jeffrey Ollie - 11.6.0-1:Jeffrey Ollie - 11.5.1-3:Jeffrey Ollie - 11.5.1-2:Jeffrey Ollie - 11.5.1-1:Fedora Release Engineering - 11.4.0-2.2Petr Pisar - 11.4.0-2.1Rex Dieter 11.4.0-2Jeffrey Ollie - 11.4.0-1:Tom Callaway - 11.3.0-2:Jeffrey Ollie - 11.3.0-1:Jeffrey Ollie - 11.2.2-1:Jeffrey Ollie - 11.2.1-1:Jeffrey Ollie - 11.2.0-1:Jeffrey Ollie - 11.1.2-1:Jeffrey Ollie - 11.1.1-1:Jeffrey Ollie - 11.1.0-1:Jeffrey Ollie - 11.0.2-1:Dan Horák - 11.0.1-3Dennis Gilmore - 11.0.1-2Jeffrey Ollie - 11.0.1-1Jeffrey Ollie - 11.0.0-1:Jeffrey Ollie - 11.0.0-0.7.rc2:Jeffrey Ollie - 11.0.0-0.6.rc1Jeffrey Ollie - 11.0.0-0.5.beta2Jeffrey Ollie - 11.0.0-0.4.beta2Jeffrey Ollie - 10.8.0-1Dan Horák - 11.0.0-0.3.beta1Dan Horák - 10.7.1-2Jeffrey Ollie - 10.7.1-1Jeffrey Ollie - 10.7.0-1Jeffrey Ollie - 10.6.1-1Jeffrey Ollie - 10.6.0-1Jeffrey Ollie - 11.0.0-0.2.beta1Fedora Release Engineering - 10.5.2-1.2Petr Pisar - 10.5.2-1.1Jeffrey Ollie - 10.5.2-1:Petr Pisar - 10.5.1-1.1Jeffrey Ollie - 10.5.1-1Jeffrey Ollie - 10.5.0-1Petr Pisar - 10.4.2-1.1Jeffrey Ollie - 10.4.2-1Jeffrey Ollie - 10.4.1-1Jeffrey Ollie - 10.4.0-1Jeffrey Ollie - 10.3.1-1Russell Bryant - 10.3.0-1Russell Bryant - 10.2.1-1Jeffrey C. Ollie - 10.1.2-2Jeffrey C. Ollie - 10.1.2-1Jeffrey C. Ollie - 10.1.1-1Jeffrey C. Ollie - 10.1.0-1Russell Bryant - 10.0.0-2Fedora Release Engineering - 10.0.0-1.1Jeffrey C. Ollie - 10.0.0-1Jeffrey C. Ollie - 10.0.0-1Jeffrey C. Ollie - 10.0.0-0.7.rc3Jeffrey C. Ollie - 10.0.0-0.6.rc2Jeffrey C. Ollie - 10.0.0-0.5.rc1Jeffrey C. Ollie - 10.0.0-0.4.beta2Jeffrey C. Ollie - 10.0.0-0.3.beta2Jeffrey C. Ollie - 10.0.0-0.2.beta2Jeffrey C. Ollie - 10.0.0-0.1.beta1Petr Sabata - 1.8.5.0-1.2Petr Sabata - 1.8.5.0-1.1Jeffrey C. Ollie - 1.8.5.0-1Jeffrey C. Ollie - 1.8.5-0.2Jeffrey C. Ollie - 1.8.5-0.1.rc1Jeffrey C. Ollie - 1.8.5-0.1.rc1Jeffrey C. Ollie - 1.8.4.4-2Jeffrey C. Ollie - 1.8.4.4-1Jeffrey C. Ollie - 1.8.4.3-3Jeffrey C. Ollie - 1.8.4.3-2Jeffrey C. Ollie - 1.8.4.3-1Jeffrey C. Ollie - 1.8.4.2-2Marcela Mašláňová - 1.8.4.2-1.2Marcela Mašláňová - 1.8.4.2-1.1Jeffrey C. Ollie - 1.8.4.2-1:Jeffrey C. Ollie - 1.8.3.3-1Jeffrey C. Ollie - 1.8.3.2-2Jeffrey C. Ollie - 1.8.3.2-1Jeffrey C. Ollie - 1.8.3.1-1 - 1.8.3-1 - 1.8.3-0.7.rc3Jeffrey C. Ollie - 1.8.3-0.6.rc2Jeffrey C. Ollie - 1.8.3-0.5.rc2Jeffrey C. Ollie - 1.8.3-0.4.rc2Fedora Release Engineering - 1.8.3-0.3.rc2Jeffrey C. Ollie - 1.8.3-0.2.rc2Jeffrey C. Ollie - 1.8.3-0.1.rc1Jeffrey C. Ollie - 1.8.2.3-1Jeffrey C. Ollie - 1.8.2.2-2Jeffrey C. Ollie - 1.8.2.2-1Jeffrey C. Ollie - 1.8.2.1-1Jeffrey C. Ollie - 1.8.2-1Jeffrey C. Ollie - 1.8.1.1-1Jeffrey C. Ollie - 1.8.1-1Dennis Gilmore - 1.8.0-6Dennis Gilmore - 1.8.0-5Dennis Gilmore - 1.8.0-4Jeffrey C. Ollie - 1.8.0-3Jeffrey C. Ollie - 1.8.0-2Jeffrey C. Ollie - 1.8.0-1Jeffrey C. Ollie - 1.8.0-0.8.rc5:Jeffrey C. Ollie - 1.8.0-0.7.rc3Jeffrey C. Ollie - 1.8.0-0.6.rc2Jeffrey C. Ollie - 1.8.0-0.5.beta5Jeffrey C. Ollie - 1.8.0-0.4.beta4Jeffrey C. Ollie - 1.8.0-0.3.beta3Jeffrey C. Ollie - 1.8.0-0.2.beta2Jeffrey C. Ollie - 1.8.0-0.1.beta2Jeffrey C. Ollie - 1.6.2.10-1Jeffrey C. Ollie - 1.6.2.8-0.3.rc1Marcela Maslanova - 1.6.2.8-0.2.rc1Jeffrey C. Ollie - 1.6.2.7-1Jeffrey C. Ollie - 1.6.2.7-0.2.rc3Jeffrey C. Ollie - 1.6.2.7-0.1.rc2Jeffrey C. Ollie - 1.6.2.6-1Jeffrey C. Ollie - 1.6.2.6-0.1.rc2Jeffrey C. Ollie - 1.6.2.5-2Jeffrey C. Ollie - 1.6.2.5-1Jeffrey C. Ollie - 1.6.2.4-1Jeffrey C. Ollie - 1.6.2.2-1Jeffrey C. Ollie - 1.6.2.1-1Jeffrey C. Ollie - 1.6.2.1-0.1.rc1Jeffrey C. Ollie - 1.6.2.0-1Jeffrey C. Ollie - 1.6.2.0-0.16.rc8Jeffrey C. Ollie - 1.6.2.0-0.15.rc7Jeffrey C. Ollie - 1.6.2.0-0.14.rc6Jeffrey C. Ollie - 1.6.2.0-0.13.rc6Jeffrey C. Ollie - 1.6.2.0-0.12.rc6Jeffrey C. Ollie - 1.6.2.0-0.11.rc5Jeffrey C. Ollie - 1.6.2.0-0.10.rc4Jeffrey C. Ollie - 1.6.2.0-0.9.rc3Jeffrey C. Ollie - 1.6.2.0-0.8.rc3Jeffrey C. Ollie - 1.6.2.0-0.7.rc3Jeffrey C. Ollie - 1.6.2.0-0.6.rc3Jeffrey C. Ollie - 1.6.2.0-0.5.rc3Jeffrey C. Ollie - 1.6.2.0-0.4.rc3Jeffrey C. Ollie - 1.6.2.0-0.3.rc2Jeffrey C. Ollie - 1.6.2.0-0.2.rc2Jeffrey C. Ollie - 1.6.2.0-0.1.rc2Jeffrey C. Ollie - 1.6.1.6-2Jeffrey C. Ollie - 1.6.1.6-1Jeffrey C. Ollie - 1.6.1-0.26.rc1Tomas Mraz - 1.6.1-0.25.rc1Fedora Release Engineering - 1.6.1-0.24.rc1Jeffrey C. Ollie - 1.6.1-0.23.rc1Fedora Release Engineering - 1.6.1-0.22.rc1Jeffrey C. Ollie - 1.6.1-0.21.rc1Tomas Mraz - 1.6.1-0.13.beta4Jeffrey C. Ollie - 1.6.1-0.12.beta4Jeffrey C. Ollie - 1.6.1-0.10.beta4Jeffrey C. Ollie - 1.6.1-0.9.beta4Jeffrey C. Ollie - 1.6.1-0.8.beta4Jeffrey C. Ollie - 1.6.1-0.7.beta3Alex Lancaster - 1.6.1-0.6.beta2Jeffrey C. Ollie - 1.6.1-0.5.beta2Jeffrey C. Ollie - 1.6.1-0.4.beta2Jeffrey C. Ollie - 1.6.1-0.3.beta2Jeffrey C. Ollie - 1.6.1-0.2.beta2Jeffrey C. Ollie - 1.6.0.1-3Jeffrey C. Ollie - 1.6.0.1-2Jeffrey C. Ollie - 1.6.0-1- Bastien Nocera - 1.6.0-0.22.beta9Jeffrey C. Ollie - 1.6.0-0.21.beta9Jeffrey C. Ollie - 1.6.0-0.20.beta9Jeffrey C. Ollie - 1.6.0-0.19.beta9Jeffrey C. Ollie - 1.6.0-0.18.beta9Jeffrey C. Ollie - 1.6.0-0.17.beta9Jeffrey C. Ollie - 1.6.0-0.16.beta9Jeffrey C. Ollie - 1.6.0-0.15.beta9Jeffrey C. Ollie - 1.6.0-0.14.beta9Jeffrey C. Ollie - 1.6.0-0.13.beta8Jeffrey C. Ollie - 1.6.0-0.12.beta7.1Jeffrey C. Ollie - 1.6.0-0.11.beta7.1Jeffrey C. Ollie - 1.6.0-0.10.beta7Jeffrey C. Ollie - 1.6.0-0.9.beta6Jeffrey C. Ollie - 1.6.0-0.8.beta6Jeffrey C. Ollie - 1.6.0-0.6.beta6Tom "spot" Callaway - 1.6.0-0.5.beta5Jeffrey C. Ollie - 1.6.0-0.4.beta5Jeffrey C. Ollie - 1.6.0-0.3.beta4Jeffrey C. Ollie - 1.6.0-0.2.beta4Jeffrey C. Ollie - 1.6.0-0.1.beta4Jeffrey C. Ollie - 1.4.18-1Jeffrey C. Ollie - 1.4.17-1Jeffrey C. Ollie - 1.4.16.2-1Jeffrey C. Ollie - 1.4.16.1-2Jeffrey C. Ollie - 1.4.16.1-1Jeffrey C. Ollie - 1.4.16-2Jeffrey C. Ollie - 1.4.16-1Jeffrey C. Ollie - 1.4.15-7Jeffrey C. Ollie - 1.4.15-6Jeffrey C. Ollie - 1.4.15-5Jeffrey C. Ollie - 1.4.15-4Jeffrey C. Ollie - 1.4.15-3Jeffrey C. Ollie - 1.4.15-2Jeffrey C. Ollie - 1.4.15-1Jeffrey C. Ollie - 1.4.14-2Jeffrey C. Ollie - 1.4.14-1Jeffrey C. Ollie - 1.4.13-7Jeffrey C. Ollie - 1.4.13-6Jeffrey C. Ollie - 1.4.13-1Jeffrey C. Ollie - 1.4.12.1-1Jeffrey C. Ollie - 1.4.11-1Jeffrey C. Ollie - 1.4.10.1-1Jeffrey C. Ollie - 1.4.10-1Jeffrey C. Ollie - 1.4.9-7Jeffrey C. Ollie - 1.4.9-6Jeffrey C. Ollie - 1.4.9-5Jeffrey C. Ollie - 1.4.9-4Jeffrey C. Ollie - 1.4.9-3Jeffrey C. Ollie - 1.4.9-2Jeffrey C. Ollie - 1.4.9-1Jeffrey C. Ollie - 1.4.8-1Jeffrey C. Ollie - 1.4.7.1-1Jeffrey C. Ollie - 1.4.7-1Jeffrey C. Ollie - 1.4.6-4Jeffrey C. Ollie - 1.4.6-3Jeffrey C. Ollie - 1.4.6-2Jeffrey C. Ollie - 1.4.6-1Jeffrey C. Ollie - 1.4.5-10Jeffrey C. Ollie - 1.4.5-9Jeffrey C. Ollie - 1.4.5-8Jeffrey C. Ollie - 1.4.5-7Jeffrey C. Ollie - 1.4.5-6Jeffrey C. Ollie - 1.4.5-5Jeffrey C. Ollie - 1.4.5-4Jeffrey C. Ollie - 1.4.5-3Jeffrey C. Ollie - 1.4.5-1Jeffrey C. Ollie - 1.4.4-2Jeffrey C. Ollie - 1.4.4-1Jeffrey C. Ollie - 1.4.2-1Jeffrey C. Ollie - 1.4.1-2Jeffrey C. Ollie - 1.4.1-1Jeffrey C. Ollie - 1.4.0-6.beta4Jeffrey C. Ollie - 1.4.0-5.beta3Jeffrey C. Ollie - 1.4.0-4.beta3Jeffrey C. Ollie - 1.4.0-3.beta3Jeffrey C. Ollie - 1.4.0-2.beta3Jeffrey C. Ollie - 1.4.0-1.beta3Jeffrey C. Ollie - 1.4.0-0.beta2Jeffrey C. Ollie - 1.2.10-1Jeffrey C. Ollie - 1.2.9.1Jeffrey C. Ollie - 1.2.8Jeffrey C. Ollie - 1.2.7.1-6Jeffrey C. Ollie - 1.2.7.1-5Jeffrey C. Ollie - 1.2.7.1-4Jeffrey C. Ollie - 1.2.7.1-3Jeffrey C. Ollie - 1.2.7.1-2Jeffrey C. Ollie - 1.2.7-1Jeffrey C. Ollie - 1.2.6-3Jeffrey C. Ollie - 1.2.6-2Jeffrey C. Ollie - 1.2.6-1Jeffrey C. Ollie - 1.2.5-1Jeffrey C. Ollie - 1.2.4-4Jeffrey C. Ollie - 1.2.4-3Jeffrey C. Ollie - 1.2.4-2Jeffrey C. Ollie - 1.2.4-1Jeffrey C. Ollie - 1.2.3-4Jeffrey C. Ollie - 1.2.3-3Jeffrey C. Ollie - 1.2.3-2Jeffrey C. Ollie - 1.2.3-1- Update to upstream 13.7.1 release for security fixes - Resolves AST-2016-001: BEAST vulnerability in HTTP server - Resolves AST-2016-002: File descriptor exhaustion in chan_sip - Resolves AST-2016-003: Remote crash vulnerability receiving UDPTL FAX data - Full changelog at http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.7.1 - Also build the 'radius' sub-package against freeradius-client-devel, as the radiusclient-ng project is dead- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- Remove %defattr macro invocations, as they are no longer needed- Rebuild for libical 2.0.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- Perl 5.22 rebuild- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28, 11.6, and 13.1 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28.cert-5, 1.8.32.3, 11.6-cert11, - 11.17.1, 12.8.2, 13.1-cert2, and 13.3.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerability: - - * AST-2015-003: TLS Certificate Common name NULL byte exploit - - When Asterisk registers to a SIP TLS device and and verifies the server, - Asterisk will accept signed certificates that match a common name other than - the one Asterisk is expecting if the signed certificate has a common name - containing a null byte after the portion of the common name that Asterisk - expected. This potentially allows for a man in the middle attack. - - For more information about the details of this vulnerability, please read - security advisory AST-2015-003, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert5 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.32.3 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert11 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.17.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.8.2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-13.1-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.3.2 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2015-003.pdf- The Asterisk Development Team has announced the release of Asterisk 13.3.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.3.1 resolves an issue reported by the - community and would have not been possible without your participation. - Thank you! - - The following is the issue resolved in this release: - - * --- pjsip: resolve compatibility problem with ast_sip_session - (Closes issue ASTERISK-24941. Reported by Matt Jordan) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.3.1- The Asterisk Development Team has announced the release of Asterisk 13.3.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.3.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - New Features made in this release: - ----------------------------------- - * ASTERISK-24703 - ARI: Add the ability to "transfer" (redirect) a - channel (Reported by Matt Jordan) - * ASTERISK-17899 - Handle crypto lifetime in SDES-SRTP negotiation - (Reported by Dwayne Hubbard) - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24616 - Crash in res_format_attr_h264 due to invalid - string copy (Reported by Yura Kocyuba) - * ASTERISK-24748 - res_pjsip: If wizards explicitly configured in - sorcery.conf false ERROR messages may occur (Reported by Joshua - Colp) - * ASTERISK-24769 - res_pjsip_sdp_rtp: Local ICE candidates leaked - (Reported by Matt Jordan) - * ASTERISK-24742 - [patch] Fix ast_odbc_find_table function in - res_odbc (Reported by ibercom) - * ASTERISK-24479 - Enable REF_DEBUG for module references - (Reported by Corey Farrell) - * ASTERISK-24701 - Stasis: Write timeout on WebSocket fails to - fully disconnect underlying socket, leading to events being - dropped with no additional information (Reported by Matt Jordan) - * ASTERISK-24772 - ODBC error in realtime sippeers when device - unregisters under MariaDB (Reported by Richard Miller) - * ASTERISK-24752 - Crash in bridge_manager_service_req when bridge - is destroyed by ARI during shutdown (Reported by Richard - Mudgett) - * ASTERISK-24741 - dtls_handler causes Asterisk to crash (Reported - by Zane Conkle) - * ASTERISK-24015 - app_transfer fails with PJSIP channels - (Reported by Private Name) - * ASTERISK-24727 - PJSIP: Crash experienced during multi-Asterisk - transfer scenario. (Reported by Mark Michelson) - * ASTERISK-24771 - ${CHANNEL(pjsip)} - segfault (Reported by - Niklas Larsson) - * ASTERISK-24716 - Improve pjsip log messages for presence - subscription failure (Reported by Rusty Newton) - * ASTERISK-24612 - res_pjsip: No information if a required sorcery - wizard is not loaded (Reported by Joshua Colp) - * ASTERISK-24768 - res_timing_pthread: file descriptor leak - (Reported by Matthias Urlichs) - * ASTERISK-24685 - "pjsip show version" CLI command (Reported by - Joshua Colp) - * ASTERISK-24632 - install_prereq script installs pjproject - without IPv6 support (Reported by Rusty Newton) - * ASTERISK-24085 - Documentation - We should remove or further - document the 'contact' section in pjsip.conf (Reported by Rusty - Newton) - * ASTERISK-24791 - Crash in ast_rtcp_write_report (Reported by - JoshE) - * ASTERISK-24700 - CRASH: NULL channel is being passed to - ast_bridge_transfer_attended() (Reported by Zane Conkle) - * ASTERISK-24451 - chan_iax2: reference leak in sched_delay_remove - (Reported by Corey Farrell) - * ASTERISK-24799 - [patch] make fails with undefined reference to - SSLv3_client_method (Reported by Alexander Traud) - * ASTERISK-22670 - Asterisk crashes when processing ISDN AoC - Events (Reported by klaus3000) - * ASTERISK-24689 - Segfault on hangup after outgoing PRI-Euroisdn - call (Reported by Marcel Manz) - * ASTERISK-24740 - [patch]Segmentation fault on aoc-e event - (Reported by Panos Gkikakis) - * ASTERISK-24787 - [patch] - Microsoft exchange incompatibility - for playing back messages stored in IMAP - play_message: No - origtime (Reported by Graham Barnett) - * ASTERISK-24814 - asterisk/lock.h: Fix syntax errors for non-gcc - OSX with 64 bit integers (Reported by Corey Farrell) - * ASTERISK-24796 - Codecs and bucket schema's prevent module - unload (Reported by Corey Farrell) - * ASTERISK-24724 - 'httpstatus' Web Page Produces Incomplete HTML - (Reported by Ashley Sanders) - * ASTERISK-24499 - Need more explicit debug when PJSIP dialstring - is invalid (Reported by Rusty Newton) - * ASTERISK-24785 - 'Expires' header missing from 200 OK on - REGISTER (Reported by Ross Beer) - * ASTERISK-24677 - ARI GET variable on channel provides unhelpful - response on non-existent variable (Reported by Joshua Colp) - * ASTERISK-24797 - bridge_softmix: G.729 codec license held - (Reported by Kevin Harwell) - * ASTERISK-24812 - ARI: Creating channels through /channels - resource always uses SLIN, which results in unneeded transcoding - (Reported by Matt Jordan) - * ASTERISK-24800 - Crash in __sip_reliable_xmit due to invalid - thread ID being passed to pthread_kill (Reported by JoshE) - * ASTERISK-17721 - Incoming SRTP calls that specify a key lifetime - fail (Reported by Terry Wilson) - * ASTERISK-23214 - chan_sip WARNING message 'We are requesting - SRTP for audio, but they responded without it' is ambiguous and - wrong in some cases (Reported by Rusty Newton) - * ASTERISK-15434 - [patch] When ast_pbx_start failed, both an - error response and BYE are sent to the caller (Reported by - Makoto Dei) - * ASTERISK-18105 - most of asterisk modules are unbuildable in - cygwin environment (Reported by feyfre) - * ASTERISK-24828 - Fix Frame Leaks (Reported by Kevin Harwell) - * ASTERISK-24751 - Integer values in json payload to ARI cause - asterisk to crash (Reported by jeffrey putnam) - * ASTERISK-24838 - chan_sip: Locking inversion occurs when - building a peer causes a peer poke during request handling - (Reported by Richard Mudgett) - * ASTERISK-24825 - Caller ID not recognized using - Centrex/Distinctive dialing (Reported by Richard Mudgett) - * ASTERISK-24830 - res_rtp_asterisk.c checks USE_PJPROJECT not - HAVE_PJPROJECT (Reported by Stefan Engström) - * ASTERISK-24840 - res_pjsip: conflicting endpoint identifiers - (Reported by Kevin Harwell) - * ASTERISK-24755 - Asterisk sends unexpected early BYE to - transferrer during attended transfer when using a Stasis bridge - (Reported by John Bigelow) - * ASTERISK-24739 - [patch] - Out of files -- call fails -- - numerous files with inodes from under /usr/share/zoneinfo, - mostly posixrules (Reported by Ed Hynan) - * ASTERISK-23390 - NewExten Event with application AGI shows up - before and after AGI runs (Reported by Benjamin Keith Ford) - * ASTERISK-24786 - [patch] - Asterisk terminates when playing a - voicemail stored in LDAP (Reported by Graham Barnett) - * ASTERISK-24808 - res_config_odbc: Improper escaping of - backslashes occurs with MySQL (Reported by Javier Acosta) - * ASTERISK-24807 - Missing mandatory field Max-Forwards (Reported - by Anatoli) - * ASTERISK-20850 - [patch]Nested functions aren't portable. - Adapting RAII_VAR to use clang/llvm blocks to get the - same/similar functionality. (Reported by Diederik de Groot) - * ASTERISK-24872 - [patch] AMI PJSIPShowEndpoint closes AMI - connection on error (Reported by Dmitriy Serov) - * ASTERISK-19470 - Documentation on app_amd is incorrect (Reported - by Frank DiGennaro) - * ASTERISK-21038 - Bad command completion of "core set debug - channel" (Reported by Richard Kenner) - * ASTERISK-18708 - func_curl hangs channel under load (Reported by - Dave Cabot) - * ASTERISK-16779 - Cannot disallow unknown format '' (Reported by - Atis Lezdins) - * ASTERISK-24876 - Investigate reference leaks from - tests/channels/local/local_optimize_away (Reported by Corey - Farrell) - * ASTERISK-24882 - chan_sip: Improve usage of REF_DEBUG (Reported - by Corey Farrell) - * ASTERISK-24817 - init_logger_chain: unreachable code block - (Reported by Corey Farrell) - * ASTERISK-24880 - [patch]Compilation under OpenBSD (Reported by - snuffy) - * ASTERISK-24879 - [patch]Compilation fails due to 64bit time - under OpenBSD (Reported by snuffy) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24745 - [patch]Add no_answer to ARI hangup causes - (Reported by Ben Merrills) - * ASTERISK-24811 - asterisk-publication sorcery object does not - use realtime (Reported by Matt Hoskins) - * ASTERISK-24790 - Reduce spurious noise in logs from voicemail - - Couldn't find mailbox %s in context (Reported by Graham Barnett) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.3.0- The Asterisk Development Team has announced the release of Asterisk 13.2.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.2.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24342 - PJSIP: Qualifying endpoints attempts to do them - all at the same time. (Reported by Richard Mudgett) - * ASTERISK-24514 - res_pjsip_outbound_registration: stack overflow - when using non-default sorcery wizard (Reported by Kevin - Harwell) - * ASTERISK-24472 - Asterisk Crash in OpenSSL when calling over WSS - from JSSIP (Reported by Badalian Vyacheslav) - * ASTERISK-24607 - res_pjsip_session: re-INVITE with declined - media streams results in 488 (Reported by Matt Jordan) - * ASTERISK-24563 - Direct Media calls within private network - sometimes get one way audio (Reported by Kevin Harwell) - * ASTERISK-24604 - res_rtp_asterisk: Crash during restart due to - race condition in accessing codec in stored ast_frame and codec - core (Reported by Matt Jordan) - * ASTERISK-24614 - Deadlock when DEBUG_THREADS compiler flag - enabled (Reported by Richard Mudgett) - * ASTERISK-24449 - Reinvite for T.38 UDPTL fails if SRTP is - enabled (Reported by Andreas Steinmetz) - * ASTERISK-24619 - [patch]Gcc 4.10 fixes in r413589 (1.8) wrongly - casts char to unsigned int (Reported by Walter Doekes) - * ASTERISK-24536 - AMI redirect with PJSIP fails to move extra - channel (Reported by Niklas Larsson) - * ASTERISK-24459 - bridge_native_rtp: Native RTP bridging is - chosen for RTP compatible channels when the DTMF mode is not - compatible (Reported by Yaniv Simhi) - * ASTERISK-24337 - Spammy DEBUG message needs to be at a higher - level - 'Remote address is null, most likely RTP has been - stopped' (Reported by Rusty Newton) - * ASTERISK-24513 - Local channel apparently leaked in off-nominal - DTMF attended transfer (Reported by Mark Michelson) - * ASTERISK-23733 - 'reload acl' fails if acl.conf is not present - on startup (Reported by Richard Kenner) - * ASTERISK-24628 - [patch] chan_sip - CANCEL is sent to wrong - destination when 'sendrpid=yes' (in proxy environment) (Reported - by Karsten Wemheuer) - * ASTERISK-23841 - DTMF atxfer doesn't set CallerID for the recall - calls to the transferrer. (Reported by Richard Mudgett) - * ASTERISK-24376 - res_pjsip_refer: REFER request for remote - session attempts to direct channel to external_replaces - extension instead of context, without providing for the - Referred-To SIP URI (Reported by Matt Jordan) - * ASTERISK-24591 - Stasis() side of an ARI originated channel - cannot be Redirected (Reported by Kinsey Moore) - * ASTERISK-24049 - Asterisk Manager Interface: A number of list - type responses aren't using astman_send_listack (Reported by - Jonathan Rose) - * ASTERISK-24637 - Channel re-enters Stasis() when it should not - (Reported by John Bigelow) - * ASTERISK-24474 - sip_to_pjsip.py lacks documentation and does - not function (Reported by John Kiniston) - * ASTERISK-24672 - [PATCH] Memory leak in func_curl CURLOPT - (Reported by Kristian Høgh) - * ASTERISK-20744 - [patch] Security event logging does not work - over syslog (Reported by Michael Keuter) - * ASTERISK-24665 - Configure check required for - pjsip_get_dest_info() (Reported by Mark Michelson) - * ASTERISK-23850 - Park Application does not respect Return - Context Priority (Reported by Andrew Nagy) - * ASTERISK-23991 - [patch]asterisk.pc file contains a small error - in the CFlags returned (Reported by Diederik de Groot) - * ASTERISK-24655 - res_pjsip_outbound_publish: Hang on shutdown - while attempting to publish (Reported by Kevin Harwell) - * ASTERISK-24485 - res_pjsip cannot be unloaded or shutdown - (Reported by Corey Farrell) - * ASTERISK-24663 - [patch] Unnamed semaphore autoconf check fails - on cross compilation (Reported by abelbeck) - * ASTERISK-24624 - Transfer to invalid extension results in hung - channel. (Reported by Zane Conkle) - * ASTERISK-24615 - When Multiple Transports Exist in pjsip.conf, - Incorrect External Addresses is Used in SIP Packets When - Responding to INVITE (Reported by David Justl) - * ASTERISK-24288 - [patch] - ODBC usage with app_voicemail - - voicemail is not deleted after review, hangup (Reported by LEI - FU) - * ASTERISK-24048 - [patch] contrib/scripts/install_prereq selects - 32-bit packages on 64-bit hosts (Reported by Ben Klang) - * ASTERISK-24600 - Stuck IAX channels, Asterisk stops responding - to most traffic, potential deadlock (Reported by Jeff Collell) - * ASTERISK-24560 - Creating a named ARI bridge twice causes a - crash (Reported by Kinsey Moore) - * ASTERISK-24682 - app_dial: Multiple DialEnd events emitted when - MACRO_RESULT or GOSUB_RESULT are an unexpected value (Reported - by Matt Jordan) - * ASTERISK-24640 - Registration pending stays forever after sip - reload (Reported by Max Man) - * ASTERISK-24673 - outgoing sip registers cannot be removed or - modified without doing restart (or doing module unload - chan_sip.so) (Reported by Stefan Engström) - * ASTERISK-24709 - [patch] msg_create_from_file used by MixMonitor - m() option does not queue an MWI event (Reported by Gareth - Palmer) - * ASTERISK-24649 - Pushing of channel into bridge fails; Stasis - fails to get app name (Reported by John Bigelow) - * ASTERISK-24355 - [patch] chan_sip realtime uses case sensitive - column comparison for 'defaultuser' (Reported by - HZMI8gkCvPpom0tM) - * ASTERISK-24693 - Investigate and fix memory leaks in Asterisk - (Reported by Kevin Harwell) - * ASTERISK-24626 - Voicemail passwords not being stored in ARA - (Reported by Paddy Grice) - * ASTERISK-24539 - Compile fails on OSX because of sem_timedwait - in bridge_channel.c (Reported by George Joseph) - * ASTERISK-24544 - Compile fails on OSX Yosemite because of - incorrect detection of htonll and ntohll (Reported by George - Joseph) - * ASTERISK-24723 - confbridge: CLI command 'confbridge list XXXX' - no longer displays user menus (Reported by Matt Jordan) - * ASTERISK-24721 - manager: ModuleLoad action incorrectly reports - 'module not found' during a Reload operation (Reported by Matt - Jordan) - * ASTERISK-24719 - ConfBridge recording channels get stuck when - recording started/stopped more than once (Reported by Richard - Mudgett) - * ASTERISK-24715 - chan_sip: stale nonce causes failure (Reported - by Kevin Harwell) - * ASTERISK-24728 - tcptls: Bad file descriptor error when - reloading chan_sip (Reported by Kevin Harwell) - * ASTERISK-24729 - Outbound registration not occuring on new - registrations after reload. (Reported by Richard Mudgett) - * ASTERISK-24676 - Security Vulnerability: URL request injection - in libCURL (CVE-2014-8150) (Reported by Matt Jordan) - * ASTERISK-24666 - Security Vulnerability: RTP not closed after - sip call using unsupported codec (Reported by Y Ateya) - * ASTERISK-24711 - DTLS handshake broken with latest OpenSSL - versions (Reported by Jared Biel) - * ASTERISK-24646 - PJSIP changeset 4899 breaks TLS (Reported by - Stephan Eisvogel) - * ASTERISK-24736 - Memory Leak Fixes (Reported by Mark Michelson) - * ASTERISK-24635 - PJSIP outbound PUBLISH crashes when no response - is ever received (Reported by Marco Paland) - * ASTERISK-24737 - When agent not logged in, agent status shows - unavailable, queue status shows agent invalid (Reported by - Richard Mudgett) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24552 - ARI: Allow associating a channel as an - initiator of an Origination for record keeping purposes - (Reported by Matt Jordan) - * ASTERISK-24553 - ARI/AMI: Include language in standard channel - snapshot output (Reported by Matt Jordan) - * ASTERISK-24643 - res_pjsip: Add user=phone option (Reported by - Matt Jordan) - * ASTERISK-24644 - res_pjsip_keepalive: Add keepalive module for - connection-oriented transports. (Reported by Matt Jordan) - * ASTERISK-24412 - [patch]Incomplete channel originate/continue - handling with ARI (Reported by Nir Simionovich (GreenfieldTech - - Israel)) - * ASTERISK-24678 - [PATCH] Added atxfer* settings to - features.conf.sample (Reported by Niklas Larsson) - * ASTERISK-24575 - [patch]Make capath work for res_pjsip (Reported - by cloos) - * ASTERISK-24671 - Missing docs for the CDR AMI Event (Reported by - Dan Jenkins) - * ASTERISK-24316 - For httpd server, need option to define server - name for security purposes (Reported by Andrew Nagy) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.2.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28 and 11.6 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28.cert-4, 1.8.32.2, 11.6-cert10, - 11.15.1, 12.8.1, and 13.1.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerabilities: - - * AST-2015-001: File descriptor leak when incompatible codecs are offered - - Asterisk may be configured to only allow specific audio or - video codecs to be used when communicating with a - particular endpoint. When an endpoint sends an SDP offer - that only lists codecs not allowed by Asterisk, the offer - is rejected. However, in this case, RTP ports that are - allocated in the process are not reclaimed. - - This issue only affects the PJSIP channel driver in - Asterisk. Users of the chan_sip channel driver are not - affected. - - * AST-2015-002: Mitigation for libcURL HTTP request injection vulnerability - - CVE-2014-8150 reported an HTTP request injection - vulnerability in libcURL. Asterisk uses libcURL in its - func_curl.so module (the CURL() dialplan function), as well - as its res_config_curl.so (cURL realtime backend) modules. - - Since Asterisk may be configured to allow for user-supplied - URLs to be passed to libcURL, it is possible that an - attacker could use Asterisk as an attack vector to inject - unauthorized HTTP requests if the version of libcURL - installed on the Asterisk server is affected by - CVE-2014-8150. - - For more information about the details of these vulnerabilities, please read - security advisory AST-2015-001 and AST-2015-002, which were released at the same - time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.32.2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert10 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.15.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.8.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.1.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2015-001.pdf - * http://downloads.asterisk.org/pub/security/AST-2015-002.pdf- The Asterisk Development Team has announced the release of Asterisk 13.1.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 13.1.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - New Features made in this release: - ----------------------------------- - * ASTERISK-24554 - AMI/ARI: Generate events on connected line - changes (Reported by Matt Jordan) - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24436 - Missing header in res/res_srtp.c when compiling - against libsrtp-1.5.0 (Reported by Patrick Laimbock) - * ASTERISK-24455 - func_cdr: CDR_PROP leaks payload (Reported by - Corey Farrell) - * ASTERISK-24454 - app_queue: ao2_iterator not destroyed, causing - leak (Reported by Corey Farrell) - * ASTERISK-24430 - missing letter "p" in word response in - OriginateResponse event documentation (Reported by Dafi Ni) - * ASTERISK-24437 - Review implementation of ast_bridge_impart for - leaks and document proper usage (Reported by Scott Griepentrog) - * ASTERISK-24453 - manager: acl_change_sub leaks (Reported by - Corey Farrell) - * ASTERISK-24457 - res_fax: fax gateway frames leak (Reported by - Corey Farrell) - * ASTERISK-24458 - chan_phone fails to build on big endian systems - (Reported by Tzafrir Cohen) - * ASTERISK-21721 - SIP Failed to parse multiple Supported: headers - (Reported by Olle Johansson) - * ASTERISK-24304 - asterisk crashing randomly because of unistim - channel (Reported by dhanapathy sathya) - * ASTERISK-24190 - IMAP voicemail causes segfault (Reported by - Nick Adams) - * ASTERISK-24462 - res_pjsip: Stale qualify statistics after - disablementation (Reported by Kevin Harwell) - * ASTERISK-24465 - audiohooks list leaks reference to formats - (Reported by Corey Farrell) - * ASTERISK-24466 - app_queue: fix a couple leaks to struct - call_queue (Reported by Corey Farrell) - * ASTERISK-24432 - Install refcounter.py when REF_DEBUG is enabled - (Reported by Corey Farrell) - * ASTERISK-24411 - [patch] Status of outbound registration is not - changed upon unregistering. (Reported by John Bigelow) - * ASTERISK-24476 - main/app.c / app_voicemail: ast_writestream - leaks (Reported by Corey Farrell) - * ASTERISK-24480 - res_http_websockets: Module reference decrease - below zero (Reported by Corey Farrell) - * ASTERISK-24482 - func_talkdetect: Fix stasis message leak in - audiohook callback (Reported by Corey Farrell) - * ASTERISK-24487 - configuration: sections should be loadable as - template even when not marked (Reported by Scott Griepentrog) - * ASTERISK-20127 - [Regression] Config.c config_text_file_load() - unescapes semicolons ("\;" -> ";") turning them into comments - (corruption) on rewrite of a config file (Reported by George - Joseph) - * ASTERISK-24438 - res_pjsip_multihomed.so blocks Asterisk reload - when DNS settings invalid (Reported by Melissa Shepherd) - * ASTERISK-24307 - Unintentional memory retention in stringfields - (Reported by Etienne Lessard) - * ASTERISK-24491 - Memory leak in res_hep (Reported by Zane - Conkle) - * ASTERISK-24492 - main/file.c: ast_filestream sometimes causes - extra calls to ast_module_unref (Reported by Corey Farrell) - * ASTERISK-24447 - Bridge DTMF hooks: Audio doesn't pass when - waiting for more matching digits. (Reported by Richard Mudgett) - * ASTERISK-24257 - agent must dial acceptdtmf twice to bridge to - queue caller (Reported by Steve Pitts) - * ASTERISK-24504 - chan_console: Fix reference leaks to pvt - (Reported by Corey Farrell) - * ASTERISK-24250 - [patch] Voicemail with multi-recipients To: - header fix (Reported by abelbeck) - * ASTERISK-24468 - Incoming UCS2 encoded SMS truncated if SMS - length exceeds 50 (roughly) national symbols (Reported by - Dmitriy Bubnov) - * ASTERISK-24500 - Regression introduced in chan_mgcp by SVN - revision r227276 (Reported by Xavier Hienne) - * ASTERISK-24505 - manager: http connections leak references - (Reported by Corey Farrell) - * ASTERISK-24502 - Build fails when dev-mode, dont optimize and - coverage are enabled (Reported by Corey Farrell) - * ASTERISK-24444 - PBX: Crash when generating extension for - pattern matching hint (Reported by Leandro Dardini) - * ASTERISK-24489 - Crash: Asterisk crashes when converting RTCP - packet to JSON for res_hep_rtcp and report blocks are greater - than 1 (Reported by Gregory Malsack) - * ASTERISK-24498 - Segmentation fault in res_hep_rtcp on attended - transfer (Reported by Beppo Mazzucato) - * ASTERISK-24501 - ARI: Moving a channel between bridges followed - by a hangup can cause an ARI client to not receive an expected - ChannelLeftBridge event before StasisEnd (Reported by Matt - Jordan) - * ASTERISK-24336 - PJSIP timer_min_se value under 90 causes crash - (Reported by Leon Rowland) - * ASTERISK-23651 - Reloading some modules that are loaded already, - results in 'No such module' before a successful reload (Reported - by Rusty Newton) - * ASTERISK-24522 - ConfBridge: delay occurs between kicking all - endmarked users when last marked user leaves (Reported by Matt - Jordan) - * ASTERISK-15242 - transmit_refer leaks sip_refer structures - (Reported by David Woolley) - * ASTERISK-24508 - pjsip - REFER request from SNOM is rejected - with "400 bad request" - DEBUG shows "Received a REFER without a - parseable Refer-To" (Reported by Beppo Mazzucato) - * ASTERISK-24535 - stringfields: Fix regression from fix for - unintentional memory retention and another issue exposed by the - fix (Reported by Corey Farrell) - * ASTERISK-24471 - Crash - assert_fail in libc in - pjmedia_sdp_neg_negotiate from /usr/local/lib/libpjmedia.so.2 - (Reported by yaron nahum) - * ASTERISK-24528 - res_pjsip_refer: Sending INVITE with Replaces - in-dialog with invalid target causes crash (Reported by Joshua - Colp) - * ASTERISK-24531 - res_pjsip_acl: ACLs not applied on initial - module load (Reported by Matt Jordan) - * ASTERISK-24469 - Security Vulnerability: Mixed IPv4/IPv6 ACLs - allow blocked addresses through (Reported by Matt Jordan) - * ASTERISK-24542 - [patch]Failure showing codecs via 'core show - channeltype ' (Reported by snuffy) - * ASTERISK-24533 - 2 threads created per chan_sip entry (Reported - by xrobau) - * ASTERISK-24516 - [patch]Asterisk segfaults when playing back - voicemail under high concurrency with an IMAP backend (Reported - by David Duncan Ross Palmer) - * ASTERISK-24572 - [patch]App_meetme is loaded without its - defaults when the configuration file is missing (Reported by - Nuno Borges) - * ASTERISK-24573 - [patch]Out of sync conversation recording when - divided in multiple recordings (Reported by Nuno Borges) - * ASTERISK-24537 - Stasis: StasisStart/StasisEnd events are not - reliably transmitted during transfers (Reported by Matt Jordan) - * ASTERISK-24556 - Asterisk 13 core dumps when calling from pjsip - extension to another pjsip extension (Reported by Abhay Gupta) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24279 - Documentation: Clarify the behaviour of the CDR - property 'unanswered' (Reported by Matt Jordan) - * ASTERISK-24283 - [patch]Microseconds precision in the eventtime - column in the cel_odbc module (Reported by Etienne Lessard) - * ASTERISK-24530 - [patch] app_record stripping 1/4 second from - recordings (Reported by Ben Smithurst) - * ASTERISK-24577 - Speed up loopback switches by avoiding unneeded - lookups (Reported by Birger "WIMPy" Harzenetter) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-13.1.0- Add speexdsp as build dep as speex_echo.h has moved - rhbz 1181021- update for lua 5.3- The Asterisk Development Team has announced security releases for Certified - Asterisk 11.6 and Asterisk 11, 12, and 13. The available security releases are - released as versions 11.6-cert9, 11.14.2, 12.7.2, and 13.0.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerability: - - * AST-2014-019: Remote Crash Vulnerability in WebSocket Server - - When handling a WebSocket frame the res_http_websocket module dynamically - changes the size of the memory used to allow the provided payload to fit. If a - payload length of zero was received the code would incorrectly attempt to - resize to zero. This operation would succeed and end up freeing the memory but - be treated as a failure. When the session was subsequently torn down this - memory would get freed yet again causing a crash. - - For more information about the details of this vulnerability, please read - security advisory AST-2014-019, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert9 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.14.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.7.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.2 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-019.pdf- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28 and 11.6 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28-cert3, 11.6-cert8, 1.8.32.1, - 11.14.1, 12.7.1, and 13.0.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerabilities: - - * AST-2014-012: Unauthorized access in the presence of ACLs with mixed IP - address families - - Many modules in Asterisk that service incoming IP traffic have ACL options - ("permit" and "deny") that can be used to whitelist or blacklist address - ranges. A bug has been discovered where the address family of incoming - packets is only compared to the IP address family of the first entry in the - list of access control rules. If the source IP address for an incoming - packet is not of the same address as the first ACL entry, that packet - bypasses all ACL rules. - - * AST-2014-018: Permission Escalation through DB dialplan function - - The DB dialplan function when executed from an external protocol, such as AMI, - could result in a privilege escalation. Users with a lower class authorization - in AMI can access the internal Asterisk database without the required SYSTEM - class authorization. - - In addition, the release of 11.6-cert8 and 11.14.1 resolves the following - security vulnerability: - - * AST-2014-014: High call load with ConfBridge can result in resource exhaustion - - The ConfBridge application uses an internal bridging API to implement - conference bridges. This internal API uses a state model for channels within - the conference bridge and transitions between states as different things - occur. Unload load it is possible for some state transitions to be delayed - causing the channel to transition from being hung up to waiting for media. As - the channel has been hung up remotely no further media will arrive and the - channel will stay within ConfBridge indefinitely. - - In addition, the release of 11.6-cert8, 11.14.1, 12.7.1, and 13.0.1 resolves - the following security vulnerability: - - * AST-2014-017: Permission Escalation via ConfBridge dialplan function and - AMI ConfbridgeStartRecord Action - - The CONFBRIDGE dialplan function when executed from an external protocol (such - as AMI) can result in a privilege escalation as certain options within that - function can affect the underlying system. Additionally, the AMI - ConfbridgeStartRecord action has options that would allow modification of the - underlying system, and does not require SYSTEM class authorization in AMI. - - Finally, the release of 12.7.1 and 13.0.1 resolves the following security - vulnerabilities: - - * AST-2014-013: Unauthorized access in the presence of ACLs in the PJSIP stack - - The Asterisk module res_pjsip provides the ability to configure ACLs that may - be used to reject SIP requests from various hosts. However, the module - currently fails to create and apply the ACLs defined in its configuration - file on initial module load. - - * AST-2014-015: Remote crash vulnerability in PJSIP channel driver - - The chan_pjsip channel driver uses a queue approach for relating to SIP - sessions. There exists a race condition where actions may be queued to answer - a session or send ringing after a SIP session has been terminated using a - CANCEL request. The code will incorrectly assume that the SIP session is still - active and attempt to send the SIP response. The PJSIP library does not - expect the SIP session to be in the disconnected state when sending the - response and asserts. - - * AST-2014-016: Remote crash vulnerability in PJSIP channel driver - - When handling an INVITE with Replaces message the res_pjsip_refer module - incorrectly assumes that it will be operating on a channel that has just been - created. If the INVITE with Replaces message is sent in-dialog after a session - has been established this assumption will be incorrect. The res_pjsip_refer - module will then hang up a channel that is actually owned by another thread. - When this other thread attempts to use the just hung up channel it will end up - using a freed channel which will likely result in a crash. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-012, AST-2014-013, AST-2014-014, AST-2014-015, - AST-2014-016, AST-2014-017, and AST-2014-018, which were released at the same - time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert3 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert8 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.32.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.14.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.7.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-012.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-013.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-014.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-015.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-016.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-017.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-018.pdf- The Asterisk Development Team is pleased to announce the release of - Asterisk 13.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - Asterisk 13 is the next major release series of Asterisk. It is a Long Term - Support (LTS) release, similar to Asterisk 11. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 13, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+13 - - A short list of new features includes: - - * Asterisk security events are now provided via AMI, allowing end users to - monitor their Asterisk system in real time for security related issues. - - * Both AMI and ARI now allow external systems to control the state of a mailbox. - Using AMI actions or ARI resources, external systems can programmatically - trigger Message Waiting Indicators (MWI) on subscribed phones. This is of - particular use to those who want to build their own VoiceMail application - using ARI. - - * ARI now supports the reception/transmission of out of call text messages using - any supported channel driver/protocol stack through ARI. Users receive out of - call text messages as JSON events over the ARI websocket connection, and can - send out of call text messages using HTTP requests. - - * The PJSIP stack now supports RFC 4662 Resource Lists, allowing Asterisk to act - as a Resource List Server. This includes defining lists of presence state, - mailbox state, or lists of presence state/mailbox state; managing - subscriptions to lists; and batched delivery of NOTIFY requests to - subscribers. - - * The PJSIP stack can now be used as a means of distributing device state or - mailbox state via PUBLISH requests to other Asterisk instances. This is - analogous to Asterisk's clustering support using XMPP or Corosync; unlike - existing clustering mechanisms, using the PJSIP stack to perform the - distribution of state does not rely on another daemon or server to perform the - work. - - And much more! - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+13+Documentation - - A full list of all new features can also be found in the CHANGES file: - - http://svnview.digium.com/svn/asterisk/branches/13/CHANGES - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.0- rebuild for new libsrtp- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.28 and 11.6 and Asterisk 1.8, 11, 12, and 13. The available - security releases are released as versions 1.8.28-cert2, 11.6-cert7, 1.8.31.1, - 11.13.1, 12.6.1, and 13.0.0-beta3. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following security vulnerability: - - * AST-2014-011: Asterisk Susceptibility to POODLE Vulnerability - - Asterisk is susceptible to the POODLE vulnerability in two ways: - 1) The res_jabber and res_xmpp module both use SSLv3 exclusively for their - encrypted connections. - 2) The core TLS handling in Asterisk, which is used by the chan_sip channel - driver, Asterisk Manager Interface (AMI), and Asterisk HTTP Server, by - default allow a TLS connection to fallback to SSLv3. This allows for a - MITM to potentially force a connection to fallback to SSLv3, exposing it - to the POODLE vulnerability. - - These issues have been resolved in the versions released in conjunction with - this security advisory. - - For more information about the details of this vulnerability, please read - security advisory AST-2014-011, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.28-cert2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert7 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.31.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.13.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.6.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.0.0-beta3 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-011.pdf- The Asterisk Development Team has announced the release of Asterisk 11.13.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.13.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-24032 - Gentoo compilation emits warning: - "_FORTIFY_SOURCE" redefined (Reported by Kilburn) - * ASTERISK-24225 - Dial option z is broken (Reported by - dimitripietro) - * ASTERISK-24178 - [patch]fromdomainport used even if not set - (Reported by Elazar Broad) - * ASTERISK-22252 - res_musiconhold cleanup - REF_DEBUG reload - warnings and ref leaks (Reported by Walter Doekes) - * ASTERISK-23997 - chan_sip: port incorrectly incremented for RTCP - ICE candidates in SDP answer (Reported by Badalian Vyacheslav) - * ASTERISK-24019 - When a Music On Hold stream starts it restarts - at beginning of file. (Reported by Jason Richards) - * ASTERISK-23767 - [patch] Dynamic IAX2 registration stops trying - if ever not able to resolve (Reported by David Herselman) - * ASTERISK-24211 - testsuite: Fix the dial_LS_options test - (Reported by Matt Jordan) - * ASTERISK-24249 - SIP debugs do not stop (Reported by Avinash - Mohod) - * ASTERISK-23577 - res_rtp_asterisk: Crash in - ast_rtp_on_turn_rtp_state when RTP instance is NULL (Reported by - Jay Jideliov) - * ASTERISK-23634 - With TURN Asterisk crashes on multiple (7-10) - concurrent WebRTC (avpg/encryption/icesupport) calls (Reported - by Roman Skvirsky) - * ASTERISK-24301 - Security: Out of call MESSAGE requests - processed via Message channel driver can crash Asterisk - (Reported by Matt Jordan) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-24171 - [patch] Provide a manpage for the aelparse - utility (Reported by Jeremy Lainé) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.13.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 11.6 and Asterisk 11 and 12. The available security releases are - released as versions 11.6-cert6, 11.12.1, and 12.5.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - Please note that the release of these versions resolves the following security - vulnerability: - - * AST-2014-010: Remote Crash when Handling Out of Call Message in Certain - Dialplan Configurations - - Additionally, the release of Asterisk 12.5.1 resolves the following security - vulnerability: - - * AST-2014-009: Remote Crash Based on Malformed SIP Subscription Requests - - Note that the crash described in AST-2014-010 can be worked around through - dialplan configuration. Given the likelihood of the issue, an advisory was - deemed to be warranted. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-009 and AST-2014-010, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert6 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.12.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.5.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-009.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-010.pdf- The Asterisk Development Team has announced the release of Asterisk 11.12.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.12.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-23911 - URIENCODE/URIDECODE: WARNING about passing an - empty string is a bit over zealous (Reported by Matt Jordan) - * ASTERISK-23985 - PresenceState Action response does not contain - ActionID; duplicates Message Header (Reported by Matt Jordan) - * ASTERISK-23814 - No call started after peer dialed (Reported by - Igor Goncharovsky) - * ASTERISK-24087 - [patch]chan_sip: sip_subscribe_mwi_destroy - should not call sip_destroy (Reported by Corey Farrell) - * ASTERISK-23818 - PBX_Lua: after asterisk startup module is - loaded, but dialplan not available (Reported by Dennis Guse) - * ASTERISK-18345 - [patch] sips connection dropped by asterisk - with a large INVITE (Reported by Stephane Chazelas) - * ASTERISK-23508 - Memory Corruption in - __ast_string_field_ptr_build_va (Reported by Arnd Schmitter) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-21178 - Improve documentation for manager command - Getvar, Setvar (Reported by Rusty Newton) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.12.0- The Asterisk Development Team has announced the release of Asterisk 11.11.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.11.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-22551 - Session timer : UAS (Asterisk) starts counting - at Invite, UAC starts counting at 200 OK. (Reported by i2045) - * ASTERISK-23792 - Mutex left locked in chan_unistim.c (Reported - by Peter Whisker) - * ASTERISK-23582 - [patch]Inconsistent column length in *odbc - (Reported by Walter Doekes) - * ASTERISK-23803 - AMI action UpdateConfig EmptyCat clears all - categories but the requested one (Reported by zvision) - * ASTERISK-23035 - ConfBridge with name longer than max (32 chars) - results in several bridges with same conf_name (Reported by - Iñaki Cívico) - * ASTERISK-23824 - ConfBridge: Users cannot be muted via CLI or - AMI when waiting to enter a conference (Reported by Matt Jordan) - * ASTERISK-23683 - #includes - wildcard character in a path more - than one directory deep - results in no config parsing on module - reload (Reported by tootai) - * ASTERISK-23827 - autoservice thread doesn't exit at shutdown - (Reported by Corey Farrell) - * ASTERISK-23609 - Security: AMI action MixMonitor allows - arbitrary programs to be run (Reported by Corey Farrell) - * ASTERISK-23673 - Security: DOS by consuming the number of - allowed HTTP connections. (Reported by Richard Mudgett) - * ASTERISK-23246 - DEBUG messages in sdp_crypto.c display despite - a DEBUG level of zero (Reported by Rusty Newton) - * ASTERISK-23766 - [patch] Specify timeout for database write in - SQLite (Reported by Igor Goncharovsky) - * ASTERISK-23844 - Load of pbx_lua fails on sample extensions.lua - with Lua 5.2 or greater due to addition of goto statement - (Reported by Rusty Newton) - * ASTERISK-23818 - PBX_Lua: after asterisk startup module is - loaded, but dialplan not available (Reported by Dennis Guse) - * ASTERISK-23834 - res_rtp_asterisk debug message gives wrong - length if ICE (Reported by Richard Kenner) - * ASTERISK-23790 - [patch] - SIP From headers longer than 256 - characters result in dropped call and 'No closing bracket' - warnings. (Reported by uniken1) - * ASTERISK-23917 - res_http_websocket: Delay in client processing - large streams of data causes disconnect and stuck socket - (Reported by Matt Jordan) - * ASTERISK-23908 - [patch]When using FEC error correction, - asterisk tries considers negative sequence numbers as missing - (Reported by Torrey Searle) - * ASTERISK-23921 - refcounter.py uses excessive ram for large refs - files (Reported by Corey Farrell) - * ASTERISK-23948 - REF_DEBUG fails to record ao2_ref against - objects that were already freed (Reported by Corey Farrell) - * ASTERISK-23916 - [patch]SIP/SDP fmtp line may include whitespace - between attributes (Reported by Alexander Traud) - * ASTERISK-23984 - Infinite loop possible in ast_careful_fwrite() - (Reported by Steve Davies) - * ASTERISK-23897 - [patch]Change in SETUP ACK handling (checking - PI) in revision 413765 breaks working environments (Reported by - Pavel Troller) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-23492 - Add option to safe_asterisk to disable - backgrounding (Reported by Walter Doekes) - * ASTERISK-22961 - [patch] DTLS-SRTP not working with SHA-256 - (Reported by Jay Jideliov) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.11.0- Perl 5.20 rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- Drop the 389 directory server schema (1061414)- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.6, and Asterisk 1.8, 11, and 12. The available security - releases are released as versions 1.8.15-cert7, 11.6-cert4, 1.8.28.2, 11.10.2, - and 12.3.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - These releases resolve security vulnerabilities that were previously fixed in - 1.8.15-cert6, 11.6-cert3, 1.8.28.1, 11.10.1, and 12.3.1. Unfortunately, the fix - for AST-2014-007 inadvertently introduced a regression in Asterisk's TCP and TLS - handling that prevented Asterisk from sending data over these transports. This - regression and the security vulnerabilities have been fixed in the versions - specified in this release announcement. - - The security patches for AST-2014-007 have been updated with the fix for the - regression, and are available at http://downloads.asterisk.org/pub/security - - Please note that the release of these versions resolves the following security - vulnerabilities: - - * AST-2014-005: Remote Crash in PJSIP Channel Driver's Publish/Subscribe - Framework - - * AST-2014-006: Permission Escalation via Asterisk Manager User Unauthorized - Shell Access - - * AST-2014-007: Denial of Service via Exhaustion of Allowed Concurrent HTTP - Connections - - * AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-005, AST-2014-006, AST-2014-007, and AST-2014-008, - which were released with the previous versions that addressed these - vulnerabilities. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert7 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.28.2 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.10.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.3.2 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-005.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-006.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-007.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-008.pdf- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.6, and Asterisk 1.8, 11, and 12. The available security - releases are released as versions 1.8.15-cert6, 11.6-cert3, 1.8.28.1, 11.10.1, - and 12.3.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolves the following issue: - - * AST-2014-007: Denial of Service via Exhaustion of Allowed Concurrent HTTP - Connections - - Establishing a TCP or TLS connection to the configured HTTP or HTTPS port - respectively in http.conf and then not sending or completing a HTTP request - will tie up a HTTP session. By doing this repeatedly until the maximum number - of open HTTP sessions is reached, legitimate requests are blocked. - - Additionally, the release of 11.6-cert3, 11.10.1, and 12.3.1 resolves the - following issue: - - * AST-2014-006: Permission Escalation via Asterisk Manager User Unauthorized - Shell Access - - Manager users can execute arbitrary shell commands with the MixMonitor manager - action. Asterisk does not require system class authorization for a manager - user to use the MixMonitor action, so any manager user who is permitted to use - manager commands can potentially execute shell commands as the user executing - the Asterisk process. - - Additionally, the release of 12.3.1 resolves the following issues: - - * AST-2014-005: Remote Crash in PJSIP Channel Driver's Publish/Subscribe - Framework - - A remotely exploitable crash vulnerability exists in the PJSIP channel - driver's pub/sub framework. If an attempt is made to unsubscribe when not - currently subscribed and the endpoint's “sub_min_expiry” is set to zero, - Asterisk tries to create an expiration timer with zero seconds, which is not - allowed, so an assertion raised. - - * AST-2014-008: Denial of Service in PJSIP Channel Driver Subscriptions - - When a SIP transaction timeout caused a subscription to be terminated, the - action taken by Asterisk was guaranteed to deadlock the thread on which SIP - requests are serviced. Note that this behavior could only happen on - established subscriptions, meaning that this could only be exploited if an - attacker bypassed authentication and successfully subscribed to a real - resource on the Asterisk server. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-005, AST-2014-006, AST-2014-007, and AST-2014-008, - which were released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert6 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.28.1 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.10.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.3.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-005.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-006.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-007.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-008.pdf- The Asterisk Development Team has announced the release of Asterisk 11.10.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.10.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-23547 - [patch] app_queue removing callers from queue - when reloading (Reported by Italo Rossi) - * ASTERISK-23559 - app_voicemail fails to load after fix to - dialplan functions (Reported by Corey Farrell) - * ASTERISK-22846 - testsuite: masquerade super test fails on all - branches (still) (Reported by Matt Jordan) - * ASTERISK-23545 - Confbridge talker detection settings - configuration load bug (Reported by John Knott) - * ASTERISK-23546 - CB_ADD_LEN does not do what you'd think - (Reported by Walter Doekes) - * ASTERISK-23620 - Code path in app_stack fails to unlock list - (Reported by Bradley Watkins) - * ASTERISK-23616 - Big memory leak in logger.c (Reported by - ibercom) - * ASTERISK-23576 - Build failure on SmartOS / Illumos / SunOS - (Reported by Sebastian Wiedenroth) - * ASTERISK-23550 - Newer sound sets don't show up in menuselect - (Reported by Rusty Newton) - * ASTERISK-18331 - app_sms failure (Reported by David Woodhouse) - * ASTERISK-19465 - P-Asserted-Identity Privacy (Reported by - Krzysztof Chmielewski) - * ASTERISK-23605 - res_http_websocket: Race condition in shutting - down websocket causes crash (Reported by Matt Jordan) - * ASTERISK-23707 - Realtime Contacts: Apparent mismatch between - PGSQL database state and Asterisk state (Reported by Mark - Michelson) - * ASTERISK-23381 - [patch]ChanSpy- Barge only works on the initial - 'spy', if the spied-on channel makes a new call, unable to - barge. (Reported by Robert Moss) - * ASTERISK-23665 - Wrong mime type for codec H263-1998 (h263+) - (Reported by Guillaume Maudoux) - * ASTERISK-23664 - Incorrect H264 specification in SDP. (Reported - by Guillaume Maudoux) - * ASTERISK-22977 - chan_sip+CEL: missing ANSWER and PICKUP event - for INVITE/w/replaces pickup (Reported by Walter Doekes) - * ASTERISK-23709 - Regression in Dahdi/Analog/waitfordialtone - (Reported by Steve Davies) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-23649 - [patch]Support for DTLS retransmission - (Reported by NITESH BANSAL) - * ASTERISK-23564 - [patch]TLS/SRTP status of channel not currently - available in a CLI command (Reported by Patrick Laimbock) - * ASTERISK-23754 - [patch] Use var/lib directory for log file - configured in asterisk.conf (Reported by Igor Goncharovsky) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.10.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- build against gmime-devel not gmime22-devel - do not use -m64 on aarch64- The Asterisk Development Team has announced the release of Asterisk 11.9.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.9.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-22790 - check_modem_rate() may return incorrect rate - for V.27 (Reported by Paolo Compagnini) - * ASTERISK-23034 - [patch] manager Originate doesn't abort on - failed format_cap allocation (Reported by Corey Farrell) - * ASTERISK-23061 - [Patch] 'textsupport' setting not mentioned in - sip.conf.sample (Reported by Eugene) - * ASTERISK-23028 - [patch] Asterisk man pages contains unquoted - minus signs (Reported by Jeremy Lainé) - * ASTERISK-23046 - Custom CDR fields set during a GoSUB called - from app_queue are not inserted (Reported by Denis Pantsyrev) - * ASTERISK-23027 - [patch] Spelling typo "transfered" instead of - "transferred" (Reported by Jeremy Lainé) - * ASTERISK-23008 - Local channels loose CALLERID name when DAHDI - channel connects (Reported by Michael Cargile) - * ASTERISK-23100 - [patch] In chan_mgcp the ident in transmitted - request and request queue may differ - fix for locking (Reported - by adomjan) - * ASTERISK-22988 - [patch]T38 , SIP 488 after Rejecting image - media offer due to invalid or unsupported syntax (Reported by - adomjan) - * ASTERISK-22861 - [patch]Specifying a null time as parameter to - GotoIfTime or ExecIfTime causes segmentation fault (Reported by - Sebastian Murray-Roberts) - * ASTERISK-17837 - extconfig.conf - Maximum Include level (1) - exceeded (Reported by pz) - * ASTERISK-22662 - Documentation fix? - queues.conf says - persistentmembers defaults to yes, it appears to lie (Reported - by Rusty Newton) - * ASTERISK-23134 - [patch] res_rtp_asterisk port selection cannot - handle selinux port restrictions (Reported by Corey Farrell) - * ASTERISK-23220 - STACK_PEEK function with no arguments causes - crash/core dump (Reported by James Sharp) - * ASTERISK-19773 - Asterisk crash on issuing Asterisk-CLI 'reload' - command multiple times on cli_aliases (Reported by Joel Vandal) - * ASTERISK-22757 - segfault in res_clialiases.so on reload when - mapping "module reload" command (Reported by Gareth Blades) - * ASTERISK-17727 - [patch] TLS doesn't get all certificate chain - (Reported by LN) - * ASTERISK-23178 - devicestate.h: device state setting functions - are documented with the wrong return values (Reported by - Jonathan Rose) - * ASTERISK-23232 - LocalBridge AMI Event LocalOptimization value - is opposite to what's expected (Reported by Leon Roy) - * ASTERISK-23098 - [patch]possible null pointer dereference in - format.c (Reported by Marcello Ceschia) - * ASTERISK-23297 - Asterisk 12, pbx_config.so segfaults if - res_parking.so is not loaded, or if res_parking.conf has no - configuration (Reported by CJ Oster) - * ASTERISK-23069 - Custom CDR variable not recorded when set in - macro called from app_queue (Reported by Bryan Anderson) - * ASTERISK-19499 - ConfBridge MOH is not working for transferee - after attended transfer (Reported by Timo Teräs) - * ASTERISK-23261 - [patch]Output mixup in - ${CHANNEL(rtpqos,audio,all)} (Reported by rsw686) - * ASTERISK-23279 - [patch]Asterisk doesn't support the dynamic - payload change in rtp mapping in the 200 OK response (Reported - by NITESH BANSAL) - * ASTERISK-23255 - UUID included for Redhat, but missing for - Debian distros in install_prereq script (Reported by Rusty - Newton) - * ASTERISK-23260 - [patch]ForkCDR v option does not keep CDR - variables for subsequent records (Reported by zvision) - * ASTERISK-23141 - Asterisk crashes on Dial(), in - pbx_find_extension at pbx.c (Reported by Maxim) - * ASTERISK-23336 - Asterisk warning "Don't know how to indicate - condition 33 on ooh323c" on outgoing calls from H323 to SIP peer - (Reported by Alexander Semych) - * ASTERISK-23231 - Since 405693 If we have res_fax.conf file set - to minrate=2400, then res_fax refuse to load (Reported by David - Brillert) - * ASTERISK-23135 - Crash - segfault in ast_channel_hangupcause_set - - probably introduced in 11.7.0 (Reported by OK) - * ASTERISK-23323 - [patch]chan_sip: missing p->owner checks in - handle_response_invite (Reported by Walter Doekes) - * ASTERISK-23406 - [patch]Fix typo in "sip show peer" (Reported by - ibercom) - * ASTERISK-23310 - bridged channel crashes in bridge_p2p_rtp_write - (Reported by Jeremy Lainé) - * ASTERISK-22911 - [patch]Asterisk fails to resume WebRTC call - from hold (Reported by Vytis Valentinavičius) - * ASTERISK-23104 - Specifying the SetVar AMI without a Channel - cause Asterisk to crash (Reported by Joel Vandal) - * ASTERISK-21930 - [patch]WebRTC over WSS is not working. - (Reported by John) - * ASTERISK-23383 - Wrong sense test on stat return code causes - unchanged config check to break with include files. (Reported by - David Woolley) - * ASTERISK-20149 - Crash when faxing SIP to SIP with strictrtp set - to yes (Reported by Alexandr Gordeev) - * ASTERISK-17523 - Qualify for static realtime peers does not work - (Reported by Maciej Krajewski) - * ASTERISK-21406 - [patch] chan_sip deadlock on monlock between - unload_module and do_monitor (Reported by Corey Farrell) - * ASTERISK-23373 - [patch]Security: Open FD exhaustion with - chan_sip Session-Timers (Reported by Corey Farrell) - * ASTERISK-23340 - Security Vulnerability: stack allocation of - cookie headers in loop allows for unauthenticated remote denial - of service attack (Reported by Matt Jordan) - * ASTERISK-23311 - Manager - MoH Stop Event fails to show up when - leaving Conference (Reported by Benjamin Keith Ford) - * ASTERISK-23420 - [patch]Memory leak in manager_add_filter - function in manager.c (Reported by Etienne Lessard) - * ASTERISK-23488 - Logic error in callerid checksum processing - (Reported by Russ Meyerriecks) - * ASTERISK-23461 - Only first user is muted when joining - confbridge with 'startmuted=yes' (Reported by Chico Manobela) - * ASTERISK-20841 - fromdomain not honored on outbound INVITE - request (Reported by Kelly Goedert) - * ASTERISK-22079 - Segfault: INTERNAL_OBJ (user_data=0x6374652f) - at astobj2.c:120 (Reported by Jamuel Starkey) - * ASTERISK-23509 - [patch]SayNumber for Polish language tries to - play empty files for numbers divisible by 100 (Reported by - zvision) - * ASTERISK-23103 - [patch]Crash in ast_format_cmp, in ao2_find - (Reported by JoshE) - * ASTERISK-23391 - Audit dialplan function usage of channel - variable (Reported by Corey Farrell) - * ASTERISK-23548 - POST to ARI sometimes returns no body on - success (Reported by Scott Griepentrog) - * ASTERISK-23460 - ooh323 channel stuck if call is placed directly - and gatekeeper is not available (Reported by Dmitry Melekhov) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-22980 - [patch]Allow building cdr_radius and cel_radius - against libfreeradius-client (Reported by Jeremy Lainé) - * ASTERISK-22661 - Unable to exit ChanSpy if spied channel does - not have a call in progress (Reported by Chris Hillman) - * ASTERISK-23099 - [patch] WSS: enable ast_websocket_read() - function to read the whole available data at first and then wait - for any fragmented packets (Reported by Thava Iyer)- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.6, and Asterisk 1.8, 11, and 12. The available security - releases are released as versions 1.8.15-cert5, 11.6-cert2, 1.8.26.1, 11.8.1, - and 12.1.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * AST-2014-001: Stack overflow in HTTP processing of Cookie headers. - - Sending a HTTP request that is handled by Asterisk with a large number of - Cookie headers could overflow the stack. - - Another vulnerability along similar lines is any HTTP request with a - ridiculous number of headers in the request could exhaust system memory. - - * AST-2014-002: chan_sip: Exit early on bad session timers request - - This change allows chan_sip to avoid creation of the channel and - consumption of associated file descriptors altogether if the inbound - request is going to be rejected anyway. - - Additionally, the release of 12.1.1 resolves the following issue: - - * AST-2014-003: res_pjsip: When handling 401/407 responses don't assume a - request will have an endpoint. - - This change removes the assumption that an outgoing request will always - have an endpoint and makes the authenticate_qualify option work once again. - - Finally, a security advisory, AST-2014-004, was released for a vulnerability - fixed in Asterisk 12.1.0. Users of Asterisk 12.0.0 are encouraged to upgrade to - 12.1.1 to resolve both vulnerabilities. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2014-001, AST-2014-002, AST-2014-003, and AST-2014-004, - which were released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert5 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.26.1 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.6-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.8.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-12.1.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2014-001.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-002.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-003.pdf - * http://downloads.asterisk.org/pub/security/AST-2014-004.pdf- The Asterisk Development Team has announced the release of Asterisk 11.8.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.8.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - Bugs fixed in this release: - ----------------------------------- - * ASTERISK-22544 - Italian prompt vm-options has advertisement in - it (Reported by Rusty Newton) - * ASTERISK-21383 - STUN Binding Requests Not Being Sent Back from - Asterisk to Chrome (Reported by Shaun Clark) - * ASTERISK-22478 - [patch]Can't use pound(hash) symbol for custom - DTMF menus in ConfBridge (processed as directive) (Reported by - Nicolas Tanski) - * ASTERISK-12117 - chan_sip creates a new local tag (from-tag) for - every register message (Reported by Pawel Pierscionek) - * ASTERISK-20862 - Asterisk min and max member penalties not - honored when set with 0 (Reported by Schmooze Com) - * ASTERISK-22746 - [patch]Crash in chan_dahdi during caller id - read (Reported by Michael Walton) - * ASTERISK-22788 - [patch] main/translate.c: access to variable f - after free in ast_translate() (Reported by Corey Farrell) - * ASTERISK-21242 - Segfault when T.38 re-invite retransmission - receives 200 OK (Reported by Ashley Winters) - * ASTERISK-22590 - BufferOverflow in unpacksms16() when receiving - 16 bit multipart SMS with app_sms (Reported by Jan Juergens) - * ASTERISK-22905 - Prevent Asterisk functions that are 'dangerous' - from being executed from external interfaces (Reported by Matt - Jordan) - * ASTERISK-23021 - Typos in code : "avaliable" instead of - "available" (Reported by Jeremy Lainé) - * ASTERISK-22970 - [patch]Documentation fix for QUOTE() (Reported - by Gareth Palmer) - * ASTERISK-21960 - ooh323 channels stuck (Reported by Dmitry - Melekhov) - * ASTERISK-22350 - DUNDI - core dump on shutdown - segfault in - sqlite3_reset from /usr/lib/libsqlite3.so.0 (Reported by Birger - "WIMPy" Harzenetter) - * ASTERISK-22942 - [patch] - Asterisk crashed after - Set(FAXOPT(faxdetect)=t38) (Reported by adomjan) - * ASTERISK-22856 - [patch]SayUnixTime in polish reads minutes - instead of seconds (Reported by Robert Mordec) - * ASTERISK-22854 - [patch] - Deadlock between cel_pgsql unload and - core_event_dispatcher taskprocessor thread (Reported by Etienne - Lessard) - * ASTERISK-22910 - [patch] - REPLACE() calls strcpy on overlapping - memory when is empty (Reported by Gareth Palmer) - * ASTERISK-22871 - cel_pgsql module not loading after "reload" or - "reload cel_pgsql.so" command (Reported by Matteo) - * ASTERISK-23084 - [patch]rasterisk needlessly prints the - AST-2013-007 warning (Reported by Tzafrir Cohen) - * ASTERISK-17138 - [patch] Asterisk not re-registering after it - receives "Forbidden - wrong password on authentication" - (Reported by Rudi) - * ASTERISK-23011 - [patch]configure.ac and pbx_lua don't support - lua 5.2 (Reported by George Joseph) - * ASTERISK-22834 - Parking by blind transfer when lot full orphans - channels (Reported by rsw686) - * ASTERISK-23047 - Orphaned (stuck) channel occurs during a failed - SIP transfer to parking space (Reported by Tommy Thompson) - * ASTERISK-22946 - Local From tag regression with sipgate.de - (Reported by Stephan Eisvogel) - * ASTERISK-23010 - No BYE message sent when sip INVITE is received - (Reported by Ryan Tilton) - * ASTERISK-23135 - Crash - segfault in ast_channel_hangupcause_set - - probably introduced in 11.7.0 (Reported by OK) - - Improvements made in this release: - ----------------------------------- - * ASTERISK-22728 - [patch] Improve Understanding Of 'Forcerport' - When Running "sip show peers" (Reported by Michael L. Young) - * ASTERISK-22659 - Make a new core and extra sounds release - (Reported by Rusty Newton) - * ASTERISK-22919 - core show channeltypes slicing (Reported by - outtolunc) - * ASTERISK-22918 - dahdi show channels slices PRI channel dnid on - output (Reported by outtolunc) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.8.0- The Asterisk Development Team has announced the release of Asterisk 11.7.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.7.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- app_confbridge: Can now set the language used for announcements - to the conference. - (Closes issue ASTERISK-19983. Reported by Jonathan White) - - * --- app_queue: Fix CLI "queue remove member" queue_log entry. - (Closes issue ASTERISK-21826. Reported by Oscar Esteve) - - * --- chan_sip: Do not increment the SDP version between 183 and 200 - responses. - (Closes issue ASTERISK-21204. Reported by NITESH BANSAL) - - * --- chan_sip: Allow a sip peer to accept both AVP and AVPF calls - (Closes issue ASTERISK-22005. Reported by Torrey Searle) - - * --- chan_sip: Fix Realtime Peer Update Problem When Un-registering - And Expires Header In 200ok - (Closes issue ASTERISK-22428. Reported by Ben Smithurst) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.7.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.2, and Asterisk 1.8, 10, and 11. The available security - releases are released as versions 1.8.15-cert4, 11.2-cert3, 1.8.24.1, 10.12.4, - 10.12.4-digiumphones, and 11.6.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * A buffer overflow when receiving odd length 16 bit messages in app_sms. An - infinite loop could occur which would overwrite memory when a message is - received into the unpacksms16() function and the length of the message is an - odd number of bytes. - - * Prevent permissions escalation in the Asterisk Manager Interface. Asterisk - now marks certain individual dialplan functions as 'dangerous', which will - inhibit their execution from external sources. - - A 'dangerous' function is one which results in a privilege escalation. For - example, if one were to read the channel variable SHELL(rm -rf /) Bad - Things(TM) could happen; even if the external source has only read - permissions. - - Execution from external sources may be enabled by setting 'live_dangerously' - to 'yes' in the [options] section of asterisk.conf. Although doing so is not - recommended. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2013-006 and AST-2013-007, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert4 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.2-cert3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.24.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.4-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.6.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2013-006.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-007.pdf- The Asterisk Development Team has announced the release of Asterisk 11.6.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.6.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Confbridge: empty conference not being torn down - (Closes issue ASTERISK-21859. Reported by Chris Gentle) - - * --- Let Queue wrap up time influence member availability - (Closes issue ASTERISK-22189. Reported by Tony Lewis) - - * --- Fix a longstanding issue with MFC-R2 configuration that - prevented users - (Closes issue ASTERISK-21117. Reported by Rafael Angulo) - - * --- chan_iax2: Fix saving the wrong expiry time in astdb. - (Closes issue ASTERISK-22504. Reported by Stefan Wachtler) - - * --- Fix segfault for certain invalid WebSocket input. - (Closes issue ASTERISK-21825. Reported by Alfred Farrugia) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.6.0- Disable hardened build, as it's apparently causing problems loading modules.- Enable hardened build BZ#954338 - Significant clean ups- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15, 11.2, and Asterisk 1.8, 10, and 11. The available security releases - are released as versions 1.8.15-cert2, 11.2-cert2, 1.8.23.1, 10.12.3, 10.12.3-digiumphones, - and 11.5.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * A remotely exploitable crash vulnerability exists in the SIP channel driver if - an ACK with SDP is received after the channel has been terminated. The - handling code incorrectly assumes that the channel will always be present. - - * A remotely exploitable crash vulnerability exists in the SIP channel driver if - an invalid SDP is sent in a SIP request that defines media descriptions before - connection information. The handling code incorrectly attempts to reference - the socket address information even though that information has not yet been - set. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2013-004 and AST-2013-005, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert3 - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-11.2-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.23.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.3-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.5.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2013-004.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-005.pdf - - The Asterisk Development Team has announced the release of Asterisk 11.5.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.5.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix Segfault In app_queue When "persistentmembers" Is Enabled - And Using Realtime - (Closes issue ASTERISK-21738. Reported by JoshE) - - * --- IAX2: fix race condition with nativebridge transfers. - (Closes issue ASTERISK-21409. Reported by alecdavis) - - * --- Fix The Payload Being Set On CN Packets And Do Not Set Marker - Bit - (Closes issue ASTERISK-21246. Reported by Peter Katzmann) - - * --- Fix One-Way Audio With auto_* NAT Settings When SIP Calls - Initiated By PBX - (Closes issue ASTERISK-21374. Reported by Michael L. Young) - - * --- chan_sip: NOTIFYs for BLF start queuing up and fail to be sent - out after retries fail - (Closes issue ASTERISK-21677. Reported by Dan Martens) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.5.0- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild- Perl 5.18 rebuild- rebuild (libical)- The Asterisk Development Team has announced the release of Asterisk 11.4.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.4.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix Sorting Order For Parking Lots Stored In Static Realtime - (Closes issue ASTERISK-21035. Reported by Alex Epshteyn) - - * --- Fix StopMixMonitor Hanging Up When Unable To Stop MixMonitor On - A Channel - (Closes issue ASTERISK-21294. Reported by daroz) - - * --- When a session timer expires during a T.38 call, re-invite with - correct SDP - (Closes issue ASTERISK-21232. Reported by Nitesh Bansal) - - * --- Fix white noise on SRTP decryption - (Closes issue ASTERISK-21323. Reported by andrea) - - * --- Fix reload skinny with active devices. - (Closes issue ASTERISK-16610. Reported by wedhorn) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.4.0- fix build with lua 5.2- The Asterisk Development Team has announced the release of Asterisk 11.3.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.3.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix issue where chan_mobile fails to bind to first available - port - (Closes issue ASTERISK-16357. Reported by challado) - - * --- Fix Queue Log Reporting Every Call COMPLETECALLER With "h" - Extension Present - (Closes issue ASTERISK-20743. Reported by call) - - * --- Retain XMPP filters across reconnections so external modules - continue to function as expected. - (Closes issue ASTERISK-20916. Reported by kuj) - - * --- Ensure that a declined media stream is terminated with a '\r\n' - (Closes issue ASTERISK-20908. Reported by Dennis DeDonatis) - - * --- Fix pjproject compilation in certain circumstances - (Closes issue ASTERISK-20681. Reported by Dinesh Ramjuttun) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.3.0- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.15 and Asterisk 1.8, 10, and 11. The available security releases - are released as versions 1.8.15-cert2, 1.8.20.2, 10.12.2, 10.12.2-digiumphones, - and 11.2.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following issues: - - * A possible buffer overflow during H.264 format negotiation. The format - attribute resource for H.264 video performs an unsafe read against a media - attribute when parsing the SDP. - - This vulnerability only affected Asterisk 11. - - * A denial of service exists in Asterisk's HTTP server. AST-2012-014, fixed - in January of this year, contained a fix for Asterisk's HTTP server for a - remotely-triggered crash. While the fix prevented the crash from being - triggered, a denial of service vector still exists with that solution if an - attacker sends one or more HTTP POST requests with very large Content-Length - values. - - This vulnerability affects Certified Asterisk 1.8.15, Asterisk 1.8, 10, and 11 - - * A potential username disclosure exists in the SIP channel driver. When - authenticating a SIP request with alwaysauthreject enabled, allowguest - disabled, and autocreatepeer disabled, Asterisk discloses whether a user - exists for INVITE, SUBSCRIBE, and REGISTER transactions in multiple ways. - - This vulnerability affects Certified Asterisk 1.8.15, Asterisk 1.8, 10, and 11 - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2013-001, AST-2013-002, and AST-2013-003, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.15-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.20.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.12.2-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.2.2 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2013-001.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-002.pdf - * http://downloads.asterisk.org/pub/security/AST-2013-003.pdf- The Asterisk Development Team has announced the release of Asterisk 11.2.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.2.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Fix astcanary startup problem due to wrong pid value from before - daemon call - (Closes issue ASTERISK-20947. Reported by Jakob Hirsch) - - * --- Update init.d scripts to handle stderr; readd splash screen for - remote consoles - (Closes issue ASTERISK-20945. Reported by Warren Selby) - - * --- Reset RTP timestamp; sequence number on SSRC change - (Closes issue ASTERISK-20906. Reported by Eelco Brolman) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.2.1- The Asterisk Development Team has announced the release of Asterisk 11.2.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.2.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- app_meetme: Fix channels lingering when hung up under certain - conditions - (Closes issue ASTERISK-20486. Reported by Michael Cargile) - - * --- Fix stuck DTMF when bridge is broken. - (Closes issue ASTERISK-20492. Reported by Jeremiah Gowdy) - - * --- Add missing support for "who hung up" to chan_motif. - (Closes issue ASTERISK-20671. Reported by Matt Jordan) - - * --- Remove a fixed size limitation for producing SDP and change how - ICE support is disabled by default. - (Closes issue ASTERISK-20643. Reported by coopvr) - - * --- Fix chan_sip websocket payload handling - (Closes issue ASTERISK-20745. Reported by Iñaki Baz Castillo) - - * --- Fix pjproject compilation in certain circumstances - (Closes issue ASTERISK-20681. Reported by Dinesh Ramjuttun) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.2.0- The Asterisk Development Team has announced a security release for Asterisk 11, - Asterisk 11.1.2. This release addresses the security vulnerabilities reported in - AST-2012-014 and AST-2012-015, and replaces the previous version of Asterisk 11 - released for these security vulnerabilities. The prior release left open a - vulnerability in res_xmpp that exists only in Asterisk 11; as such, other - versions of Asterisk were resolved correctly by the previous releases. - - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following two issues: - - * Stack overflows that occur in some portions of Asterisk that manage a TCP - connection. In SIP, this is exploitable via a remote unauthenticated session; - in XMPP and HTTP connections, this is exploitable via remote authenticated - sessions. The vulnerabilities in SIP and HTTP were corrected in a prior - release of Asterisk; the vulnerability in XMPP is resolved in this release. - - * A denial of service vulnerability through exploitation of the device state - cache. Anonymous calls had the capability to create devices in Asterisk that - would never be disposed of. Handling the cachability of device states - aggregated via XMPP is handled in this release. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-014 and AST-2012-015. - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.1.2 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-014.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-015.pdf - - Thank you for your continued support of Asterisk - and we apologize for having - to do this twice!- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8, 10, and 11. The available security releases - are released as versions 1.8.11-cert10, 1.8.19.1, 10.11.1, 10.11.1-digiumphones, - and 11.1.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of these versions resolve the following two issues: - - * Stack overflows that occur in some portions of Asterisk that manage a TCP - connection. In SIP, this is exploitable via a remote unauthenticated session; - in XMPP and HTTP connections, this is exploitable via remote authenticated - sessions. - - * A denial of service vulnerability through exploitation of the device state - cache. Anonymous calls had the capability to create devices in Asterisk that - would never be disposed of. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-014 and AST-2012-015, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert10 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.19.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.11.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.11.1-digiumphones - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.1.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-014.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-015.pdf- The Asterisk Development Team has announced the release of Asterisk 11.1.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.1.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix execution of 'i' extension due to uninitialized variable. - (Closes issue ASTERISK-20455. Reported by Richard Miller) - - * --- Prevent resetting of NATted realtime peer address on reload. - (Closes issue ASTERISK-18203. Reported by daren ferreira) - - * --- Fix ConfBridge crash if no timing module loaded. - (Closes issue ASTERISK-19448. Reported by feyfre) - - * --- Fix the Park 'r' option when a channel parks itself. - (Closes issue ASTERISK-19382. Reported by James Stocks) - - * --- Fix an issue where outgoing calls would fail to establish audio - due to ICE negotiation failures. - (Closes issue ASTERISK-20554. Reported by mmichelson) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.1.0- The Asterisk Development Team has announced the release of Asterisk 11.0.2. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.0.2 resolves an issue reported by the - community and would have not been possible without your participation. - Thank you! - - The following is the issue resolved in this release: - - * --- chan_local: Fix local_pvt ref leak in local_devicestate(). - (Closes issue ASTERISK-20769. Reported by rmudgett) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.0.2- simplify LDFLAGS setting- clean up things to allow building on arm arches- The Asterisk Development Team has announced the release of Asterisk 11.0.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.0.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- chan_sip: Fix a bug causing SIP reloads to remove all entries - from the registry - (Closes issue ASTERISK-20611. Reported by Alisher) - - * --- confbridge: Fix a bug which made conferences not record with - AMI/CLI commands - (Closes issue ASTERISK-20601. Reported by Vilius) - - * --- Fix an issue with res_http_websocket where the chan_sip - WebSocket handler could not be registered. - (Closes issue ASTERISK-20631. Reported by danjenkins) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.0.1- The Asterisk Development Team is pleased to announce the release of - Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - Asterisk 11 is the next major release series of Asterisk. It is a Long Term - Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for DTLS-SRTP in chan_sip. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0- The Asterisk Development Team has announced the second release candidate of - Asterisk 11.0.0. This release candidate is available for immediate - download at http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 11.0.0-rc2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release candidate: - - * --- Fix an issue where outgoing calls would fail to establish audio - due to ICE negotiation failures. - (Closes issue ASTERISK-20554. Reported by mmichelson) - - * --- Ensure Asterisk fails TCP/TLS SIP calls when certificate - checking fails - (Closes issue ASTERISK-20559. Reported by kmoore) - - * --- Don't make chan_sip export global symbols. - (Closes issue ASTERISK-20545. Reported by kmoore) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.0.0-rc2- The Asterisk Development Team is pleased to announce the first release candidate - of Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - All interested users of Asterisk are encouraged to participate in the - Asterisk 11 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - All Asterisk users are invited to participate in the #asterisk-testing channel - on IRC to work together in testing the many parts of Asterisk. - - Asterisk 11 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for DTLS-SRTP in chan_sip. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0-rc1- Don't forget format_ilbc module- The Asterisk Development Team is pleased to announce the second beta release of - Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - All interested users of Asterisk are encouraged to participate in the - Asterisk 11 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - All Asterisk users are invited to participate in the #asterisk-testing channel - on IRC to work together in testing the many parts of Asterisk. - - Asterisk 11 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for DTLS-SRTP in chan_sip. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0-beta2- The Asterisk Development Team has announced the release of Asterisk 10.8.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.8.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- AST-2012-012: Resolve AMI User Unauthorized Shell Access through - ExternalIVR - (Closes issue ASTERISK-20132. Reported by Zubair Ashraf of IBM X-Force Research) - - * --- AST-2012-013: Resolve ACL rules being ignored during calls by - some IAX2 peers - (Closes issue ASTERISK-20186. Reported by Alan Frisch) - - * --- Handle extremely out of order RFC 2833 DTMF - (Closes issue ASTERISK-18404. Reported by Stephane Chazelas) - - * --- Resolve severe memory leak in CEL logging modules. - (Closes issue AST-916. Reported by Thomas Arimont) - - * --- Only re-create an SRTP session when needed - (Issue ASTERISK-20194. Reported by Nicolo Mazzon) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.8.0- fix build on s390- fix build on s390- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are - released as versions 1.8.11-cert7, 1.8.15.1, 10.7.1, and 10.7.1-digiumphones. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.11-cert7, 1.8.15.1, 10.7.1, and 10.7.1-digiumphones - resolve the following two issues: - - * A permission escalation vulnerability in Asterisk Manager Interface. This - would potentially allow remote authenticated users the ability to execute - commands on the system shell with the privileges of the user running the - Asterisk application. Please note that the README-SERIOUSLY.bestpractices.txt - file delivered with Asterisk has been updated due to this and other related - vulnerabilities fixed in previous versions of Asterisk. - - * When an IAX2 call is made using the credentials of a peer defined in a - dynamic Asterisk Realtime Architecture (ARA) backend, the ACL rules for that - peer are not applied to the call attempt. This allows for a remote attacker - who is aware of a peer's credentials to bypass the ACL rules set for that - peer. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-012 and AST-2012-013, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert7 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.15.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.7.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.7.1-digiumphones - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-012.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-013.pdf- The Asterisk Development Team has announced the release of Asterisk 10.7.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.7.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix deadlock potential with ast_set_hangupsource() calls. - (Closes issue ASTERISK-19801. Reported by Alec Davis) - - * --- Fix request routing issue when outboundproxy is used. - (Closes issue ASTERISK-20008. Reported by Marcus Hunger) - - * --- Set the Caller ID "tag" on peers even if remote party - information is present. - (Closes issue ASTERISK-19859. Reported by Thomas Arimont) - - * --- Fix NULL pointer segfault in ast_sockaddr_parse() - (Closes issue ASTERISK-20006. Reported by Michael L. Young) - - * --- Do not perform install on existing directories - (Closes issue ASTERISK-19492. Reported by Karl Fife) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.7.0- The Asterisk Development Team has announced the release of Asterisk 10.6.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.6.1 resolves an issue reported by the - community and would have not been possible without your participation. - Thank you! - - The following is the issue resolved in this release: - - * --- Remove a superfluous and dangerous freeing of an SSL_CTX. - (Closes issue ASTERISK-20074. Reported by Trevor Helmsley) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.6.1- The Asterisk Development Team has announced the release of Asterisk 10.6.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.6.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- format_mp3: Fix a possible crash in mp3_read(). - (Closes issue ASTERISK-19761. Reported by Chris Maciejewsk) - - * --- Fix local channel chains optimizing themselves out of a call. - (Closes issue ASTERISK-16711. Reported by Alec Davis) - - * --- Re-add LastMsgsSent value for SIP peers - (Closes issue ASTERISK-17866. Reported by Steve Davies) - - * --- Prevent sip_pvt refleak when an ast_channel outlasts its - corresponding sip_pvt. - (Closes issue ASTERISK-19425. Reported by David Cunningham) - - * --- Send more accurate identification information in dialog-info SIP - NOTIFYs. - (Closes issue ASTERISK-16735. Reported by Maciej Krajewski) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.6.0- The Asterisk Development Team is pleased to announce the first beta release of - Asterisk 11.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - All interested users of Asterisk are encouraged to participate in the - Asterisk 11 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - All Asterisk users are invited to participate in the #asterisk-testing channel - on IRC to work together in testing the many parts of Asterisk. - - Asterisk 11 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.8. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - For important information regarding upgrading to Asterisk 11, please see the - Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Upgrading+to+Asterisk+11 - - A short list of new features includes: - - * A new channel driver named chan_motif has been added which provides support - for Google Talk and Jingle in a single channel driver. This new channel - driver includes support for both audio and video, RFC2833 DTMF, all codecs - supported by Asterisk, hold, unhold, and ringing notification. It is also - compliant with the current Jingle specification, current Google Jingle - specification, and the original Google Talk protocol. - - * Support for the WebSocket transport for chan_sip. - - * SIP peers can now be configured to support negotiation of ICE candidates. - - * The app_page application now no longer depends on DAHDI or app_meetme. It - has been re-architected to use app_confbridge internally. - - * Hangup handlers can be attached to channels using the CHANNEL() function. - Hangup handlers will run when the channel is hung up similar to the h - extension; however, unlike an h extension, a hangup handler is associated with - the actual channel and will execute anytime that channel is hung up, - regardless of where it is in the dialplan. - - * Added pre-dial handlers for the Dial and Follow-Me applications. Pre-dial - allows you to execute a dialplan subroutine on a channel before a call is - placed but after the application performing a dial action is invoked. This - means that the handlers are executed after the creation of the caller/callee - channels, but before any actions have been taken to actually dial the callee - channels. - - * Log messages can now be easily associated with a certain call by looking at - a new unique identifier, "Call Id". Call ids are attached to log messages for - just about any case where it can be determined that the message is related - to a particular call. - - * Introduced Named ACLs as a new way to define Access Control Lists (ACLs) in - Asterisk. Unlike traditional ACLs defined in specific module configuration - files, Named ACLs can be shared across multiple modules. - - * The Hangup Cause family of functions and dialplan applications allow for - inspection of the hangup cause codes for each channel involved in a call. - This allows a dialplan writer to determine, for each channel, who hung up and - for what reason(s). - - * Two new functions have been added: FEATURE() and FEATUREMAP(). FEATURE() - lets you set some of the configuration options from the general section - of features.conf on a per-channel basis. FEATUREMAP() lets you customize - the key sequence used to activate built-in features, such as blindxfer, - and automon. - - * Support for named pickupgroups/callgroups, allowing any number of pickupgroups - and callgroups to be defined for several channel drivers. - - * IPv6 Support for AMI, AGI, ExternalIVR, and the SIP Security Event Framework. - - More information about the new features can be found on the Asterisk wiki: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+11+Documentation - - A full list of all new features can also be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/11/CHANGES - - For a full list of changes in the current release, please see the ChangeLog. - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-11.0.0-beta1- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- Perl 5.16 rebuild- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are - released as versions 1.8.11-cert4, 1.8.13.1, 10.5.2, and 10.5.2-digiumphones. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.11-cert4, 1.8.13.1, 10.5.2, and 10.5.2-digiumphones - resolve the following two issues: - - * If Asterisk sends a re-invite and an endpoint responds to the re-invite with - a provisional response but never sends a final response, then the SIP dialog - structure is never freed and the RTP ports for the call are never released. If - an attacker has the ability to place a call, they could create a denial of - service by using all available RTP ports. - - * If a single voicemail account is manipulated by two parties simultaneously, - a condition can occur where memory is freed twice causing a crash. - - These issues and their resolution are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-010 and AST-2012-011, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert4 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.13.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.5.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.5.2-digiumphones - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-010.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-011.pdf- Perl 5.16 rebuild- The Asterisk Development Team has announced a security release for Asterisk 10. - This security release is released as version 10.5.1. - - The release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 10.5.1 resolves the following issue: - - * A remotely exploitable crash vulnerability was found in the Skinny (SCCP) - Channel driver. When an SCCP client sends an Off Hook message, followed by - a Key Pad Button Message, a structure that was previously set to NULL is - dereferenced. This allows remote authenticated connections the ability to - cause a crash in the server, denying services to legitimate users. - - This issue and its resolution is described in the security advisory. - - For more information about the details of this vulnerability, please read - security advisory AST-2012-009, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.5.1 - - The security advisory is available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-009.pdf- The Asterisk Development Team has announced the release of Asterisk 10.5.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.5.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Turn off warning message when bind address is set to any. - (Closes issue ASTERISK-19456. Reported by Michael L. Young) - - * --- Prevent overflow in calculation in ast_tvdiff_ms on 32-bit - machines - (Closes issue ASTERISK-19727. Reported by Ben Klang) - - * --- Make DAHDISendCallreroutingFacility wait 5 seconds for a reply - before disconnecting the call. - (Closes issue ASTERISK-19708. Reported by mehdi Shirazi) - - * --- Fix recalled party B feature flags for a failed DTMF atxfer. - (Closes issue ASTERISK-19383. Reported by lgfsantos) - - * --- Fix DTMF atxfer running h exten after the wrong bridge ends. - (Closes issue ASTERISK-19717. Reported by Mario) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.5.0- Perl 5.16 rebuild- The Asterisk Development Team has announced the release of Asterisk 10.4.2. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.4.2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Resolve crash in subscribing for MWI notifications - (Closes issue ASTERISK-19827. Reported by B. R) - - * --- Fix crash in ConfBridge when user announcement is played for - more than 2 users - (Closes issue ASTERISK-19899. Reported by Florian Gilcher) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.4.2- The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are - released as versions 1.8.11-cert2, 1.8.12.1, and 10.4.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.11-cert2, 1.8.12.1, and 10.4.1 resolve the following - two issues: - - * A remotely exploitable crash vulnerability exists in the IAX2 channel - driver if an established call is placed on hold without a suggested music - class. Asterisk will attempt to use an invalid pointer to the music - on hold class name, potentially causing a crash. - - * A remotely exploitable crash vulnerability was found in the Skinny (SCCP) - Channel driver. When an SCCP client closes its connection to the server, - a pointer in a structure is set to NULL. If the client was not in the - on-hook state at the time the connection was closed, this pointer is later - dereferenced. This allows remote authenticated connections the ability to - cause a crash in the server, denying services to legitimate users. - - These issues and their resolution are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-007 and AST-2012-008, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.12.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.4.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-007.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-008.pdf- The Asterisk Development Team has announced the release of Asterisk 10.4.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.4.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Prevent chanspy from binding to zombie channels - (Closes issue ASTERISK-19493. Reported by lvl) - - * --- Fix Dial m and r options and forked calls generating warnings - for voice frames. - (Closes issue ASTERISK-16901. Reported by Chris Gentle) - - * --- Remove ISDN hold restriction for non-bridged calls. - (Closes issue ASTERISK-19388. Reported by Birger Harzenetter) - - * --- Fix copying of CDR(accountcode) to local channels. - (Closes issue ASTERISK-19384. Reported by jamicque) - - * --- Ensure Asterisk acknowledges ACKs to 4xx on Replaces errors - (Closes issue ASTERISK-19303. Reported by Jon Tsiros) - - * --- Eliminate double close of file descriptor in manager.c - (Closes issue ASTERISK-18453. Reported by Jaco Kroon) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.4.0- The Asterisk Development Team has announced security releases for Asterisk 1.6.2, - 1.8, and 10. The available security releases are released as versions 1.6.2.24, - 1.8.11.1, and 10.3.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.6.2.24, 1.8.11.1, and 10.3.1 resolve the following two - issues: - - * A permission escalation vulnerability in Asterisk Manager Interface. This - would potentially allow remote authenticated users the ability to execute - commands on the system shell with the privileges of the user running the - Asterisk application. - - * A heap overflow vulnerability in the Skinny Channel driver. The keypad - button message event failed to check the length of a fixed length buffer - before appending a received digit to the end of that buffer. A remote - authenticated user could send sufficient keypad button message events that the - buffer would be overrun. - - In addition, the release of Asterisk 1.8.11.1 and 10.3.1 resolve the following - issue: - - * A remote crash vulnerability in the SIP channel driver when processing UPDATE - requests. If a SIP UPDATE request was received indicating a connected line - update after a channel was terminated but before the final destruction of the - associated SIP dialog, Asterisk would attempt a connected line update on a - non-existing channel, causing a crash. - - These issues and their resolution are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-004, AST-2012-005, and AST-2012-006, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.24 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.11.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.3.1 - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-004.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-005.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-006.pdf- Update to 10.3.0- Update to 10.2.1 from upstream. - Fix remote stack overflow in app_milliwatt. - Fix remote stack overflow, including possible code injection, in HTTP digest authentication handling. - Disable asterisk-corosync package, as it doesn't build right now. - Resolves: rhbz#804045, rhbz#804038, rhbz#804042- * Add patch extracted from upstream to build with Corosync since - OpenAIS is no longer available. - * Add PrivateTmp=true to systemd service file (#782478) - * Add some macros to make it easier to build with fewer dependencies - (with corresponding less functionality) (#787389) - * Add isa macros in a few places plus a few other changes to make it - easier to cross-compile. (#787779)- The Asterisk Development Team has announced the release of Asterisk 10.1.2. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.1.2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following are the issues resolved in this release: - - * --- Fix SIP INFO DTMF handling for non-numeric codes --- - (Closes issue ASTERISK-19290. Reported by: Ira Emus) - - * --- Fix crash in ParkAndAnnounce --- - (Closes issue ASTERISK-19311. Reported-by: tootai) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.1.2- The Asterisk Development Team has announced the release of Asterisk 10.1.1. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.1.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fixes deadlocks occuring in chan_agent --- - (Closes issue ASTERISK-19285. Reported by: Alex Villacis Lasso) - - * --- Ensure entering T.38 passthrough does not cause an infinite loop --- - (Closes issue ASTERISK-18951. Reported-by: Kristijan Vrban) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.1.1- The Asterisk Development Team is pleased to announce the release of - Asterisk 10.1.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.1.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * AST-2012-001: prevent crash when an SDP offer - is received with an encrypted video stream when support for video - is disabled and res_srtp is loaded. (closes issue ASTERISK-19202) - Reported by: Catalin Sanda - - * Allow playback of formats that don't support seeking. ast_streamfile - previously did unconditional seeking on files that broke playback of - formats that don't support that functionality. This patch avoids the - seek that was causing the problem. - (closes issue ASTERISK-18994) Patched by: Timo Teras - - * Add pjmedia probation concepts to res_rtp_asterisk's learning mode. In - order to better handle RTP sources with strictrtp enabled (which is the - default setting in 10) using the learning mode to figure out new sources - when they change is handled by checking for a number of consecutive (by - sequence number) packets received to an rtp struct based on a new - configurable value called 'probation'. Also, during learning mode instead - of liberally accepting all packets received, we now reject packets until a - clear source has been determined. - - * Handle AST_CONTROL_UPDATE_RTP_PEER frames in local bridge loop. Failing - to handle AST_CONTROL_UPDATE_RTP_PEER frames in the local bridge loop - causes the loop to exit prematurely. This causes a variety of negative side - effects, depending on when the loop exits. This patch handles the frame by - essentially swallowing the frame in the local loop, as the current channel - drivers expect the RTP bridge to handle the frame, and, in the case of the - local bridge loop, no additional action is necessary. - (closes issue ASTERISK-19095) Reported by: Stefan Schmidt Tested - by: Matt Jordan - - * Fix timing source dependency issues with MOH. Prior to this patch, - res_musiconhold existed at the same module priority level as the timing - sources that it depends on. This would cause a problem when music on - hold was reloaded, as the timing source could be changed after - res_musiconhold was processed. This patch adds a new module priority - level, AST_MODPRI_TIMING, that the various timing modules are now loaded - at. This now occurs before loading other resource modules, such - that the timing source is guaranteed to be set prior to resolving - the timing source dependencies. - (closes issue ASTERISK-17474) Reporter: Luke H Tested by: Luke H, - Vladimir Mikhelson, zzsurf, Wes Van Tlghem, elguero, Thomas Arimont - Patched by elguero - - * Fix RTP reference leak. If a blind transfer were initiated using a - REFER without a prior reINVITE to place the call on hold, AND if Asterisk - were sending RTCP reports, then there was a reference leak for the - RTP instance of the transferrer. - (closes issue ASTERISK-19192) Reported by: Tyuta Vitali - - * Fix blind transfers from failing if an 'h' extension - is present. This prevents the 'h' extension from being run on the - transferee channel when it is transferred via a native transfer - mechanism such as SIP REFER. (closes issue ASTERISK-19173) Reported - by: Ross Beer Tested by: Kristjan Vrban Patches: ASTERISK-19173 by - Mark Michelson (license 5049) - - * Restore call progress code for analog ports. Extracting sig_analog - from chan_dahdi lost call progress detection functionality. Fix - analog ports from considering a call answered immediately after - dialing has completed if the callprogress option is enabled. - (closes issue ASTERISK-18841) - Reported by: Richard Miller Patched by Richard Miller - - * Fix regression that 'rtp/rtcp set debup ip' only works when a port - was also specified. - (closes issue ASTERISK-18693) Reported by: Davide Dal Reviewed by: - Walter Doekes - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.1.0- Remove asterisk-ais. OpenAIS was removed from Fedora.- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- Don't build API docs as the build never finishes- The Asterisk Development Team is proud to announce the release of - Asterisk 10.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more information about - support time lines for Asterisk releases, see the Asterisk versions page: - - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - With the release of the Asterisk 10 branch, the preceding '1.' has been removed - from the version number per the blog post available at - - - http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-arrived-at-asterisk-10/ - - The release of Asterisk 10 would not have been possible without the support and - contributions of the community. - - You can find an overview of the work involved with the 10.0.0 release in the - summary: - - http://svn.asterisk.org/svn/asterisk/tags/10.0.0/asterisk-10.0.0-summary.txt - - A short list of available features includes: - - * T.38 gateway functionality has been added to res_fax. - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - * Support for defining hints has been added to pbx_lua. - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.asterisk.org/svn/asterisk/branches/10/CHANGES - - Also, when upgrading a system between major versions, it is imperative that you - read and understand the contents of the UPGRADE.txt file, which is located at: - - http://svn.asterisk.org/svn/asterisk/branches/10/UPGRADE.txt- The Asterisk Development Team has announced the third release candidate of - Asterisk 10.0.0. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.0.0-rc3 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Add ASTSBINDIR to the list of configurable paths - - This patch also makes astdb2sqlite3 and astcanary use the configured - directory instead of relying on $PATH. - - * Don't crash on INFO automon request with no channel - - AST-2011-014. When automon was enabled in features.conf, it was possible - to crash Asterisk by sending an INFO request if no channel had been - created yet. - - * Fixed crash from orphaned MWI subscriptions in chan_sip - - This patch resolves the issue where MWI subscriptions are orphaned - by subsequent SIP SUBSCRIBE messages. - - * Fix a change in behavior in 'database show' from 1.8. - - In 1.8 and previous versions, one could use any fullword portion of - the key name, including the full key, to obtain the record. Until this - patch, this did not work for the full key. - - * Default to nat=yes; warn when nat in general and peer differ - - AST-2011-013. It is possible to enumerate SIP usernames when the general and - user/peer nat settings differ in whether to respond to the port a request is - sent from or the port listed for responses in the Via header. In 1.4 and - 1.6.2, this would mean if one setting was nat=yes or nat=route and the other - was either nat=no or nat=never. In 1.8 and 10, this would mean when one - was nat=force_rport and the other was nat=no. - - In order to address this problem, it was decided to switch the default - behavior to nat=yes/force_rport as it is the most commonly used option - and to strongly discourage setting nat per-peer/user when at all - possible. - - * Fixed SendMessage stripping extension from To: header in SIP MESSAGE - - When using the MessageSend application to send a SIP MESSAGE to a - non-peer, chan_sip stripped off the extension and failed to add it back - to the sip_pvt structure before transmitting. This patch adds the full - URI passed in from the message core to the sip_pvt structure. - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.0.0-rc3- The Asterisk Development Team has announced the second release candidate of - Asterisk 10.0.0. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 10.0.0-rc2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Ensure that a null vmexten does not cause a segfault - - * Fix issue with ConfBridge participants hanging up during DTMF feature - menu usage getting stuck in conference forever - (closes issue ASTERISK-18829) - Reported by: zvision - - * Fix app_macro.c MODULEINFO section termination - (closes issue ASTERISK-18848) - Reported by: Tony Mountifield - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.0.0-rc2- The Asterisk Development Team is pleased to announce the first release candidate - of Asterisk 10.0.0. This release candidate is available for immediate download - at http://downloads.asterisk.org/pub/telephony/asterisk/ - - All Asterisk users are encouraged to participate in the Asterisk 10 testing - process. Please report any issues found to the issue tracker, - https://issues.asterisk.org/jira. It is also very useful to see successful test - reports. Please post those to the asterisk-dev mailing list. - - All Asterisk users are invited to participate in the #asterisk-testing - channel on IRC to work together in testing the many parts of Asterisk. - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more - information about support time lines for Asterisk releases, see the Asterisk - versions page: https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - A short list of features includes: - - * T.38 gateway functionality has been added to res_fax. - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - (More information available at - https://wiki.asterisk.org/wiki/display/AST/ConfBridge+10 ) - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - * Support for defining hints has been added to pbx_lua. - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/10/CHANGES - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.0-rc1- Add patch from upstream SVN to fix AST-2011-012- Patch cleanup day- The Asterisk Development Team is pleased to announce the second beta release of - Asterisk 10.0.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - With the release of the Asterisk 10 branch, the preceding '1.' has been removed - from the version number per the blog post available at - http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-arrived-at-asterisk-10/ - - All interested users of Asterisk are encouraged to participate in the - Asterisk 10 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - - All Asterisk users are invited to participate in the #asterisk-testing - channel on IRC to work together in testing the many parts of Asterisk. - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more - information about support time lines for Asterisk releases, see the Asterisk - versions page: https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - A short list of features includes: - - * T.38 gateway functionality has been added to res_fax. - - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - - * Support for defining hints has been added to pbx_lua. - - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svnview.digium.com/svn/asterisk/branches/10/CHANGES - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.0-beta2- - The Asterisk Development Team is pleased to announce the first beta release of - Asterisk 10.0.0-beta1. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - With the release of the Asterisk 10 branch, the preceding '1.' has been removed - from the version number per the blog post available at - http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-arrived-at-asterisk-10/ - - All interested users of Asterisk are encouraged to participate in the - Asterisk 10 testing process. Please report any issues found to the issue - tracker, https://issues.asterisk.org/jira. It is also very useful to see - successful test reports. Please post those to the asterisk-dev mailing list. - - All Asterisk users are invited to participate in the #asterisk-testing - channel on IRC to work together in testing the many parts of Asterisk. - Additionally users can make use of the RPM and DEB packages now being built for - all Asterisk releases. More information available at - https://wiki.asterisk.org/wiki/display/AST/Asterisk+Packages - - Asterisk 10 is the next major release series of Asterisk. It will be a - Standard support release, similar to Asterisk 1.6.2. For more - information about support time lines for Asterisk releases, see the Asterisk - versions page: https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions - - A short list of included features includes: - - * T.38 gateway functionality has been added to res_fax. - * Protocol independent out-of-call messaging support. Text messages not - associated with an active call can now be routed through the Asterisk - dialplan. SIP and XMPP are supported so far. - * New highly optimized and customizable ConfBridge application capable of mixing - audio at sample rates ranging from 8kHz-192kHz - * Addition of video_mode option in confbridge.conf to provide basic video - conferencing in the ConfBridge() dialplan application. - * Support for defining hints has been added to pbx_lua. - * Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB). - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/10/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.0-beta1- Perl mass rebuild- Perl mass rebuild- The Asterisk Development Team announces the release of Asterisk 1.8.5.0. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.5.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * Fix Deadlock with attended transfer of SIP call - (Closes issue #18837. Reported, patched by alecdavis. Tested by Irontec, ZX81, - cmaj) - - * Fixes thread blocking issue in the sip TCP/TLS implementation. - (Closes issue #18497. Reported by vois. Patched by dvossel. Tested by vois, - rossbeer, kowalma, Freddi_Fonet) - - * Be more tolerant of what URI we accept for call completion PUBLISH requests. - (Closes issue #18946. Reported by GeorgeKonopacki. Patched by mmichelson) - - * Fix a nasty chanspy bug which was causing a channel leak every time a spied on - channel made a call. - (Closes issue #18742. Reported by jkister. Tested by jcovert, jrose) - - * This patch fixes a bug with MeetMe behavior where the 'P' option for always - prompting for a pin is ignored for the first caller. - (Closes issue #18070. Reported by mav3rick. Patched by bbryant) - - * Fix issue where Asterisk does not hangup a channel after endpoint hangs up. If - the call that the dialplan started an AGI script for is hungup while the AGI - script is in the middle of a command then the AGI script is not notified of - the hangup. - (Closes issue #17954, #18492. Reported by mn3250, devmod. Patched by rmudgett) - - * Resolve issue where leaving a voicemail, the MWI message is never sent. The - same thing happens when checking a voicemail and marking it as read. - (Closes issue ASTERISK-18002. Reported by Leif Madsen. Resolved by Richard - Mudgett) - - * Resolve issue where wait for leader with Music On Hold allows crosstalk - between participants. Parenthesis in the wrong position. Regression from issue - #14365 when expanding conference flags to use 64 bits. - (Closes issue #18418. Reported by MrHanMan. Patched by rmudgett) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.5.0- Rebuild for net-snmp 5.7- Fix systemd dependencies in EL6 and F15- The Asterisk Development Team has announced the first release candidate of - Asterisk 1.8.5. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.5-rc1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Fix Deadlock with attended transfer of SIP call - (Closes issue #18837. Reported, patched by alecdavis. Tested by Irontec, ZX81, - cmaj) - - * Fixes thread blocking issue in the sip TCP/TLS implementation. - (Closes issue #18497. Reported by vois. Patched by dvossel. Tested by vois, - rossbeer, kowalma, Freddi_Fonet) - - * Be more tolerant of what URI we accept for call completion PUBLISH requests. - (Closes issue #18946. Reported by GeorgeKonopacki. Patched by mmichelson) - - * Fix a nasty chanspy bug which was causing a channel leak every time a spied on - channel made a call. - (Closes issue #18742. Reported by jkister. Tested by jcovert, jrose) - - * This patch fixes a bug with MeetMe behavior where the 'P' option for always - prompting for a pin is ignored for the first caller. - (Closes issue #18070. Reported by mav3rick. Patched by bbryant) - - * Fix issue where Asterisk does not hangup a channel after endpoint hangs up. If - the call that the dialplan started an AGI script for is hungup while the AGI - script is in the middle of a command then the AGI script is not notified of - the hangup. - (Closes issue #17954, #18492. Reported by mn3250, devmod. Patched by rmudgett) - - * Resolve issue where leaving a voicemail, the MWI message is never sent. The - same thing happens when checking a voicemail and marking it as read. - (Closes issue ASTERISK-18002. Reported by Leif Madsen. Resolved by Richard - Mudgett) - - * Resolve issue where wait for leader with Music On Hold allows crosstalk - between participants. Parenthesis in the wrong position. Regression from issue - #14365 when expanding conference flags to use 64 bits. - (Closes issue #18418. Reported by MrHanMan. Patched by rmudgett) - - * Fix timerfd locking issue. - (Closes ASTERISK-17867, ASTERISK-17415. Patched by kobaz) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.5-rc1- Fedora Directory Server -> 389 Directory Server- The Asterisk Development Team has announced the release of Asterisk - versions 1.4.41.2, 1.6.2.18.2, and 1.8.4.4, which are security - releases. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.4.41.2, 1.6.2.18.2, and 1.8.4.4 resolves the - following issue: - - AST-2011-011: Asterisk may respond differently to SIP requests from an - invalid SIP user than it does to a user configured on the system, even - when the alwaysauthreject option is set in the configuration. This can - leak information about what SIP users are valid on the Asterisk - system. - - For more information about the details of this vulnerability, please - read the security advisory AST-2011-011, which was released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.4 - - Security advisory AST-2011-011 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-011.pdf- Don't forget stereorize- Move /var/run/asterisk to /run/asterisk - Add comments to systemd service file on how to mimic safe_asterisk functionality - Build more of the optional binaries - Install the tmpfiles.d configuration on Fedora 15- The Asterisk Development Team has announced the release of Asterisk versions - 1.4.41.1, 1.6.2.18.1, and 1.8.4.3, which are security releases. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.4.41.1, 1.6.2.18, and 1.8.4.3 resolves several issues - as outlined below: - - * AST-2011-008: If a remote user sends a SIP packet containing a null, - Asterisk assumes available data extends past the null to the - end of the packet when the buffer is actually truncated when - copied. This causes SIP header parsing to modify data past - the end of the buffer altering unrelated memory structures. - This vulnerability does not affect TCP/TLS connections. - -- Resolved in 1.6.2.18.1 and 1.8.4.3 - - * AST-2011-009: A remote user sending a SIP packet containing a Contact header - with a missing left angle bracket (<) causes Asterisk to - access a null pointer. - -- Resolved in 1.8.4.3 - - * AST-2011-010: A memory address was inadvertently transmitted over the - network via IAX2 via an option control frame and the remote party would try - to access it. - -- Resolved in 1.4.41.1, 1.6.2.18.1, and 1.8.4.3 - - The issues and resolutions are described in the AST-2011-008, AST-2011-009, and - AST-2011-010 security advisories. - - For more information about the details of these vulnerabilities, please read - the security advisories AST-2011-008, AST-2011-009, and AST-2011-010, which were - released at the same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.3 - - Security advisories AST-2011-008, AST-2011-009, and AST-2011-010 are available - at: - - http://downloads.asterisk.org/pub/security/AST-2011-008.pdf - http://downloads.asterisk.org/pub/security/AST-2011-009.pdf - http://downloads.asterisk.org/pub/security/AST-2011-010.pdf- Convert to systemd- Perl mass rebuild- Perl 5.14 mass rebuild- - The Asterisk Development Team has announced the release of Asterisk - version 1.8.4.2, which is a security release for Asterisk 1.8. - - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.4.2 resolves an issue with SIP URI - parsing which can lead to a remotely exploitable crash: - - Remote Crash Vulnerability in SIP channel driver (AST-2011-007) - - The issue and resolution is described in the AST-2011-007 security - advisory. - - For more information about the details of this vulnerability, please - read the security advisory AST-2011-007, which was released at the - same time as this announcement. - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.2 - - Security advisory AST-2011-007 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-007.pdf - - The Asterisk Development Team has announced the release of Asterisk 1.8.4.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.4.1 resolves several issues reported by the - community. Without your help this release would not have been possible. - Thank you! - - Below is a list of issues resolved in this release: - - * Fix our compliance with RFC 3261 section 18.2.2. (aka Cisco phone fix) - (Closes issue #18951. Reported by jmls. Patched by wdoekes) - - * Resolve a change in IPv6 header parsing due to the Cisco phone fix issue. - This issue was found and reported by the Asterisk test suite. - (Closes issue #18951. Patched by mnicholson) - - * Resolve potential crash when using SIP TLS support. - (Closes issue #19192. Reported by stknob. Patched by Chainsaw. Tested by - vois, Chainsaw) - - * Improve reliability when using SIP TLS. - (Closes issue #19182. Reported by st. Patched by mnicholson) - - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4.1 - The Asterisk Development Team has announced the release of Asterisk 1.8.4. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.4 resolves several issues reported by the community. - Without your help this release would not have been possible. Thank you! - - Below is a sample of the issues resolved in this release: - - * Use SSLv23_client_method instead of old SSLv2 only. - (Closes issue #19095, #19138. Reported, patched by tzafrir. Tested by russell - and chazzam. - - * Resolve crash in ast_mutex_init() - (Patched by twilson) - - * Resolution of several DTMF based attended transfer issues. - (Closes issue #17999, #17096, #18395, #17273. Reported by iskatel, gelo, - shihchuan, grecco. Patched by rmudgett) - - NOTE: Be sure to read the ChangeLog for more information about these changes. - - * Resolve deadlocks related to device states in chan_sip - (Closes issue #18310. Reported, patched by one47. Patched by jpeeler) - - * Resolve an issue with the Asterisk manager interface leaking memory when - disabled. - (Reported internally by kmorgan. Patched by russellb) - - * Support greetingsfolder as documented in voicemail.conf.sample. - (Closes issue #17870. Reported by edhorton. Patched by seanbright) - - * Fix channel redirect out of MeetMe() and other issues with channel softhangup - (Closes issue #18585. Reported by oej. Tested by oej, wedhorn, russellb. - Patched by russellb) - - * Fix voicemail sequencing for file based storage. - (Closes issue #18498, #18486. Reported by JJCinAZ, bluefox. Patched by - jpeeler) - - * Set hangup cause in local_hangup so the proper return code of 486 instead of - 503 when using Local channels when the far sides returns a busy. Also affects - CCSS in Asterisk 1.8+. - (Patched by twilson) - - * Fix issues with verbose messages not being output to the console. - (Closes issue #18580. Reported by pabelanger. Patched by qwell) - - * Fix Deadlock with attended transfer of SIP call - (Closes issue #18837. Reported, patched by alecdavis. Tested by - alecdavid, Irontec, ZX81, cmaj) - - Includes changes per AST-2011-005 and AST-2011-006 - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4 - - Information about the security releases are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-005.pdf - http://downloads.asterisk.org/pub/security/AST-2011-006.pdf- The Asterisk Development Team has announced security releases for Asterisk - branches 1.4, 1.6.1, 1.6.2, and 1.8. The available security releases are - released as versions 1.4.40.1, 1.6.1.25, 1.6.2.17.3, and 1.8.3.3. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.4.40.1, 1.6.1.25, 1.6.2.17.3, and 1.8.3.3 resolve two - issues: - - * File Descriptor Resource Exhaustion (AST-2011-005) - * Asterisk Manager User Shell Access (AST-2011-006) - - The issues and resolutions are described in the AST-2011-005 and AST-2011-006 - security advisories. - - For more information about the details of these vulnerabilities, please read the - security advisories AST-2011-005 and AST-2011-006, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.40.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.25 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.3 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.3 - - Security advisory AST-2011-005 and AST-2011-006 are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-005.pdf - http://downloads.asterisk.org/pub/security/AST-2011-006.pdf- Bump release and rebuild for mysql 5.5.10 soname change.- The Asterisk Development Team has announced security releases for Asterisk - branches 1.6.1, 1.6.2, and 1.8. The available security releases are - released as versions 1.6.1.24, 1.6.2.17.2, and 1.8.3.2. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - ** This is a re-release of Asterisk 1.6.1.23, 1.6.2.17.1 and 1.8.3.1 which - contained a bug which caused duplicate manager entries (issue #18987). - - The releases of Asterisk 1.6.1.24, 1.6.2.17.2, and 1.8.3.2 resolve two issues: - - * Resource exhaustion in Asterisk Manager Interface (AST-2011-003) - * Remote crash vulnerability in TCP/TLS server (AST-2011-004) - - The issues and resolutions are described in the AST-2011-003 and AST-2011-004 - security advisories. - - For more information about the details of these vulnerabilities, please read the - security advisories AST-2011-003 and AST-2011-004, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.24 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.2 - - Security advisory AST-2011-003 and AST-2011-004 are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-003.pdf - http://downloads.asterisk.org/pub/security/AST-2011-004.pdf- The Asterisk Development Team has announced security releases for Asterisk - branches 1.6.1, 1.6.2, and 1.8. The available security releases are - released as versions 1.6.1.23, 1.6.2.17.1, and 1.8.3.1. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.6.1.23, 1.6.2.17.1, and 1.8.3.1 resolve two issues: - - * Resource exhaustion in Asterisk Manager Interface (AST-2011-003) - * Remote crash vulnerability in TCP/TLS server (AST-2011-004) - - The issues and resolutions are described in the AST-2011-003 and AST-2011-004 - security advisories. - - For more information about the details of these vulnerabilities, please read the - security advisories AST-2011-003 and AST-2011-004, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.23 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.1 - - Security advisory AST-2011-003 and AST-2011-004 are available at: - - http://downloads.asterisk.org/pub/security/AST-2011-003.pdf - http://downloads.asterisk.org/pub/security/AST-2011-004.pdf- The Asterisk Development Team has announced the release of Asterisk 1.8.3. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.3 resolves several issues reported by the community - and would have not been possible without your participation. Thank you! - - The following is a sample of the issues resolved in this release: - - * Resolve duplicated data in the AstDB when using DIALGROUP() - (Closes issue #18091. Reported by bunny. Patched by tilghman) - - * Ensure the ipaddr field in realtime is large enough to handle IPv6 addresses. - (Closes issue #18464. Reported, patched by IgorG) - - * Reworking parsing of mwi => lines to resolve a segfault. Also add a set of - unit tests for the function that does the parsing. - (Closes issue #18350. Reported by gbour. Patched by Marquis) - - * When using cdr_pgsql the billsec field was not populated correctly on - unanswered calls. - (Closes issue #18406. Reported by joscas. Patched by tilghman) - - * Resolve memory leak in iCalendar and Exchange calendaring modules. - (Closes issue #18521. Reported, patched by pitel. Tested by cervajs) - - * This version of Asterisk includes the new Compiler Flags option - BETTER_BACKTRACES which uses libbfd to search for better symbol information - within both the Asterisk binary, as well as loaded modules, to assist when - using inline backtraces to track down problems. - (Patched by tilghman) - - * Resolve issue where no Music On Hold may be triggered when using - res_timing_dahdi. - (Closes issues #18262. Reported by francesco_r. Patched by cjacobson. Tested - by francesco_r, rfrantik, one47) - - * Resolve a memory leak when the Asterisk Manager Interface is disabled. - (Reported internally by kmorgan. Patched by russellb) - - * Reimplemented fax session reservation to reverse the ABI breakage introduced - in r297486. - (Reported internally. Patched by mnicholson) - - * Fix regression that changed behavior of queues when ringing a queue member. - (Closes issue #18747, #18733. Reported by vrban. Patched by qwell.) - - * Resolve deadlock involving REFER. - (Closes issue #18403. Reported, tested by jthurman. Patched by jpeeler.) - - Additionally, this release has the changes related to security bulletin - AST-2011-002 which can be found at - http://downloads.asterisk.org/pub/security/AST-2011-002.pdf - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.3- - The Asterisk Development Team has announced the third release candidate of - Asterisk 1.8.3. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.3-rc3 resolves the following issues in addition to - those included in 1.8.3-rc1 and 1.8.3-rc2: - - * Fix regression that changed behavior of queues when ringing a queue member. - (Closes issue #18747, #18733. Reported by vrban. Patched by qwell.) - - * Resolve deadlock involving REFER. - (Closes issue #18403. Reported, tested by jthurman. Patched by jpeeler.) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.3-rc3- Bump release to build for F15- Remove isa macros- Make library dependencies architecture specific- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_RebuildThe Asterisk Development Team has announced the second release candidate of Asterisk 1.8.3. This release candidate is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/ The release of Asterisk 1.8.3-rc2 resolves the following issues in addition to those included in 1.8.3-rc1: * Resolve issue where no Music On Hold may be triggered when using res_timing_dahdi. (Closes issues #18262. Reported by francesco_r. Patched by cjacobson. Tested by francesco_r, rfrantik, one47) * Resolve a memory leak when the Asterisk Manager Interface is disabled. (Reported internally by kmorgan. Patched by russellb) * Reimplemented fax session reservation to reverse the ABI breakage introduced in r297486. (Reported internally. Patched by mnicholson) For a full list of changes in this release candidate, please see the ChangeLog: http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.3-rc2- - The Asterisk Development Team has announced the first release candidate of - Asterisk 1.8.3. This release candidate is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.3-rc1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release candidate: - - * Resolve duplicated data in the AstDB when using DIALGROUP() - (Closes issue #18091. Reported by bunny. Patched by tilghman) - - * Ensure the ipaddr field in realtime is large enough to handle IPv6 addresses. - (Closes issue #18464. Reported, patched by IgorG) - - * Reworking parsing of mwi => lines to resolve a segfault. Also add a set of - unit tests for the function that does the parsing. - (Closes issue #18350. Reported by gbour. Patched by Marquis) - - * When using cdr_pgsql the billsec field was not populated correctly on - unanswered calls. - (Closes issue #18406. Reported by joscas. Patched by tilghman) - - * Resolve memory leak in iCalendar and Exchange calendaring modules. - (Closes issue #18521. Reported, patched by pitel. Tested by cervajs) - - * This version of Asterisk includes the new Compiler Flags option - BETTER_BACKTRACES which uses libbfd to search for better symbol information - within both the Asterisk binary, as well as loaded modules, to assist when - using inline backtraces to track down problems. - (Patched by tilghman)- - The Asterisk Development Team has announced the release of Asterisk 1.8.2.3. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.2.3 resolves the following issue: - - * Reimplemented fax session reservation to reverse the ABI breakage introduced - in r297486. - (Reported by Jeremy Kister on the asterisk-users mailing list. Patched by - mnicholson) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.2.3- Build with SRTP support- - The Asterisk Development Team has announced a release for the security issue - described in AST-2011-001. - - Due to a failed merge, Asterisk 1.8.2.1 which should have included the security - fix did not. Asterisk 1.8.2.2 contains the the changes which should have been - included in Asterisk 1.8.2.1. - - This releases is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.2, - 1.8.1.2, and 1.8.2.2 resolve an issue when forming an outgoing SIP request while - in pedantic mode, which can cause a stack buffer to be made to overflow if - supplied with carefully crafted caller ID information. The issue and resolution - are described in the AST-2011-001 security advisory. - - For more information about the details of this vulnerability, please read the - security advisory AST-2011-001, which was released at the same time as this - announcement. - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.2.2 - - Security advisory AST-2011-001 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-001.pdf- - The Asterisk Development Team has announced security releases for the following - versions of Asterisk: - - * 1.4.38.1 - * 1.4.39.1 - * 1.6.1.21 - * 1.6.2.15.1 - * 1.6.2.16.1 - * 1.8.1.2 - * 1.8.2.1 - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The releases of Asterisk 1.4.38.1, 1.4.39.1, 1.6.1.21, 1.6.2.15.1, 1.6.2.16.2, - 1.8.1.2, and 1.8.2.1 resolve an issue when forming an outgoing SIP request while - in pedantic mode, which can cause a stack buffer to be made to overflow if - supplied with carefully crafted caller ID information. The issue and resolution - are described in the AST-2011-001 security advisory. - - For more information about the details of this vulnerability, please read the - security advisory AST-2011-001, which was released at the same time as this - announcement. - - For a full list of changes in the current releases, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.38.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.39.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.21 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.15.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.16.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.1.2 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.2.1 - - Security advisory AST-2011-001 is available at: - - http://downloads.asterisk.org/pub/security/AST-2011-001.pdf- - The Asterisk Development Team has announced the release of Asterisk 1.8.2. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.2 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * 'sip notify clear-mwi' needs terminating CRLF. - (Closes issue #18275. Reported, patched by klaus3000) - - * Patch for deadlock from ordering issue between channel/queue locks in - app_queue (set_queue_variables). - (Closes issue #18031. Reported by rain. Patched by bbryant) - - * Fix cache of device state changes for multiple servers. - (Closes issue #18284, #18280. Reported, tested by klaus3000. Patched, tested - by russellb) - - * Resolve issue where channel redirect function (CLI or AMI) hangs up the call - instead of redirecting the call. - (Closes issue #18171. Reported by: SantaFox) - (Closes issue #18185. Reported by: kwemheuer) - (Closes issue #18211. Reported by: zahir_koradia) - (Closes issue #18230. Reported by: vmarrone) - (Closes issue #18299. Reported by: mbrevda) - (Closes issue #18322. Reported by: nerbos) - - * Fix reloading of peer when a user is requested. Prevent peer reloading from - causing multiple MWI subscriptions to be created when using realtime. - (Closes issue #18342. Reported, patched by nivek.) - - * Fix XMPP PubSub-based distributed device state. Initialize pubsubflags to 0 - so res_jabber doesn't think there is already an XMPP connection sending - device state. Also clean up CLI commands a bit. - (Closes issue #18272. Reported by klaus3000. Patched by Marquis42) - - * Don't crash after Set(CDR(userfield)=...) in ast_bridge_call. Instead of - setting peer->cdr = NULL, set it to not post. - (Closes issue #18415. Reported by macbrody. Patched, tested by jsolares) - - * Fixes issue with outbound google voice calls not working. Thanks to az1234 - and nevermind_quack for their input in helping debug the issue. - (Closes issue #18412. Reported by nevermind_quack. Patched by dvossel) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.2- - The Asterisk Development Team has announced the release of Asterisk 1.8.1.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.1.1 resolves two issues reported by the community - since the release of Asterisk 1.8.1. - - * Don't crash after Set(CDR(userfield)=...) in ast_bridge_call. Instead of - setting peer->cdr = NULL, set it to not post. - (Closes issue #18415. Reported by macbrody. Patched, tested by jsolares) - - * Fixes issue with outbound google voice calls not working. Thanks to az1234 - and nevermind_quack for their input in helping debug the issue. - (Closes issue #18412. Reported by nevermind_quack. Patched by dvossel) - - For a full list of changes in this release candidate, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.1.1- - The Asterisk Development Team has announced the release of Asterisk 1.8.1. This - release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - The release of Asterisk 1.8.1 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * Fix issue when using directmedia. Asterisk needs to limit the codecs offered - to just the ones that both sides recognize, otherwise they may end up sending - audio that the other side doesn't understand. - (Closes issue #17403. Reported, patched by one47. Tested by one47, falves11) - - * Resolve issue where Party A in an analog 3-way call would continue to hear - ringback after party C answers. - (Patched by rmudgett) - - * Fix playback failure when using IAX with the timerfd module. - (Closes issue #18110. Reported, tested by tpanton. Patched by jpeeler) - - * Fix problem with qualify option packets for realtime peers never stopping. - The option packets not only never stopped, but if a realtime peer was not in - the peer list multiple options dialogs could accumulate over time. - (Closes issue #16382. Reported by lftsy. Tested by zerohalo. Patched by - jpeeler) - - * Fix issue where it is possible to crash Asterisk by feeding the curl engine - invalid data. - (Closes issue #18161. Reported by wdoekes. Patched by tilghman) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.1- dont package up the ices bits on el the client doesnt exist for us- dont build the 389 directory server package its not available on rhel6- dont always build AIS modules we dont have the BuildRequires on epel- Rebuild for new net-snmp.- Always build AIS modules- The Asterisk Development Team is proud to announce the release of Asterisk - 1.8.0. This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/ - - Asterisk 1.8 is the next major release series of Asterisk. It will be a Long - Term Support (LTS) release, similar to Asterisk 1.4. For more information about - support time lines for Asterisk releases, see the Asterisk versions page. - - http://www.asterisk.org/asterisk-versions - - The release of Asterisk 1.8.0 would not have been possible without the support - and contributions of the community. Since Asterisk 1.6.2, we've had over 500 - reporters, more than 300 testers and greater than 200 developers contributed to - this release. - - You can find a summary of the work involved with the 1.8.0 release in the - sumary: - - http://svn.asterisk.org/svn/asterisk/tags/1.8.0/asterisk-1.8.0-summary.txt - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=markup - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0 - - Thank you for your continued support of Asterisk!- - The release of Asterisk 1.8.0-rc5 was triggered by some last minute platform - compatibility IPv6 changes. In addition, the availability of the English sound - prompts with Australian accents has been added. - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=markup - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc5 - - This release candidate contains fixes since the last release candidate as - reported by the community. A sampling of the changes in this release candidate - include: - - * Additional fixups in chan_gtalk that allow outbound calls to both Google - Talk and Google Voice recipients. Adds new chan_gtalk enhancements externip - and stunaddr. - (Closes issue #13971. Patched by dvossel) - - * Resolve manager crash issue. - (Closes issue #17994. Reported by vrban. Patchd by dvossel) - - * Documentation updates for sample configuration files. - (Closes issues #18107, #18101. Reported, patched by lathama, lmadsen) - - * Resolve issue where faxdetect would only detect the first fax call in - chan_dahdi. - (Closes issue #18116. Reported by seandarcy. Patched by rmudgett) - - * Resolve issue where a channel that is setup and torn down *very* quickly may - not have the right call disposition or ${DIALSTATUS}. - (Closes issue #16946. Reported by davidw. Review - https://reviewboard.asterisk.org/r/740/) - - * Set TCLASS field of IPv6 header when SIP QoS options are set. - (Closes issue #18099. Reported by jamesnet. Patched by dvossel) - - * Resolve issue where Asterisk could crash on shutdown when using SRTP. - (Closes issue #18085. Reported by st. Patched by twilson) - - * Fix issue where peers host port would be lost on a SIP reload. - (Closes issue #18135. Reported, tested by lmadsen. Patched by dvossel) - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=markup - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc4- This release candidate contains fixes since the release candidate as reported by - the community. A sampling of the changes in this release candidate include: - - * Still build chan_sip even if res_crypto cannot be built (use, but not depend) - (Reported by a user on the mailing list. Patched by tilghman) - - * Get notifications for call files only when a file is closed, not when created - (Closes issue #17924. Reported by mkeuter. Patched by abeldeck) - - * Fixes to chan_gtalk to allow outbound DTMF support to work correctly. Gtalk - expects the DTMF to arrive on the RTP stream and not via jingle DTMF - signalling. - (Patched by dvossel. Tested by malcolmd) - - * Fixes to allow chan_gtalk to communicate with the Gmail web client. - (Patched by phsultan and dvossel) - - * Fix to GET DATA to allow audio to be streamed via an AGI. - (Closes issue #18001. Reported by jamicque. Patched by tilghman) - - * Resolve dnsmgr memory corruption in chan_iax2. - (Closes issue #17902. Reported by afried. Patched by russell, dvossel) - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc3- This release candidate contains fixes since the last beta release as reported by - the community. A sampling of the changes in this release candidate include: - - * Add slin16 support for format_wav (new wav16 file extension) - (Closes issue #15029. Reported, patched by andrew. Tested by Qwell) - - * Fixes a bug in manager.c where the default configuration values weren't reset - when the manager configuration was reloaded. - (Closes issue #17917. Reported by lmadsen. Patched by bbryant) - - * Various fixes for the calendar modules. - (Patched by Jan Kalab. - Reviewboard: https://reviewboard.asterisk.org/r/880/ - Closes issue #17877. Review: https://reviewboard.asterisk.org/r/916/ - Closes issue #17776. Review: https://reviewboard.asterisk.org/r/921/) - - * Add CHANNEL(checkhangup) to check whether a channel is in the process of - being hung up. - (Closes issue #17652. Reported, patched by kobaz) - - * Fix a bug with MeetMe where after announcing the amount of time left in a - conference, if music on hold was playing, it doesn't restart. - (Closes issue #17408, Reported, patched by sysreq) - - * Fix interoperability problems with session timer behavior in Asterisk. - (Closes issue #17005. Reported by alexcarey. Patched by dvossel) - - * Rate limit calls to fsync() to 1 per second after astdb updates. Astdb was - determined to be one of the most significant bottlenecks in SIP registration - processing. This patch improved the speed of an astdb load test by 50000% - (yes, Fifty-Thousand Percent). On this particular load test setup, this - doubled the number of SIP registrations the server could handle. - (Review: https://reviewboard.asterisk.org/r/825/) - - * Don't clear the username from a realtime database when a registration - expires. Non-realtime chan_sip does not clear the username from memory when a - registration expiries so realtime probably shouldn't either. - (Closes issue #17551. Reported, patched by: ricardolandim. Patched by - mnicholson) - - * Don't hang up a call on an SRTP unprotect failure. Also make it more obvious - when there is an issue en/decrypting. - (Closes issue #17563. Reported by Alexcr. Patched by sfritsch. Tested by - twilson) - - * Many more issues. This is a significant upgrade over Asterisk 1.8.0 beta 5! - - A short list of available features includes: - - * Secure RTP - * IPv6 Support in the SIP channel driver - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release candidate, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-rc2- This release contains fixes since the last beta release as reported by the - community. A sampling of the changes in this release include: - - * Fix issue where TOS is no longer set on RTP packets. - (Closes issue #17890. Reported, patched by elguero) - - * Change pedantic default value in chan_sip from 'no' to 'yes' - - * Asterisk now dynamically builds the "Supported" header depending on what is - enabled/disabled in sip.conf. Session timers used to always be advertised as - being supported even when they were disabled in the configuration. - (Related to issue #17005. Patched by dvossel) - - * Convert MOH to use generic timers. - (Closes issue #17726. Reported by lmadsen. Patched by tilghman) - - * Fix SRTP for changing SSRC and multiple a=crypto SDP lines. Adding code to - Asterisk that changed the SSRC during bridges and masquerades broke SRTP - functionality. Also broken was handling the situation where an incoming - INVITE had more than one crypto offer. - (Closes issue #17563. Reported by Alexcr. Patched by twilson) - - Asterisk 1.8 contains many new features over previous releases of Asterisk. - A short list of included features includes: - - * Secure RTP - * IPv6 Support in the SIP Channel - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-beta5- This release contains fixes since the last beta release as reported by the - community. A sampling of the changes in this release include: - - * Fix parsing of IPv6 address literals in outboundproxy - (Closes issue #17757. Reported by oej. Patched by sperreault) - - * Change the default value for alwaysauthreject in sip.conf to "yes". - (Closes issue #17756. Reported by oej) - - * Remove current STUN support from chan_sip.c. This change removes the current - broken/useless STUN support from chan_sip. - (Closes issue #17622. Reported by philipp2. - Review: https://reviewboard.asterisk.org/r/855/) - - * PRI CCSS may use a stale dial string for the recall dial string. If an - outgoing call negotiates a different B channel than initially requested, the - saved original dial string was not transferred to the new B channel. CCSS - uses that dial string to generate the recall dial string. - (Patched by rmudgett) - - * Split _all_ arguments before parsing them. This fixes multicast RTP paging - using linksys mode. - (Patched by russellb) - - * Expand cel_custom.conf.sample. Include the usage of CSV_QUOTE() to ensure - data has valid CSV formatting. Also list the special CEL variables that are - available for use in the mapping. There are also several other CEL fixes in - this release. - (Patched by russellb) - - Asterisk 1.8 contains many new features over previous releases of Asterisk. - A short list of included features includes: - - * Secure RTP - * IPv6 Support in the SIP Channel - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-beta4- - This release contains fixes since the last beta release as reported by the - community. A sampling of the changes in this release include: - - * Fix a regression where HTTP would always be enabled regardless of setting. - (Closes issue #17708. Reported, patched by pabelanger) - - * ACL errors displayed on screen when using dynamic_exclude_static in sip.conf - (Closes issue #17717. Reported by Dennis DeDonatis. Patched by mmichelson) - - * Support "channels" in addition to "channel" in chan_dahdi.conf. - (https://reviewboard.asterisk.org/r/804) - - * Fix parsing error in sip_sipredirect(). The code was written in a way that - did a bad job of parsing the port out of a URI. Specifically, it would do - badly when dealing with an IPv6 address. - (Closes issue #17661. Reported by oej. Patched by mmichelson) - - * Fix inband DTMF detection on outgoing ISDN calls. - (Patched by russellb and rmudgett) - - * Fixes issue with translator frame not getting freed. This issue prevented - g729 licenses from being freed up. - (Closes issue #17630. Reported by manvirr. Patched by dvossel) - - * Fixed IPv6-related SIP parsing bugs and updated documention. - (Reported by oej. Patched by sperreault) - - * Add new, self-contained feature FIELDNUM(). Returns a 1-based index into a - list of a specified item. Matches up with FIELDQTY() and CUT(). - (Closes #17713. Reported, patched by gareth. Tested by tilghman) - - Asterisk 1.8 contains many new features over previous releases of Asterisk. - A short list of included features includes: - - * Secure RTP - * IPv6 Support - * Connected Party Identification Support - * Calendaring Integration - * A new call logging system, Channel Event Logging (CEL) - * Distributed Device State using Jabber/XMPP PubSub - * Call Completion Supplementary Services support - * Advice of Charge support - * Much, much more! - - A full list of new features can be found in the CHANGES file. - - http://svn.digium.com/view/asterisk/branches/1.8/CHANGES?view=checkout - - For a full list of changes in the current release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.0-beta3- Rebuild against libpri 1.4.12- Update to 1.8.0-beta2 - Disable building chan_misdn until compilation errors are figured out (https://issues.asterisk.org/view.php?id=14333) - Start stripping tarballs again because Digium added MP3 code :(- - The following are a few of the issues resolved by community developers: - - * Allow users to specify a port for DUNDI peers. - (Closes issue #17056. Reported, patched by klaus3000) - - * Decrease the module ref count in sip_hangup when SIP_DEFER_BYE_ON_TRANSFER is - set. - (Closes issue #16815. Reported, patched by rain) - - * If there is realtime configuration, it does not get re-read on reload unless - the config file also changes. - (Closes issue #16982. Reported, patched by dmitri) - - * Send AgentComplete manager event for attended transfers. - (Closes issue #16819. Reported, patched by elbriga) - - * Correct manager variable 'EventList' case. - (Closes issue #17520. Reported, patched by kobaz) - - In addition, changes to res_timing_pthread that should make it more stable have - also been implemented. - - For a full list of changes in the current release, please see the - ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.2.10- Add patch to remove requirement on latex2html- Mass rebuild with perl-5.12.0- * Fix building CDR and CEL SQLite3 modules. - (Closes issue #17017. Reported by alephlg. Patched by seanbright) - - * Resolve crash in SLAtrunk when the specified trunk doesn't exist. - (Reported in #asterisk-dev by philipp64. Patched by seanbright) - - * Include an extra newline after "Aliased CLI command" to get back the prompt. - (Issue #16978. Reported by jw-asterisk. Tested, patched by seanbright) - - * Prevent segfault if bad magic number is encountered. - (Issue #17037. Reported, patched by alecdavis) - - * Update code to reflect that handle_speechset has 4 arguments. - (Closes issue #17093. Reported, patched by gpatri. Tested by pabelanger, - mmichelson) - - * Resolve a deadlock in chan_local. - (Closes issue #16840. Reported, patched by bzing2, russell. Tested by bzing2)- Update to 1.6.2.7-rc3- Update to 1.6.2.7-rc2- Update to final 1.6.2.6 - - The following are a few of the issues resolved by community developers: - - * Make sure to clear red alarm after polarity reversal. - (Closes issue #14163. Reported, patched by jedi98. Tested by mattbrown, - Chainsaw, mikeeccleston) - - * Fix problem with duplicate TXREQ packets in chan_iax2 - (Closes issue #16904. Reported, patched by rain. Tested by rain, dvossel) - - * Fix crash in app_voicemail related to message counting. - (Closes issue #16921. Reported, tested by whardier. Patched by seanbright) - - * Overlap receiving: Automatically send CALL PROCEEDING when dialplan starts - (Reported, Patched, and Tested by alecdavis) - - * For T.38 reINVITEs treat a 606 the same as a 488. - (Closes issue #16792. Reported, patched by vrban) - - * Fix ConfBridge crash when no timing module is loaded. - (Closes issue #16471. Reported, tested by kjotte. Patched, tested by junky) - - For a full list of changes in this releases, please see the ChangeLog: - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.2.6- Update to 1.6.2.6-rc2- Add a patch that fixes CLI history when linking against external libedit.- Update to 1.6.2.5 - - * AST-2010-002: Invalid parsing of ACL rules can compromise security- Update to 1.6.2.4 - - * AST-2010-002: This security release is intended to raise awareness - of how it is possible to insert malicious strings into dialplans, - and to advise developers to read the best practices documents so - that they may easily avoid these dangers.- Update to 1.6.2.2 - - * AST-2010-001: An attacker attempting to negotiate T.38 over SIP can - remotely crash Asterisk by modifying the FaxMaxDatagram field of - the SDP to contain either a negative or exceptionally large value. - The same crash occurs when the FaxMaxDatagram field is omitted from - the SDP as well.- Update to 1.6.2.1 final: - - * CLI 'queue show' formatting fix. - (Closes issue #16078. Reported by RoadKill. Tested by dvossel. Patched by - ppyy.) - - * Fix misreverting from 177158. - (Closes issue #15725. Reported, Tested by shanermn. Patched by dimas.) - - * Fixes subscriptions being lost after 'module reload'. - (Closes issue #16093. Reported by jlaroff. Patched by dvossel.) - - * app_queue segfaults if realtime field uniqueid is NULL - (Closes issue #16385. Reported, Tested, Patched by haakon.) - - * Fix to Monitor which previously assumed the file to write to did not contain - pathing. - (Closes issue #16377, #16376. Reported by bcnit. Patched by dant.- Update to 1.6.2.1-rc1- Released version of 1.6.2.0- Update to 1.6.2.0-rc8- Update to 1.6.2.0-rc7- Change the logrotate and the init scripts so that Asterisk doesn't try and write to / or /root- Make dependency on uw-imap conditional and some other changes to make building on RHEL5 easier.- Update to 1.6.2.0-rc6- Update to 1.6.2.0-rc5- Update to 1.6.2.0-rc4- Add patch from upstream to fix how res_http_post forms paths.- Add an AST_EXTRA_ARGS option to the init script - have the init script to cd to /var/spool/asterisk to prevent annoying message- Compile against gmime 2.2 instead of gmime 2.4 because the patch to convert the API calls from 2.2 to 2.4 caused crashes.- Require latex2html used in static-http documents- Change ownership and permissions on config files to protect them.- Update to 1.6.2.0-rc3- Merge firmware subpackage back into the main package.- Package internal help. - Fix up some more paths in the configs so that everything ends up where we want them.- Update to 1.6.2.0-rc2 - We no longer need to strip the tarball as it no longer includes non-free items.- Enable building of API docs. - Depend on version 1.2 or newer of speex- Update to 1.6.1.6 - Drop patches that are too troublesome to maintain anymore or have been integrated upstream.- Add a patch from Quentin Armitage and rebuld.- rebuilt with new openssl- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild- Rebuild to pick up new AIS and ODBC deps. - Update script that strips out bad content from tarball to do the download and to check the GPG signature.- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild- Update to 1.6.1-rc1 - Add backport of conference bridging that is slated for 1.6.2 - Add patches to conference bridging that implement CLI apps- rebuild with new openssl- Fedora Directory Server compatibility patch/subpackage.- Fix up paths. BZ#477238- Update patches- Update to 1.6.1-beta4- Update to 1.6.1-beta3- Rebuild for new gmime- Add patch to fix missing variable on PPC.- Update PPC systems don't have sys/io.h patch.- PPC systems don't have sys/io.h- Update to 1.6.1 beta 2- Fix issue with init script giving wrong path to config file.- Explicitly require dahdi-tools-libs to see if we can get this to build.- Update to final release.- Rebuild- Replace app_rxfax/app_txfax with app_fax taken from upstream SVN.- Bump release and rebuild with new libpri and zaptel.- Add patch pulled from upstream SVN that fixes AST-2008-010 and AST-2008-011.- Add patch for LDAP extracted from upstream SVN (#442011)- Add patch that unbreaks cdr_tds with FreeTDS 0.82. - Properly obsolete conference subpackage.- Disable building cdr_tds since new FreeTDS in rawhide no longer provides needed library.- Bump release and rebuild to fix libtds breakage.- Update to 1.6.0-beta9. - Update patches so that they apply cleanly. - Temporarily disable app_conference patch as it doesn't compile - config/scripts/postgres_cdr.sql has been merged into realtime_pgsql.sql - Re-add the asterisk-strip.sh script as a source file.- Update to 1.6.0-beta8 - Contains fixes for AST-2008-006 / CVE-2008-1897- Return to stripped tarballs since there's more non-free content in the Asterisk tarballs than I thought.- Update to 1.6.0-beta7.1 - Update patches - Back out some changes that were made because beta7 was tagged from the wrong branch.- Update to 1.6.0-beta7 - The Asterisk tarball no longer contains the iLBC code, so we can directly use the upstream tarball without having to modify it. - Get rid of the asterisk-strip.sh script since it's no longer needed. - Diable build of codec_ilbc and format_ilbc (these do not contain any legally suspect code so they can be included in the tarball but it's pointless building them). - Update chan_mobile patch to fix API breakages. - Add a patch to chan_usbradio to fix API breakages.- Add Postgresql schemas from contrib as documentation to the Postgresql subpackage.- Update patches. - Add patch to compile against external libedit rather than using the in-tree version. - Add -Werror-implicit-function-declaration to optflags. - Get rid of hashtest and hashtest2 binaries that link to unfortified versions of *printf functions. They are compiled with -O0 which somehow pulls in the wrong versions. These programs aren't necessary to the operation of the package anyway.- Update to 1.6.0-beta6 to fix some security issues. - - AST-2008-002 details two buffer overflows that were discovered in - RTP codec payload type handling. - * http://downloads.digium.com/pub/security/AST-2008-002.pdf - * All users of SIP in Asterisk 1.4 and 1.6 are affected. - - AST-2008-003 details a vulnerability which allows an attacker to - bypass SIP authentication and to make a call into the context - specified in the general section of sip.conf. - * http://downloads.digium.com/pub/security/AST-2008-003.pdf - * All users of SIP in Asterisk 1.0, 1.2, 1.4, or 1.6 are affected. - - AST-2008-004 Logging messages displayed using the ast_verbose - logging API call are not displayed as a character string, they are - displayed as a format string. - * http://downloads.digium.com/pub/security/AST-2008-004.pdf - - AST-2008-005 details a problem in the way manager IDs are caculated. - * http://downloads.digium.com/pub/security/AST-2008-005.pdf- add Requires for versioned perl (libperl.so)- Update to 1.6.0-beta5 - Remove upstreamed patches.- Package the directory used to store monitor recordings.- Add patch from David Woodhouse that fixes building on PPC64.- Update to 1.6.0 beta 4- Update to 1.4.18. - Use -march=i486 on i386 builds for atomic operations (GCC 4.3 compatibility). - Use "logger reload" instead of "logger rotate" in logrotate file (#432197). - Don't explicitly specify a group in in the init script to prevent Zaptel breakage (#426629). - Split app_ices out to a separate package so that the ices package can be required. - pbx_kdeconsole has been dropped, don't specifically exclude it from the build anymore. - Update app_conference patch. - Drop upstreamed libcap patch.- Update to 1.4.17 to fix AST-2008-001.- Update to 1.4.16.2- Bump release and rebuild to fix broken dep on uw-imap.- Update to the real 1.4.16.1.- Add patch to bring source up to version 1.4.16.1 which will be released shortly to fix some crasher bugs introduced by 1.4.16.- Update to 1.4.16 to fix security bug.- Really, really fix the build problems on devel.- Tweaks to get to build on x86_64- Exclude PPC64- Don't build apidocs by default since there's a problem building on x86_64.- Really get rid of zero length map files.- Get rid of zero length map files. - Shorten descriptions of voicemail subpackages- Update to 1.4.15- Fix license and other rpmlint warnings.- Update to 1.4.14- Add chan_mobile- Don't build cdr_sqlite because sqlite2 has been orphaned. - Rebase local patches to latest upstream SVN - Update app_conference patch to latest from upstream SVN - Apply post-1.4.13 patches from upstream SVN- Update to 1.4.13- Update to 1.4.12.1- Update to 1.4.11- Update to 1.4.10.1.- Update to 1.4.10 (security update).- Add a patch that allows alternate extensions to be defined in users.conf- Update app_conference patch. Enter/leave sounds are now possible.- Update patches so we don't need to run auto* tools, because autoconf 2.60 is required and FC-6 and RHEL5 only have autoconf 2.59.- Don't build app_mp3- Add app_conference- Use plain useradd/groupadd rather than the fedora-usermgmt - Clean up requirements - Clean up build requirements by moving them to package sections- Update to 1.4.9- Update to 1.4.8 - Drop ixjuser patch.- Update to 1.4.7.1- Update to 1.4.7 - RxFAX/TxFAX applications- It's "sbin", not "bin" silly.- Add patch that lets us change TOS bits even when running non-root- voicemail needs to require /usr/bin/sox and /usr/bin/sendmail- Update to 1.4.6 - Remove upstreamed patch.- Build the IMAP and ODBC storage options of voicemail and split voicemail out into subpackages. - Apply patch so that the system UW IMAP libray can be linked against. - Patch modules.conf.sample so that alternal voicemail modules don't get loaded simultaneously. - Link against system GSM library rather than internal copy. - Patch the Makefile so that it doesn't add redundant/wrong compiler options. - Force building with the standard RPM optimization flags. - Install the Asterisk MIB in a location that net-snmp can find it. - Only package docs in the main package that are relevant and that haven't been packaged by a subpackage. - Other minor cleanups.- Move sounds- Update some more ownership/permissions- Fix some permissions.- Update init script patch - Move pid file to subdir of /var/run- Update init script patch to run as non-root- Build modules that depend on FreeTDS. - Don't build voicemail with ODBC storage.- Have the build output the commands executing, rather than covering them up.- Update to 1.4.5 - Remove upstreamed patch.- Add a patch to fix CVE-2007-2488/ASA-2007-013- Update to 1.4.4- Update to 1.4.2- Package the IAXy firmware - Minor clean-ups in files- Update to 1.4.1 - Don't build/package codec_zap (zaptel 1.4.0 doesn't support it)- Update to 1.4.0-beta4 - Various cleanups.- Don't package IAXy firmware because of license - Don't build app_rpt - Don't BR lm_sensors on PPC - Better way to prevent download/installation of sound archives - Redo tarball to eliminate non-free items- Remove explicit dependency on glibc-kernheaders. - Build jabber modules on PPC- *Really* update to beta3 - chan_jingle has been taken out of 1.4 - Move misplaced binaries to where they should be- Remove requirement on asterisk-sounds-core until licensing can be figured out.- Update to 1.4.0-beta3- Update to 1.4.0-beta2- Update to 1.2.10.- Update to 1.2.9.1- Update to 1.2.8 - Add misdn.conf to list of configs. - Drop chan_bluetooth patch for now...- Zaptel subpackage shouldn't obsolete the sqlite subpackage. - Remove mISDN until build issues can be figured out.- Build mISDN channel drivers, modelled after spec file from David Woodhouse- Update chan_bluetooth patch with some additional information as to it's source and comment out more in the configuration file.- Add chan_bluetooth- Split off more stuff into subpackages.- Update to 1.2.7- Fix detection of libpri on 64 bit arches (taken from Matthias Saou's rpmforge package) - Change sqlite subpackage name to sqlite2 (there are sqlite3 modules in development).- Don't build GTK 1.X console since GTK 1.X is being moved out of core...- Update to 1.2.6- Update to 1.2.5. - Removed upstreamed MOH patch. - Add full urls to the app_(r|t)xfax.c sources. - Update spandsp patch.- Actually apply the patch.- Add patch to keep Asterisk from crashing when using MOH inside a MeetMe conference.- BR sqlite2-devel- Update to 1.2.4.- Took some tricks from Asterisk packages by Roy-Magne Mo. - Enable gtk console module. - BR gtk+-devel. - Add logrotate script. - BR sqlite2-devel and new sqlite subpackage. - BR doxygen and graphviz for building duxygen documentation. (But don't build it yet.)- Completely eliminate the "asterisk" user from the spec file. - Move more config files to subpackages. - Consolidate two patches that patch the init script. - BR curl-devel - BR alsa-lib-devel - alsa, curl, oss subpackages- Do not run as user "asterisk" as that prevents setting of IP TOS (which is bad for quality of service). - Add patch for setting TOS separately for SIP and RTP packets.- First version for Fedora Extras.  !"#$%&'()*+,-./0123413.7.1-1.fc2213.7.1-1.fc2213.7.1-1.fc22pjsip.confpjsip_notify.confpjsip_wizard.confchan_pjsip.sofunc_pjsip_aor.sofunc_pjsip_contact.sofunc_pjsip_endpoint.sores_pjsip.sores_pjsip_acl.sores_pjsip_authenticator_digest.sores_pjsip_caller_id.sores_pjsip_config_wizard.sores_pjsip_dialog_info_body_generator.sores_pjsip_diversion.sores_pjsip_dlg_options.sores_pjsip_dtmf_info.sores_pjsip_endpoint_identifier_anonymous.sores_pjsip_endpoint_identifier_ip.sores_pjsip_endpoint_identifier_user.sores_pjsip_exten_state.sores_pjsip_header_funcs.sores_pjsip_keepalive.sores_pjsip_log_forwarder.sores_pjsip_logger.sores_pjsip_messaging.sores_pjsip_multihomed.sores_pjsip_mwi.sores_pjsip_mwi_body_generator.sores_pjsip_nat.sores_pjsip_notify.sores_pjsip_one_touch_record_info.sores_pjsip_outbound_authenticator_digest.sores_pjsip_outbound_publish.sores_pjsip_outbound_registration.sores_pjsip_path.sores_pjsip_phoneprov_provider.sores_pjsip_pidf_body_generator.sores_pjsip_pidf_digium_body_supplement.sores_pjsip_pidf_eyebeam_body_supplement.sores_pjsip_publish_asterisk.sores_pjsip_pubsub.sores_pjsip_refer.sores_pjsip_registrar.sores_pjsip_registrar_expire.sores_pjsip_rfc3326.sores_pjsip_sdp_rtp.sores_pjsip_send_to_voicemail.sores_pjsip_session.sores_pjsip_sips_contact.sores_pjsip_t38.sores_pjsip_transport_websocket.sores_pjsip_xpidf_body_generator.so/etc/asterisk//usr/lib/asterisk/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m32 -march=i686 -mtune=atom -fasynchronous-unwind-tables -Werror-implicit-function-declaration -DLUA_COMPAT_MODULEdrpmxz2i686-redhat-linux-gnu  !"#$%&'()*+,-./01ASCII textELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=8b791c4457034eae7c4f66fdfe6f59d93a6d93bf, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=cddb41f0f005ca69b63f73625b22cd6fdaf21fca, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=5c06844ef26933d1e6ee0b1c1678e615f7c67fdf, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=936b6090571e599cbd2e519a7d1ca5e3a8e47dd1, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=852146b4c549e64b05c3589c5482abd79dbfc3cd, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=698a506604eb6b8b739e598fddf8772e6b0e3a16, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=9033c628ddd3b3cd41fe9c4f3eeedb8dba2186e3, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=11279e6cebc684d89c9fdcc23f8b1bb8fc13d715, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=06075bf7b135ae6eeb6f542cb76e0530b4979b71, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=57ea5edffca710c32960570417276322f28cbab3, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=32587fdf658c5bb74cc20db29648cb54de449f45, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=3ed110c825194622e336002a0bf43229d7f00d3b, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=1721832933251d842c191449350544f61cc240c0, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=43109b779af03bb86e1900ebf09e6b076e09c18d, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=28b9ad4afbdd4dba2444685661b80bd3614ba9e7, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=39225a8019e902b32579cb89f62a4ac0806cb0b0, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=18d4691ca2ced02d87991cb5d27411bcfd93f06c, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=102322d734bffe0cc5ad149b5b1a82eb12671feb, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=89e9ce725f55288264a7ddb8d6fd5758b11a07d2, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=307d987877410ca389be19aab0b96c1e25513aca, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=5ac5e65ac0d8c537b7107c52eb4621b9436e3d8b, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=760132b88c91af387931f1bdfadec475252160d7, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=8afa38b7b1e0ab9519148b992dfb07935991991b, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=2c93956938eba731968ae52a1c8a5d7bd68602d0, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=4992d6ecf99e64d5c7bb9e000910ab235a93f96c, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=0c19d0117d6570277dd10f3789743121cac1cc32, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=aab3cbc1170a17fcf3337ded0911ef84be595b81, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=6bfda8183760ec907fd7f21d1053a7bb2fe39787, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=ab241d8392a36fdfac42e5d7d1bd229ce0d958e2, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=19ed4d541952daac508ca696ff3544dd0f11f1d5, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=d1f81c64f60c268d4fed9a2d0f7768c4bf2d7de6, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=108ad6e5036884cb0e6c4cb6fe5e5d15c0850623, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=8b61408dfb257c2ed1acb368eed9484af64aff68, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=85283961bd6007d396964dc77922e4b0132182b0, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=1169ef38a71d7c2bc037dc7982d19184ea76ea92, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=8da500fa41cef863a5d360f80d35f403cea91aaa, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=14f0a04147a54e61cfcc61a771b846e6835285df, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=34e3f5dc238c7281966d343377c670e4babd5886, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=9aad7256e0822a206a3e5f239683b3cb558f5958, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=003ec08c9abbb5788be8aa4133b877c57bcdd46c, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=9453c36759cff58c3a89cdf35f392139e65ea847, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=e7b6219513071069fed8baad1b2dfdbda8f3accf, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=fa92bec09f7af84423e3b2c05fa9c40e1460f3aa, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=10521d61b1104ac449a0134c73460a52cd1f6939, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=b4f523f6704632bf1b27969fa0adc9598770b384, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=1cb94e1cdb03368f9ecd622a2a4e1bdbc49c14b6, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=3eb0a495e2c9be2870ab0f2d75512ed248762cfd, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=bd96fe42b1b65e11669fc61134788e434dd466d2, strippedELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=1b0bdaab4eef7e81b24011c8808e6ab391d1fcc4, stripped!*9DQYcmu| '5@JRYalz            R R RRRRRRRRR RR RRR R RRRR RRRR R RRRR RRRR R RRRR RRRR R RRRRRRRR R RR RRR R RRRRR R RRRR R RRRRRRR RR RRRRRRR RRRR R RRRRR RRRRRRRRR R RRRRRRRR RRRRRRR RRRR R RRRRR R RRRR R RRRR R RRRR R RRRRR RRRR R RRRR R RRRR R RRRRRR RRRR R RRRRRR R RRRRRRRR RRRRR RRRR R RRRRR RRRR R RRRRRR R RRRRRRRR RRRR R RRRRRR R RRRRRRRRR R RRRRR R RRRR R RRRRR RRRRRRR RRRRRRRRRRR R RRRRRR R RRRR R RRRRRRRR RR RRR R RRRRR R RRRR R RRRR R RRRRRRRRRRRRRRR RRRRRRRR RRRR R RRRRR R RRRR R RRRRRRR R R RRRR R RRRRRRR R RRRR R RRRRR R RRRRRRRRRRRRRRRRRR R RRRRRRRR R RRRRRRR RRRR R RRRRRRRR R RRRRRR RRRR R RRRRRRR R RRRRRRRRR RRRRRRRRR RRR?p7zXZ !#,%_]"k%x1dVg1Do^an f\ e2lA5w頂Ic9>c4%W8!hۗ>N 9 KS7b25eD BΡ V%؈DۘZpj[WYw'*CN뺉u Jdlk禺ͯe=$H +iG^8bv<;C/ r J^еG~|߬5C7fUuPZ^iFrc>,ĠQ4b t.T)>"痓02iIh<~ZyK{nu?-.*t9kc,sFdӖn#$;4{֚pa*v${;Oa/:YjQ~-Ҝ"=63{ENR!y 5s%C۲IAAڬ /敢6J@kӻ,nQ`P-u҃Řh!·ޕ6㾫 l4NY @.z/8q遞ɼ5yGW  h Nh6Z'9A)n @ޝjʔ)%[m xK~T KQx6wXdm'5{ȣLPYBmE!Е`"XO %_w ޘ_:I*9}ո'%Ns"-[I}M%%݈oQHh\8QyIs67bYk8>cl@="RQbGkQp~d֌wsL9l@ +?ȳL+Ҹ䞆ʈW9C Su)J:D"B~_+ʷ1 D}0ڊ/57SwJ%qL LA]Ǎ6;1yM53(p0WٟD:j[T^ƂNƨv߆B3W<=0p:Ǯ<JM ln}.^}4)${Y\OGR8:PjUD19Pq4$?HsDyN4977־LKEd4{'|_QpR;.2^I_=9CxC~>{a 0JD3n@gbs iV/5CG vy/T X{wm9YtB_`WoK&`ЏPh&ʘ.^ k/ts?ux&U&48Rˀrgs_7boj̔;9 uB6NpU/%Q^(LP u#-,;=vyܮah fĨm-abkDhD $޾ϯ| ׫<>(!糝i_T˰p)bK hLZbޞ0H6nԪDDZuA%XE5\U!^E H{ZTf! %.Cc6AW'm%]ԡ[7'(}SJشUobM䃋wML5ui$iy'_r ;2[>MzQ(_vG1o*u9?\m+Zie Am[oiVO;csԍ(r:rE?\2nt@8G.:EOdG0Ut"1 3]byCSЃ%Zps$d M?Q^Td*n=5^iJZ[X ۗ l @s31UjpGDRJTf oSzxt02x CU:/i+]5˞Q& +}#IPvyqiB2|asM;Kr) kr!șL{B^Qn,О~szq-:V7 $"L+.-\Z04dM'z1>t^Q*/)|ELL[=Q V;bpթ>&$G"{2T&3`vN]t . +MZz"_xّ|y?"?)gܔPt=\KwfLu8^-}^Ό[e)3hɁXr> VrF[DٻutB:Trx8ݓx^WiǢEηzZMKjȡt' b0wN+~YEߒCMpSii򨵮j% ueg) u!X9wV.8o㍴ Ԑ;zjxjcSDQg*Ue7c<0#Ar%~@6ȊTQ@&[zN9JGd_[iB<~΢+o 2u97k6C4h&X U\?\P5jGȻ4&(tb^zlf%Z3G 5rPC'Ug }3*Y\JQ}Х8" jV+۰'[ vmԽ.,ȣ}Dfv{= {7啞7>碵u1#^.!0iEa{{V'Ey93`c^ Xkʩby4Fd"XOe,ɧ-5pʁ(܆En jBF6\i ,|-߱7U^Sf;,dwCZ*ޑ$3nVͷ@+ʿi9C N'Ihſ[.8R n_ ړϕE \OIIՠQ L K>Tu`ײ]wGcTDHvRQ{;ꞆdeBxdf-QK-(" AKڗ5uqs8!E~'WGޛ+iٸJؤߝI/U!zAIO9_ʇt:PP)ułDIN y k2E )@K+U$rr= ?l{jml8(~^5*U4P`XaP<O{<8$eJNq2zͳeP DV>AkO/\>`Y"2R\PIIÍ>DgøWq|mw^9 @2ìtSH\a EKg; Z{$Q@l-~%H޳ǣÒkvsBZ;ED|W7xT6*Spq?nq:&@rsl: 'ZWN4׏q?+e#6[|b!95E!Hgi~-p,KܱsqߖFEV*z%4PRyUkDI3w+a$ B;/Z4N&̴ۭ44r7);JMW E3r>[-n|N QQCm_oQ:(b11w}fL4'PX+t}v46] W6y!!Sh~ymuY4VD6᧦gǞ Q PSmz.%,RZS#NVs%393⟸"B"?IE2[!E2Vo>3nj HW)ϟ-'v]qƛ"PyaF+04w*Hߌhrf?hn&+Ǒ  ы؏.-ǔ)$ S{J ]1qFwb)\|:M?171&gӟo8 *JZu|pIN%f2:IxVˇV*lıNͦ&E`"R*H[ӭ\k,O~PynPyŁS\KR!]~ngXr*+)iV L^EyT5c/y8U0hoזv{~~әqK[?,!G˿,BIS=ϢT8%V/>)K(L9˜W|Wc_烰:`BͦYCpBʲ8_ T\N2'QrVoM87w (x.ۉ֫ȳ<\K5㎗w\5"q\ ݖjj)lЬh_" %ȹb6.Unib,!A*6cw)f nd9:C%4Un7#riNĨԝX㏸t$X`5f Vm pYvxzS^^'A4q"e2&.mW5M~ZsWYߑ0Ǭp& un^8V!/l<܀At@B_]InBr@tpbijV5Xg[[\y@fIA^Z|gH3ZQ}=$f=ry74*;|ώ"O*(q(xQlJfS7Y+):J#L(f؞rYcL("-ge~!|`F urJ8cIML O(;ޒk2{QXF|L\:{GX"(,U. G. H~y K;n=Un`mOwL&YO&c" !6*;3X5Iz<4MӁ~V^}Ess~-]5p&sWHF^MϕG$w{U0pd-~f GhB}7wU>Vφg!E]F۱\ {a 3eb|> 6m3dr'!1ۧE!]6Zz cy +QoIߩᏣؖiDŠ̞nX}P؄2=7i`KxM&epR(O3ƾxڸ'I#E_!5hb;%T11ߔDEx F^8[} N|VOI[;JH@ʝE[%FG,,Kie7Rzkb:K:yiMkRK-g5:mASZsͥdJ'YD~Kl[r6Mz/tR&`BgL gXV<* +>`izq2D_ R` &Aq9d"/ J Y`/w}2'[ӢKAOUCyNa %X|tl*{ vy]h(!2QFh$UN⃧o;8==<-BXeg(|o[l(ߝ+k ܏l.[ܛP ;EƖpy9pZ'*|٪)\y2|6ƿ *x ,J{|N3+E'lȽfY^Mu U >ȶu >Z>9InIJY4#n"Ë)܇ORW,'gBKLJ,eQ8m$,c$zx* zfRtP#tƠ| ݝm{1v73U+y .e? | @zd%2#Įͫ (KǷ7>vOϜjjN߲Hz@rLp LNW}VN({rF%Q9-ݱI|~efu`-%8:}!$s0s}>fOݲemz&NAe/9)ѐ?ca&OBiQ=< x'waրNzj~q댍>B̹Q*=Womyz.:QBּy!xfIZ3-,kwhE͈`^RP5_2HWo|n vatu&Aɿ$; -_o {%qT- }74DR[pqr?mM8tHwnAɲ(9YpiyNX۵{#Ow7[4:8"LTV3)o{*{eWt~AڑZY… B2aS~=秙Ϊ'5@#v.+c+񑉍9u\2̪z#2(WLnR7ʁ K1fʃb!`픤 Ij/$.i>ڸ[Uޔ!b[c4Gcmu5)C mu淳j&9Z@ʌgz6|Nx(|Q;Ka'ZYiqvt'9̦^J"R2HwJ3puJ +kEfz-N_+0$A} LEʃ@ K my9kyPY'z7,݃ 挾o {vm|K_ ك!/2Twhmk>6P¼>Seу.Q8mpD캷b{J*8.3#/gvͼf aħhc._r#{X*֊E?ܒ@^:l% 9y\wQ06Zv?-; [,E,)[ CӰVWk*<" 5Id}4>I>%u #,/8bh{lYx#S#: zXNךp%/lĂx`0(2㐦<*ziW4ňUyS7Ux[ )B!NC`9-칈יH0Tp?Š_ ~4AL8_ SQ{F~!v= ^ W40f0Tnt }NjBW,վQcMa8 (P4ಯD`@K#:˘wl.2žM2(J.V˻=98`vųW:QJ񯥡߭ʶx7Mtl*71GWgTLӀ Ä.e(kW;5,i)ME ^1Hx9~]MzDf|_P&WGae=a6}*#0 GXr< vz5@DNVԊ{:KXRXlڤ.YA!|n 4ۨ-ٳ53@tg8:gRANS@X>eO(FmCt. к q&hidz;­2Jp 3[wFmC.JRG3 W% #'3/J0:o$Ʌh"Z2kJdĞS;8&Vɚk;xy@QҘ ǿruɤts< v"f^)tu!CҘ%#oP Ԫ? GjӴJGMZ- j)glYYP yoO.GlS֘vtf|0e!\އsm8rCcd]]`Р[=7̌XfaBǏB='ᝮ*qR{Q85w#)1a b%gPc6e.$􎧃Ga#( 4b*ON8K|jM)>&^Gmh*c995j;N'ՏbOJu^2嫂hVVyFNv3JpmqH놪OcVipGQa>)a,g&1Z0emd 䌉3oD* ;N}5@dG+":R3sH }ex[ۣ۟-~-b {}v~x`{u_(i {Pi `1r 3Z jF׾xWfS^#")6b>evM@:{ Ty g*=Iǒ? 5 eж 7 ϴ-8ljEmо75m%3/ P&ctqoUk`\ 1뤜h&|鈥M|)'ˤz@-=oTQi&\$g7D=9fC=:phPKDv&/*ED~d?Ӷ?!8laΔ_J? :r8B]+8&{JF y4V@gd+&8i qda8iK͛ v I (9| [b– :n 51 d4n'gRLh++}:cgg1w4&!B.:DHLZrXm̒ȔA{ş{Oӎ= TG\HFseK{{Ve?ql^=;0 +Vu>ŔpaqkHB!t2>!e 4u]l5Ėh\oaRJviM<Z:4,Oܹcm@–=Ե+ݻ"()+kC}\+]s]oI/d&a\29xN!,ޜcYg Af R̆3I-{CF͡$t>OHBԽk*Jߋڄ?+شB'e`Jr]@ %q[J^x>D6XD_đňbgjgчk{RB}|Y1^VIJ^-_иW/Fǝ4Q@YuhG>:I풂Z{MCN| 5w@;@WEnR<+E&}c)hq2&@ "> iSڇ㺱7 Ms;Z_~G:z*AO]A6kdK3C6t]BzSt[+^γ`0Rl$;}4_Θ{Sjb77M XGoru_hwxBUKĭa<5Q$Q"aHRtI* 9__KQ߂~"7ðޟؚ*w2x)T י_8E&9ibd0#wGM[4~JPD_RYw7mZ7 ZFCkb%JC{u;;`8Wϳ@x;iZ ݝEћRz'[^\9_!"p.ՋM@BJECiq[$cSXAvقۈˣ f~tRXM'P-Fo={lNܷ5&kH.}%uk@1"($O\:[:]y-zk~] u%ユF !Y$P}ORGԸZCRhTBK;m Odh0㠊qu4B4p/߶QGwj(.D6K[Qx"ǣGi9rcv*> 5٨p:4by1?LYbbj_MRO7bu+&}-5ݭXK*6hƞ[BC;6hL}:lY˗`= i%rCo^z]sϜKf(AW#d0>}UbC.%V(m"+O7T= )֮c|ȘlV脯bcߵGH/~OPE-9bb)8|*7i Xʠ5x.W%Ϥj=Cq 2Wۏ^np:g0 FPjr:A=eހ{>+.ܛNmovUSsz&lluiji ;S%T`r#ʦS M"# J" \e]12KLJjTϗOʼ $kA=gn,zkO x (cCYl+ ػ&C|H|%;tX-A/ [O4/!Xj?([b♅ÍViq_Iʇal"tMߌ>^}GQsvWںCmΘ<0N)-"<@Ej.*Klݒ&H`w'H7*|G)Q~60Ubʀ zVzζ ^1,-d6!ǑYాm2e% `ǐkLvKlB޶.hXf?.|2@;tP$3J=k8qbuӹ=LEHW~^U=d2S@"Jf#+y@qޘ|fdC`K;\o{R~.WFOC$|d.(qA4jΆ9,ڥ*1uWX+PsWX+(u9+쩂*H1W/%iuժ/-C %_ t$o#vRڡD&hP;Ld`/(wyT+Ki^ϳ>0%Ox |<=.';@| Q{#ƺ/uۏM]WkdXarHAjdP^/%*+`ٽ#YLzLq26V+٥2q*x?P)&zwv|&|zzhhy^,LW- ɓ1/#,tV)E#Lxi2ۍo0r/- Ɨ@ 4=V j?GG[p- +-7h@$fdFva_mo#Sd_/O3DD8 Ltᅗ|h\o# X p|bL2pR874l͇)rpVw¥J2fl<vˉ"l.#F]X`RsQTy_*Fj{bYCߒa*lzWjcv/E{ =f gUz~2Ƨ6vڦ`qׄ0!j+B~"o}S ԍ a3 ;YKaln@%[SAs [N"g!pb.4(뷷n5`\W$=[xASP[VdGԊ hcjb@FfWf4PѵIU4&9oJ)ydp Qi̐&q|=5]K*e$5aQ?b~,YZ=a0T[P0K3C @ATX(8v4Z:1 я=[ەo^P _Y7Bc+]ĥe{<)|ek!*7qŤ~c<Н;S. ;j]u*ub<}EjnFNx*?ͻ0~{UFOAfoއPcBM:@Ep^0ZqG~=`?$p(#SīRm6;>j-BC[VtۋP_p{^3 Q4R\ _ ̻CcCX gΜn =MJ#3ćJ]D#ϲ"URk޾[^U[ {dVL-V鮃=o0̙()Kl _{uEnjTꓚL|\A׭L4,bzެgxT m[ 6N+YE(vHp7'K):K=,H'SM⶯lf"; pFI:h$_QZưǐwo _W' /Wz U>6Tڅo:3 0u{A:|۱͡SqoKz`kJv~oJP[|9Кo.%+b\ gzuZ3 Q*f;I t]4U!xH0k\tcb*qa50;BtflC }77 .ߩƏR|: >PνU8{ W|&awpy$Zw .ԵN}0-G h']3\^Ku&s؊)c<:^^-XNE'?0۝PG:|̼cwռfgsX#}VjF;v7rÉMNS>AYuÅRҟ,ndJjX%ɖ#n9H})*J!~#~Jl+K+eRO& sFfAIfPeIFmU58].wr8[?:~!!2jquc}m19l<ŮR|#Vۧ7G}bbnS|R]xP,NB UdD;^hX%O4;dˇ)LZK-"Ҿ ( pb N芝C:C{t}PNQIC{ | .@tE`rk2mw8kK/>DPwԄ9$HGWR}D0H%LGr<_07+ǫ6y̬A4Ȣ7p, `NҊ0(c弱!Ԯ@d/"R\^ArI[a2 0h8g}; K Y/HזMoA dch? 7-_Og,a.w(d4LHa./Qm3I>/,D}zȍ1/eu|{5JݚZqvM Fa$q@BzD߲2k, +t/V>vBu?4rvJj` Tw?e9 uTI}0-Nbuh>_ i'#[.CED)VGv%Z{³8t,}=9ܨ#n2!܊hF\qf:1\à/bc[ϩMK($;f$n\`ׁZh5oΝH$+$kߌC2 *?玨:[)W˩*x=wvazc*ص6~/%b#.#*!SJ!7v@S)dwΗTcUy!X_[1crtd|;YDph4Sg1띿&9j#dEjAW\&1XPBpr 1 7Js@'Lj %,x?2A2W ԿZdѿMw ;Mv!I88ܥQfz';) # \ɑfj aԤ63Uke6_@.5`ki_ (zխ׭"1 m&|~ٺ sX90X3ՏR,`jaI|;L_RҳyyGadJ1:^ZCsD`Wg9u:Ss7EebWqa !rz3 Ȇޕ-5 %zMݹ`E;wTYۂdeǢ~;g/&]ߛGV$KuZ;Q|QIRL4ƅlr.'95YZ(:32ۭL"ldUby+Nk1Ӄ*aU;rPm'Q!K9,ys)77;kI>P!vhqWPL; ļJ-"ݑ]9l(p+m &e7E|lq?/%Sd٘4;*|lœ˯٨yT9zI =x+]LqmKt^Ԗ?Y gp&%vA!}m D)z"gSVNN -# 4-Czj&'ĭAt!6 gq]=h|2L7VgQ#+~:Ԡ8OT- o c zSU98erҿxFn [yﵟA_aCϦ"oΆRBb0\eox3l p4V5{T("4S=1*ImNh N u⋘P p1cd=iЎ/L\`BOJ0¹BX\fSHAms\&iuoJ\JpE:+! G_K$ iC;GwbU!$ܭ: ~zAbEW\m O=@J !jݟ*aI@w$k 1݅5va>@R@Q3 tK&vmcH[y],(.Ucix\EN>? ׀9]7,w41&X/j儎n+ 3^r(Sf,H/3h1#u?V xӳb=DJi90U_hf >5>fwNobOyjhMs)\"Y.v309HmE-5}Ъ@(rvI1ImaIabXHnovq7𭾻p֋zi݊4rZ>R*uls/zbu+Qt^HMXCSohҗ(gcL-Ep6re^qh(/Bx^K:.FvX-d]8?y*5a\Q##ݻm|@C9gMo#WVQ%Op TnvG1ޱ)fakb&eJ֦$s>0 Sr*#~S>T3W -QH͆] Zk Np| /&* 11%uBAgk'xcjãJAQٕ^*i;rc#åy\e&. .b*6 kZy!2fݏ7s)T8[ee~/\AQ rt gE\^K6(_A otUӞ -%CB ;Ciޗ}֡.IBzX;DY5)ܟrIrT=ۑz7-a//%wP XmntG ;&&l~}"fhi4ݍS%*)Vm3V=*AA'k%Û-@LW5:Æ^эz:yh&(F́zNq:|m^HlAHRJڇav {ټuOx:grE V8kn%#1^M"[7s>! Tp_'8ͯ-w&?J_-vv(u@럲ܥd !2[4\].ԓ4؇xAkyPwOS }Ocv~>,T"·c, c8ғ7f}) ih<K~$Hp={jm lI=?Ωd>KjnNN6JUϱvUyY%3.=v>*O`ȳni 4-)h1TWXr9XkqSBY2jJ[FHW/0=K[wA46I3 6Me󀛔X>ޡ}"\M;\n#J4PbpD>;U'~h^)(;TMƐ3Cz'g >(5O %rى% D3-Ps[^ƣHX1H;2wcT _.>`#:n9'Ng$qdxϹW"r1CB|<}^17@JycvOw#>yp4?GJ,4qG')&Y./{U?b 8Jg䱨? `PDJ/@ 4MμS+%7R}))U.Zc^U/q\^>`_6_|.*+TUm~`k#T}hcl?sOKN7);n_8('O?9FjK6_ɼ &@.xeD 4+e?3OҠQbe[ 7Lج0FLmN!h8.Azk;qp:Vψ/%I<ƁT#ϫe9YgqsW)v'Wrj / *siG0FMq5|oHlk\rq"2[IRWOm N6h16stfF-8`޻8=̇Nӫ N041a??ˏHWHy麔lwOS^K.&! Rs"2X#э)+lh/R9 zְؓ{u2-Y=/?6Ơ2{/O-SCNy6R\ټVcHU V$v[S#~|2+aME͒_~+,\px5h1RAȁZ`pd̖]b_.c(@VW&9ܹY k$v9hR%kG=2}f,)BRT<10z+~UE~8/V]) |%\o[PҌ{@A-͟rj27 FOi{F) *À4#(k3Mud>_{, ~e{)P<ӝE}KK\nʘv&L^r+# T >ksCT={ڀs;OcrW;Qr Kd+&_Z&L ]CQ6|aC#ߪ ū5 %0eTR~,BE q&66ΩW{p/fTx:t ʑhk~H~+4?!قV+oZK ө;4qV{zA_BE"&~<%K{'e%9ו6Th \L!Nq}dfx3ОwoNV!R_f\Yc .f<gz$]rRViJ3٘?Q'K@շ#\ av"|/MÿBQ-O˴EGfv Jjpo^4' ڃ G4ko->/EkF|!W \sC s;Tz/@>ը j0[bf(Fd ai7  j0)ϞDs ݁=5DW_I[DbNɭViltf!빻:^{I<|ca(0b0vA ҍG^<̩(n$*B `f Ĩ-]+Z9GO NH&١'E<ɩs؂%˥滮$S *G +>7)*(Ȥ>3$fGɲ6@ȭeZ\f][q ImKELt{j G_ ZCKg害`h-iPꦠN۴j"ɵST @e)a, j;h*Köb^D5<^Q$[h,2>#^o Tە%1Xĵvgsm1e4 #nzXR|+A߲Z{);f䊥}WFdfl&ՊеYs?;+|Z˳ZLDJVK%  7z1_t"/h2n\IpnQ}y ]0'GZ`GX礞NV<_1\iXFݜ L)~rdT*:9KcubÞWUt@ WE]ErPG# HwnxGy-IJ3"Cԃt ΖBԠ&\Y7IeO4LLЏPH+j<΍*xk2PFUV+ vQ0p?25*ْ*Rbir *yU=%O Zm'l٭"Ow}t]<=we)|ٴ Mr𗰘jSIK7[J)W7?+\'YuE}p+#♜(5ݨGmx.y#.bqU1VЉ`8Id*O,G_;#- `߂ќ>z `iQ?4`mEO1R@Ɯ֙ zW7Q i#KlHl\w@sr$:\_3 /Wt@0Z3\0qQ`śX>jlԻ/(6WXjfx[=KR%պ#2kׇ;>lM#*x͍Q7K8uX)C^Y痴-\k_FwR.`n.u/Ͷy9\ [/>wS0$,b%Iz8y)m}Uz܃9y"]6*N3]MnjY7Ǜo ۊHW+$U[?*`x t6{p^ 6|ۿSE1p]kϣ+GilKŞ#Y}ZU yEx~i YTz0FȉK bW!{'~ H15\41 A3|=Uē-W'EP ߍ*< 6Qs)4%h %VsiKGd8~,U,\Di {s5/qdNXC:dMg'=dyȿU(#0nBLLQ c%@9HcGAQhenbHL(Z~W3Jͪ+rpaqmallRyvq醘{WI+oFQfpeYt]oeQ8 ^!nkUY#t Dm@ Ax__bjk"0ȦFLUr*#׷i!}u%, FoԹ1f 3䬂0Nw \{#kNPIF'ީSL omhY')@Ĭr G9zgf̹`?z#XحhE׺չк3ńN*VIYۋ):x:AJWs~:bǞ~KpWl5( U V+#H&Af}xl.Y6HR^y*xjxڼ"7/{AFmz*}K1g4   *А3j-|ݧM)q 9*ۉs ]LuUZd7n(!.ecшoilHSSx,!!vmd,*甬+^\\m}g^7! 6VO}|ItjI iv>KgLc!xҧOEͰmXmW:*,[7 Xl-X=rXޢgIq4? ޚ18[nUJDaxSD~>$hʮ๷8;䧏XI.D I; AWVY6j]dB(1yVb G^9\wmWd%OTǢn j]|TI"_{b~)_%IYBI~/ܹB#A yϪBKtS[f)QS=b͉CI3`ǰ5jQDVѺ78K4_d.эc`3(`tT8 6EWh͚w@3cR_A05l௸ {& -"H Fg7;KHyb[mǛr=qS_TSQʸB#ъW"FB\՜z$n?ATsy>^#r 7wfm bY }BL"f V0nG- w hhǺM+ʏ&2OXh쐫4|u\f)DrψYLSh2 J0*ҬLkrɃࠇ/GƓP,[թ*KP>e~iT-~:f2yZlV͵>aJkǮ>!scRQo{LD#f肂fFOvA{Tx`8=OǶ5ORdׅdq&'~р~׎8,紒խb#B*J^rmp"+=E$Nbm  #(9c.ظQH[{bgAcxb8lb]D&o8hY:|j>y²H&J?5I]sUE0BE~OyX@}-@"ƽyvJ X_$jMpqF H_r!a i,]rP%/ԼPt&e *#l{I`vC@;ی,%T _,!l۬'~6ɩ]jͼ^P3UL"%K.) 3v&3,ĭ`IIH,',U’nQMo"B݈pѪdk$*7 _j^W!;2/e)ϭ")Vn;퐎AMJϩqW6s=SWu*{/cu^(;!6t!]e 'Fv < [3-[2+`xiIsT+iC؃L<@j:Ȣ,;A"cHeI=O햯ShYn[V0-F']{P 磹c)Zn8_kT`<̼ZQ!p1rMgգ̭\O~Wn8GGlMPpx,6z:!†˨Egw1- -ގDҘfnf5񑩢kʵba)DD7Ŧ4'n%`iO$ƋyƂ8g 'sw4 M@8ߕY l (+ۂ 8PFd,<6w+'jM]'aQ)lq(71Z&f>\S~ˈ#JUh%CDMWc-ih6D%)6AjqQe[&S/A6W5xp,q VbLnzM]Dlv+()O'`[;b.jIDQ@2ZGS]|4la5 ^+@7gpM<;WJtY\V"K\!I\R~Uv'0:զmB2/y,}i3:{x)LI  3j=ic;yyl֍ qRpb-L;_1Y.YMo"iSQ.1 pav> u_@]w0ѿxֿb|tWNldDaHW#[~;XkKM/qOɝFͻgǑUuCBQBjٱnW@Llo|6. *8{| "x>yw'Nl߭XC=U-Ks.b9ͼ;IMPEߧ@ȸn4V!/`nt ?ґ{?M`3WGwd!=bx:SJxSUz_9B6왔A7%Մ`\w0NAOwX i1ۊpJ) f} ݷ@NgD?6}J ,@Pc$(/TCAWv=9sWCi\4{X%-87*M@ZE7ܺ>!]&nDPÈm"55vjH)!b\ί!y޲ENWPIҲ &47X? &x{rIe4yB3~5+ͯD6 :*>r^Eo!yV5E1?Uaw,Ko{.FU0achP*>N(BCܠ*Wmmhx^fȀ vV8X%j+eaNگbY >nJ+DzܭL4pf%眖O+hՉ%Q j{4L|Tܹu:앛(| !:Ta 5y`2x c6L_QM<8[i]_Fp`(!Yc^JG<,C>qǎBb'y]?N6cѶ$#0 kld_ КPqK Y,(29}m]T=+6FRGSt服*0a C;Ϡ m;@TaKm^h+Ɋ#TM _R|cxP{LlW8M*ZF8 Ĝ ~ | /*oXkk^?͐Ue_ SOa~W״AtӬvKzzJUAxD7U `m5dsխb]ewqWRȚVi`kF=u$ABO]bsj'|ZA%P\2k- zAWQR"d|w9oOF8C%U6Gh9)[,)EHRP7b OM{] ]95x޴1[5UJB4F_wIoW lqZG/}!HLSd\xLjx=ُiNr!KS sGLyY8c2"xยtn!LqR+4 ;ae.̂y$:wz̹{KR Xt#)wi2p{ (L ce[tBJu?2H|*^^|68Ba/j\P!vSnq߳ b2o@e|Dp;?wO膙dͮPrIhLU`Dg}8vk?IYST$qOq<Ǜ 92Ux5P<߭EOB%ejR@{Wu>,Hl>RmSOh=[ >_4棂hJ,@e_ G+&+rrBQ~_T+Y;pYWqv8m?ʽ^JO2\"70jgGtRYTL% -GO}oibzTBͪqF)_1_l]`U1?-sʩ1.@!c3? }_U cˤ|}W=';dOXoxۦي8cTA4݂tҺ7\OX  ; ,:{M&1ʏ~( a F K& j(qȺZu=­Wg/|ƷRh(K>GJB N?h(@wNP*Q_C!cn;iZJl-Lj Aep9ֶV^ɖz~2i[-+nh[6v$V"8RuZ 皉c)Bw&؋'$Obc95!?)Ӏq#Oe:11?b\f+55WqO0E&(O{ۼrt|~dz "טƔo9^ ĐFI :\tO'`0L9P>ÝmFXyNoSyFYgXJNCͱ͏}ֺt +*v=cW`\| -Su.C|ߢϯ0ǖ/glg.Mكzho[EyEPk:I+K;'Ȱ-TaqiXdYxU v^Wót$)ޏsy*.pG63P?Rv7ٖZ$ZYJdDOyiY=l"31ͻ }{ԆNl^ h3W\f!ʎNG1[6n5i\ CU[gyw1-KOL&h*G qX .9/LgP\0K31 ydzQ q_uz51$`z4[vSw`D#]fb'("~xBO9O 0'Ε!{%-SKe n3#%%ɫlE\ݦ]ڽ4bW7fa/s pTlkyW?q C y U:WH:̍2J^ s*܁HeJVio e8k9KLЫ [b$y|u+iP,?@\I΃IDt`iWٽa%+ܽa, :g}opŘM ̶ar5sIÂ}.l]ZŜXxiIz VY$6I.'@!Mr iG AyR崤EPϥ#ԺJc W\9Z(>X//\uE j<o]3bS]kclPm@y!Pְo`eBx3k} i  42uԳ+E*ܔyV͇JV<b`^EP:U-;ƂdN̕v 7ueYrB6bPڂNNt_pz@#cMT ǫS^=o499,QI+@xܲ>ME$XLh\OYL<`N8nqx͡we'V6?hȚRZ-+9eT&sOw@AY<&XxK+2d6.3D&LÍVt4/had #mn_Ke9'2]+%6&D=L5"M[N` jfԾ=%8Y_#l)l%lS,a,Blo3v3cgܙeCdx#oMd-/DG`h@xV@=;&ł:þ?6S,{II{;YRh8[.,b $|'z4]6\*i @LedTj-RLjNusȯ,!8q:j4ܸFn#i'w&.xp37iּyGX8: okN4Q4u'TBm^}rtQay8)doߏ".ɧ/te/&k(l~vDu$]V΋xCPZm''&&l45+EaeDb1 OQVb+JM ::$[M3HqY Vi}(nqo2@bqhǬBJ6G軐gJ&d!0 e~ӎ%& ]Cҳ ?t[ܣ*Ȥr)!dߡfۗ|4zZe]gnu'aAx#J~em*9sG#{<"wb>[xOYPf7@KϽGDZ#.g0fҽ;?. 4Qu+cȵgϓ ȍ7I>b WRzXw(PEua)qav:iet ;1[K8m_<̴_ˢ:-LAXB[u|B{ GZȏK Lu&9]/kֶq;zkuA~_;w^'GC+#(p =gJj]!dΈ{nD$?"9s5lRC?,5M1sCMxL<04\FV 9K愲=6*;֯{7 &5g~o<>ynTv%4:ʗ \v/.%Dh!3ca4Y}3c%\Ic(>f['= ^\^eEB`r1 ǐGxec;/32%!::3x|:KD>=GYnM岏')%m87EL650v"3$ 2p8:"ϧ6Wh# OJm䚍!JGﲊ%NhjMoQz88-f!zҒJ7 М|G5v̇z&]^B o̭$CI>Q*)E4'q%oSX(91aZ*%f^;!ѐb̉2V)wN*,EbiV Q/aZ A-<_ V$Po7T6+rH@"i IwPMy z$LQǧﵦc<꼌P08Kkz/d`EbzYѪ | o=_ށkF6xd=h(M&΍#w (^VY\c6rI@g"r: fԧfE!il" UG87b\nRA2ًWĚF17HtJ^r 3%GعI+=GeN{nՇGSQajW>;utr"zVsxD=laJ'\ Huw\.n;YO CRs|X;gKnP8ߢqp"BHA8WSoU>΅w +GkbYf܆3I5o9$KfFB=q:"2S$#pp*+jȖHBko7-& S=GԘX~hGm"ֵe*e[ia';U鷰iCS=>8WYx)aJgڔ[+_;([4²A p@u5ь;,a8jDzHȸϛkvgbvۘL1^UAI-t 柂9t (}Zg@?`.9{ h:hVf n MKMq~j-ș2JPpg%# *ٲ5ѯsi XNXϋaʩ}}^ȷ6xC]V3[)Ⱥ;L=av3v!P>w}vyB 7"+ ~ pBǪ-{6z(p((%_q_׵,p|\*?3 On,aGm2x EU<.mͭ ]f0* 4 Ca>>TfSH[Yr0qF%+YI^Lӏ2_ 3x€i6cXVθzqHX.u+ 1qq\E6›\LEþ^;f$U}V04Mx``>P2}N[Lӭ\]]RK 0꛽_##=D¸}47!M{c@Z yܳ߾5P]XK% ODcm7p G4MA 0h}yta&6~^h?;X>!mPə.~\ށ c9" &Y Xkq0\DIH!qb%Xn᥹/ ( T;b6Oo#r"i'tP7] &H#jP-fc\*q*:'$ܤ6$1 :a=mb®)9]s3,eN/7I.~ .h.4-'*F]NQ Jt@ivՋyُQU%Omv+B/QT .c=si 00FA ~(trvqNWݍAmɅLia%wӾc u/CZ߂Avx=T[f>[KnϪ/4g"{NzZk&YKY#B]YNQz 1opA S'7[\숟]WbV6&eAݙGN:.]gmΫ+__Z^A cuMCd 5=-'g_(^SlɳiS;JK<FXF1=NX+jt6TyVLU'J_?UrdTzg ~~\s5Gs)`7nS? <ң  "{H:PDQБ&"IMfrc9YR!pϹF>E#_鏗 GAbΑ!$pٯƃ5߷$jᡧ1\>)QK(bG]"54CxlQ4o!'FU(,fT%00Q+xOf G&BA4ow=$F Y[̡ }?Z|I0UdNBڴѝ@)R;=[^vN݅GuXqdN )5j3#[ ^7yg*,7ys4`0nmH15ju } ĕd#'yTPd6llcQ? wO,rrn 7zqeJ)|H&pGA_S0JĈdW*Hoa| u&b`=T-3^d/8tT~e#xD;Zm"Vz5v)8nW9%R_L5y6KyBfdxv ʴzj zwS'x} >|Yw3 ]2ǰ{ıWdSa|N. 6t3tŒ;> o ;?U&~ ]WEtt ݻ'O뇍fzzDE-tۜ6@Fk%lDh(1Q!7|Y[\eFPz9͉FY=p~ {Q)ā!֑ ̖܎VӍ {'X"1.;@*j< +.jI|GA!BƋX iίnP4%J@ '&)pE)>TԤkKG\ gV_&9m&zͳ4jShb:_pkivNp탚Tth"{TtQO,wB@v47,Wg>ĀUspFD?eo\zkaaJ(/ƅPpqd3] A YKOkE(vȾZnҊ& /y"N xm'(ax84(K4y*Kx7cX`뺨5>3bH٤'v :`' 3*{%C?Rމ~_J hkrLx_kz4vϯ<^ђ8@ ةo5\kuyII(}a' ^*_,S23;{&T,I+S[p7٥ёm# G#Ƈ'&M#.~ wJ{#+!o*D?,ja%U5iPUAGNͳ>C}IKP=qˤEԅJ|G[7×&*%a+jETSRb'b^ݟ0TcMnKM,}27 K&N9CL5s }7'微#.XStz#9)-AH ;b ʃeA10h$Vd;0STzl,2ToZ1D6u "t@Bϱ6vSkώji[k`!r0\Вo;JC))3FD#5I A8T 7xN $2p>U;y.h ~#*Rgmc ݜ!?^d) z[O ○5"¨R%8p6ckaܖDƼ;p3aC<街ɧxuF0 g+2TMj.@mpٶܝ2+Ž܅}B=)B ]p7:wR/gYNe ;.T?F!Jl{ hL(I.c`ݫ}S\"pGK{FSC As.jiȕN 73RDF=!-ITE~*6fCxG׫R]PƩ0 8H3 CRL 5LGEVۄ' {|F !]zB_U9oR!Bfۅ1oRc2q$L |*D3 K8ix9 3+b[uF؜`m[[E%I)3N5|2{PsXND>TRy -z1/&Y:tNˏ8ÏdMrp\Rf=<[j]tw5yWΏЎ/f N u{ꤜMHnNR>Zs bI*QUn^K`ګN3ܶ!'3''#j%iZʧ (J7u$Q"4l(/tT_FnTˉЌ-ͱ 1w8 ѭ};+N+EDV RLBcC;1sٹΔ_ 9}R6[s/<کsͮWOx2\A_QV ^K\ 1%?LE1$R\[&1ۈg`&áu#7k`:ϣ  h3aP xܑHŬ836BM ly:0m%V]XIy-Kٛ ]dD5 >>gc?M_ X>5Gl*J~CsF*%.ti\}Vu+)p;|kLmʶ>I`p|٦sSI8} ֬2XSSH KR3gt'J0&O%147qWo; |@|9:yK~|#4lsgqdK&,l)S-^pgdB۶'@|xJn[Ow1PLYJ7|CIGeV"3B|νYn/vxq!S6[@Ќ. `MXlw7+Lb`dң7>Z2/:(R=/d[FM*NG4TYY1,rM!$- kdrl3rh^ \d8GS/Εx͉Bt+ljYP|Pi>:unȍus]5ImV->@ } /և]l$\3aD,/Ȭvŷڂb&KU~WS3t54~1frRkHfd8ΊĹ粢 ɁA[Vc}ȄR \[9U*)wP zw Hi/AVܱ{vEka tFN#Kja] 4҇wO8emԥv{˓჈ʭЭ/;g1/c%Ȝ}Kڸaѱ6FdA?}mFaϖxq68 d,eLPHp|yPV5jD S~,ä +䛺<ª4ٙͺyIv\xN誱s%1L#3l2А/jHiH,vy?C tD20]}G^%Bzfхdc)٬\=[-go/Fx<$sItaKo?*hdq zAs{x茤lOw9y60.+6 x0CIW<_(AiA,s dfZrCt D^E?ّc:o8 iEGnbQF,5W?*5iZ?bAs"݂Wb^PZ\"tUν-~,YlhyO EK =kR^c$yxi,@ߑ9n"d $tt{i_tY..\`9RYn}N?h諴(J5NADR.N4@)FÒ;hC;+թطz k瓊;L~FD>KNCyr/P <ة8Id1Lp[v}<,1_V'H0l!hr1Rvla PDjD3W^VӃ}]sGlct_z3",<๗FVS~ն8G(lx D6 A,+Mq`-I e[s4V03Kvr+6RGS_]I!ϰ ~T! t;ta} v ܳQK- xL&g2hB#)\lF^3ήN3qgKLHJ%~l/;ὛD9 Tdt8akrȲ./h(OsaðKz\P-}Tnc9͹%S͎"V(.}B ɂIsE] ?S# )M̦b t'Aز=udw<' iIa0KZk}dG %aUnHDptZԑP f4g[茦vaL#d#7$``@hh0Zz_f]D rW>jcYXɒا*9"e֩a-/ J8FQ}1NIW)SpJ cvvpY}U)t5D\u(XI#TLIY&0¼ x>,CLmC݅0<ٳ!Hl X =pso~NJԁ>5F=5aJXP!-P.e'obhmf8U~֭ 킡k}zdnhn Y\bplj2>]aYQm{j BORR esBΜY%3ރ#/qհ BW5}Hʺ8'˼!>}~Bf5grGt^oUj|\'&aYd̲_8,&_Ca!pȖv8y/ >nvW=͚U/g yTbu-#P?hGw;Z]ѯwc8kDa-WG( )7)Os]s 'V]L_i|P&jN^#8Y.^ Ne͚4ZBvkC}Ob;8fc%*t'H.y¥5WH#Nkh ՐsQ.!A\gD8 &7ó[ *sxRG[}̰3`8ĉ$+9YcrD5߲}wݠC r(I8vOǪ579sG^ͧ3CXK6= >CtU2yNt0PU !$G:1գT>>G2jǻ1>ndf\?w& ٳnD`v=2H!N@_3%)n ?~ɅU p+e[FYKYM=h`5x^ оS (oyPIg==h~ M{GtWKLwDv48}^xHTOqQZ v-ݪvt@=vHQ6bS͗*uJP(vdGܚ7`__4HJ]rWaVYg"OAH LՔ -?l|g !Ok0tifQ7K(H$W]/1{?79Ϟ5 ;^oc$vʇׅ[ hȻ6=eʔ-F;d];h4OY:'Bc<cgEe%joq{,`[!h 5n-싹y>_(f0e@Za)Ÿo{R۸ Au?N ) k YɾF]Q]Go.V\3 wbh:Hge`eք9NE "RQeC@^$`m= 1~,` 7g f0[rec;eQEMYᬶF:TH@oCQoDs2>Z|si³WFf9Gv8<{ZV&OU~Uhk#]d3u(X]I]"Ѭl1ĦޞKniM{9*&R[ Ş({sZ]d&壧']Կ#k]1&#, {gmHNKgVXFm > 4L+pb>k ߭*G|5ź|+BByI0Q n5r@̴Jwtf BNUOv=ʯ(7RC$ TSH$}GΉ#TV9uc:+[gY!'`| uOuPj& .JS )M*3zM^V*GpI->B~ ٦xT}7FNJx~Wf p]LB裀@3$%r4S)+ǓVYꇱU՜ Ki[;DMo ϸ֜=F6owXdKD:r}a#¾ePխmr8hǹ;YPddv8"3.Bp@06]bQu/O-^CJdy} d9 3P@Rف#8aWftYoK y0XN.JR}Ľ1<AN<%:iYRQ1âsYX`Ū@sDtegԫeY9=jM%0kF4! @p*;f073>x p55gɱP}9f̟cFEcP"WGff)޲DY9(7Å|v9@CYw+'A ٠08d˓@',c: EsbYAAT FTul8.stg]MQq J`rC Ӝ%jluWĤl`U  JٛX{A6s]pਣL}zyܽ*} ^*%jU1X\?ec}NJdR*\-B5#L(FM,{WL 3é^qF[گ_'{`Pj Ǟ5YEZl:Ɖ޾V{I"*O:*#˕=ڎ aPb|+D9׋o.F%-2k>/j0W(P8beB;B*4wp\/mQ9 D|xZ̿n\ K~)ao| 6d%+ ES‹RF#K5 =ۼ>{oP\l1|;1OI>L!Z+N');@|J#A#J߼rp7aD!ņßVt{ )ltD`8NU`FXKw= r,Wrf0.Ok8p,L]xVC@QAzԁm{tqu ?k!ԕkVf6s/.r'سKV"Ӛ A895ޡ0Sy'X7gp9,*'~ݱ[m3y؈w d}h4}riR`}68zYT4 Jo;Dk@|[ZMC^tbx,sBlr@%Gi .C)z_,='o8*b{ø%l3,e& -; kB~S&h`M3l\r WYU"G>KrK5޹@3 \);5;kwq/b% E6F/o2uq7v-ε=-³=ήO Ͽ O x0FOU"{0Qn\B4ɗ&KfM_*,[ n~+h/NLtjFrqI$E,Qx2xUX#Gud%ljJrW6>)us I@ipmuPR2s+:/(r6gq!Cv= G51: Ъf2M&讨:` TiWԏwU5&f,=bzp<{hlcHH]:Ñ I45|M_`o( oJU45ۦH>ݺrWХU.`$mjJ!6'O:$5̺zHfo0}L_ӱgywEZz}wbFdf\KwSLz5B9lw!g'U#(/& gH7Yp/ݐnb>%\t%OG/o Y$%ԟ4z+;4iFqA/'^鰈2%7fYvlEVƨY*MhX@lVf̋I FdjO|'Z_;{$dW,}|W 1UIEVs367fcTk(d,sAdM G>q`v % N< _7^`ŸDbR-~mڼYɅuk&3jlз1Ӷ42<^Lɽ/;ؘ0ݱY}lJ=9sݜpkr_md0nr :ìQ,^М]|"C`<[uie&=H2`ܜѲgH”~ɲ&~cR;w[VCU~ݣB+?8Z/+hȷN^[F] }Yr%LEHJcoۧU\9 D.L鈛& 7P4ut oηU,y+>/<ݎp)bɇi䎺?nTʼnh Sv]{XOp = HTWLUhc|Aڙ{ukygMm @iU9ݽ49-_2\ S\^mTQ3W+YZU¦m  \܊cB]񶅚=7`vwOkt%@ 3\mULr1jN˙:IuQP=0?dcmF,4pqN] Ac 5 }mChλ鬣QtIW-}'L CzQʆ!meC@e"u8tܗ4~K3X&Ah³^$Es }srԔm;WY92cNΖf7-v~=Mz ]Xt<Ɠ PMđ0wsH%AwQHו5!INfn]<-\u@mwE1(3i(8 gLXZ2 4' Ep k"NXSp  ӗc_UFfFTTrl'>t Ф}>3{%7Ӫ͞Th/j㔕Tu6 P e7Nz }rϽoyFK_Lhn>bQ$83ɢt2&%s1]¡:@ߓ A}ZT!~wRyz xtIdž;>Q1uR>NM&uV,(`5_A~d${4%0lcZ:;k;%r 4kӿvi,-8=}:(CϑTh  <4و*iMLl1 ,(x=Zlqv,0`12d/;d\dl kek"[A7;ii= b7jlNM#q~5 7`kKB`lٕ?%S.D=\"+,Z&SpV O"p4{+Y(paNN&ozf q0~c.`4*.!oǫYcMJgŰ'WCx44Ɂ8ZoLH`7^s`N).,xG _;.џ\*yyć>p9&yO87D0y+= B>.T.{.ġWnQrl(`}ѧ14-Mxk/,<gL;j|nt WUe#n rz!P YlD8mJA#@WX`@[re4^QżiGRy2y\/t\x K0ӟ|!;&0y[ x)JCEZ؎@ ?Qc

5;ќE$"ʞ?)i2fbY tȥkLh̎?krȣ!|pŒuP(BmtiY.Lh^iؑP, : []Q'1ZZz^ {dƽ",g.;^,&y#Bq O?*Tsט\?8*pr˫RXQ'Zm61RRٳO|p\@~ :dOdC񪻶!@ b(0S va/?^ՆSY*!\kuE瞖BW4컼'3^/On/ ˲hإ3Lf]i7^80:jNdQq06nÏ5;s2Yz̋YHOTÑ/q?ƛaiW` =( t,.4i3y9BJw>CJ ES @}6.ND;ESWonzgc٠ x>Pƌ:H{N)u ~꜊֭1;-[Cb9h~ xZz5騌U1>ϲ*puJ*V_"mfh) 6/'zZIҊD=: d,$[RgM }>\5s4?F+,A͔3$W1+r޶$&FA~ cY~b!u^6V_(E{́(-ibfUb\orP`%vQsO}o V$EZyT!re Oޑ̛/*Ձdy"ph(̖h]pNA،qth&ݮpa+ 9N!CvEB)}n56FEHdpdW[KXgXVhֽ`4du{ew'iZrXޜ^jfonLL,O=;y/O{œ!BaS YGC[K$ Ina-\"SH .ǘ/Z)ZYNai/M83X 1>~ѯ 4R\̀E1?CP,Rh.Lױ-%O eR,Blg[w*CKY.86d&vHSAl٢qo㧛; D"#|Y (*H?ha g (uqϥ&P7H?Yi0ĥ}2&,:wOH(B˅ËL*Vg&`A<5vgޅX.X$ qfv5c":cn屛4DޠIrwPv@VcjbXH&eKP9_={)\х!_j7vjvvWh >U|SzJJWZr/סڒ^( {5s.-I-]:]% e8g*^X]VۻJd&A( ;ER e,B'ؠV@j-rn]f75H^4@3  2a[P=4#O6d}|r4K93,39V:t?rtH]; X^={RU!wzS΋!_0+ZʭRBK^,Äؕb1PiuvA xh`I99c!zط|!oͩAOWz7W nbsk14/v|ѕܹ/䤺7#bwʌWHhF~:ƫڒ,[ʤqK1EG) F͸C=q&4膡eƃ4zK[5YjrocˏE^;.ljwKi}>n3wN MEl?ayU⼰YcA BTwRKYbMe-/?ϛ-EAB=+<όRx'eGNw@KUT 9R%JW \=ձh`cm'q־|CHC 9(s.q!zU.,"蝒l}Ҵ&Aa|lCdj@'2w#4>xpʺ$y>Z%cY;wjqݹLaQ7;hcJl&zf"\NsGwJbQbTdfk=iҞ]G9#J3 ú2'Wb9H"]BV8gܛŧe>Dޭ:SS)ñ])Ԧ^.p:+{ϨPÂ8Fn ,kR/Q2O48"S|ۥ2bE^%])v̤3x%V7k9rYˡr/.GHkwƂ3*Lj@Uap{xcY_j(s$K~ 3.iԽN0c{a%o^2j܊L\o+)5Z [(&wM1h0NZ?سp"D9W"PB׋aNr=1 D8Q;p>ٙӉASxD7`V: r8x8hhAPSXtH`hc$8?b=6rX;<3ݶ?5Лܮ29'ڋ.6ZCk6 qrII%$5912ȵ]!k.(‘c1_^8ڄ /}(b@_) ^#.;{P`& r(kNث8S݁P/yM6G%%)zH^P$B,T`X2r 9W .+IdW_.҄O}6H2 lr =@R2>+wa^6™|w?>6^VdV(*ALwk?b@  _| -&I%f|F^ MApKd=]ZlW cE|:p0NHM0GL(z=ڱfPi{(55krG@W$ 35@.Lc,ED[ĭ^ך)+<_,jk)JM>#mwqcwzI $+>*UaD+G렏M;+xQ~t%f<ҺR.oS? хOK" (ߚ <9g"?QkXa{!0%nEnIC%"q{)N:Z-?2)^ՄG;k;D ߉CqV"\@"p/%eg 6 Re$+~TŇj4'ӽQ4j̑!%%]]"LS1H] c`~j Ԇg!d_7F b&r8$\I~2_gr!_,8TqQ4P#)8KL]^S ͕/6կwO<oIq{U\hDkn[fL1O՝ 1ly>v8My>,a]{ B3,u9ib!L=,qs{Cq>tm9Dy?'Ib߭wkD;tۧt>d %\'ѴFUNzQ 1 pJ5v*3Qhu30qڶe…ȞWn(]Juk7ĥ_+"ʺFEh E=GCjwX ǬzIE=ؠB?>! ʉB41=!gz"#[;eFdFLmij>Г `7M@OS6',g `l,no¶:M)|wAg"R<.P$ptj_Jwk1Lϧ71Đ[1L7=f^c.w '[ǖj0x50_Z"&ΡS,arWk~$#i2;8-w XHAj.仱U~O[tC8^6gsGg,,ww>*s8A"…X)}$lQzc4#v69jFi I(kAqʵ4 OxpѹzƅZ.]P5]Lq8q cޠ]k/$e sWz^zń&! ?;lctwot&d\3A>Y2 iUDĹH0[IHBԒرDkZgt 3zˋMJGx~LW ><4ZǡM9k9)caQs)ݩï8H ]]>[h=Tg/kK<q-/8iKu 4a_0^n2gy(`YMO2lIn˱ІhƓM" X+G(D z)[Vƈ1}4(=5R`di*Rՙf״Dƌy1|\ֵ4w GkgknK, Vm+cCy{nC?@;P\^aӟOm[Qs"ןxO=cpͼAǦi{^Kjp>!>9NBC d0jr?.*_B|_;4^ j@yasۯ}Mɜ;d[!v36ܛϏRS ˷ONEO[֘)US~Nhm YQ\<_Z~peN}{Ou,*5h"B8` Db}y74al*$VI;i"X%zP3lAGZ.JSQL6tm(ؿ$Zطݬ "Ra8pˀC[> B䳬GXGy)f{Hruu"V?<e?~1tn @GL#;M#]N9(>R>[%dƌYh#WSTv`%+LeΉSPAS̵ ;F^SFUn֖UFh'&A(-jT/_fp S۾󼼏8o>N왼HUyP99\jS! N "-Z[`1Zt,#SآrzI#k*r(e -#Bd4 hڜbĠW"w!1N<%̼;YAٚk0՘.syH]MS,`R߹F֔'n݇q9hN))޳ qK* >P6F% ^@x?m5\>l/Hϰ@TVu};?2g/qNPXR;>JzEἔ*εԱ_p "-}RD~~^4ą!GHټrB&7I{$:8+h4bhX9jXkWsǕK85-&GX^~L[k,߄xQfs4!lLǯfa.um =cĉf l~߫mWD% Ua.|Y>OQ&fz3 "OrY# R+e˧ajdҬؔlYrWh\@z\0[wq=BTcU*b/+Cj^#gF#4i;Y[yF!Ky#lu .Ԇ;|G>-^lPBHCTkTnoO+xٜ[uHĄ:.;BD~FPdVa4UF6icj충M0.|"݄Jy*&.[{m.`Yr&6I͏nDnm죠pGׅ ;ĺh.f}xO'&X|a?Ba. yZ;^vLBpYK/y!'7xH%D["C%`;Y<,KxzUV6{(\D㡍컦?fPGgY #f bafUJ7sϼvtJIf]  ^Ep t s8gJ*2Ĩn=P0I7Ž85#"=z)I oէ.dK-=g{،L1 F[b#6(؍D4}0?+a77V&Q5~y ޡT}'L\b fW^oS|U<]?=q^ %sYqrG5Ye>zB "ewhn0ܺs4h`zJq8@p;){}N(x_UKAAFa)'| OCvBWQ 0LeHyKh rW[ޚA8 } ē&Z6 ,7dfVz~ͨ*EA|1&GV4#C\p }|DXM3|.%7\ܮ3Kq?5 jXuf aZ,0+tڿѳ^qR478zY+WK(mmkLz ok*Ʉ1@'}; 5wmݑxy嵶~][,=l _VWӅ.#- !s֫ -/I=j/^0Ι<7%?߯?@#w 2sF+62Kho#dHR%SU]AԀG}c$)'ީmTх 0y/4TOT4 xAĖDp &imTN!Zl5QF)X2گ >)>Ah)jgeCKIzئ Ac% Aa+2+)@d_gDpE$Db"_27[PER\K[!Z%sҏn(dHb FٰJ+ õ;'Xt ķ8u]Ȍe~[AyhD<j]u! BYX6=ްMnyzto0\o}ٔz=L ٩W'Jԏ=@ j%ZI;X0r_i@rЁ1jat+OyXli K\]C(2ZHcpܿ ~y}6'ͣ@M<900?oQsMS,FH#}_/\eTETᣝ'gDqk*O3Llx kt9qN\\ObB盄M~@h˒X r}5x/8DHgd$McK*rj=@McD|Ϸ~Xbޜgǹ<|y&8hJ|<@2K4CbD|tQNf!ن$x.HSshi9#|1oTq2YBG?Qh:d R> s23%\&FjM,Ea !;>C+ė#~w@bcYul@.0I{ +F́"fKf)+#mWtﮡEF XRQ.'#w'8A1h\!NeI4b9-`cDܟ3shBc)tV`pGq]n29q5UjyC/lkgbnh./^ĉigjxO *%AESgDˆeވJҘHNqb} #敇y7"E4ʏig,$g$dՋn p%PiYTb:8 0B}ێ,WJIOD;^87RR=c2@@:o+7oWq(4srѻnuM`d+g0<%zc<&.io~wt6|ES]Եt.]lCZz7?1?m2ڞ,X0=Cajb+w^UIsma>ZiůȐvhsOhu UXWST OEٚ{mXjhF7-o޵wqUtp'RRAx7u'673\[cM JpOeX Tv" y1kJP] \dy-z(3x!Q6{brV]`}9דQ9E^xn75GYPd1//GLLh#Ƌ=B,Op {g<9{NF$طK۴>@^t-BM'AI>WL*%npf~ٮؖGT#̔sPcڷ?+͓G{5Rc7zymj}41*:wQߏRAOfM6ND/z>T?~{I4nw0?-(4FL 2/̧<Z!7iݟ3Q+3%-q~0aK`C_GK;B$4H+F\:C6L/t؋ITjf0X2GT?T_۳$ w?lf%86lyk#l1~XvZhO30& ?Ԅ+Ċ![xj׌1BxX '9jZeZtB`'|cs64K';ߣ OJ]xwjZw{jiIvf'O /*wBB^c eX͛B2 3P/{Az!њH'C '咗d%|پ82ei8Fe we2hzCa`y{'X*hvRB{r=fsymVQ/ 2g͎XԀ[7yt;LJD=^XV(h-m1OŨN}d / |/A~}]NR֠rٰOZVP+ؿTtԺ {[;G]Oe.G GojlK,Wk/S Oוɹij]'W_pTa؋e[3s؍x;>UY&:^rE *IsX4 @X4D߼ÔFz׾N$ q.QQ l[z?ۢi`K)as_# u,qroX`TU_ЃoBP-o_S=VCrd#ob%Y9rzj2=oǑ'gh5GzBA JgpirZ֧q.ڸE,"/|tuڑf x[9K޵0P >(cY7*nlԥqWӨ}[Gk &KR3H{Xre4`'9.t&ᆝ#R_Ȕ*q+^Ed(MKJz9c#+ 䚼g{?WV.8탭`,<SL -"~}*?jQ4Nr'QyihP GV(n㾪vOkU琈lƘ7rjT!%< sYAP6MŸXߕlՋW0X-`4Ӹ/aZœ0D>*$?ѵ#Ҫ ډ:Ds@%{pDekÊDBERڱ )mggUҝ7 הb y@'`A}]];ėi./֋ hŋ4D 9`~Mo@Bx:J:A\̝\xt'2j0UUSN=r{~ÅguOO e;B2Վ˃Q9ٮO`cvs!(C G+ꦅUP eʄ xa+ۦPgb-)5Tˌa"ߢŗ eЅ\7GEq?F7|1xk鄣^CW">6Nfy~_CƝ\"QYudzB Dn{K}s ǎ. Ӹ|h7W!>e|L/WI)K4htL$$S3Mo(]j@oݸtiKE/ߗx͙4xhux7.dAO @Ju Sr/Ψ,VYiLO4G.pǶRu.=$ =_tתf#{LURKp dE �ZvO5,+fq{؊^|\ I.@JԋMo")TRN2KܕN4W_zfm6NM4N2wNʫ&+6넦Y*Lðeor~0 h-Ӵt $ܽqCT˂/s&Bv?JxT2Sv"N`b7~q~^(MJ{& ?Jql|e(~*KM# `Nz3g;kڏi:_ENg^jd-PedN+'\$n0;Xy|5. C|v^LBﲃzk'F|袓 ) yߥ!xh`1S;9?ëkpM$.`L;XBypYIb  0 &`'ʵk9w>"晫-&xF';I>uP ˪֤8%9TT+КKX'DVWg+o1.E i|oQo8jT/&89|%%DiK,`8' ?lY5ƴIۛqA+%Y@(Ф {ο XY8S٣& 71brIcp2Hk*Ջ16z2XHAGK!^%_=ͷa=;< ;)O 9IzL,0 M*:_Ulڟ=z's+ؿ}n0ѶI9odsQRĉ̜`ɗޥfd?^ K=[Z8 rG>瓴m5ˬe %Ta74n@R^>qV8M|1.X"+ %A(4uRtYg[U"A|ꝡggZrzkK3t\Hj6;%}EάA`[zwNpAzNV{"rC[7o`W7'kkTD.Sj}pڈ5ƧdNi)՛*>$V UhȂACǗ]-PXѾn,Lw`$,f)NY#;f3)Fs|s-φ b9/^bkڻ$ _%\`މcRqA G 5ʞ/\_:impvMrTp-NV:ݹ z:Žs+$/oimË (\oI//.!mbr8J`k[M ^{_:Ç*2=CH32Ewl vn<."w]$LwW NѺbkn)[0CjœltZDieNLXo&Z/WOŬ,E4OEMZ傺årʴfP.Oxy8* -^د;*:dɡ9`hSm' ,GHjZy]T\dəyˆj0/X}HT_gl ! <_!S4ShyK vyXӮ@A՛-@:emscyRK,JG}`S={DX&|H,'i$ 4K#ʤY s-˺okHq(P+i ZAl%̕ M2/rxOi쟱 vitCVj+e%!S%o$LwFe>"P {z~kLiSm+8B<Ԓ V{qbHiqRI >nqgd,y=yWbŕq"BO@SYqkc 䩃m Ƽ GxpN{umwgg*ӀD>I B/un:]wnA6; `FɌg*@X^Eŋe^{y1Ļ;D{=%^v2J֚UD78Հ]}a7eː!/eKn.rzAS Lf Z6MO2 ,2*Y#X[L @St~bUbu76znAҹfEYg T!uT 6%);.;xF{lu Ne͂ree'`AN nO0^W|yy=ʂ)DfeݝCS~x;?R J2׸-BG4a_<![ U&C= :?z-ti5P Q ^, !)b;#1Hs~y,Յ  MD(vϓA;#^|)rqNuSJȧW8\15"`O^+yjBt)y)]APآpDbTt)zz-y%$% m,rnuFDv rsdpk·PZ_q0.cÍ(l(Su <1&eR7=IM=ABgk|#ڧ*&q.iNQ"`@$Zs4{q Ak(6\^Ԅᇊ ^ydz3#@t(oFҒnMӼA3{[Ep LR2n=pwV9rÜPr]qZTKQ 3e_yC)@%INVnGDPU;lI9%;{{OWF;yǿmO, #s@`2om/)7wo.vf 4A#2V͒@Gbɣ3`#)t| ita%HdABx6G CB &7>H }h\wWLFT0VBkt V!5- hGPjicnE܍]h3a] pnџ*Pa2۶w=]R(>,%VxXKX;78bivAnX=oYKe:L |u,PXp5"){.\ \JQJ9{! :.!{겤^햢zRVe9=R~Ty6̊uyUUPK]3p|fL'vqօ֎fe>@ƍm oC->Nzhx#5l',mNypwZOzxAcT,W !Q4~o3nص[Xځ J W7;Y@>uzMKt-fN?;o%A$10̰uo0pPҖ\T\L\t`UhlBF \h'zڼՆPk0CqV+t@ _b+/ՉaP|ҖQۨ=;7Y񩋶Ĭ Sham~n$c7J̭褜of?w*_D@ j\Jʎ1j3BQդ?SJ&!N @'C:/W-G8 YPސW mE19PX)̱,[ 7<;a7}3*glnb=չ%r^7xHl dU;A2Ngtr!eJ Itnd"5P/Zѐ*wJp6u <|~eE?ⴙT; HA$9u e6OfAI"zbaJS)I1'Th˼=#ǝ**id\ <άpMYK m5;!Z0~~pn澕ta9L~A!ZPTKw?AD >%@/W؇P^>:^n+&aò%6ͧwI8@Š> \!=~1v dmN`@ 41cRrsZ$2Mi4濧"~⧮ֳ_CN #A@ *ƃ3 'gVhpʦDqi0HCZ Qq -*X}0pjc|ؠb8L S6:$E]yNs}י:y̘``%:gZqVhdaf@F ҅*cL e0#Ky4T;= #- zAD/,tm{7Q|z^`}"t ,|ְ^dW66;m~) U'5,J8+9/ n 3CC%sMb>4a ;s Jјg$;՝50`\8Aqwm|Qe{cVTK$DwfmuP[M }pF塞.4hli)8 \)Qto}+u&.'؍Ǥ:;di)@ D#/r(Lqgv`p9ʧ#E4f%*ɋ WG r97HrޙDAN񻰊)MInbE#MoV w?ɱiL"oc@}E03(tN G>å.[f ? _ñ#r¯i*_+O^!SQW$&.Ͱ7EcklMlIgx~쬷1$Q"T9.גYxveeOޡ'p;a.>_UdStaO?![ՙ`u'(6u^7AOq~.=Uo&2 =m݋h,Kv<視+ E&Kr`V ~@UV%vScbOZJge)w?56&gtzźG㗉xA G{7W$r!l J@=&!`C|x/PMv;(C+DS&BUU?j [-}q\SLcXEA@HVG4ڃj&[^Jʵ6Q, V87ϬB4藹(nkô57$|v(BEYNAPIҽh2vữyGVH1RmFtGe߿=+JG&hrz:uLCTiR(a sO%\%xO)72o&eX^1wЎ4+4]A4`1B+#n~xK&j^Fk5 U}>+46{)m@Dq pwNWwwK$A *՞Q]wXk[ /[~ 5ײ #iA9V9jJYECuP*0*E/H!bZ$UD|,_7+͸} Odn_~Љ6.sqlcxGH%hY"kHd7+cgVTK:ɂ` /'M.LaDLRh?jVMJ`i,m( ML:bRJ9c8>n.PRa0jX c tn87lUtx+DW'Q :'ҲBV \}\AqǕLEgd>`H]f-ao1j@T~kߠ}.Nڭgnӓ'owz v 1?їq]˶5iA <&hF 4hQIXш" 917}j&=f,SjŒ:|IȆ90촲cbƄA#89w0Xb-P5vb6yGC!}i˩D+na5~'-6S=QG5V JB>16}Ku?~ڢ鰃`J` 9\l+ uVX!eЩb)}{cm\yC ǏP0OʬJLjcn9,UC`Lzu|?4)FՓz&Z~Ă+@@Q"ZH< hf7"ZP,>#aTzoP@H2{ѝwaʙԉ0NKUBnmb- ,5(t?,s "sVgimc~,VHdRuU@)oԹ%vj1 &NENt c2O.a~:59d10C$I6Iե+1nxުɁ:m_'L1)CW)x7H!ߌKޣ>KCh,Bs6`MW77ch-麜@bj/$Iv_P\_'bd-7 \l])U]l{NW=ggP(M۹Otu-35*QF2 YufF$nUduq-HmhH`MUeȿBжw8UH.wD˧v^ 5A(6 }p/)dB"ROJE#Jns?:)|.T_Q^rjG>QR [/"bc!O*ll.zR ^,XQrTc^ievrV{M_NiX4YBE7X$!aYª㬐X+V |f1~)e'ZQrwؖ?%4ߛzӷu/DD'j6DD}c0 #2}PYg'z$OP$Z}#-;l +,$oAв<_\x D` )Mۥgr*8V_D%,mTO&B45ng+A4o&2{eIykWDA ?GN^X_&86ʭجRK poө&AYA#(\/]7P ]תUi2W)F&NJ8t( 4 =PXmj7*` v~L3Xjg .Js Ж84$^mWP۽ j+4=EPU;RdcCD A sxE"{A(f*"$GK=a6b^3Vث{t*=։HkՊ3[ϓBjc&F֩ VhQ^gHTmv?Y=$ADHN.( $z $M*ݢl'#qu]U5]0 h76koiwG>\RCɇzUw1b˄f%j m"ȁ kϲX[$-TZ_KHز#zaP|Xn';/^Vg]ݿ=&++m,"W[AN"ѵ2#x6}~wOZ?Xۮ--Pq^FR2̟ȳ:||,` -hMY"YGS6!+ɳE%ʚUhuEj87=[2Ȧ DhO3-;\_d*8¹?͟j'>mv8u=['ŴUis )= h߀_`4?zV1|S" Yu{`7 Ƭ*FT'g&Ic$ o;;Wu@N1L/q[z#LhʕKhm'G^l!gE ?Y+|7ky#e#+wʯ,Z 4 Pq[A[FQqd. #ⴧnl>AjkgWIgJ2qh5v-;Y09e?3(SD䠏n=%@0vD3#gT$qW^.mJS}pBAĆN„jP&L\c '] "N_Ľ`w@,L;F(cm=!+;GE#6_,X)DE=*+,Wp|BW438PwY"iEKg]L-c9"Bnm|'9-yŴ+"ɇ|U@; dƥDg_mg~LCFҁ_aם:"~|W]M0 9 8c`6DLԂ^ʨot݁!WRdPsk$Unj*NEΗ_gw6bU-O3!q#s!m()LUPY,U =ew}~Kۘ̈eUj/fվ&!Ua3u,c  P ֥ՐDEZ0O`eb% #ʵО9r uwu : l:Ij|T`?kĮ_v(ijHeO8 k0.ʱH]2=XJg}0p5U0[7]v f@(UQ튤}B@YdW)(D6!vBxsp2Ń>E=u2)7JYW`Hm|y*pO%Г>_v>Z7@(d@TJR %ZЖ&ѣ0A9b\%l㼝x>4L/pq%rdcE.aLㇲ8oN|4s9-u0|FWm9$d9{mk?+r7 p,Rؚ&j*J$n  \ U96eu!Cwl$4 DKiq9שc|1Fd55P d]\,dg$o;S O5"?N,1t&ww~ س2y8C #s}{o%HSQ pkK,I45sYwSh>-7| BdϟH{HX@G'ԷjsLq N 1L98XN^ ѲVN*r6Ijsr v&|lIN"=}!_]1ECA+R);P83􏗝xAS)2 .wgD?,*]n%Kc<7cllg^0vDOGɆ>nNxcQ!rUBf^3Ov8+Ӽ9X,ӸC7E*val,k`, 2`pZϼtU=?mNZedhIuϭ> "k`dI@p3C\@$_4vů(ps"!D $Vg3\c3r\>8k3 p֟v/!G kQXdy$c(f̋0v^/A˖qcO\6n&Mwr^l^ T85B K@./HZ^;~s PhV.Ӗ ڥ2~h쨵񿃅U +YL`2^.qxa׬ +1}6B/@T +5+3Fy4>o]BBUd?^$z.4!xMM?†/zFаQbכ{GYNߙƖɨVf(喓a0Ln0}m9.;~@ۅSVDYh`5BcyV$u8'^ ?2)M vwLѶtKä-"=K[[;y|>Ĝ:6wvA(Y@s+v1M,i~j?-9ރRRDW)} V&}sӺcX8ow(y4FPm 7ȱf P!Q+2bYՂ.Cpϋi9@-0xƕF %b8m˿T~ {MdI i5oX_8wd_r,s-ݘVP"(ip {s$?Bɝԩd%5*ʍ[fXX47TYdTSI6FQ7$CPQ'DTԸ æhQy(Z} FKOkchcXUf<հ˷~Nݘsb'%^}6\h6&)Zj ENp{ z?pzH'I6tHɇA,>|K^XaL'zofR)ZodkKI:$NḠm(HW1[*&iNnRF-Ɍ)}$LqW8ܑAFpG>+p? ^!BFԴt6 ٶ&jh`XBwБ?|18M/w#뻃X xoC痨fJ#_fA|\7Ft}CD")vk x:eLijȜ810b Vo1onȫ:m 'AD{x@xʹ\<νV$\?/0T@V>]?>U?X};6 t~ǣ091g H&/mxov0̄a<K'W$ǖ-Et>El=Ap0lzPf񎹢Wi^q3A Nprݭ|0AwɂhB?/)p"tnqZ݊rQG>;;e2{_URNZ,3nעΣz@"tJ_M"dG\= Ǘ58I8._,#kh{BAWCNgym%G@$9c /ehy> z%BQ- 4!_#Ul]A;=` TfhCWG[j%יr[cX`Y84; d^lu., `zkJg^:\mB PV O;:^fv.j ꀕ%yĦwn`Y&}cvzi0nWoBlf )6?LَJ)VǑubfKGH>,G{$^;RN=kmc::/[hKŋZTqƖ m'P nO4Zj h2 ׇ2u:1 wSK]c]5SrL׸Uotfvr8~nݝXN+ڳ2j2`7ѱ E1̎uc_ %^I @ĸ E9,kyd'h7"*#yk j|˩Fװ`r*kgĹdfDb$C9}a% 9eAђhl+ ؙ@:o9Xgl7axR=UDdGٰmOl' \̄t0y[`D9+o~S"[r-Wź :IDChFɤ/WKp9'^94«%Y:e=UUu:p`l>uJ#^D Cb 1}^;CMrf~F-3|Y)z}։xC┭Rǔ~QlX?}& @/ sTʱqs'$p̯T3dLl%ar9Ͻk x[`xw'lȍ}u[i/Q-^qb_bY1jLcA3<(>PCB{uy'7,y5k=sEw1D9!g,v;_wcr_84s3ayNkx ȇ'!5Aϡ;_V arfl1@U، VqBJyϹUsX,v5YA6LWΠ67{eljG~3<1./2Xd dO}R0g)]w==~h c2ii8yM > Mdnq]~{_ȋl'e6L윔-Y9~dB/p`l c:$iUMe2,g IsC @,o_FzKb oX tKXBNL~k),535%Az/_WfgC<]_ioL՜ϩGAIY/XsZjީ!D2,v^]pJL]̞02'ĻK tp[RebHeV:aRdJ\`TdvN3e<վѧh4Bɍy*ScrMb3=plќH%Gg bl ML.\eOi`)h).~!zϏ5oMKߗF))#}"Qc҈i<9|`(T&u2b[ $H7)g+4t`T2FCayUߞ~P~*zf ;g&SMvoN"㹶vdIxZ^gX>k)NT1+! :#~0Wip7/t1KNbݤOAI)xqxd2Rsx>%I.2zS'w' *kԵl_dk? 6DVtsx39u(s&YRTzGKUɢ#7Tr}LH,6h"| W0\#&;(ZW 7\`&DP7%CmQvTHW 0t]IMk0O%f\PYmTh`/2x,lqHmsupJO-l2z?OmSVq%0kz41('J2Y8I2|ѭ-֌@-0m$ vΈTԧH9n@i{Y^ bn YLp&#Ӝa5x򎏹6z)Y}"ֶ~rT[:R(y{bXX?({F)d?奰ˆyzq2Mm}~n§.&'U>9̨؊<RRPh_ dh4\c.JTgT1z_/ϹN'% _ݔf81L#ɬ1PiDLhəZ?+ U%rŅ\Yq4UaN?",ouy*o1Zg=M=(5^$ɍyO t?Y#43Qq8gG6l%BVKؿܵW BQC+?: G{sU;mЯ} j{!IeCo.~I/L%i G6^5]<$b[Jt?r=; l? ;{`"+RxjBx0sVo o*gnf#eO(zA bU(mD c`bh4}FFy3FKw6^ nU$~O3>}SbBGOmQ%%t}V2iɿ,O""..(4NIX|sq@A|o++jΉhd[ C*!?a8V݉.ЍA!=w+!y 퇚-3'"gk'\ed! xMYq1g۷}&p [^ 8' ݵnW6. ONSVܔK@_)?hGJY鲽my3Bmec# =m/\͠>7 jA ц!*;uQhgR{&5!{X IK`l@{z wjZsc;]{.GtUFz;#a TEM*b֞-]gtʁ<)WT W49 lc2G&h|[~ҝ +` I|(}>̅:[^0w"CiU &N*FL#{w,^;fQF3A1:\|[zpl~T&_2$&'!!p GM[JO> I9z=URu㓙v 8hv|jHa1R2+if7^Xiy업$ '%h>Hz2{X$lټ3V:٧){OR"lceTd(5[ F){!cX*нǹ:cU)BI|dPcwAUC+OWn,,Ɗ{?`-M1+OZ7Q)tA5ŒJ|)z+&UɛC\ i)nS/c!NTܛhѯ>_ 4 Atx ; F춲8B3ټiƣ_avZ닎DXGN+눬.<tq:ʸD\16 Y.лB)T <]2Kj9ifK?="G lx?%4y5&? HuWƳ$v+97~ ֪}~0 nh1˃v= cʫ7?Ӟ8M!8ɕHˀ!N+L#>(!<~Z XXQb6^O$4\~o_B&~^jEJG<\QFB(K4E`RYn ܈)Nw.CDf *&^FDu uuv!)\q+^P@@nٝȳC.]ACÌ|ר^.maWT\0oY)<x XN(ee@& }f: 31s33[9@O!-+WzAπ-X?,>dz/>(C7o*qSufp}JF2iz1cpq!sB@De9'nCN44$?o1oIAٛsZTH\1 9EMSęߤӟg)v{-U"K!-6 _xtDCJ_(Jm =!9Erep!B >>>y =M~ݦ]mV;% ;'(c'F!T U‰='fޟ_|_(<[7 8B`Ho KZ=#Pa9u}JrI{$zFϨ91(-=5y\o#%I[~fd+h.F! 'DOX xb '|7HAwaTIyöp.z٢-Zk KoA_h7hؼ6mG%U3O_U1@e&$W,Ĉ(GB"dw}\( PD!ۏjDh*~tAʬF`8d3,u1}H!GȞC4v&Y${@LcKJq>uԞYtJ QPb{Sj|)C,7h_aH)43#~DcN;Ey}H!W&K1ҁTE[4[d@p9nV&,CPtc% wn'" Ų/ CsTLgV'4O/a8 *٬BG͢uL' m93l+Y{6[J3>J@}oWr;uj#\"!Ay8 f'6%y˽2~HSK_S*t=}O :P70u)!̐}Cq߭2@j s8o?,LϱdQsH=7S_}BXV|bS 5EujJaǤY G%åjK|H">_!CEkmKv _[di8P 4<1k#59.yil4 rLYh= `:[3\ơC7o) t+!0RS eБlcn< joH5@ƬWp3+ԉhO[4?wv︎#OBdk"2rRzd>-J)vUۿ،2[8}LCDs۲fbbY\ IBg>sdz%kNs!(8NPgr?v "Ogk6Mbco&pJlMa |.9qqei~9 ڗ( 2mXh L|ͪ0gy77?T;\?7_ =IL${y$OfPf:❒ 7yAڗ]GrzpA.#kz#:NB[~ӴB#W|w\ 0?ɨlWaDOx#OtR,Xy>,x 9o8Yls*yD}{!p=8 [ cHo|F%+NIE294WܭyD`g"d3eYôTbLfv#TxN7J"Ȕ`)&fs' {z2mmVFRЀ EZSL-0Y:W,8b vpE䇆ڜzڕy )чBp= EŔDf pAy:E8R> `񽌁llBRm9F[n=gfz nP)]{??Ő6QFPDTŖ4Ԟ6R* Kݞ\B:a[ j0,|$z5U1oS3aI)MwƱl T uU{уws x6N_έ+:4dd";KKJFq7`,&zuJ$0bE|`Z*Qn]cx?2'[Y86T ٢sxcg9'w'M{k1v!SƟUFUK(kW:e=nlh'w\T>UV2VwPM4ngD^,hI[:t-E_0񪊒=4\S.)%/KA*NLűuyR|i_J@HE(1V$1*e4Z|L( /-| ~S{0oWw`Wm#7^a㐾̺ 9iDzsD?⑉O0:RE,^7m$qJ$[b[oy . bc8񎛌j S%Vy.bA?zT[W/zSsq%$RM[䣾Ŧ1Z?1u43֧&^hb";,1(q?/|`_/^XaV"T+"^Bx5))PFQL痉ن渉SGM?Ya"ϵ `Nw)4L8/%!U OF߁q﫷َvȤ5#dkbW-t6COHٙrO PGfqCJ4w.97m>2 Zjsʥ9쉆!et3ݧ2n 3s#ട 2[ܞ9T #-56 64^=7q]ƾ;2"mH&!t> Ce5QvH:3?L:X9:kʨK[&:h7DPBezn22F?.5ٜEjj+O ('m7U(btdQ0 #sۨ'+_0`jJk s';KȚgi^2[{KrO[.['K҃r hM=c(|IR}\0#Yx~>+ oXZ֮;JdMCF fKXeV{SxM1C_Z $S{&^+xC\ l^d;8LrPj6 'YHǑ*w)4ϟžW_6۩BEĩ*Ve1vJ*|"K:gcátE"MT^UOI}7yWq~y~"C%; OoLq4H%0ՀsRj6"MK0rB5{ ѓ KiI`"ȆQ _`,q@"iOAL $Ts $_R1 nCt|$gL's~Gڞ 3+^!lQ9@K瑜T݈O\OҦTehWf 39@c4`=5m+uL7ڪHwþS7Jp`le_"S5 yNq.7W e͑Q__9wP՞uGUW_֩7pV#zS 0]6m)oh |-RTLꉃDMi! /IZ_zQGq/!ךof#o ֻ?v+qDtƘ'yTP(ʹ.Zrmnl(.'d*v_.B[;Bm|xyZ17X{}uwXtnucty):E#0YiMK4lRp9_@q ZP6uF`(%d^qA@h;#DXWxfjɩG0=b'U̢BOktDܞq@pn'B[YǦzݗ6F%i$? z*v+HnjcHI0,- jFND6:?7GzcΘIR3F2jxzWgF-9~m ݝ ;h+Jk8r}k!i=xG4ߞ%{wɻE#g yjY$/JÂo×,'3Y9&WVҹ9?Cx'[!#-{iDԯ]*zXjOg>3%7-@!7@[q0wZ@3ѵ' N^ (k؃Xl]`chօ*.%v+W8S3tцe6s٦1}Jhy+b.i= 91df؜~gLU_pFx26Pgw"9&/0MBe(RX,CJC)ŌIbe{ޱo#bw >X@íWo{w3mր{W/:_ujom  1CZ0Z_Ct)@rnHFzoUX"N4OoOI05oK7i's 9slFgQ,v_@J qr{;d't7/Fyv=kq!)/ɷ@T 1u pI _XdGԷ91$ywŇWj v(Ƣ7>|712H/* d#tʽέ4|M2]bCn39j| j-a5{z~|LŞrK_j8Q"g13^ j7R*EbEĂQNGp[xiK0a+՚[d/f3=ݺDlT`hzM [ЎNݡaV*aqhHx [2u}$NB4@ǫ/ܟD= V8` |II @wP`yw$wI)Q\@gD%P}JTnO 0MgZ_ľgլr _vCdl50(0bm]~^T#̎^m\4rTfo[+Ԩ\w5Ңl15ؚ 89~ Vn&M foS/쟻 N_U.1ٯ_r!0YM[//fYS' rx2'^2[Pqd8N4&.nl5z#}hΫ> "vqNۍ`iqu%XW7ًUNJPO 0n(@~Es=y$84-l5"HkInR|gWp9Ԕnѝ5OBe7yM|w `K|uQ[Rq %{B%GRjfUXzb]ĉ|#6-s5*Î|&݋u2;luc;30 :VH@*ܔv`ӀS r6NIﯳs Fy9摪y8x):&u\ߛRM,`ùIxmT/hy:Y&9yy`G?x#0hkCv4ٞ<]ΪJf̵^ ԫvJJ.sŭM.|>9\:^< kmCo8M>83l`g ^xj!7&&PeͱlKC˚bǶk/Ԫw91x2g~=jjF}2z[ H=eoKf6!1 W۵*Lh%^TE͚Hz΄~h㷰do ]rS~ Xh9%Uۧw }#co lݗR9'~,AGZ8#^ aS0Jp .|J0.ψ(+=p6SPBx703w>2D-t@ SJwKr,&4c߽OrpٖD:LB +tYi(>GF>=Sej^(Ї5%a;ЁDc",Ut>,,LfHP,G֝RJST+ʣ'!AC V oΝ.I:}_S͡\[cTwT<$_f|6TӺ;mi4Hw}XV ?<#N.3ibb7uG)օ0Hpn% W[Y:x~^$$eǥetdB/EpfhzE%3I/ YȡnEmet\SF.#%EaX(eHgFo17id飞K#@lAI۫:THAǁaC==_VRPG|ofjEY]3X-?֩o{\T Xn8Y9q$E! GaOuQW~!Lr֑RW )=,3a#ìB2lҙӇ0ӈ(D23B{cYFJ9^h\lۏs )i(F붫ްcY]Ǭ>Z\0׹``(9E:_gTڷi򕋠18' ԛaG}<5h9C aL잺:,Y`s'. ^}! &\W6(yJA|:l k"Hn8c9RgrkJnZ@f|IJ|͇BXNAߪ^=8(iK |&BžAJ e E-m{Io /7~|ྑ+%4>}Pզ_ k|%Z-*P Pؼ!R^Cf 2rT6L,=喂'gp<$y%:mYγID]@SWRdgȶŞ=~K+LIG &^ؑQ_IIR@6mk5DW@M:|Ml.i܂k:fo'O2=ޒ哂|w!`n`};!҅Q ]H`20C=h/㔤pΊδ@[s^1nGlu4-t3t3jI=É9r6b@ LĶ_a#P3`6:Pe"gVD< #PȺkh28xDrO t I)]a`3$ -F 9H+>2J,ơJB~i)N4 "WDx2Nw7CAjpg& HQv|x,!uKrn6wZmJ3CP6xo@O0㶣,ܢu "Z2, jpN7NyVw!mcvz¼ Fh1\f<.+tJ9l٦c.MdiOFI~.H:re@ ~ &L,] C^3ܕo.49\Dt|,r.O"-z*փБQxI 1y4Q{I8T3йl Ǯ0@5[; be&|*crL'?^{R;p Nhʻ V2\@Y&řRߧ8JvkEo"QyAkixwW?J,S{M= =sWH8nIP>Z)#H.cL rBnXEuϳИO[K:!}*",.?iޚqfMT-%%m*`Y۪[+,Ẉ*x*evj&5 -:²9 (RklaQ %w^")RV"]ˇe;"vXL<_55&pD|%eۢ_:~¹}3/?Ʌyyps6籫 9|jO7soŲz>3TmJ$ҽPMg|[qNMM|=vH0 r\F ]G!a&Fj?AVD8G\&AȚ'\jpؐ H h8XovD^wPކD2sdJy륭&GR}sY5[.> ~r+5owt#<(\vms>/yW^ע!ѭTt*l+WuhO%6cyDzDR9n\ r XJNp jd0Z ^b3$rSe.*̹xhX,]z/^&D hw)24P/!,RHju=2qKm _Ld |[: @*8C95Ss4@~zzǿ޲gbYpR dځ$h=Q!Oɮ<3Zc^6=p'U D;i){"ewOփ7.o y.ڊRͤ_.N`b' on@*(?xdiKN:KY" xwθISE?qܛ@|Ia^b%{\V-\!?L̹Zoe_V & Y zA:kdlϧZS鋒~r.}LMSmEX_iTeqhc!Ո^T jED&?68_s PNRoARd!StfDglKs#$jA3R^=DL _~(TlyF2sSwZ or%fp5Mȍ|3~(_P˜k]wOxI$ ?3J;vvUWNC:|_˔5p]a2Bctpj ;}1Aʕ-D6,jz~-JXO~N 22&}5ɗl0 06u;{Lc2IIW ĤE:l8 ' /pͦn$pYeI7Ybo S{߼ժ·9j̛õSy(N( ĖKR89BZ`9w@I k5 LT:.5 GTO@45A,}* ̥bPu,MȻ4L%ޮP$Y|+֟'A@]L!94 i-  mv}#$e$%%CMQ.eʏE} Ĵ!q]. f*'f|9," !Z|jm֎n!xE nVtPXamX 'wWItn!i`@_Yoװ|ig?v9 `-^:dEW4착aXyb!W=k3s0,]^ &H`wQK79d7uQ@o~k.4XlJ (1=tm]q-,;Cd@iUxr5&}Aw"v:jؖiqBL? j *N#8ctTPO}+)XJ0hYtX̙i6p>ϫ- \KTXl}ҧͤG\"Μ]T #'*tftW\7ů6=iZŸ f.dNif޵y Z }4e5I{" xRk:R LDGcS'c$K|\Yo暩")NgFYk0{C&߳ƒ#`Ƚh.ӴT$ߛ<[~;q?-WXaο7V~? @S@էEf* *L~TgH|>uLM_}yT؉Wن)I@'Z,(euz<ޕіrqʥB)vfYrh>IO$i~[Q?IB j J0xr7ݸV8IE{̭ely.4_/<\a`u޷NGR_t'yOnl'DJx J;e*ԍ%aVӉ"0ӿFF>\cFPuXЋ#4[P"K?EegmRd1"Ȟ+!( ԯ%H|g*Gp&WXdV\}xF0ڵF+H?!DTy!Rȏ69\:^REMfiQޓ_'Zf i”q7!z~(3)RJQm=ɋXLw۴j!ZY;Ǽ pk 6KoMi$^^|S Gt`t *$>(/ƿڇ@x!3AD%+OOL#Jf 4Q]f'VsJuI[{7.=o$Q^@1^t0y_hHeO1aE7?~&G/gZ'~k&eA—F/2m 9QB;=ԥd[v(̂C x$жh"f # : )`WRF+ %I˅s7W毈BQ144G͠n51in^aavݗt(Ȱh(}c`Z ogf9 J+>2Q8Wz6N_Rl6}G9KH C6`ݚ4X҂R'fP[pgqSBWM*ՙyWSv6IN|ב8 /9@+z$UwR1'L=^`Sf L::EvpЊc;l_NYΞtF~ MUu]xhn.dYDf|Q"o[NSMOSŜ2Z1e LFKDl97TOr]pB`0]MQ|%$ R`K ]Gu )|jӘSoS~ ^R>Bab0lw#n7Х%<0>8e~f"N6=nfS]qcigf#e?-cqcB )_,}?A<ּܼs_DW@Ǡ|1KڭA2?%9L}>Bp'QM`ܻYwQў!!Q A {g]h_s\i[X]_p-0% [7Tttkz6`[wˌ{)u-z؜/solKݾ >pHQZEH45=)<$qÂ>qxebAMsQ6̑Z@ \;< xF>GƷU :sp;pTG+0Jjf$ָ sQne3QAN(^x|7i|,5@oXҙI@~ȹS3D_ (s,bK sZly9mìnx]|絑lFMv|H$T:.C + RV\gB%]d12UtK9 @Gۃ 4 j)0n]@^ WUe ;+vڧxSwd̅ K] F=~+8 cS│Yv%Y"d M8˦TPcsz _hw-Iwh]̬7\HK-zi*X8 Av^DD7CY })hU+plk@ļt`l^=؈\õ.'O=CȹZ|e%'Vg3X,}Gw ;UEДG3qpiݑeuQU&Ү/jt/5ƂBʖ %3ËY熶͡B/O8vF%0!P m ΪFu"w4^"$ LvB} @h$q4]+:|n /|Y`G.PC+ PCH{2PY_.JxP6YO{BSQk ~ yY gM3ߒC]dm({_U1] ]TuE?XWn HG/h(_%$/]aX> >h_˥̰&,(O}nUN-y "a@$/[@3T9A7W{Q&pB %$imܿ=(ἥԲ=⯲C6F$4-.g>FGjBU'gh/.B4rs%13@<{P߄m2e{#dbXߤ񴏧{ͅm*?]1vޙ2枹Bv9#c߳CDzAr2OxT[G ZW3먦rs/<آo7LS&|(?[*(PpEdE 1e:r#ؽE*@hb]"g+F;$H,,c_7,Eɩ%R3 N1t}ydQibt؄,ƺNZL%ELetY0s ,DCQ GυB.E(uX͇~r0cgݧF4I(nG5sS!*hsކ{.%!Wb˴tZJW[,GLBl4rQns)M2&c&k)U/^DZG(ƆJE ?cljvh8Ԯhhs=.BqnD4Mu۬TzF$k5#;h؁ITKHe (/$ǓH>?|CӯT=&'GUl޶r.U&VaXm9OƏy؋}Uwyk/|3e ΒYŷ\-:c+?/iAcDR.zY `sX~>b!`f7\#wXyX3t'j$R+*/r73eRGoϠˋ:`'>8bmJ tOWG[ B^T0ud?| ` M0%b;coxj}HO\jm=NEXny_W˚y)CAuIp]5b?f/;g! l8b[m 6~;QF6>:ɪfqCG#Ȣ$d`O M!WwnJUޫ娐z"$~0'U1n%KkMg,2ǭ;("Mw*fWu Py9x7bڟ:RJn,j Lwr̖DR#lb xӍ6u]ͣQeJ6F6[E A+ҕ"? ]Mkkl}1RnO]d#XI\ɘ7#sSݣt5ς!wgUf+ yv,7|Ҡ$| dd~9Na2fǏ=QT0R9#8LN~'k[[`(A^ayڝ"oZfR{dB@fK~ bkʔiMKCpuRYkw:]fV#M-P*i^ ϪGBz/]!Vry@!]wM?Wj6BIM>df,FKSOקRp -{?^c^BGAV3|CnDz=}?xdxo,=JFfJOY(5:[Aۑv6Mܩ&*(#ӫ ֟\t9U^}׶G0g$ׯLk h}zГ.ܮ!!`X 7Զp bsk 0!]Q(%_)џ \mLPTVb#˲ȩ `m6ra9!yH8wŜYxteA] x :{ޱb̂Muv75r'g{YfۺՋzIe^v!R#1qU55ݎ9ݴz2ÖOiiud㮷@+x-P%j^֌=C-@v%fpХTWQ jx =/PPO?]B ; ++Ɍq>'HgzCK;lEE:i` F.% a4K+aZ%F"wp?7m~yU%:';$gEE幐*>`(FOǏ0@;ukM/BeJqZPm.HeFE O,BqK"x/ (/_ԳtHH"&`2Vs„āL2s̨;:i}[qA}DtH WNfhN//^Q`: q@k̢ߗ'p‘TW߁2T@?\E ݴu8X) հWNnD G3ĺ i (jSX{1yzfYZ膂ۧ. m=[vl4k[1g?}nRn6z*sbҎu3 rgi0.Ccp/7|< @)'{%ra#YPl4`+޸7B 2:'6}-4_(؅ /<(dC:}i&{5ic?dMϔKCkH/̂ӭ`OZ WYvꊡ9# &U0g{7w Ǝ+^8Wॱ-|ix[ BTk!nfz?wp?&60OUUlJ0$TG.3NDg7*V='?=;rq8V2MGlȉ92[\!^B۽)]9UJK/Z|og]s/lRPw]W>h,bng:q%\P\v]͠wO6< }ĔHB#%%+{,JFrF>q0_aFa4BҫvFFXPD/J8OM>[yfoɾ tަp 6wU}Ț<> :X| EWνeЄY/EVsqnkosaaS"֘.yM B|y VZNtV>I&*llv\5θ8E2=D(LהS(u%ҳy|yy.i-Dn19JT7f8)Mctc\̄[4WOh:5}픶vڗε=Kt 2?ȆV0 a\^^ H'$3hr ,A:UK+JkK xǹ C9AL%͢=FE~ 8?j < ۿ\kFidm CehN+^OR~8SGq8.5iQ}CyyLq0" 8PQ +R6N 7ƳIk&>z,"R>U9.Ṫ 52vjk{|gej翗p`z%>L% ZEz.DL] csXLh)mNvhE _JU\ G"r,t: ̥/W5ْRW(䳭[m4PTA@W'E*((j M=RߞzM#V1Oв&Qohk._?כaQ4W!)G5wy7gPFtx OAG~ MgaGv ֑sgH5x*qj[GD+3xѵR\8HPCAS@?~YF.dsWs:@PFE'87竢BA!x? n iz͓h0%2}멕uӐiiOU ;B="$[Z/BJ(  < 4YPhC1'tdO&6xNsh/ڿA*"KE`%~(n40GU„3T2e獱cb"wI wwS6nͧU!8I'@>o*e+ $^@\A Հy#H OYR&.Ԛ.k#by,$3g`|R\?ZOyD*8/@%} y]4l]K=H@ǁٕ?.(kQQ=Na =/پӆڱj<!~x$&ACy5Y|uMujR -6oǚG.K,0-`o'< A6:V6^ukinO`i>W}s7ؚFtȸ}> j  U0޶$"{[LhBnա5P9:7^ؕ|\Π爡T(&}/&,ͼV6ݱX@ג`FN|bo_QNf k4] sF8[%ѹ &jHx:j}rq`5W㹨aHJ .7d,Vy=h57bƇjvgC&C!_gvIL AJl3C8 an*~uG/ !-=$jSYj岺j)9`kҊ$`t iP%ZԄ1ZkA [= -~QINvm%x-فx`^5F=&zRxa*ދ, NWVB-8?/d(bW?DSR @3!kŹE"nP>Ⱥ8+X >Kg /|6z¬JPV o.n>9)pCRӺ$LOOvT8+5wUrDM_,35e u I9 &HoT?G hIUx-w\C@HqBhWBj݂׎A *Q] x0y!i Ve~[4eԸq+>Z~'aWDfht^@&@M=$ ݙ]N0y%KW6`'r!ʥl9N6fӅ{co,>,QJҠd7t9Vl(aHD%Q0 l(:W9q=[\&ݶ#q:=g?q~ C ˭VS\{ZCW t{B)S -TV=Ч؇*t[3qV % ;aq> ]D!ht|ʎc U6Ly5ύ5ZwZ&"N"91y723 EoJ1z/˅NpqP)8bsj {,#-͉ˍR~BW[mV62-;ђ'b,qH\5ϰH~kJHUrx=^FRSP~|}aGUDՀk*5z.ݟW0,iuۀC#dž>T(늱٠*;ʂ/Sn:0Y*Hʖ::jֿ G+S:c Q6uHl͛C\. kJ:>Kzj?m:h wb̷O:Z}M/ݱFh@d)x;䖈ҩ2z>OuIl{+ua ,/a,)Ty8d˯Ü)۴DZʀ@;~ ?C>i&UyQȅÔC9ȏ32!,\xm ;)>7QЦl?6 U&g#$Z8Ʃxùa,~ݖ/ m4g=:NENwQ eexP޾H|'ԡyJ꓃9w=٧lC}.@Te (-!O+Mވӳm 0ٮӿ(DVHfO".¦wv?b:\E? &lu]F l٭n P43DNN $A8B;ZgpC:M*l#kc rr8)x~T(:|f+Q uǴE吲C05YhkG?NgJ)fӲ>21w "R-rFj ^{/VZi³yıa&L)b<_¨MCaEX0t63?sb- *z2 7aE(1Jxyjhnc'Jt05GPB\՛&!a/'_EK>Xa83CuGoF4(V#GO֚.Prm' #?Z#^9Lj)7Uc4es.dx4Zb~{qgK|nPU,;9IY\ᮇvoNp{ w9wIvVjg<(n1pVdqcZը2ʓ?*)CddK]l+CХ%Heמ0&N:ݻhC2cd۫Xiyh?uBv+:,0a <ն,F[|ޏ;K^#*y*N׾gd s^^Jqs7Fri WSK*fsh_X7A7l~jE ̡@[D9ĴOٰki/RXQrȄӡK{RC .g> I4@=݀E̞ T6MF2%C USwnn6r6p t[zt*?v~uT%&fmf)om^+WZ[ٯSZf%r㴃WAW<Ȑ{829#\?6v5Ql̼m_U,%N_vaJkǝ-V 'Cµq~1`S^*r`-h!%D[G\)^|!\Q^xSφ"X~RlȻo7Ⱚ6bΗUQ( Dēp#*l)G'.ecޔ6 zZ(\DK5΁W0#%KJ5.#<9U$_I$֋WeȎ)ƥy5%|'W'&.p'ǚxl]PDh".p&;B( e5:B9n񋑭fbALWi_=w~ˀL1޼)R춫fgã\Rtq(vGjHg.ɂpKm⑪Wб&3矺aW9nVqiìmx]+1onm?/ZTQ4+&Y~}3YxsL8Ĺc'hӶO$~ 'Td^ 9'I @E,'#.jn[E; b옙 QFs}{ D#y86^8h,xZN }qF \mBrSP$e, :,p)w$!U`5%cm"cP{%&FWI NA|̘{e.G?/]*+U]I3ڏ:劝Jw sew"udtՠٰ܋%Ņ |2i .7E:Ern,G9sEL޺޾6 |t PMrW8+2G=22D%=w4D-ɮb zGXc AאaE1 R'ߢv;C$Iƞb[pf: NQ? {"_+65C÷jd[ u6nv8^1,Mhlbܚz g-,OBbAC6(숳e< .|KU .ԭL\b|JZ1+ޓ7BjrBId#$6QL2Vnr-A$<&Y\UDZgºegJ=`?9OQ,Dkj:ԸbMP/XLjAXB`MdG'MMVM]E}-`t%qZm]Ո P IG轳2&jN6m_DwWIӔn25cNlYӒlpN,\3/"wMC%_;?51Hnݓܙ g*uQR(zllTqlYIR 8X2=B/Ճ%~)*<␻Ast__l5sƊ^=켞8}(pK@u+mrUMf5q~1=Rwxf`65{};[X~OR)\A>EI&=Q]UszBER\:zo'}Dr &z aؒ<ϋPx[:0o_@ΐ~8]~O*Gɋ%(TQu,*u{cU8rIhnv:S|!e?F%ڇPQ%ߨH Kf ݟ!_)ˍ~Cs0rR#4`< *Rߖ2tÇee&݉ U.l(7WM@7l>ECz\M,7]h7VheFހqÔ=V9ct] 8(jB}}Nl*;!AT[yn{JȝbdĆ,N5Eſ[08'T@Ȧ?۳iѮBC\Q \Ǻ,qh!qEJBCnm|@>M胔l'E/lMѹfLyN@34 3]vs/.\MӶ0co*^Hs,ePJnyg $dzM|.Ut۸7q_IxC*ySM2)TQJKIzgT"pOY0[/GMa4E0B:BDfp6˓`kq [t L]V&)X 3/0%!57oFb]![Z N@;]YQ6۹JÖ ~_;]q;l}\쫰]݂,D.?{DX=bvR\FEQ`LbylFHZ"|TЄhL47&?xY)==JH*ISQ&[ހiQmE#PVG*̟'Jg1퉀 WP;Nt^GzH6`,,fb?Zo2-%iJmCi!;iQlߠ-򁖨zRֿ*ߟG45Ĺ(>%N_ f薝/c -$8gHΞC7^!aHhxPt%{p禵a651m%6 GMr^9>N}i ¬J؀G3?tyѬӿ=  XdPxN4@A_qg*29@N'Hхi Xk>}@@Wz!k")&5Uw&ecu11Λ"1 Ԝ1 F3QJ`U÷"boo`bnb80XBEc \~@eq< pt$zϙZE9̕+q=|n]K'.[ VWSwD+9`]@ JeV#1b@T8ZH+E5fIU)xxn=+ @""NO$31"ׄibnUp(Ir#N7zhX0Jy%LN(qDiL $62- 7fZm{qk?Ymh/7.tم~%,C&ǎGB-aeTضujLڥ(`AL³9 N7cU*p7Ck>aRqc#~M}$3 )d=)vÂc8NG0[aelhTfJUOulp_ KT"8/5R71̵/ ؏P{qW*~F Y0E*Ql^0aA- .B-.󕖇vƇ5Ԗl*AX%Qlx{ePh2N C2Bʣq7 b Q{{MOi't y踌#k΅1M≇.;ұP9gl쨕jY=SҊAml% mrS+ f.,9A2sC1{tZ!Zo2yG /'|kRV%6QSj!"ISnaiU;ߡ`JxBܗhv ܇ϣ 4e$34RƟҡ R @.oM `zO08&i5aT|w6oA;]=?)דyQl*]6jJONhg | a:¤&O|Vd2qA^ecӻ^%FԸ:==_^!ApvG^_K$F")РÃ:ٖ$UF=4(ȝtʏI~-"cBc|/65u)Oll~&`14~<ŴYU&qj -\p~?~?aTW&cZra/ˡpoFEG`miLk< ^%ɓ+'VI0NH(m^ߓi+e= P!eW l\ځBHz} MjztO褾^ u3) e&i5#0r~GVK+x%y-1 _ȵ/Dv$AJN9+,b iF,ٽ ФP`}rJU1^EI7} 0۱?x1+VN%} 3@nhʹ Ă948lvC9&ϵ4xz+1s0"1^Q84{n,G$. `ÏSGW4>Kg{KC2jN32dϞTzR#3iZNni 1W?jBXmBW7,Ir4g};M`%}O ='f|=S_|0W)2j|(}JN(Q26zuǚTq[8X(^nE6sbyB+O:}k(%!kЭ <:1|>mюV Ļ}ג/Lbګ 9ؽKT_a6Xh>UP([]%|`w[ o*CZ.^=N^̝d St" >.d!se*Pj刪5ve[vVW.6h2oh*5I}^ 0Y/!5Vvz[ q߃}64/.}cc2_#7a ĵ5`҉DY[I[ZH5ӂ`:A)9:|^ͱQUF=/{I]M`YwX@nBdzb25C:r8!TSd(" J]*Md}P1XFָ!.\"{{$='t}]>SFܚJc,v 7gЀ+/d'  4DǍb0TSo$WE$8YSx8z?%2rtC:ąk>U:̻DOqV3ߴ} 5wvA;c>޳4OYNP"݄0fK0eLF#0CQ9 nq%g 6TB,:h$G)I.D>4Nޘ%%y"W&zZ{f㹹^$J$m!Naå.M}F7`G Mi}"\h5ْd{9Gpr0M_IiQ{9K}*$|Ⱥ8POR.e?o8!-D?$!ƻ.CzϿO$$|#bmX.+{,$p~*ޮ7o(>goЕWUj+ mP 08Z^]:؆]FVid-@`ԏՏɚ<:T1 cNzhX0αkˡ#PVz?5$[rLiSg1/Xq=%yЏȋ [r:Pd~>3O+R ]UE2/S38'!Vg"Us_fao? $*H>TU=$wh?ݿNɎz|gk@viXH a O~: }sƎ > Sh`xAU̥ '|2Y3\wGli|8"سߛEat|_XD\+! ?Y]5C#<L^ްq?8QVl1%km:sm[@Qh >c0{ܮ]zsJ 2j8(|Ʃ3TXDe6uf˸tmɞzk*qiI|%4v7AV(#MQ%[]l 2z_UVűՈ£}.6ޅPhQ\{{#$ڃ ̀瑚ޝ|H.kfEivgSz"Ei`n- djp8gBO؇2V[gAORjav:jJ Gk/[ az) 74G*(jCYv=c Mzhc:U04`x_HiQxg}ilHtO*ߟ 1DT@AF<0X݃.fU*܅+ }ȌlEտ6 ck{%Tz5*`0eF!MuA\e~I?Elq8Z?z_5x>qe9e-þȵ!F4yIͅi9tB,]M@˯-S3HtNhm_m7,kTkϚ,]:d| 頟ऊli*$/1j {rBQٟJ!/,'#l NPD̫#vzTv%Vڊԑ]N23)PnMȢq[# ɹ6ܘ;ju>>-eg8ӷ[qŀ~V;xp5͔E>m:X@2G'W|8)>e!kf Me۞[H`y@={p ͎o@/6۲_1x"ϭƭ~`QZzN㎳Uyeg^ \Aր$:nTSv=ta̋:+5ٹNmUD!0,@Bh~rxZ6n (ԝݹY : dE sڜb찣fRscOQiCl|Q,ڟ ֜v  bDn9h>x.cE upׅt5/mL:}X=_C}10P.AfxC b٘WF~ V(K vp\{8Z(Xi5d, 8JnBX, ghАFޅp愱֕F,`ln^@=ך47"2e{1<&$o'NaMTfU1աFv  ҍAلV%J<#CP,HҴsLUVhơ ԦABV2}|3U!N!OJ 2RZaྣ3!}̌dI?DZ`^~f4(f\D"bF6uPy1;j PAw%"3^x בM̓Q֢ C8̂o)"F%N؉Mz*gIkM2)CUoy okY s"Y4L*JȸrQz7sؕllc6Em`*": ]gnHAB"۽g؇>=8\9& inj>C֜H?h2Lr ǟ8JFCtw&n_{4╒'Y*W!bsNwX2{͂F$lHoX- >1'ghah@7"ji~߭ 6g% e*zPn.u~aSXI$ficW|>zzv,vČ@*}^ͧB Yx6 aTh/t]4Kt'ɍ&OSU>nZ)OyI[_eEc[:w!3Ф|zoQ輪fa腹z 9>J,8WAiVӑfsbBg+%~ 链& nC'HJ!O/ȭv2}jY:laZYUjG߸4A5_ ^y 5`" ?LOdtsF흱Mg?䩉AqyOYy9Q *]7H01?@Gu{ǮffSq UZ4LVO_ 5uNa7\ Qo]|\]GxNO6xt '_Y9Ry'8_nރ;I!D씂/QǒbY" ܹL;0LgDm8vB|LM ؄ \# qʌ=&/` * C&ܐ}1yp㸘IVoWr,q(.NB+r+D@9:Y9hrmbdwZ"AҟqGIyTX;R.2̯ J8v|Gc=&[~rN@ܙ֡UnIn-B}2 Ȁ0sѫaH=.g$l6 ^1,hZe~fu5V+eL55> s,6fؾhן3$݊/2F0*Aʻgtcx`%5Z(Z+ՠ ku`~EkR N`~4h& : M@2;6 obC>;WHeiOM|8&` Augaaˌzvx{ hi@vZea bA+#ocshOiH72ԭO# 7!8xK"PuCSgi}'K[x%Rd:ofsJ&Pb_WBkotSxlU(9?2~]9sR7l N5V^zp+3l*j9m-nSAa"\p』r+5zᳵXw*=m߭3J6!%Ȉ  .N(z.Fy)YS'qou(o j%fr(rWRM?vB_DU_ys)ґ1 =U rwԅ إD$.uդ8uGKQLf3X7~^+(w|b"-Ъ[w6f b_C3r;Dk e~ɬͯB2:)\ZԄlz ʈG-ϒ0cΏwQ;Y Cȉ \o`z!M<_z_>0 `&8ONdRIHqhAer41| ̌,&x }=:ݥ V RFwQ-܂pE70mNgV`/zПKl e'gcDnř qAxk<=}+8R7plVJ,iԩQ@0HFʯ{d#p3rMŶ- +b RjNJS(Y&W̍|2Dƴ 4B`[<1$Jf6eDmHa$`1*AvChe8`v&r}Vy#-y;?µZ`IfqкkD<Ȃa"gchI\*2-h\py⩸y/h$g Falթ0Ӑ wxJh/F9ꡆ24&>"BpAOC)9keOP?' ]'3 T-Y.%,y';[Q-|CT1k]kh]x)]CNQr_BCٺ\lgyQn;S]-&R9TLes;· E/ZGU=j^F2/K.)BvMKXo֖_JKqAt0IvsvGOY;މXts:(ӕ$EWpنU*~Lwt{iMyL>QBĆB%d<J |cmV\~-FBJC}`~Bk.dGR\Cf̣FwC4."֫_f\7ByYNvW V9r7/H6&Ö tjK9`m6h TP3f؅oޚ+&~\FƩ4A^9kc@ ac HA (cu}撍u'Z*iM4<"w,m,P'"Xe# #Ҕftlᓛ3ݛumcgxnDt_C}ݾM MmÎ k77y0K9B /:%HC\ďC*B.N8e` TR(aB}.&-2;cRq}\qKXOxqQ۟uVyPW?1f;= : IFQ:hFs8SULS:5D t6k̫0 [j*',ʜrRxIk.Q>#\NY4Y<( MNq>R A--Xa+Cf}#ݨ @qs4-i(O7A׍b.n>%4DdzҨ\˲ö_­e\l yA%y1muPtN%MԹ| pyC _Je}/C\Nu[sjȊݭ*}B Lx1U ]>A\6 a [{%$M!4/$͖Q>Ǿyڰ8E(=D6VrbeӞ[0 z&f8wm2B6AC9Ō*G[T=fE d[X.AoH<{NPc{`S7%M[#JAs1|ô@Epþȝ\:{duz|B4d[jCDQM,!wJɴQwzSv#|+ffs{|z758sT (yU [i Y{ %'Ķ= hf֩ ^.dGCpQO)Y!AG4IUE.OC*=)iUh{{!Om ynw 2>Z`F"}h1H8ר<'I?vŸde) qFK<1x9Ac;,߮9:_jfR"4dIƓ:cӰ}_">x#T.ec{|qEį']Q|8YOʻ0Ud jH AcCMO6 w|<9C  Igmzg?RSnX-*uZIyΐPHd,K͝c}~^!\`L,mPD5}ll\ TzV<:Xkۼ[t<=Gڨcd! Ux踧ɝ)׻'$F={8e "8irғr^ΥoUKɢыYh 5.B3LC68Fyrwì) B䊧lw D0 g(tĬ7|en‹#YtIsbi䩾t<|9+.a 1X\[kx$Y J֌q{e>+ϡȭxlCXo=sG@bط;-;©{p9{Y|x)a53Px)"JDpCaYXҡ6Cׁd+FV5ucOā\4d @WKZe}D!j4D:r,._I ìև(D!*3Co{_|RfUHU$:K"iRʁ5 .+)p(f+^Ć*hbŞ*<(x{3rf',y/m(b,P,eM6V U)6glYS=Fq򹴬BF}ЬiC5'@Oes1Nf͗FM+B]Y\G}lѥ;гh<6oO\1 ]P F&y>^32zUƆ5uD68Mr׸?uDvi+fL!v:E<@XqIQubOtf5<fC>ެ ~^̾/3rg6l>FΞ4]4.圣\ʷAjΝ2`|~] |b]rä*eW:<Ĉ)* &QC+١RS&SH|uȓ'dсo"j%A.oHpIz.yՠ0-T))mq;OCUybA%׎[k1#χL!an- :j@K"'W3pېPGuU@73!:%$Ĕ1쵹عIi$sҧuHDp<ǫ |'D󽮰rwJ?_8(c~XZ&6݌B0+? Kpd kίĴ0Mæ0϶1D0:Bb>>>#D܉'m.j ˖ +:W!oS'"Ϙu H K* |)%Eq*%\|HJcRA,f #`..LXc)_A;ƥPU`ڭ4kR4v!, j WR \OVC1/QEJ}%?GXNP*wmO%_#VY28+ºXmkr+V= dVuI, (](BH 3F KGC&kh:EөItj'W~uo㞠@G\Fs0A]A%i_=([6 ԥ`Ƚ Np;ՐUNvv@4b R_KRIZ%tDX5JZ ?7u w{۝ꍍU50a9i'ACKu=x{v$G* `qZ+= ̪te6x/> $MU#7e >:WRy4*j٧bhW1 #wK8@|J^QAeվ+.9܌fPA^{髴y&B- }-E &+\ G/vS 4*/o[Nu`(02o :hidhtaZ ?uj,FIy o r(gɲ]ۖm;q K.@a@PߘP/[Mid^xf.ymB쳭EEF^ܫu->zl,b%9"v=m9Rj>C2z 29[1:rMWe2RF^Ce֎߶%wXOoz;R*#Vh7v/>G=BZY?5`RM-44*8&2}ι+HmR!Fp )?Xl;!n-"iڟ^l~vƲ"̨IÕ ?z[fcžϥ64mNi HҠ읅+kx"4Ū8qp^Ϣ "6~[Knv8b#A8(+׺/}NPڛK6^.G:>Fi?19FEZ)뻰ҹ߉u.W aEQb&`?E=j:ȱKq &twå+ŒxMiw})/fKB[7p5pߪI @K)ŭ'X_hGMSu:wxA Wg2|U5kNQ"8<#@$0bN~a=;s灦vp/? *4Kd*oY0z q ${UɚeWץ̫m/W(dK*4z$)ӕgy}1/ε~p(9=knH>pGlc&GmW͑.~ E^gQlD>ʋaPWɩ$,<pLVV 5?U? W[& 76e,g 8CgTì*&pSn}Q@aTmZF> Wf>!aec뻾f=У--eÞ+>TwKԡ:50)uN!b ЧB2OQH~GGL^u*A4kܸxѬp Yc<I ߉z$I3gDmSTH'|Y%O4,Os*SXoovd f^JfF2P9F}gfgLfή 0%+'X[@$Ŀn: ~06QdwS 1&㗀7 @/ކud V} N/Qimo Af:D؂o&h$䑡Xbi`ZDMWR<擘Ya̫DDF?exT8A!4P$̒Ϳ 0,9-NJKw@8edU;| 3GȔL0Z[hN67`W[$h2rU=)^.9w48u)6k݂TMH1QT܌SՌݲw~ /rk8\O1ZS~ZW=f9I~|\*e}{u\^V,c7)=ABy I- XgRKS3o`'ͻ=j9O͡ VX@ۘOӆlPr&=~ƇJ0N9]RzQi(:.F%6]SY݊ 080uSG̷&>j~!c2Zaw%*o$'qi/]D_VWA_8=-O(L+$ x z`| RGH B0 m`/֗/( W !5smλ')l#JQ-BSJ#xO -UeiթֲbTusNzH%-E U+ݗ 7rVQ\.3OZ%X 4wgOxnT+=&e nq#pߕo7 yϾ#s@$D6Qp#w1> w k1N5UHJH"J!դlƗoZ+\*pQ-16v|\okIzLj| wgT2[=j/ N@^>a` %i|KAJ44⦿3P#e7Kj$Eר;Zw-%[Y}S`-#u~25ԂMcmiu^<"[ sg'҂Czc9e6aQ iO#ke M3Fiu Pƚϡb邮pwxUn/Wx1ֶ?hrwĺ %& 0|]Q'fؕo<~`VcN +?`M`Y\x}g0Q489 ]63ȡ\C睱XjRʱ@{'qn@Vc^ +``pӳ{ ʺ:R0͏VVņqD(Fe׻aP;U<鈩J0v`hL u% ړ<(@Ƴw97S>wYl4'zs,X(K.}Ǧ ~yc*Pߔ4xs& &yP<ӊªŇ*;6,s WL~,_:6[{ CJdcoIiW Yr~-\q7F{ZB0QQeתJhfL!7K9* *QJK\SkG_ jh2j$hׇh1MsVͩ~Ha LɯHgDX|\pO B/}$3<77 -{*%LAfCT3a]g0(%ר%EsF<qi ܍C %y~$p!Wrb*#1 WuwF0+#ze[ !jwUl (w&EL kBU!4@snc ~N$qCi:aɎ KzMwicທeVĢk~w7ۇ=L"B/;hgzkL#E%>J*bKUn' ҈?/ u@K=/7nS ^6zN^+ߡ^VS;-YK2\bd+W4+Bhgޮ`@1iG^ zAGӪg%5W;V.}eO~fjLcYL1 h\AI&ѮKyʰ%2rB]8nFffϻ'MR)7jHAm=uZyPX(Ѧg/ABbNe"@:DUm7 t6.<-',Îp;,(+c yy7h"E睋_~ '6(N_}Hyv5H7%d :Ar>fM0֍Lj@DsM8-UVq-th|;seMtm7`6{~RM4 qOcqpy%,}$6.}RaD;ȜP$<%ɛ;cI춟C &%eX;}I [gG]*,ehhC=('Ey8z /,+r~ ofM74 *i:.BOwAwVyd^ x$Lcm'&I 'x RZ:r[*bՌ1!ai."Ʈ$IEYY¿Q>Azϥ|NZ$gM.@&ЧFB?۽Dƍ]*u8D#+ը dz*e YΘVȴ}LK^j2W "4ˈ%ukύ1tΡ3iޭLygOfdYWs~.ٹ6G#ϫ=4<<=pdچUӈؗty0?a =To&׃*"]w {eU %='g-uH>-&sh-F4IdFڟ;2Ll$9%L;`%=eN$yM(1OFIy-bm$45ё" ;q6$cWZ>m:tķ(N( sJUeq4}a KIK1PQ[c_a~8WOEb,kxbA_)r03s{Zl^ ?5^R>s`pݰ±b>,A?r]=8+bAorquL:xd:8өLڃ&FŮǂc˯C豜c<d˾J}LTl,$?"t=8}'$e?Ԍ[m\? bs\pgpge#_mß1, 요#\#u{*vǔ60̌uϭDhK OrBu?Hv1]Nk6RT:C}\8 qnbʓV=M/)B$/@ۣ[QtEy&w6!VHUvTqV 3Sۉ߳ah~))7;!7GEj3 &I}dlI=7\=+< r +x [1sXRĄaHȏhu4=ۍ84`_g28;;ڹBa_bQ4oMOgs 4,\ [((Ak3 ̷$jeriDhV(h p?lT_H>o9K]o<<l(A_t. 4-<٫|/!‘(Hz*KgsƜ|troKgL:!o8v5yv_*;v#N@\u``4H255>B2Zft%V'"P[f%Qɏ <{ۣw|a4-H 6'xɎk: 9+?ImX0&e yz۬ۉeXmϪI*#=3qyȍwg# ^I{ljBN`JaGϖ" mK[7Jj| 2k)NIJXsyquG$%#f[P,(e+ijoO*f!őՔ]>5gd@ uN$ǛrSgl 4qf ypҚKafzX~iMbJ?`XeDNɗփR c)?zc7[=NLy^b?fzWyꙕےחyav`0e:_w095Ge7PzF[Q%D#5OvO&>> `H^9Is5 ;4U|,)S7B$$@|ZТ:"Y ;r/^$c +>a&jTaVA(;z,lU(QrO8Ƶp2 lfB"wz~+=%Ȏ0(,8I'?ܕA=`z#1-{Lv)c}9TrОr|q\?5}pU w=\(0Mu'YX霤my$ϒpp Eii@[QkONB= K6Zɤz:_ZC&01ygR[Ղm}w'm&b^pamrzM`'gUaJ].biImrͿ^&p|$C= rF e:f\+ Z.|n=gԽǪlbqc,w:8$d e X%DԬ/?o"&ɕE@C7Myk y~4UUb2UW ZJz@h#4s~z6pO4&-h*!<(χA֫!'xr$'KYwX<e2U  d;.Vg]H5[' M@K [քH0Ŷ+}[uh2d )Fgz{R9p]NݛJw~4Şi[ڽB[ CMޞjME>cvALjznCD?S[4R)$$b,o\,>z5} qȲpwq˖bH=OOuƮOH{ RdܽAS7f(fhI]h'g"7wOPr:+ +uCNI;-9Z/qI ,Cue)B}~apx&jtBҟ`^jBj_/9G8Sz˙6-)JuKsv@vc/-9#BokV`aǻ8/ 8NP/\m^t)qh7ɷvjk1g !s~\ [K QL8[lsdsQ7J`/2!. +#4s|4|]pg,Os jk9cQagpXŚxۊCBpG] [oQ짇w5w Zuigv $QII`^9{t xprANd✉R1%L>ҤȺVv@v.H8dn<ZC[ k!CʻiN;C~89.:RV2](۾B* \ziǡXs<* %|SѠP5 nj1" r <4ʖha7`ϦdhWwKːB_K:c/y^2Z -עጴ<ʫyRJ5[:7W _M .XoA;)f}\l 1lAĐͪS4ms,ܛ2l@Z4ߨv֓3 rEScAU9@!/$\@=^F/xC-/HœW;(eƵSg)Pƒb[>p4L9B>N^'pJ + 7M",AvV4W r3/Q ̲VE v9Y͓+3=K.($/y?eIV/%aDھ(D锷f1qB霸r;?ZLdؙR %dVLS6l0]ۀ fjk ;"xep4xPzZ>و I|HbQؽ1fKnwZE`cgH@Pmz7*9Qv^0ˈ|UV6>CzAuJㄉ\ ?0 `?<]`MLH)fB1"t23ĭ|{VԵDQP[*8_&otcxs@v))Gq5P#E*llA0E1^ˋf9+C)4ekӠe2mjPʨ{!I;hP'cXZu |}$Ex)kD60iQ'T9ȋ:FU4`XVX7ϳy%B݂LƄ{ATC\O Cu ]d̤yUaB㔖/+L%+oN@ɷ'wEg M:9(JC|Ժe2VHZ+'KSu mp?Veu[&aRFeeCNc[M[L┏\T^f>SE'C~x&9wwgagQ1SN~x9r'JIޱ26Bm6W4EC>c#8PmH~VrR5ŗPCi(x/eaik\[V {tdm[E;Fה?f{.Ho#oC Ym&Zlד_D\7X=tU u$A[>bӭ C .M6>x:Z K^~ZJqל5rrN2P*&1pXNm+|2ḓi5`̹|/aO'O)%WSV 9wt۷ ,ن`?⛤]ΠrE5 žˡuLQA,OK"Rs*BR jٙ^ۗc9y6^ݤ֣|L0|KP|LL^P C;&[w@8UW+lHHn jxb`n_{ ِkIh=2?safR# HQ}LDw?BK'Cs;G"[Cꪴ4f#zD.t2ڃhGG ͹#zݨ`#R~ɔz !b:2]{ߡ,>y&9,XxWzܭ9:o 4qʥ,By'OFad g+;ч3$WE8vBhTgNJe_Ȳ <`QRb.8gN/#'ɧ!gHԃflEjAXs4%98(Χ.뵿vbqgd.1drܙ^/{_:YʬkM5~<Ba?﫫=+zFnls(o\,aV׌Nj08o1t,1k1 :gƄ{>ߙbMY['ϗѹLV_ȤcoSZ"r- X`S<aY^k}ΩMu$Nllߤɗ{VNy9-Rx`v:kd4S%g֤d. Z$uSH:ݝ/{?Oaq”nۃAD T~0󼈋HrBhڞZa(%i8+T-5Im%Ukp[\WȴtKie)-B.gfбA*0U.RFBx՜U"i؇m7ڠ&,z0 U˟YV/'L6`k^awجp16k{+UO47*T[{ٻUsK_>¥ɪ`U#v~29/L )W/{-~~m .?.T7dڛjفIsRzaIз^M[T˫SEFwdw'ƐڕCQL"ю>ȏ'Mw3L7f+[$$=h'ka.e<&c#8۩+zvS:ΎrG+/EkCm*xҵ~2hIlxCٓ>z[Fd<*r: .E$TuL~gWw$V'uv$h|2 v7ۍ$|G&-9T+ZM*Kdǫd;ۇIWh*ݏE4 Oe>ʗ7W 0dVFh }Uk!f2^.^TO ,9-WX,) l=2{ȟa+!>Ѳ 1\+NzWS؏Hu3pαtOK>*{]m?8>|6{hq(٠ "'EL<8-˦X&[?"Kf78*u.og~# VstUwBQYfa)鶚}}p*Gӌ2)JD' I5ϨOR>u `[AUD/?qqXB6*QX`Y_+}H7"Ͳ"܅Rrhjރyz0tVQa>=4COگnY&2KGM!xYYR :`<Oإ}hN2k3걤CɿGs'Z.\?W#r ҆%11,Kvh1H?j3mu T~?›؄oźlN ۷xUˮࡥz~dH5|Dg*fl٢4)s C\<(8@⡲tN5BR Yth^RtN6Lf1@X.fb|fa}h<46fw T e:bX|>HMcdh %ydAP+bm1ED2H?qEkxÁsiZ>لlvClG, qk:9z qSqb$!/! i:|M[uqv }2F*D T{^&WxM+"~2caHs4Zf@m B[}[G[`H-J-l(b&[]t Gr"ӪbO ƽWYLJЂE&ԕn5P7`4ABX/~nre]gBc(Zۑ fkM`=<`%ņ8 Fq\ytKQ"ܲ5rڛ=8C!r@HF7&\/&Ev¼fPt:cjq=AB[ yd^'>Ŵy:a6pCCFAA3D51q_8A/qDڼ)" Mb}D奡/[sq;~Ŀ.XoUt5?@IӸ9d$U32wvCₘ(Tz#EP]KBa {qvUcI7* pr+I,sD1i ,MrV&fL` Wb $^r_az|)Y!~31C ?FFVMUzMO:6ĔpKg@]d2Rqt@?_ow7.U&{W=`wr}P&~,_>U݇-tѠ/_&GaiӃhW _kтilfl44l.N3bߚr](j#qsDZٹRD͘=(ΖZσK TpM^(i5lxUVɦ\HcPa kLZKNjdOgvɑH>h]1=ֶp sv7Jd)u" nIedl70eDtU>[ .vT)ܺ%ka`H_վ;H=Ň };Bgc/õx*6]>Amd\uBLΞ(bzzr6E[%Hi<6cO`讧7=it3.E@`n6 FÚWGvtS'5tD; ֔E(1Do^تx pzALjH#,ޅzh% '8z5/+9.l׏^7XlYC,Ѫs#W 2 ^#oDR 8C.Vv$aIm~L_1t i[)YrE07I٭B|HY)#k qtmxH9_;s8i%hG%ϹB(/Y<}ȓgbCgQ툀x}rCm`!TX2w>MCCƎ{(m734$L*h^@"a@0\rYȵXSdW 2(SNƗiBx7u,>PSvU Yov5IC1n Rױ%7_2fо啸}Vn#6GA<.ru޽@<H!pOA)z7dRIRO|.eL߼ǺK:#VtʑO̥k'x(H`du8ʚ7f Sx < 0 pƺ=TW; /Fj>O6\Ш$]aA#P6Ҕ"4Җ޳ֽ9(~ 8wg"; р$S$,vf]覒q󣐪ʉ}VIT=ėT;Ź߀@XLIun-;KcuM(orTNd,=zNi&l\fvh"C7ғ4 HJJ'q-)&5#Ϯ5kT::':5VB1ZeRZTv/9%n"g;6=)fG_H\8}cMτ3ԟP[R!e0U]ux' 5,Ha w%^3̰2 {6fFTwU>O=*P+󔛍׌֒O޲I\dc"$ǔbEl!|B+itcDugd0%9LI)Xkq82h Cf,.3',D:PXȾX JǓl"la=A|mE2Yx3k"*7qQAƨ-&h Dkz.٪ 83ʖȿËH.e&VVgAmH"<12qR%^k5<'8Ȍ0c+RAb#afD[Zy"Jx?C_(ZdS!I/ny |!'{IrmA3YuO72!q=|Q@ ڢ CRz4j,ՈG)T,Mi:vϋwis1Y[w+GzJ L#9&7/g;ַɧcu`!&آ>D-O̿s])Ǎ`D%naȫA$M~l+٫K9ZOd#n[BF,Mx'Hnu*Ң5ق)M:{gπm8V` x e\6ae憮ٓx|IZP 7xhp`_PJy/ s^ˡ_P}b7BLQ|A[IҴ@]p5Bt o=V:̕`N(u2j!,WD r:ZT-?6^&Q-ܳR 60I1l : L&"f١ P8ǭOnFswJ h6;pektfG>;߉M >AI)ܝ6s_TSvMߢ 8zblc`ҧDՈ5TDU &Dȍ$dQ͆ـZ;'~RFԀ^$^G4A:hn(+m.gd.[@d̬b nz̓Ɂ zD<K2]ݰm $4]f"^>}AA:Jk[I+gUS]!4Zc۰zk[·cҩjSĘfIC!ɦ2^XC't皀^ơJY S~0e 2*}fEj9 :@'}pK"ZGT*V*DqV"}c3דOѻk%\J)2HNpy} mTZ/q [h:JhETkL9oy!YGcQlY0<6 ȃGeFɪ%/(r{^BqCd)FK͈ KHD_ e+ UAfC@r5m'i[n_Y5a`lyVf=p>v0NBd(@Đ5o~Б}[-d;671>,3 2KRZls}  <)fwի*\BWvL4+YYQ> I Q/U^7Ӧ -X:SyOE}iӏb(Ì̝ s?emeLtk:>#OU.FuvOA W46P#z^D s`d_ptvʌyMa| 8 G; ы@"[gc0)랅lu{'$/JxHwTAUtㅘCA>J\3΃E% ~uɴsBgKyy]K0jTl-FOc% [:ԢKmӰ*߸븨\7rNmu $6 |$.L!斌5 M_}㱻?y*: Z)m1܃ل`ƒhSJɎRa-ج^ "t7*Y1:̻/ihSxTYo"ʸy_FT+vFԷ p G8gvL@Z8ط?VG6B3Ga{<^ !#н|dyE^@;i l߯+;_tl~(}%BTD0i? 5VΜ%,Խ7 &7QԼ1oɭ/8}1azz.xtmP{-9XuGݎ\5>a>yM$j>=I$6 ⽴1KEn 6q 9Puu0ffz=yܱ^!2fYﰏ  *-z]f5ָ 'G*gKmtgavS (^HG4p%̰fD"`~(D{#ˣ]*L kJʱYߊfCKE7J} ;J8? %:|$E>Q2W =Xbo@Npu]\ kGf(0 lU=AgK&6@_l'B!S( po\l5z& S!il'ܓ'E,}3\Ե5jxP w߈^Pss(2! AuFa#q]ju2\} Wv"%>1+<`̺_LOJr(+#Yك(TL問%(ٽcgteΩ*O jd9B"kMt> /sgVtIyPXS1;.:,,'b9ĴXq']#2(L!<}2 4#ps_ Li[TV0u~뤷ReC~j6&3abMkq ҢHɇh"X]Qa\h]Zpxv ~ͼy9!6S=rl)a KM$.ݐ|UV#Qxatz @;Oald+Ʉ%~)ƶF;.R*GfaLLTNߚx "5/K uVicÜT&L{i)ZT?ŮE Lz"E@fβپK?mNl~;l$v1Zd5|Dj= KZfI{Pdp .|ᇔQmchcb^{OIi)^n(ժh8_먫i0bJ v$?aEd_~FDeLPZ4i<7M$Ǟ.2 :gy\`9UG>OHR@@?XѢH^6c; DseĂ>\nXԁx5C#Cۻ)~5dkKOS ~bRP&3k>X' P4y'L^Se5爈[I>d˜pi,L÷ T zUD0'!<辳5>x,9)$Y~PK(p`eMt}2"Į9!8Y7\gov:-=˩ܼڥMw@P5 ~Q}8n,גƥLXb΂f,>0 zXB a3EQq#"bЬ?nlP|_¸p& "}]5q됎S8jNщ4S[Ö!WmCL2_Qu~ru5#Hg?@XkѤ:ِ隙<y;3\a?^9ep Hx-2T\ru=N+ٞisL'+f[tᜏ{k`}0U^,j"\\{izVyvz -#jIκ<芿JA~m[a"ҟY^k0l}Ym#F;'iKo'* ,ZbE|VAU^]Yf5@ ُ~(55B~ң͕}l{"jf勝cY?#>.<)s_.SxӜHvf@-Ɩt;+!KL{G X6W4(oM GIzZO1(7#9[f `0ՍS8Av{VY߹8`mħmӏVۀ4ʥg~ls ; R۪eTV[KfGl%j3׮@7oG\LЁZc-c$r).y[n-wn!|BIiD+p;sہb8_~XeCo5=e*OB"ֲbMS )Z"ip3q)+ϣZڡ,EwFI1"ŖGh`対hq)%l@ !3.&a]h?=#t\1zaeMltOMyz؂]AngwoSnd"T=UB*Ӈ_ CS¤@)IEeqY~nDҹ&'r5gOʟm1e4()ƟUz"cS('&@K,PdQ#09EtY NoSv,ؒL>LcDVp\y(qpI՜@E|. gEHk(BnK!G&\sk /LlIIJ鋫XJc!u͗# 1YkG^Fƛv ݬ2۰9݆PPlV C'mi/=œb\L{|Wg3-rDJIz4@djWE̓mʚE\. $EݥSšaS9{;=TWvr^ WŭV_^]\>;W@AOk"T9fN;?s( JKlݲy#$6 +p\."9 ,lwWH 6 1!#a0d_:)pEZh@Crm"A"=#gZU:zKzVpIZ";,.+ԅ lPI7Ģ2ߑUwZz'`E<;o+>$SC]6Q}ݼ,T;Hn:ӏ+r4P@W.D;JǦ:WjZŧC3E;8yM> EU AڍbG8v)RyyfJ~Yw*b04b7F7ʟ=Um$Mu#-Fl(E$ lz2/*˻~;zJ[\ 5\V yEnx0aRw^RixIt>j9#7&o֦x8RcF^GZ8pN~!Єc;%=Te/j@GAsD3=24:-_[eڲA[={ ꩆgyQTF߈Mar΄`Dp)$$.4ݛF e>|Xt?xTx2Q +Djz;&iW 5~lnDCa.!ZV%\$z^GSO ?FD0nVk؄@o@Y{qm/+AOWz̎\eILO=`G#~bgb! |L|Q6y Qq|5q)_\ScB zv7^9 3j*ٌ4; =-8.d,5e#.W(&@b %?+A}ńvH lDA*iB1&:$ ݽ9TqP*Ky8cv.Ok- Q{iqbTrԯtQS˜`sfJN .7j[l}ܺ- p2 ?Nvc>U B{y|6-@w4fcԋhdce{GhDob7lP<`dGDwf!0ĥg')yTNV$CK)Umy|84DiU K?Fw7r9( ~foWR]$2pᣙa;hjmX7b m7񇁝G!!F(Rѵ*O jY&eR*b0r`mNl ΁}-II#&+:ں؄t M4M5r_:Ѹ쐺,R,X5$ˢ#, -̛qE(0O2 ZF|o_ܞ1Nq=L>3 lS RCVw /۹?وw6\D_:O[y6 yl&P]d>#9-a N`.ynХ$RlkCұH C>4n:#oij+B^(>6tKo+ܶ.E  fxSETF]3CC.G;OKS[ԹBT'r48)K4xa-$p3+\n 0߶(wyf"a `.w2\_6>bċ%1Oeiĩ &cFF!Wię >`%[6gQCIoM͹g q>Z~R7v~ixu `d{!C2%&Зoo\sR%uk?iPlּԆ_Qr },G_J_:/RQ[n\T/ ׵yFO8:BPӇmVTe7zEV">%Pk0-jiSe =~R@cJoq ĿkRg /A ^iѨI\gm8Z+>5`Hj-0]9F Mk hg?vXCEǟ~umy8Rey "1%Wz,)sðh 18nL9`;cѦvu"S9<5E~K­Պ'#)h?Q.Z&b*%WRLwoϠM37 L$2DUN8"$n)RreWI#ql+`bBA=FJ~ZBL3Pê𶣢aY_Gh'AeBZ'뤢z-ӝ-_yL]okcm#8;J:^n] <oXbOkeQkeQbaPD򈆰:ǸiV $]`Xd+>MWr %h$R et2{ N]sV>~0}!@Z!3@M>FbOnkх4P5ٚ=o`јURAH*7j6Yp([)Pmv[Tv/)ܱ5:yD픷i Ե]={'13B'ľxG*àt@> rärb *K {{jZ.QjD蜍y;p|"&iIA,'~">_ f_DHvݑAcuC s[h2T7[I?():SlWOsp*y+H A1&M4}/HI&4z|[ wU $Uigwު 7DAb,N/I+D1'X^Ąh'@JWncs<0 ~Bp)ru\n =2T miV UՋ(lnjK*m Þ]Y"G/]u@Wr~I#V UXN秵`HI4Jyʮ ֣ ě#d^ʜ,L@&;+ČRHXPlsSPC>%X?W/D!vy!H{r/Y-V?Cl e.{FT)Woa{8HVAa%w^NXʅpJ<9xp PtxnF6{h?vA4ui:zLK7WD3"P.Ã?&RC0Ba3"L$.r̗^dâ i?=wnD&#DH<[J*7S8%+q*p,ƫ܋{O ""Y]+,me>9&V.殽ZV!ŦZ}KQR%r B nHD(ASE(k:o%c#-:*M'`+Y:2ུ7w69F O-Ua:;A UI{Oo pF2|@? &Ox-aF[r.'<R1Dqa vD{ѵ<5Qr&ōNlx 9{i\9#3,o22JCg[l>!a"I>hwMս N `XJbW62$JCO? Ñ*ϬB6k)W X Va@pw:a_KAvPK+APd9#rJH Hߠ 6n3H\MT1-qyII/p^_>u71Ρ5)~; nTA)ڪ`@{\q$yISlAf(n b%d- )HXlV!p-'#/Sk ͏x7_zacD5Wh| /5%179MolNx lȋ_߅E>#Oot MzEvZTſGǂ{ E֪bhҠSK {ݯIx/nݕwO[4[w,"KOW)чLCg]A]Ȇvt$jb%N3a$u$Uj*8gJZ,ʗ\ SC/gOOJdV '#T (ET?"(7ȏM O-:h$3wN}9òbuENrdy  ZFr,5= UF0ݱjv0g$T4mbӶJ])r1ĩmҘ#  &U{*H4P9IUCSIg I 1^*љ H@>v=ݕvvp:r|>" nWkXM߅xN+(-?,Q#g} ĨC$h\hYa/wR UqQ ;(|Qw[Ei@7΂/iِ:wJLz!8~2s$u芜:nUV)x O]jO2Ck#(k>.㿼ujfGW-+h1M6VTQܪpaHpCo]pȶ~׽ ~\;lx5! c5#@$L|./ @ܭ>Ưb[@VKE/Zט-n!*qRph.D Le>3n`Dec[ݬo9vNKhQi eѼA+ɷUH5zZ̊#.!:1C7۴-0O@܀Z6v$_K,njf'Ž+dW T/%=;cr?ifbW;9&GdGB'ܟ;4QszקFZ> 1<сJ3xk^/㉹9Fp#J: cYNsi{ i=G]8ҝ\\HJ]94w>K#+7&6ޮxC?Fx?e?3q&F2OŭsP!}=XQM1qݰCc݅mlhi" +;gyyqkkK.]  |ЇҢS8oWS]8~h>=I ЩV8?KN*uaC@ ,ooE+&I["ԛ\Lϭy:աN`ΈVE=-z~L;MeϛO|"'Zt~ьj=] K2eipMwV&&fKl^;kk%mzN>ʁj';g( Oy'&F>V]sv̤ *AIxWXOBsEyn\Д"% 8p2ӱkc sjb_ށ!gѧ$Ymϝ~Tc# `u}5Y㵕ake3":MY3|Vx&2WuQPD*F 7),;g^$;4na-ϭU?/䝱5;/HaRm#U SPoS*myz]F҇D(i+KWU?'!JJSpJ)7aOjh~)m͍ǒ#Cx\Eb8BLiиdaWD> 'H!^je= `\pfX''Bf,|]y'Z+u*[M PE{c T"[ \ؘ)]hPI#ؓ^ = T! 'lg7wNtx;\n`rӻ쪼y+|̔JgX gtjPk~)lM\PO JġQ/-:^ެ\ #ydoܬ+އMAljPɣWvѾmbk!'Gt| Ҋ%|z8l$ 8DcGpFϚ4OeFHp9 D[6_mnP;զ[,`y,5K?E%7UjAFcWaClV: C k>h4>k/Gw9H5F-*/eOnf@9`4bU:|l¿u},~o2Zj\8FOFi(7lL#`c ãͲ"i)Le/!)Y=ziiL! dџ3R̍ݪĜlJư̔2O :y׎F=4^cUm?STpT92FXAx;{caP|T5;-'ÈJC;Xcr밡q:0d$Z,ǃ|{YVPakLZ\ 0TAϏa #yZYB%f^YWÁGe8p2ug9_>ڑ)(&7- 4 RxEwt) b j" GE}KҺMv:uفgQ:ϧcY94-FQ!$TOo8. v;> ՠU_3|l1B=m-3+§IQWS1g^zjHŮީC7 HṆ )OƜV}2O9)*ԺzǼ l͋xcX AxgYn YL0Rʬqj+5%_6Oρ0eo52uWSV±"ٙl^47H~Aoѐ2{N_x^Y;`M;y29~N%@Fj&m`D NW{fJg&EM;bi6:Wg:V ӞoFR3:pS0?pypWРm,N .hIML3_T)pϓF4}"4V#}7nf~fZyuCMwM( Frޏ{<-}/*q*nJd_5yZARm(Ԗ`4ϦEEv٩Fnފm0{:/R+a(.Y\pVs9s#g4M vB25ܣ]Ycvy[Tڍ՘s^qNj1> #܋sY+ibk< 8yx-~젒ӕ { c ,  ;4H[.G3:1LLi p%)GF7UW/׉q4HqNb@ò6Yxq@ȴt䡢 N *2?)j^R~[g%`QIqm;rߨ8}Yݶp=v}IOH,^B2P9ԥ#"oZiQlǕş Io}DAQw;Zb0E(4 šV1Mi}apE y666V^t>ߤsö̕ {(-|nS*kMțwQ: n18$,ye~iѼeŭQ4bF4ӓ~S@fEkm9dkݒRPR.MuJ:;De(#;pM</ MTM@~c;҅oE0a#J(/ 3Дl7)svW+ߪQ@ae,znY"nEeS@7dC;ݗBlI6 q\Дz [TM6W Ij^g.PS}I=2Fh<={%|@vSH.& ;8LzC䎎h:tܪ3 :h&(lc7qIɟ pH#垔Zb5<{KP6}uR\^*6릲ai`̎km#TnH77"w7; =wKl`|Uʹ&ҺD|5LK_.S"`%!U=0?ΥK8j* {ٵ5* pG z$ΚJ|bakz=:N'z-饊'%u6ֿoECD?aQ89W%+`dB@=;P$@l! !C0ݍtW~HIJ23k{ xJ"a43aw5vmP4sI9cs@|7ͯH+/Sw|X~ir4iE'fqAzX ̭yHBCx*\26#?5adMMzUeNv4n\u'eٺc׻2I)7LuhleCν-վ11I27=1F nk/R(cK[R:.rd@Ɇ(˱a4sf fSu1E-2;,hHiqև0ʻqAJOe8ÐH[CC0WɉuueA:vZqqk.S#E% +ɯn۬Py}$T9%S |r]ڌ'8uǬ$<xo)UL3'BfbWm'JCJJ$$xQk/T3;&$n ۇm)W)d!V|K,~ɈjއgApލ@OH׵j$6rr;O\bY"ߏuy)Y~1*6g(3Ed`Лl'.^0A L_V$G0ɭͦEsh&e` hgv MKGK$X)ij)^ ILNHUefElv92*Dz=΂}Tf-Sz3D4XBR8\Ep58ᢲSLvh#@*\;?*6wI(pZ29l7.W%Mӥ6jϏiȉ\tNoҕf -ڎL& GY-P؛WG,×(n|p [0$_)8kGVڃKXm9?uno[,N?r)/7͕ȱ7Vɰ#uVT"8.lӖgh.:RWH`@ bDR~ Nѩe/I"gQڑj`-э/iTOcP5@($VRWW W-#P}47Ҕ $ Մ~TYy^'H05UL)@/7n@W2@v͎eo!qz|OfNy՛U2ؼOrYVR1 AjL?k# R 1d<]VnQ˳+\գ^,BiAߏ;eKL}[BAnRQ {O/=.ˁI |kQkn>C谚O]5, |6@mo<0G*_( 5,J3Za+87"eqbr*4x*[>Z/zmvEHjp; :ioJMK…3 kѤ$5uU]ƾV#! ͬOь^9me@0j .5SK31Jl#f.S$ Kqgi&Mbtda7J0y','I #@g/tPl8jdkkQVɺlo\w)n(x ^*gn5\Z*K+uq`r_>M#[~irGޗ6w@ۗ6Ӂ0 _}kr_"q2Y^`H99J/g@ċu(^9 uNT)%UCDgh c,5B>1Y9槁V Zs~t ӗR7~_#jɣ6RfV$3י1![wrvG$h}XXF4Hw98I} d}r3^9nٹ!xj iU)C5xCMW$(W&:Vdˤb^pl&p-qKuӭ٥5^(wWQ 83=CD̷'JIzCn0i%n9˧Ӛ(/=ؿ=VoQ7 8%Ҥ@3O|ŧd-G6q6iIZ F%t"-}f,P0Z}aˢM%Da85lS6>HІX]i 0>+eߞ%\< rdƅ,پrbPvޫ{84h=ZzS_-M0SNPØ#Y`9s],B!v!nD©ONuOgpȴ1e` N&?v^d(CchVVvM{GVրwqS^؆m&=#+ Bq^ ATg:f/ $<D]Yt)+垟XM˛N5/\|b'1KHs\AӨ̴W7ׄ9 Bzhg*?:4Ytm.eƟTo$8V\uvӂו}+М:s>M4s8̩ăΠf:ϹQ5yyi/>xDZ8%'}.O r=eN2t(I!0:2km%j?tDMf_?M 3ZM|oG֋^b,}gFz;Ę#sQD#) +v:'tN⯫C,ݞ2m`6ys]=L<"T<(Oʒr BCi*BaVv@f "s޲aL#q:V5 \X-X 0&%0,uQ֩/|6SxW lZ0 ~Ear'?g^iIh% 霟 Q;Cxq8Ьs9:+tQp0VY8Or*/J6t8Q-s}e#^X l= s96sIUG9=ؿYAx$ۍ?؍ +iPt G SY ,`2.79zqDIQK||Ka X{\p9SdS#̩ؠ'Դȱ<,F\ttA@>X9l ü$dUU$ D\8U ԷJgNl} uɚy1?dgĈjڋ,KK d]ՋIh)7jzXfoakrj^F `Zi .AfUmߎe!YlЫ܉<$|(&gQ!._~v+˱=u#B+<.f ?5rFk-VsCG5}ضD e"j (: [Pn`;n7 JX(E߸G+xHJ!z;%98BJq9{ 5t2Mpqb7[Xs23aޒ,Ȑ$ [{Y{MMLD;gNh!G+䥃Ee${gƏ3 ;vmRtպ+f!djԮPK1=y s ֻiE҇ *|GZ2٤+4{`ljftq얤6|dq~.L鍦%P#yrVѽ9, MA1.({_we>=ӘAhFC*pX+3AYB>^HĨ]!{һ7ל%zx9,Ѧmɖ#:mq'?^f­V!\8meKYv _mw0b,fn ՛uy?Ųj*H9@yk,w_6N=UuF3<^=BV#sjw;FJ\X:`3v 5=2LV|4:/wy + bKe?ߞ[u"N:JP%JwXzDRޔA9F24VtT^PJF7{xj50m0_/Ա2xZwuuvN eUq|a/NAڥN4 ,yT0^d;sxP!1] *#k6ܜZMOdu IhO L.cwh&A*rSOQAZ\OcM?QhmiEN-R,8>&{i=hUYV>Hl?Xja)_0/һ 3}`6#ӛz\@ AK1^q˶4?xM-,%Xy!:XD$GW,b5bI5 dzH}x>#t7:-=%^,GBy`;8b6Vj'AOk)b}%Њ\?si.CE&R|QϾd6du͜@#SϰijLNB ޽+OZ YXT7y?5  u ;{a) d'؉l6u-+F?M4EKY V;GwGζQ8F`#>~GFzN*<(y`QU#b)}7w(j["pH94Ux s 'h>TG3eh/AH"]x}ҨjrTpY ǐlʥX\R_ClG`?}.X+`DJ`f¼H3ۀ1pرTkI8cxl^S}&9Ʌ%cϗHgAŚ-a(OEen'_AY$kkYGj]3GÈ~&ۇ9GHt*ˋ|ҒW78%Fn^jRWH7Mvʅ Ɍk#ŝҍceT#}JЋ3L)ӶQ}uͫnz!,&;餓d%ixBl d/puimZ&3Ou|90w{'=L.zĦ浻ҟLxW6 +EzhjF\/КSAɸ),J_}@Y/OO}siiAw0QtX8Pȟ ֬pRYkv"0 `v`iy @Lt6H\t# yuOUP 'M9ԒG(}jXjx5+uhRy;m|M6x&Vn\|տr4r~uKrx9^JQ?2ŸSk3]D̨MkȻdfږm̸60X/Iri0Ye'X"Aq$mXHehv7J0bMIVȓRgO nI@D0NmuCZ .nkݢlp*~,Uu-m, T:xinA)Ǒt+ijQ)mq\QI=؂C C.zIe]z5r{=Ky>/bzj{je}P6=gױa{`v}өt~l g1%|s)ZI&#k+vcN)c0NGjYJ} I/ũݒ~W]F3V@qQP ⣥t;1b XG=$#s[HAEpήu:-T$ SV1TbLbhi1pu-!F"I0&Mw߮ 1ǰ1) Cr,?4'Au)A_(_Rzԧ 1=/Ej 0zz_mmx:{STq0t<W5`J・ =w &U̻РM㬚QW+NBU6 _m-7(\̜ zj_҆lBuF:JPBGqzr|T>dmͲa"k4&;Fr 'loy?ϗAR9.CEBlphc=. ;Za%89 R\{6Kfc$Ϣ>_P/[im_c#^w9^Y9<u#0z)#kkf=ڤp^/4JN~زYQmjF:Qsv܍&9esh۷(](;V4ca6ٛ@:~,Kzf(} fpL&tx1)L !W )}beijSW ]ZsnÕs,g7FHIl#JҞnx:"˸VZs۟I'.5p7RΜ6sPtWC6R/[i8TBt,$eR+ 6f9^{x$%2?(@G0n0vrx ~hF0<(3ys(߻u O%3X*+<r,㎉W(ׄxew&exj]5__;p<ʥT\uj<}ϡ2—HWn\d*kH5 } ['"+]lzx02o֎x`.)¯.6󜗮1B9}OlSw<& @U^ w(!hlτ}:AC.[g( z͊9R>H3""SEV2ͦ^nD' gBr$g}Z^.cVIG|8%f,C 6V\Ȫ$%d$q~&ѓ%} hɅs'@UveSa_P w\n+yR:rJt|ISo.lQdYSD? t\~5rrK؅AD5og{z̀LJːpNjS@>-1,ԗb1d3[ls',~5ñO k$+la#i =yl6=SӼ2@斋EVU 픨P,(|)Nc=H@P* թM+:QohEG"O‘l뢹91i!TxQa7g1I ]cZFjgA0u#J%sUF`B:G )<r`Jct-:7ZB*Uw\B!RwRQA[УM=J>O3BKdH5XkbeX K_(R' qAJN鳲J uΡ4s *ЁSm$fG0%zĨ NR(^S߶ҝi[.f N<<!Z\g?) .uM'{i"dq3߭>̉qpٴUpQ{T!z{Qm BKRbR+Q܂=m [[ }Q06r>?L~GW/'m;Q=Hă[;DTwiao)x{+|󢽻1=8#R1_W3AKẂ7xK.`ʊ@ըlA]l7 }kq}\d:?"bwzsӚ^D'LUךm ⯸VMmbI~ެh'F|Z(_M7! Y$p(**Ԛ)Z8jo\c0K.cS̴(^ZaLR>3IlmZhWŮ8o4DrERj/sv2stKJ'9>M46]|-.> ۰q>ŇOa@bL>*4,ĥvĜY?ugWSx?ɢc0*28 ׁ7N`JMYrUtfR$uU};߷IcO1# _Z$H3\8nZ%_ضT: םMC0gy T>Ayt-9Ry:/;j %qaKY=!NR |b甸EFKa'C=#oT&HJm_ZCQ @Ұn%jԥju+gpwDi19گ~p/uė a@] YU}M{ j<5xәoµ XB mݺޗ.5<1Hhl\)X ӽ{3ˤ݌S^{kE-3 ߴGLWK ̠-jU Ǫ,p A2t@FR:MtFOxlL'YBWU`$WbYF=={mzKfSεcKeWɱ=H$BO?H\8sPq6~P8hY"lgLcڡ#Gi%$F3o?hly&ط淠2Ή=^98^#XҘZQYTt ѴE͝]цV5_~x?襇Ɨ8hLꗳ* h48Q .xC=ʜl!Ѩ" c)# xdžbhNlLY:?qP(kŴ~zVQczɔK馾%J>3 Jՙr +H@uA\Ar|Tb)O?PN2FY7OŰ˂y Ku#֡yV_N|?˴ ]EF;,rpnqX>caT0!D/sjaNʧhЗmtHJ}0pHG29Ybj!ێONzjzuΈl7v:ÊQ{ Bh5E,(`d.@(7n3rJZ{鈥!>f <.$HmQ焭*L7KAdAV}D6Rݸ})Q\}YSn$ȋy>#-EC_x/2YJ73LQO\c|3njU2ZTt4ݓb;u/jvG_l PQt.Lp/^w;Ҟb4"(h!'L읫]^9E]cY]+j0hW-jSr兯HTz15H}DՖ,f7@/0TV2l6޽F2&S&ͽl^7's-V gyvMGhʁ6?ϊ2p"aC>xf | $[s"ei#Ǒ;L&߻IuzU0" 0PugďAҥQf<9_5#LK^=EmSAx-teNXAF4wW7ĆIm}\}1[٫кQ[ز$\l>f;"޺i7.5>?|3ϳ[,1H28Vij% gdԯzd"^пvt{ec?lm,*GYRU\:cIGUʴ|:"H_#qgv?ԟ@:~&C bܤ[)KFĭ(R\e  # 0mj_'BɃ0[2]v'^TT)Z錖'@Ȯ8O;]rvƒ )rJ,]`NR2 xDhmzw(&fE2Ceq5t󌙰@Wa[9P g,؂*fdUQH,0ȉBWij ϾOTKeG ,9"<< -%؂U,V xg_?0h}GdV`a,7"l<'r%SCYᤫg0oq@xqAbsӁ )C}S4cǮY9Qڴ3{MHER R[@5}*d#ōF$%G_R\2Htx"{7!7 YK*U"a\=-6҂/54GU)wey ,@I6AS]@+G%&4Y[l9ACauG䟙=ş!8_20Ƌk !5֓mgL ˪b$-H#V!(q0C6:+!v5P?#t֔AMt>y/{ Z$Iö] 01<1,[ae~V O ω=ko案COj=o1L>e3]ZSuJO`UDoql SF,+EbrSx1D_ɂ݄teI "B| i)eJ@`J[!-vJ׍ "ɲ(Hɶu*.vĻLEpһgԄ,!0^aDDګΖr4| /9ޟ3,ޢ[p=OD| ;phǸ>Ψj%Hc_IxnH+1:q jΐ}JHENX/ #r=D߄P/ ͻW~ ͘W!r*p4bVl QR% LH3 +bP.F[o  8vxEw<봅^tVwʙ=oϓT~AK!1yPj-r(QӅ A\G9EU jF"gcN>euP IEO_ux=ۊ !\3SmһhfzKUkEb&E cT޾ah:jn? :4u7D>4`զ:-SuEe^y@Te"0#|*ԿJ5q2?bsvمX&`ENK+n,ِBx2D_^ȨG=9e)ѹyew!W\ӈ7%5bC;?beUQMuai[]%N,vwl^7/ڥ[<8?ڪ}e3=~)% |۟IMr*Q}6i 6Էh.bW (QUU6FٙxE< ܸ%h/UsonntRoiE"k1%AUS? Wzc6m MQ8J,6BP*Jp (g1hr[9ab\ں\nCLы+WGL̰.9P2n׵PXO@rnNBKΒҊ71'/2BXrHdc'^ 13Ǐ@z0m-mN#~UeYb9N7э/qo0^=jؗNsO[@Nyqwy.K|F[:d%b,S2cqP@f_~٥y#ח,1A=-hd3_.'p7WyWw%h6|T\UH=Z-aJކAOTzC+&2!=#S>&7gy*hșk1Z:;7B:M|!.,"*j̲65Lʹ2 @)XH\}%;76zzOMK² -u&ޖ1sʡU[cm/,*^2ʍ d*'3!r5)oDص-ȕY;/\>{W7m϶;;[Z3 5-ouz-Y,ʿ1 Xֽb΁!{_U'Kj}"ZugZ~gn}31C y{_Va$#Ę/+a$_ $?p]OЏtdEqT1e#!䃘52>'J~ٝZhceZ 7hS0 ;9I!kVڼ.=0./ɩ@49kW)MccL҈~ U|s_a]SL)?NX4oTD0[ ECͺ: 0sٿŊzH%*Us%!m }!܃,YʤG#jHn(e;h 46gN= c Swu.w)V-עvF 5)u mҒH-{"CJZXL^)N^4i Joh_nZn|}/IQؐ[,1҈3ޖavDl6&JFie hk=XC-Ήy$ݰ۞]a ryŹ՜ *jώQ܅V[p$G]<'`Xu^ i4qtq< fa!dHaNB?rsUq,:5` #;钣Y?ge@[2ҎmQ';C'bGO/"$.'1ayT$A}0uOM~8Z ѭc!GFOr*;qjV*%/:& !l[)0wNHճ(ΨY"M<^8x9Ȣva3Xpɋ9%eW,3S{|M|6t8!HpϏO R3B%y\&M5,͜ʘ(AopN ;,NK-ܮȄMy֗TW;II[vfUT'|1L3/bE^+YU=4d?-3hX%FW  WiI`wˆ #Rl4MPMr+ևɻjdapAEн!PՖ>UC= %Z'nJcb#d9UniM`7UdW},[qu';_RT*}6&3Kb*"lJ_7}HVT{!jکh /7mf/|209x%CJ+wbx\_; 9IkzR 9}]=&7yUȠ;,^Xⵥ}{Rw@R%#/ ǡʘQau$qc=Bn(Y`c/\\"/Jڵ+Ԭ:m:l@~7B4,yf9⁥kxrv(v.ĩ4awQ"55CjѴ؄DL)>,LpᏍZu;h4g+^)j2tX,ZtC{c.loNuVf)l>yTiڞ}A|Ob\{h;st`8SKvw] r/UX>^ivMF4loV[,#\Hx~sB jڮ0l [R`ggSɶg%a,cΩ~i ‚`IV _9ҀREg lHGat /8~Ʀ/hwE[yt:iu ҆%S71Ǝ#]~{jR*[ ] Nn.TE2n!;*Ju{MN4'1C嗧&ehqrȨpSH 36Pdµ9”>~"Ť1 !ZmӦ\"?nK[GFhFooëCԪ,$`;ڝϕCD=IQ)7Qt\7eRvގL|6qvD6Ċ{y <''s= WlqÍh*t[H?;Vږv $O!ܾpLtRp}9L"3UD M1A ~fNrTqWVI\7[bҒSk֟\P~Ψ{<ۼ$x`H˳Fm㮢Wj˟+y*|N֒tУ6 LV6{S} ?xGWWJmgsVYRtBkCo%\}_< U2`rm_n,nH͆ VH lf:NqIJcr}=),^zg骳 ce:BI9òS1.QF3qkiHB`ɣpTA+$à$uByڇ^?s?7uXC|}4}R%=bOixK5߿/sCDFtL&*8ͭQ%thQ܁-y^3l7Tr(׾`Ez|RM,._ wML_soAkO'ŰNj{:b{=XVI55(4ln#S*,n1e8YXD4jfɂ{ƿ0dJhrl4ρu^44@6kPaPӢop×mg28_#̽. ['SGe\R6WwE ⢇2C{r:|8Sayq 8dW oԯߪrL5C(D8 Ξݻ:"g88 Z^eG)瞧R|2[Е'66ZW9Wٓ-pzU]: *x(-OF? Ȭ+'w&Mi/+cT2[,8ӥ;25g`5,T}ڑHW OF2*D4IjK {+5yXfݹ?ljŨ:/xB 'JQTЮ(];6hJ DD6 H qJWFAwg$cx=Oqjf hd[Fjj9PFB:M Ǽ~7]TPH&FÄ)~߼C)$B 8;(~tW[k?B2Sz|?GG_2YXxxN吷Zo=yϗ<}!/Vt ;wlNdiuEXJ]܍fo8* c, 組F/NT&t`)f]BOI~.qAցHF#B1cE E=q71waE88 #,#@!º'|*/XGQٺч5M gB#uͯu#t8kX&FHnB]o0٣?Fї^+#YD.P]t/OŁM oH@5܁DP5f" S8o, 9BR yp]š4܉F. +S<9jwKpm$"Z$BZeݾFKS BWMtl+S[(9%1f&l!܌IPU^WI n]Q|-/Mp臈NQ^!Όvǵ*b .0˸|X =D;KY}byۑ'B+SIM{ibՓ z<ߔGrn^1uW["n\47,$mģjS;?_^Au!7p~0xtY p!&X +e p O[Uvc)d/7dq LNƾ ܶ/Ae)=b my_U"ΌP<m䟴иʉlбPZ |`|Jn OdrzWd?rlFVhޜQiL6?/#,zS!\+9WEHR!%|c' C?zml(ICw_H}Sϗ|Wܿitcb -W(y #xᵏyhuPY~"k?}zhN+/z~MUa( 2~Bѩn3hOe0_PGX!#PO]I$Z+G>Y.e캲ID./zŹ*{c ;o| Dձ.U ).l2*IP'bvC-9}'F$}oȵMmL)kvY5,t[AqI*hZ@7jEd=)L gT_=_, Q"2u%Ex;YLThErG?1ŴҢwLF=p+9f Gw1h6!r"#N6 m'K< Fi)g3%;!{\,BtxTQa(!Y a/,kw!W(ybȒO3mDKҰl/C-/Zyc, h}(Ž\nSHt 0iat&.*sM2qrJD<"$W ~8!M90NS!6o'Z^)T]#:FCX}6ʈCƄ ED`MX-.)d IQ.B.)2~Lߐm)8x^$H}gdZz;kFD^rOwhD/-̙5|vI䠪U'fM׃u!D,}Ñs4?1UYuǴaXOְ;kʇ}[|B"1R  * ;n^$JHFkJ1_,.?=X Ǿ02NgFgf=TLjo΍oin^U# ˄D Uy.>ga) )ʙSF` #Ա @/>TЂC@| &;' Q #z-PT=xu%[ׇᥦZ (6kRo=%:/ 4.22x!H<(nj<P`l 0AF;Ƙ;įҕ?S[2Ӗ5l-T Z7ԟQ;³AKVJб0M[W1VSDx9T=?^^<">wҢP@ӚsU&rwT [Tj,ިE-_U 5 1<NfwSQhul4|J5RK7L ReU<[ϭK;|$l2eM( »al*&fcUXH$1ؠ!CO\ q1rik|%3$3K'cԔ)\#&SWxEI$S&AԕW??3LC.Aym~ֵjjJ=gtI.'Һ=LVTi;*GƘef̧N4߬`:i 46˃W* :8B8'O@' MG1Kr!y6e#xiIsq-ߌ֬lͮ־"\\7xD'J_ yyDeb)s5G 4`FgrWU)dCclD,i߀n uPv%Sj2١ v0IbV`p JCH':^O֯BGScj7vu& *}yZ-- >6lyxqs˛SQb &]qgt@id'8FVkE+IM޷[+.2?)kRR,G]yyFlv'zYrW^w#:FxSvڣ7=)V͈@#_|/hɨoI4hT-"-'DAФp'dF;حE4o O]ӷE8B?)A(ZK3ȞbK4VVK¦lAl\RgǼA?O - ť%r9qf~p ->2r:vQ?9JP[@v}8Jɜ7b1 hc'{&" ' ~3KX3>XCv`9S&gh02hT^8o '*нcue4zTmmw-r#_sc8+Ƽ{ģ_"8`rOHU4iwjk탦/lb wK\=QeEMNn<ֻ%Bj!o"~X[>L]x߈ȎbgMӤi`hm̨Wσh|3sE p!ҁpAO ɣ'4֙QHh8l|Y=iPRDRzy$nR(E;Vm?y_'mpHR_KxU2!"ɠ|#ؒL _7ϬkvR GyyΙG+u˩ɋwne]4aODMiR8?~A:DaEMwP?*̈ _YT,RbS}aM1Cy m>sBM`ir^ UD5ʸp&ڗxR`-$NN.\_%'Kf[˚Z82N[mjID1̲X[׬RZX)a~۬ACaЭ_D?ިY: Q=7+zzZ;zPqvS_wMqڽCP#p>1e5eq6$ƅUxvC4N45="#>ΈXsIhX`[b[&\s 0X[-ev$Jc9NWgM01mL&,ʵE9e:Fx, BE0jj"c(FЧ:Ttnul9jB+n`̐(X<ÿ?,£N%s58N#4ZO }0)[c5?L :5Cp+vEgukV z=0pүoH m&[;0e %'$§ZEضc,Ae]O`o&8">P&/TQZy *m[à6zA5j'5Vbc`R\aw }GFQsvOX^HԤ蛥?B$:ńށ O`]Oҵ;u$>|'3NjKHyzwǺ E$.¦<+C2)O0$\w ,21}qc P+~y4w 2TdӁ(5WY@5 BM/Tlӏ8'ZTqF.l1n+EQ 8c,Wž6RUmN908[1ij8NA͢f\$87c;$dE }u^e!հLG4oo.q%B\#љfPu}I>G쐘7Hn MX :gcTxIcĿo2g+0&xy/]xb0"Xuj#[c>L9ubW-Lڂ+ ? MKdbh2=CtiG^oP74^"bvl %&OF=p4jDBMӔO]iW u1 = EI\Īimymד/hGn訛[vW~0 n4:,hml4{1mn]P[zCIL/A wA\/qX9vlih<@!5fmE}oY-l=@^4( CZ{G:t9uIkϬAnI)Q& v)Mefu$i& kDBL?͆V=KIki"PgQ~ O_s>;>0NcvVYn'i \L\6h:5:Hؖb`IK3뤹 ;xHi@$K]W>M1VUo6 =/Ϊ{NzvW)i;! ,QXdI_Z.3ZlKX4_5_]ڳC?m>3tE5`HHB[` s ʯ2CYz[ʽQ:մ"HN/a5=:f3YRQ/^'J>bhvV~G%7&C(<58ŀ*oh> ϥ4 OG03xZT(B `0 NlSHS% 5TCQ=i˝+B܌N |l|O$.b9oM9;aDqTAP0nsٷ;b4~bv5J\҃:Fj+v\Y&9-VUsn.)2/{ĉJw&GEtht_rUJ+Z't찐ϕT۠Iftabj355Q8egNՊ S]iNͰ.I UKRK#w> Zl'})*Vtz}K2LV?ᎼkF&[ %g|lo@Z¬ۺ4ݕ3`4ce칊lgoYuN2UkC=u*6}AUq`h*YP;(gQYGL5R;6ؘZ}!glYgp8 ƣuOaKe7. z3w 1涕\Ƿ"!_hU)yɛ9='#ُ.YblC3Ϥ"v8gEuB~ y>S&j'~V,2#iIׂE"d( *٣*uG==s CWXp<⿛{M0X:Ne&1=9JjEV{xdU&4\;K8-ᇘ5%7TiAGNvn$8xm`0R^~.1Y(oY/jm)HԭWXḿj0}*i62iXꀸ'"{(_Ff{X͉|0Sf@ypf\#LNsldf~j}x;Ju,n8𖩣y7O(^ {LQBr ?[ Bp5 2/Ho.W ? ? ӱ.Ců$ժ=ɒwnR6Ƥ9~HSqagWuU8j}@SٞT*{Z.ego mp?,rLA]9}j/N;-Hg:lb0KmhW~ؖ|9pkZo͡Q{coRѣE# cEsnOE<v~+wDw9Z'19b[N;BYa.gH,G] {K7dX ³`@[rDV e^Y;.HwK5Ϧ )>|puh>H B,i:fڸ_ 5 <:)q:e}/VBZh⤜YTx5Sc5YBQˆ+vIħ"#R( ''d 8cgxeI:,{X@e_y5)_`2hH'6\g/g)Dœ"@c%3uiZLt 1hW59#zy3"ȨK"iԄ2zL< 6*5B7`TQVM7& 8z}z_륆M̒.췼/*0?,Vގ$'pu;\b 6ۜeGZIx11jVJ:Ƿ0)!5ۅ.C]oDQ)o')ayot\Mg1 60/Q}T@Aiڲ?MH#J']7g6np1h&5Kͼ=ːxn7#I99M}W[_84x/xY<s d"rAa§v,vJdkq)J!yܽ-W7#̣aGk=|&"\ۛ\$hFDiiU +; #NZ|ʌ/l4!e+6CY{f}Bg,3OhhL!ujz{IjXP<[dʼ(p;z(K(Mq ^pwŰxhKhnہ*^8~| L@*VB%X> VOzmW5@$l=^a,xPyP~kQ5pb5/ wRWauAlB de]L)!xlzwbvCrӞXxMLV A`d"C9iȆ#(#ZP" d3fBE5mϬYO&靄X߮K-`wA.HEfqSkt(.EKP7˧g,{#m_UMQc£ kŊ5zGoIƇU\ɒWJ"<fwStc8S}!*ffƚB""P`_MãX}P)UT uG%k<cKyV05H7P1ozd]x'F2;xn:*#b NdDgyLz[x ,4E 'ɾFb=Ѵ޴ԋ WvWsL)>maz#vFl'F9y-whzMNpGA˱%LA^ gQ+z# Eg062x(5+4(8h ⨎vrwQc;_>mzq}PO ]7X>L(ZVgUI\f7 H5<Hxhkr:1/#).&an 22,8UT[u ֢-/)6%WWF쑶vf*թr3gSlWvb$?[j'ry- :l"hUPDQ2 Z0Xj6ҳ=!_vT{:>co$cqϪ) ُe'Jǟ _[酄>25wݡ8XԬYVѯKa>ڥhF^b` ؑs4S_,*L!?\ &Uc;&ض]{kL@UMlͣQe!YӼ;퐨r Lͥ+( 5.)!JwHm ;URK/0cW@v>җWD yQF&e>Lx^^pLhjZ!?hi%79~XBi; 1 ͸>$MӔĭ["ٴ"Cr׼Bf5y"?ėG`l`n`hI>g\SU Vp07X:8p:{m8ׅ^]=E'0᫟%zP%j̢—%چ^rH:H= DƉ%\W+. a64}rV48sOctQ5b@g˝ ܳBA]"B׀=nc;[Ü7!cLjhx\M-wF P^yW9Zq ^"{_V_aq_abZkFNjys|Ap̰LbRg w0ɝ_by8Q2 p^7/,1"&b X(Ҧój $A?Z!61VEnN^EOgVĀqX3瘯G ./] R^U<;VdKOO1T;:i1TΒzD;w 7mÆJK<$:!Ɋ"=s H';aj>. w[$ם<w:- C׊#^BhI2=Jpl4Q=$CbA3$s2[#魉8TiθNZA!߿r vp9><;q}Qr`--ZdEf5Ҿ 8|.[JU8ٵfaa@w5w:{,Vb|ɨѸ[ڡRraXU\bi/ lp*!N+':COdx◡gSta˦zV+, 2MZ ؍6#g6$`vA7^crn'AlVyJe8 b9WǫHkT!)7`/B{ %聚i\"þLwI0&ێRx}ԐU vwJYMn9GG̢O7$nH5C@K%,|!;-πdZaakcmVc$M 5 嘕El㡷/mMǥ>wwEƸ> 6T;P"I*> N؊ ۱fJQAʗL\'gzr_9,i}uJC~<1%`(;;ހ !!ǗDɌgA/ϣee95SvGraT} 'f ,6=;ϟ5)OClD&[![. \eǿ)-1iĽKb JxSҜ^R[?OdFG~!kۅ} a9FBϠ65cvU9It YNKRpJ>S]K"eI67&]x2oԀBVC{1<,TCYmc{dkpmpTf+,d!%Y3 .>fWL4y$cTz//Vć$<e"\{Ѕ1TVcYw?>eg0RN*0*J묹-\_z^%ő6%;fn6؂I7 `$Y2#$|<e" Ae)\̶lys!e^7}QaZ`ڪz&PV+뱔i|spg(G5YbfX-{DǬp;e63?f@bո{/ |d.\uTT-ڹKYH%C`T߸TD;jud"Df9=ˇ;:Kf+nZz mE\G1td`j|ZY\j;FZ(#[ / |Zcûa (<Ϲ*.T眿,D+bJb' &-v  =K&tԿm "0i#8=w7闣NGs/$ꁤӰKR0n`KA"%FҜgn.'$5˅1)ۣή3MsVwC x-i,טFH 3SaBx$J)B e(j^LvH/%3p=`x&DVUCH$vf[:Z2yZ}a.yNDQSй_,pG/{#/k xVt2ya}LͱUiɼtKҷ9.>'!>i|P2`ܗE{u:M'u58WC#*Y2AD'Jֶj,zEDŒ} 7:g;|ZPƚrRfo,!n5FZ=Q~z׹zWQ%x [dm/Ks+]#4gH$ їܬحFSH#⍏tPvOq(ŮoiYGQ}0=a눨[(E ,H!l]8~WK>lf}X)kTD?|7^#$:$)󻖮TunS]Ce0THRv)9WcjHS=;ᝊc\rA«-88_WӽJb?Qg 0keZHl+3&z8̳ oh_?6hO3^y/ćU eڗ"=AhY9&]|o<*/+%Z.Y*qoj68^ xn!IDع/+2`̕ʇGj2Ea=OR;}eiJN-)ƾv,<,>?#W$A(}-o@KL< 8 cU8VM0.R&WHp+D܉lU!s4?ECω1p{[ct{}~'\ᮇ:grlX=3Q!0Id#2ڨMFpy6\5!UPy1:`!/T'aBHTT/V'3a.᝶@4T 4gF gIQS 'ˆ:Y;\6U zVޭH@=KՂctZĒw5%5rU/;1X(BG/PSm>;dҦKAHfd)hHB=u{6 ҆KۯIo`I p:U ثnu8VFrzJrhA18̌mz ִd!"?GN%+}s bĹl\0$i蕶B nPYWDL c)] q/Gﲟټ#ȇ_w 7#<2s\hCuGxG)wplwt捀r_ /Lu L3v{ 6Vd~ >Jc8669dya)?EUhF^oՁHЏ]eI;K=Τ=X({  #ɰٌOLNgJ6Mzzi߾ƣ 0/m1K.'6,v my_ӪTF)Bn.DfGm|)Lh;DOfq%+đ?9ɳqPB B^;V 8R;GN0>ed #NWBK|?KFx,1*8PQ_Tu %76ŷW2cP'wÝK~B{`42ME5^*cxaMbpqV4z=ԥ|: :ChOncTA܂ Y!))U92IHWlm)Q&| {eRoFRѐYc!OL$kdyf(>m \ K)5*Hm{tX9UTofh${ٰr%7;4O^(i.| '|R޽Јs{IdKIS._i.%d:O~lX%}oz, ?,-1n'A T( %.sn'\7Rk%d4#Q>XPS@|O yU-m 1jI. =w\HfE!Ec-Y `$Hw׎:78F} \i˥E w:/zMw=`t bWYᤎ3P + nslRչ x|Z6Yhd4SO1,ţm hl=D‹NIo:n3vY~_b64!N ]tXR.K9{2rs}%{y>Z Cޯ.ktϊ=nsyPQʴW!=1sxmO6OƚsDz#5H:c8%Y4-$\-<>x7\ć"pXk#AkdYZ]sPDmu-LR!'T?96;KM/iuy`\uma E}/GӰV@Hu>.th7 zDzX!xsn^]p%XR[3eIU;B 31`~zpkd\!#SE.0fe6YI`jV1;4]AhuЮgclߘ[+϶df kד P\jZc6S@&4%- |u$YcƤB~$bvvtJ$ KMI7 9RBtEn "updcxI1{&ú蝃ʸR0U[yzAY{z/ ҍonYe)]G-o…RE)(gX {kU4+Dn<9Zu$V{iٞ-%rF:ntRH;TѹdJV‚?GmI>3,YYK5%ĊK0 )1KC.\)I$XWI4mf"d:һnc_λEךl+K~'õw} Uk&ͷưp%jSH)h-^ 1S#0^Dž-lRz-4SW9`/C Hܢ`+?edhc=@1P+B`k'͓kH?;M9ZpImtblF<-z&/+4 E,ru.'5x?ݾURGE^~/AGl3(E-ca-oZIs&HT 㞴h4:a"p/P7a H'VW7c^ޓ?TVhɌ*w0$dU %E}OWXMbi.xTЍ%w<_ E}݅2/Kci{C:=5-2Te0cx+uTk̐+-=:5cNhV†"SdIn!a/,1LK;1iD^ޮLѳRCuf1ϟ;;dov gRZw { .|6KyrߩHƐvV|$)ܓ͐av[f:@cÅUP-3+ӻG!v%-gk撑1R]EymAW*ҝ E|>LJD\"Titzѐ(8mJ's[4)X,`->yoì؃'4 b ֜<Ԯl[J2X(jEUJde[bV8WG(ِFdUґ@K_nX 1LHRdK׬@gc=KV{5I<_\2޶'h?垸 k#83V!KUCy/WİV-_GF{۳t&o6Ҿ}L5tgUyLSO%_6 nX-`Mran8SAR҉$}U4V/f$3U=`7Tr ]\'%:vgKZtlp!PZ`vP8,Z}'ѸYCM>LXDLC\}+7x #=Y :} hVܓY̹pنn[ګ!+rrBY3uie£xxGzsJ b.L#@hVWL.?|t_6AoMtuJhszū}7*leö;b !M.**b׭mOHpYTjdӔ #nd>443jR2JYD'v͋ͦHjdVr:! +lˊAʏé{$RUYnj8bC C#=dXlmJD,C,ڠUB(qP_-'%ofY#  =r*p2>ԢJW/Ռm&2ufxƺ,Qg81gKhՙ7:()ގeAA3𫿧6[%R6A$_Q m(ȑw PX0:  9^-R{E+l ⳖZA㈇"eA}2r~+L-۲sx=wq 7a/&[D0ϼLKq3 %|a~گRi$Q,hp7$!aAL$0n<ۧ᭾F VօwƇ~2+B#aê?\,*8k]- f*HbUgZ0 b5N ]2;5DlԈOdJfwPlLgw"]\r# qȃO,ΑdDc$&4uC }"btIi ?}a3KBI!T]IhhpXf07T:ac薾Ia_ޞ/ SI oZx󉧫4usc{cƶF$H-*$?sxC1W}qR&)SN l\QՋh16b-tv"pQ*J WknYbhT*{ȳc)='@\ 7ILπ'050"r"IΣ7mc?`(BVb#z"b=F8$}'%É',*b|6a-x/a4kguT--:LU^0ok4"EAo 'r@b[/vVJm 8i1r* qE"MW*ߒh \?f¨'RcB ]X1.gn9Hc^@bb~Q#SYz9-H8̹.B$KwP W=; ַ9̖4@qGPMQ ҋ =ߕVms} 9кU:0{h)'y6ґLIt<~;=z~!qLZ^vVW< LWO <"%ufI%bw4+/EfJ6OUh-ڞrsRN.IxߨqӅ_iEPx}auG,3YDGx0Eժ]0Do~\١g2ټcensَْdmyiG2f;L?e]p>}l.z 27}|/COX!'/[{P:TB,rJ ^:_ۄ4B6 q6LO!P..]=2tmN\C V^LÃ1igG(ir+2[oi[ﱄ&\C7rKq\-TW.ۙ.܆4X|5;;v DNry_dEM VWpfhFS#d+aln622;`=X \SЃHQע;vb!A@zcJA͘߅ME>B| yR U% FACr !BӸ-p]3m:<\`]in1Y^=$g dDYS/kx2#=) j$:s2++iTQ=g634.l8uk7n Qne/!c[AJ)Gݩ4ڛ EyQG7Edi'3H%v:ِu7,\hㅠ2!<B;Ԯj>)V4n؜$IHwIZ߾T6/8wl Dcy逽;[Fv | &~]'9yL_s?Q^v2.f Q̘΄+f=.?;wHos򻀘E,f#ɥ7[Sՠ[]ە&:fSp&ط YZ