xorg-x11-server-wayland-1.20.3-150200.22.5.85.1<>,ez_p9|Q]Q[Ji(kF,|@i'Ԡ?M8rot>Bf)V" &Lo[`pe8r{mB9z_ZeƼ dѫKq!%h:͓dWգa4TݎD!y\FWG6/VQy6dS1D4U_hP+H,޽y:$ᷩ\A ?d! 2 C +1<@ B D H     (898:FvGHIXY\]^bcde#f&l(u<v@wxyzCxorg-x11-server-wayland1.20.3150200.22.5.85.1Xwayland XserverThis package contains the Xserver running on the Wayland Display Server.ez_h02-armsrv1$(SUSE Linux Enterprise 15SUSE LLC MIThttps://www.suse.com/System/X11/Servers/XF86_4http://xorg.freedesktop.org/linuxaarch64$(ezT1ba5b7caa650eb11c55a2436ea257da413c03526cff304e62ed22493ed0323carootrootxorg-x11-server-1.20.3-150200.22.5.85.1.src.rpmxorg-x11-server-waylandxorg-x11-server-wayland(aarch-64)@@@@@@@@@@@@@@@@@@@@@@@@@@    ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libGL.so.1()(64bit)libXau.so.6()(64bit)libXdmcp.so.6()(64bit)libXfont2.so.2()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.25)(64bit)libc.so.6(GLIBC_2.26)(64bit)libcrypto.so.1.1()(64bit)libcrypto.so.1.1(OPENSSL_1_1_0)(64bit)libdl.so.2()(64bit)libdl.so.2(GLIBC_2.17)(64bit)libdrm.so.2()(64bit)libepoxy.so.0()(64bit)libgbm.so.1()(64bit)libm.so.6()(64bit)libm.so.6(GLIBC_2.17)(64bit)libpixman-1.so.0()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.17)(64bit)libsystemd.so.0()(64bit)libsystemd.so.0(LIBSYSTEMD_209)(64bit)libwayland-client.so.0()(64bit)libxshmfence.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)xkbcompxkeyboard-config3.0.4-14.6.0-14.0-15.2-14.14.1eyem@e7e-%e)1@d?@d@cT@c.cEcOby@b4t@b-b+9b!@b a@az`D`@`v@`v@`t6@`@`<@_^@_^@_@_O@_D@_*@_"@^^W@]@]m@\A\,[@[@[@[ā@[t[i[\Z[Xf@[P}@[D[:[2*[*A[@Z@ZZԐ@ZJ@Z2@ZZ Z}@ZTZ?Z/Z@Z YY@YY@Yh@Yg`Y_wY[@Y;@Y:Y6@XX @X+X@XpXXwoXN@X,J@XW@W@W@WDB@W9@W/*@W'A@W#LW @W @W @WKWW@V@Vn@V3VVm@VxVVV&@VV@V@VV@VGVVVUVA@V0V0V7@UU@U@UUzUuUn@Ui@U0U:T!TTTԬT[@T[@Tk4T`TN3joan.torres@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comtzimmermann@suse.desndirsch@suse.comsndirsch@suse.compatrik.jakobsson@suse.comyu.daike@suse.comsndirsch@suse.comyu.daike@suse.comsndirsch@suse.comsndirsch@suse.comdmueller@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comtiwai@suse.desndirsch@suse.comsndirsch@suse.comsndirsch@suse.comfcrozat@suse.comsndirsch@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.comtobias.johannes.klausmann@mni.thm.dejdelvare@suse.desndirsch@suse.comtiwai@suse.defcrozat@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.commsrb@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.commsrb@suse.commsrb@suse.commsrb@suse.comfcrozat@suse.combwiedemann@suse.comsndirsch@suse.commwilck@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.comrbrown@suse.commsrb@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.deilya@ilya.pp.uasndirsch@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.comsndirsch@suse.comopensuse@dstoecker.desndirsch@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.dedenis.kondratenko@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comtobias.johannes.klausmann@mni.thm.defbui@suse.comtobias.johannes.klausmann@mni.thm.dezaitor@opensuse.orgtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.demstaudt@suse.comeich@suse.comeich@suse.comeich@suse.comsndirsch@suse.comsndirsch@suse.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.deeich@suse.comeich@suse.comtobias.johannes.klausmann@mni.thm.delbsousajr@gmail.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comtobias.johannes.klausmann@mni.thm.deeich@suse.comeich@suse.comfcrozat@suse.comeich@suse.comeich@suse.comeich@suse.comhrvoje.senjan@gmail.comeich@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comeich@suse.comtiwai@suse.deeich@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.demsrb@suse.comantoine.belvire@laposte.netmsrb@suse.comeich@suse.comnormand@linux.vnet.ibm.commsrb@suse.comdimstar@opensuse.orgsndirsch@suse.comtobias.johannes.klausmann@mni.thm.deeich@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.comsndirsch@suse.comledest@gmail.comsndirsch@suse.com- Add missing fixes on U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch (bsc#1217765).- U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * Out-of-bounds memory write in XKB button actions (CVE-2023-6377, ZDI-CAN-22412, ZDI-CAN-22413, bsc#1217765) - U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch * Out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty (CVE-2023-6478, ZDI-CAN-22561, bsc#1217766)- U_bsc1216261-0003-dix-always-initialize-pScreen-CloseScreen.patch * fixes a regresion, which can trigger a segfault in Xwayland on exit, introduced by U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch (CVE-2023-5574, ZDI-CAN-21213, bsc#1216261)- U_bsc1216261-0001-mi-fix-CloseScreen-initialization-order.patch U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch * Server Damage Object Use-After-Free Local Privilege Escalation Vulnerability (CVE-2023-5574, ZDI-CAN-21213, bsc#1216261)- U_bsc1216133-mi-reset-the-PointerWindows-reference-on-screen-swit.patch * Use-after-free bug in DestroyWindow (CVE-2023-5380, ZDI-CAN-21608, bsc#1216133) - U_bsc1216135-Xi-randr-fix-handling-of-PropModeAppend-Prepend.patch * fix handling of PropModeAppend/Prepend ((CVE-2023-5367, ZDI-CAN-22153, bsc#1216135)- U_xserver-composite-Fix-use-after-free-of-the-COW.patch * overlay window use-after-free (CVE-2023-1393, ZDI-CAN-19866, bsc#1209543)- U_Xext-fix-invalid-event-type-mask-in-XTestSwapFakeInp.patch * fixes regression introduced with security update for CVE-2022-46340 (bsc#1205874)- U_Xi-fix-potential-use-after-free-in-DeepCopyPointerCl.patch * DeepCopyPointerClasses use-after-free (CVE-2023-0494, ZDI-CAN-19596, bsc#1207783)- U_0007-xkb-reset-the-radio_groups-pointer-to-NULL-after-fre.patch * XkbGetKbdByName use-after-free (ZDI-CAN-19530, CVE-2022-4283, bsc#1206017)- U_0001-Xtest-disallow-GenericEvents-in-XTestSwapFakeInput.patch * Server XTestSwapFakeInput stack overflow (ZDI-CAN 19265, CVE-2022-46340, bsc#1205874) - U_0002-Xi-return-an-error-from-XI-property-changes-if-verif.patch * Xi: return an error from XI property changes if verification failed (no ZDI-CAN id, no CVE id, bsc#1205875) - U_0003-Xi-avoid-integer-truncation-in-length-check-of-ProcX.patch * Server XIChangeProperty out-of-bounds access (ZDI-CAN 19405, CVE-2022-46344, bsc#1205876) - U_0004-Xi-disallow-passive-grabs-with-a-detail-255.patch * Server XIPassiveUngrabDevice out-of-bounds access (ZDI-CAN 19381, CVE-2022-46341, bsc#1205877) - U_0005-Xext-free-the-screen-saver-resource-when-replacing-i.patch * Server ScreenSaverSetAttributes use-after-free (ZDI-CAN 19404, CVE-2022-46343, bsc#1205878) - U_0006-Xext-free-the-XvRTVideoNotify-when-turning-off-from-.patch * Server XvdiSelectVideoNotify use-after-free (ZDI-CAN 19400, CVE-2022-46342, bsc#1205879)- U_xkb-proof-GetCountedString-against-request-length-at.patch * security update for CVE-2022-3550 (bsc#1204412) - U_xkb-fix-some-possible-memleaks-in-XkbGetKbdByName.patch * security update for CVE-2022-3551 (bsc#1204416)- U_boo1194181-001-xkb-swap-XkbSetDeviceInfo-and-XkbSetDeviceInfoCheck.patch * Out-Of-Bounds Access in CheckSetDeviceIndicators() (CVE-2022-2320, ZDI-CAN-16070, bsc#1194181) - U_boo1194179-001-xkb-rename-xkb_h-to-xkb-procs_h.patch, U_boo1194179-002-xkb-add-request-length-validation-for-XkbSetGeometry.patch * Out-Of-Bounds Access in _CheckSetSections() (CVE-2022-2319, ZDI-CAN-16062, bsc#1194179)- U_glamor-Make-pixmap-exportable-from-gbm_bo_from_pixma.patch * avoid consequently failing page flip (boo#1197269)- u_sync-pci-ids-with-Mesa-20.2.4.patch * sync pci ids with Mesa 20.2.4 (related to boo#1197046)- U_0002-DRI2-Add-another-Coffeelake-PCI-ID.patch U_0003-dri2-Sync-i965_pci_ids.h-from-mesa.patch U_0004-dri2-Set-fallback-driver-names-for-Intel-and-AMD-chi.patch U_0005-dri2-Sync-i965_pci_ids.h-from-mesa-iris_pci_ids.h.patch * sync GL driver PCI IDs with Mesa (boo#1197045)- U_xfree86-Fix-NULL-pointer-dereference-crash.patch * Fix a regression in u_xfree86-Change-displays-array-to-pointers-array-to-f.patch (boo#1196577) * Credits go to Simon Lees (sflees@suse.de) for finding the fix! - renamed u_xfree86-Change-displays-array-to-pointers-array-to-f.patch to U_xfree86-Change-displays-array-to-pointers-array-to-f.patch since it's a backport from an upstream patch- u_xfree86-Change-displays-array-to-pointers-array-to-f.patch Fix segmentation fault during terminal switches with multiple attached displays (bsc#1188970)- U_xfixes-Fix-out-of-bounds-access-in-ProcXFixesCreateP.patch * CVE-2021-4009/ZDI-CAN-14950 (bsc#1190487) The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write. - U_Xext-Fix-out-of-bounds-access-in-SProcScreenSaverSus.patch * CVE-2021-4010/ZDI-CAN-14951 (bsc#1190488) The handler for the Suspend request of the Screen Saver extension does not properly validate the request length leading to out of bounds memory write. - U_record-Fix-out-of-bounds-access-in-SwapCreateRegiste.patch * CVE-2021-4011/ZDI-CAN-14952 (bsc#1190489) The handlers for the RecordCreateContext and RecordRegisterClients requests of the Record extension do not properly validate the request length leading to out of bounds memory write.- U_rendercompositeglyphs.patch * X.Org Server SProcRenderCompositeGlyphs Out-Of-Bounds Access Privilege Escalation Vulnerability [CVE-2021-4008, ZDI-CAN-14192] (boo#1193030)- u_modesetting-Fix-dirty-updates-for-sw-rotation.patch * Fixes broken rotation support for DRM drivers without hardware rotation support or direct vram access (bsc#1182955)- U_xwayland-glamor-gbm-Handle-DRM_FORMAT_MOD_INVALID-gracefully.patch * xwayland: Fix invisible window produced by Xwayland (boo#1186092, boo#1184906)- U_build-glx-Lower-gl-version-to-work-with-libglvnd.patch, U_meson-Fix-another-reference-to-gl-9.2.0.patch * fix build on sle15-sp3 with updated libglvnd/Mesa and their new pkgconfig files (https://gitlab.freedesktop.org/xorg/xserver/-/issues/893)- U_xwayland-Do-not-crash-if-gbm_bo_create-fails.patch * xwayland: Do not crash if gbm_bo_create() fails (boo#1184072) (boo#1184543)- U_Fix-XChangeFeedbackControl-request-underflow.patch * Fix XChangeFeedbackControl() request underflow (CVE-2021-3472, ZDI-CAN-1259, bsc#1180128)- U_modesetting-Fix-broken-manpage-in-autoconf-build.patch * modesetting: Fix broken manpage in autoconf build (boo#1182510)- add U_hw_do-not-include-sys-io-with-glibc.patch (bsc#1182884)- u_xkb-CVE-2020-14360.patch * Avoid out of bounds memory accesses on too short request (ZDI-CAN-11572/CVE-2020-14360, bsc#1174908)- update U_xkbsetdeviceinfo.patch * fixed broken patch (bsc#1177596, comment#18, ZDI-CAN-11839/CVE-2020-25712)- U_xkbsetdeviceinfo.patch (bsc#1177596, ZDI-CAN-11839/CVE-2020-25712) * fix for Heap-based Buffer Overflow Privilege Escalation Vulnerability- U_present-wnmd-Fix-use-after-free-on-CRTC-removal.patch * fix crash in XWayland when undocking laptop (bsc#1176015) - U_present-wnmd-Relax-assertion-on-CRTC-on-abort_vblank.patch * fix for Xwayland abort in Present code (bsc#1176015) - U_xwayland-Avoid-a-crash-on-pointer-enter-with-a-grab.patch, U_xwayland-Check-status-in-GBM-pixmap-creation.patch, U_xwayland-Do-not-free-a-NULL-GBM-bo.patch, U_xwayland-Update-screen-pixmap-on-output-resize.patch * various xwayland crashes fixes from 1.20 branch (bsc#1176015)- U_0003-Fix-XkbSelectEvents-integer-underflow.patch * Fix XkbSelectEvents() integer underflow [CVE-2020-14361 / ZDI-CAN 11573, boo#1174910] - U_0004-Fix-XRecordRegisterClients-Integer-underflow.patch * Fix XRecordRegisterClients() Integer underflow [CVE-2020-14362 / ZDI-CAN-11574, boo#1174913]- u_xkb-CVE-2020-14345.patch: * Fix XKB out-of-bounds access privilege escalation vulnerability (CVE-2020-14345, bsc#1174635, ZDI-CAN-11428) - u_xichangehierarchy-CVE-2020-14346.patch: * Fix XIChangeHierarchy integer underflow privilege escalation vulnerability (CVE-2020-14346, bsc#1174638, ZDI-CAN-11429)- U_FixForZDI-11426.patch * Leak of uninitialized heap memory form the X server to clients on pixmap allocation (ZDI-CAN-11426, CVE-2020-14347, bsc#1174633)- provide/obsoletes cirrus and ast usermode driver also on openSUSE (jsc#SLE-12127)- specfile: reenabled XFree86-VidModeExtension (boo#1164020)- Build XWayland also on s390.- added patches required for NVIDIA's PRIME render offload support, which is available since release 435.xx (jira#SLE-8470) 0001-xsync-Add-resource-inside-of-SyncCreate-export-SyncC.patch, 0002-GLX-Add-a-per-client-vendor-mapping.patch, 0003-GLX-Use-the-sending-client-for-looking-up-XID-s.patch, 0004-GLX-Add-a-function-to-change-a-clients-vendor-list.patch, 0005-GLX-Set-GlxServerExports-major-minor-Version.patch- provide/obsolete no longer existing xf86-video-ast, xf86-video-cirrus on sle15 (bsc#1120282)- u_xfree86-Do-not-claim-pci-slots-if-fb-slot-is-already.patch * X server does not support mixing fbdev with other drivers, so claiming pci slots when a fb slot is already claimed only leads to quiting with fatal error. (bsc#1119431)- xorg-server 1.20.3 (see changelog below) superseded the following patch we used in sle15 before (bsc#1112020, CVE-2018-14665): - U_Disable-logfile-and-modulepath-when-running-with-ele.patch- U_dix-window-Use-ConfigureWindow-instead-of-MoveWindow.patch * Fix abort triggered by some uses of screensaver. (bsc#1114822)- Update to version 1.20.3 * Disable -logfile and -modulepath when running with elevated privileges (bsc#1112020) * LogFilePrep: add a comment to the unsafe format string. * xfree86: fix readlink call- Update to version 1.20.2: Lots of bugfixes all over the map especially for modesetting, glamor and xwayland!- Update n_xserver-optimus-autoconfig-hack.patch to v5. * Fixes provider auto-configuration with nvidia proprietary driver. (bsc#1103816)- Update to version 1.20.1: This bugfix release fixes several issues in RANDR, Xwayland, glamor, the modesetting driver, and elsewhere. - Packaging changes: + Adapt patch N_Install-Avoid-failure-on-wrapper-installation.patch to work with the new version + Remove patch U_Xext-shm-Refuse-to-work-for-remote-clients.patch + Remove patch U_modesetting-use-drmmode_bo_import-for-rotate_fb.patch + Remove patch u_modesetting-Fix-cirrus-24bpp-breakage.patch + Remove patch U_exa-use-picturematchformat.patch- U_exa-use-picturematchformat.patch * Fix breakage of Xfce (bsc#1102979)- fixed build on s390(x)- u_modesetting-Fix-cirrus-24bpp-breakage.patch * Fix breakage of cirrus 24bpp support on modesetting driver (bsc#1101699)- Remove /var/lib/X11 and its symlink, it is no longer needed and doesn't work with transaction-updates (FATE#325524). - Move README.compiled to another location and use tmpfiles to copy it at runtime.- U_modesetting-use-drmmode_bo_import-for-rotate_fb.patch * fixes rotation in modesetting driver (regression with xorg-server 1.20.0, fdo#106715) * might also fix boo#1099812 ...- U_xkb-Fix-heap-overflow-caused-by-optimized-away-min.patch * Fix heap overflow caused by unexpected optimization, which was possible because of relying on undefined behavior. (boo#1099113)- U_Xext-shm-Refuse-to-work-for-remote-clients.patch * Avoid access to System V shared memory segment on the X server side for clients forwarded via SSH. Also prevent them from hanging while waiting for the reply from the ShmCreateSegment request. (boo#1097227)- Remove n_add-dummy-xf86DisableRandR.patch * After upgrade to 1.20.0 the API officially no longer includes xf86DisableRandR, so there is no need to add it back.- Update to version 1.20.0: New features: + RANDR 1.6, which enables leasing RANDR resources to a client for its exclusive use (e.g. head mounted displays) + Depth 30 support in glamor and the modesetting driver + A meson-based build system, parallel to autotools + Pageflipping support for PRIME output sinks + OutputClass device matching for xorg.conf + Input grab and tablet support in Xwayland - Remove upstream patches: + u_xorg-x11-server-reproducible.patch Solved slightly different + u_os-inputthread-Force-unlock-when-stopping-thread.patch + u_xfree86-add-default-modes-for-16-9-and-16-10.patch + U_xwayland-Don-t-process-cursor-warping-without-an-xwl.patch + U_xwayland-Give-up-cleanly-on-Wayland-socket-errors.patch + U_xwayland-avoid-race-condition-on-new-keymap.patch + U_xwayland-remove-dirty-window-unconditionally-on-unre.patch + U_0001-animcur-Use-fixed-size-screen-private.patch + U_0002-animcur-Return-the-next-interval-directly-from-the-t.patch + U_0003-animcur-Run-the-timer-from-the-device-not-the-screen.patch + U_0004-animcur-Fix-transitions-between-animated-cursors.patch + U_xfree86-Remove-broken-RANDR-disabling-logic-v4.patch + U_glx-Do-not-call-into-Composite-if-it-is-disabled.patch - Adapt patches to work with the new release: + N_zap_warning_xserver.diff + N_fix_fglrx_screendepth_issue.patch + n_xserver-optimus-autoconfig-hack.patch + u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch + u_xorg-wrapper-build-Build-position-independent-code.patch- U_glx-Do-not-call-into-Composite-if-it-is-disabled.patch * Fixes crash when GLX is enabled and Composite disabled. (bnc#1079607)- n_add-dummy-xf86DisableRandR.patch * Add dummy xf86DisableRandR to fix linking with drivers that still call it. See explanation inside the patch. (bnc#1089601)- U_xfree86-Remove-broken-RANDR-disabling-logic-v4.patch * Fix crash on initialization when fbdev and modesetting are used together. (bnc#1068961) - u_randr-Do-not-crash-if-slave-screen-does-not-have-pro.patch * Fix crash when using randr when fbdev and modesetting are used together. (bnc#1068961)- Update and re-enable n_xserver-optimus-autoconfig-hack.patch. (bnc#1084411)- U_xwayland-Don-t-process-cursor-warping-without-an-xwl.patch, U_xwayland-Give-up-cleanly-on-Wayland-socket-errors.patch, U_xwayland-avoid-race-condition-on-new-keymap.patch, U_xwayland-remove-dirty-window-unconditionally-on-unre.patch: * Various crash and bug fixes in XWayland server (bgo#791383, bgo#790502).- Add u_xorg-x11-server-reproducible.patch to make build reproducible (boo#1047218)- U_0001-animcur-Use-fixed-size-screen-private.patch, U_0002-animcur-Return-the-next-interval-directly-from-the-t.patch, U_0003-animcur-Run-the-timer-from-the-device-not-the-screen.patch, U_0004-animcur-Fix-transitions-between-animated-cursors.patch * There is a bug in version 1.19 of the X.org X server that can cause an infinite recursion in the animated cursor code, which has been fixed by these patches (boo#1080312) - supersedes u_cursors-animation.patch (boo#1020061)- Added u_xfree86-add-default-modes-for-16-9-and-16-10.patch (boo#1075249) Improve user experience for users with 16:9 or 16:10 screens- Update to version 1.19.6: Another collection of fixes from master. There will likely be at east one more 1.19.x release in 2018.- Depend on pkgconfig's gl, egl and gbm instead of Mesa-devel. * Those dependencies are what xorg-x11-server really needs. Mesa-devel is too general and is a bottleneck in distribution build. (bnc#1071297)- Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468)- u_os-inputthread-Force-unlock-when-stopping-thread.patch * Prevent dead lock if terminating while on inactive VT. (bnc#1062977)- Update to version 1.19.5: One regression fix since 1.19.4, and fixes for CVE-2017-12176 through CVE-2017-12187.- Update to version 1.19.4: A collection of stability fixes from the development branch, including two minor CVEs (CVE-2017-13721, CVE-2017-13723). - Remove upstream patches: + U_Xi-Do-not-try-to-swap-GenericEvent.patch + U_Xi-Verify-all-events-in-ProcXSendExtensionEvent.patch + U_Xi-Zero-target-buffer-in-SProcXSendExtensionEvent.patch + U_dix-Disallow-GenericEvent-in-SendEvent-request.patch - Adapt patches to work with the new release: + u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch- u_cursors-animation.patch fix cursors animation (boo#1020061)- disable Xwayland for s390x again; it was wrong to enable it; there is no Wayland on s390x and will most likely never exist, since there is no gfx card on such systems and no gfx emulation either (bsc#1047173)- u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch If arc4random_buf() is not available for generating cookies: * use getentropy(), if available (which was only recently added to glibc) * use getrandom() via syscall(), if available (there was no glibc wrapper for this syscall for a long time) * if all else fails, directly read from /dev/urandom as before, but employ O_CLOEXEC, do an OsAbort() in case the random data couldn't be read to avoid unsecure situations. Don't know if that's too hard a measure but it shouldn't actually occur except on maximum number of FDs reached (bsc#1025084)- U_Xi-Do-not-try-to-swap-GenericEvent.patch, U_Xi-Verify-all-events-in-ProcXSendExtensionEvent.patch, U_Xi-Zero-target-buffer-in-SProcXSendExtensionEvent.patch, U_dix-Disallow-GenericEvent-in-SendEvent-request.patch * Fix security issues in event handling. (bnc#1035283, CVE-2017-10971, CVE-2017-10972)- enable Xwayland also for s390x (bsc#1047173)- includes everything needed for additional sle issue entries: CVE-2017-2624, bnc#1025029, bnc#1025084, bnc#1025035- update build requirements- modesetting.ids: no longer hardcode Intel's Skylake, Broxton, and Kabylake IDs to modesetting driver; xf86-video-intel is no longer installed by default on these, so it will fallback to modesetting driver anyway; still you now can easily switch back to intel driver by installing xf86-video-intel package (boo#1042873)- Update to version 1.19.3: A couple more minor fixes, most notably a revert of a page-flipping change that regressed some drivers. - Remove upstreamd patches: + u_busfault_sigaction-Only-initialize-pointer-when-matched.patch- Update to version 1.19.2: A collection of stability fixes here across glamor, Xwayland, input, and Prime support. Also a security fix for CVE-2017-2624, a timing attack which can brute-force MIT-MAGIC-COOKIE authentication. - Remove upstream patches: + U_xfree86-Take-the-input-lock-for-xf86RecolorCursor.patch + U_xfree86-Take-the-input-lock-for-xf86ScreenCheckHWCursor.patch + U_xfree86-Take-the-input-lock-for-xf86TransparentCursor.patch- U_xfree86-Take-the-input-lock-for-xf86ScreenCheckHWCursor.patch * Add the missing input_lock() around the call into the driver's UseHWCursor() callback (bnc #1023845). - U_xfree86-Take-the-input-lock-for-xf86TransparentCursor.patch * The new input lock is missing for the xf86TransparentCursor() entry point (bnc #1023845).- U_xfree86-Take-the-input-lock-for-xf86RecolorCursor.patch * fixes random crashes in X in multihead mode if one of the monitors is vertically oriented (bnc #1023845)- N_driver-autoconfig.diff: No longer try to load "amdgpu" DDX by default for all GPUs with ATI vendor ID; this is now handled instead by an "OutputClass" section via kernel driver match, which has been added as config file to xf86-video-amdgpu driver package (bnc#1023385)- N_driver-autoconfig.diff: FGLRX does not support new x-server. This change fixes bad behavior(with empty config) when radeon ddx loads with amdgpu kernel module on SI and CIK cards, and x-server cannot start. Radeon ddx with radeon kernel module loads without any problem.- Update to version 1.19.1: First stable 1.19 release, including a few regression fixes.- Replace pkgconfig(libsystemd-*) with pkgconfig(libsystemd) Nowadays pkgconfig(libsystemd) replaces all libsystemd-* libs, which are obsolete.- Update to final 1.19.0- Exchange xorg-x11-fonts-core Requires for Recommends. The corefonts and cursors are not strickly required as long as one have a substitute such as Adwaita installed.- Update to version 1.18.99.901: - Remove upstream pachtes: + U_glamor-Remove-the-FBO-cache.patch + U_kdrive-fix-up-NewInputDeviceRequest-implementation.patch + U_kdrive-set-evdev-driver-for-input-devices-automatica.patch + U_ephyr-don-t-load-ephyr-input-driver-if-seat-option-i.patch + U_kdrive-don-t-let-evdev-driver-overwrite-existing-dev.patch + U_ephyr-ignore-Xorg-multiseat-command-line-options.patch + U_ephyr-enable-option-sw-cursor-by-default-in-multi-se.patch + U_kdrive-introduce-input-hot-plugging-support-for-udev.patch + U_kdrive-add-options-to-set-default-XKB-properties.patch + U_config-udev-distinguish-between-real-keyboards-and-o.patch - Disable u_os-connections-Check-for-stale-FDs.patch (not applicable anymore) - Adapt patches to work with the new release: + n_xserver-optimus-autoconfig-hack.patch (disabled for now as it causes problems) - Remove X.org stack version prefix. We are already atleast at verion 7.7. Plus we are updating individual components anyway. So the stack version is misleading.- Update to version 1.18.4: Another pile of backports from the devel branch, primarily in glamor, xwayland, and the modesetting driver. - Remove included patches: + u_x86emu-include-order.patch + U_modesetting-set-driverPrivate-to-NULL-after-closing-fd.patch - Update patches to reflect upstream changes: + U_glamor-Remove-the-FBO-cache.patch- U_glamor-Remove-the-FBO-cache.patch Fixes (bsc#983743) by not keeping >1 GB of VRAM busy.- U_modesetting-set-driverPrivate-to-NULL-after-closing-fd.patch: modesetting: Avoid crash in FreeRec() by NULLing a pointer which may still be used (boo#981268).- Replace N_Force-swcursor-for-KMS-drivers-without-hw-cursor-sup.patch by N_Disable-HW-Cursor-for-cirrus-and-mgag200-kernel-modules.patch Only disable HW cursor for cirrus and mgag200. This should fix a regression introduced by using modesetting for Intel gen9+ (boo#980124).- modesetting.ids: Add file for PCI IDs of ASICs which the modesetting rather than the native driver should be used for. This includes all Intel Gen9+ hardware (boo#978954).- removed u_exa-only-draw-valid-trapezoids.patch; no longer needed since pixman 0.32.0- removed no longer needed patch u_ad-hoc-fix-for-mmap-s-truncated-offset-parameter-on-.patch, see https://lists.x.org/archives/xorg-devel/2016-April/049493.html for upstream discussion; obsoleted by upstream patch https://cgit.freedesktop.org/xorg/xserver/commit/?id=4962c8c08842d9d3ca66d254b1ce4cacc4fb3756, which is already in xorg-server 1.18.3- Add permission verification for SUID wrapper - Disable SUID wrapper per default until reviewed- n_Install-Avoid-failure-on-wrapper-installation.patch: rename to: N_Install-Avoid-failure-on-wrapper-installation.patch - u_xorg-wrapper-Drop-supplemental-group-IDs.patch: Drop supplementary group privileges. - u_xorg-wrapper-build-Build-position-independent-code.patch: Build position independent.- n_Install-Avoid-failure-on-wrapper-installation.patch: Fix up build for wrapper. - Place SUID wrapper into a separate package: xorg-x11-server-wrapper- Set configure option --enable-suid-wrapper for TW: This way, the SUID wrapper is built which allows to run the Xserver as root even though the the DM instance runs as user. This allows to support drivers which require direct HW access.- Update to version 1.18.3: A few fixes relative to 1.18.2, including one fairly important performance fix to the Present extension. - Remove U_present-Only-requeue-for-next-MSC-after-flip-failure.patch The patch is included in this release.- Add patch U_present-Only-requeue-for-next-MSC-after-flip-failure.patch Fix a hang while using the present extension Bugzilla: https://bugs.freedesktop.org/show_bug.cgi?id=94515 https://bugs.freedesktop.org/show_bug.cgi?id=94596- Add automake, autoconf, libtool, c_compiler, pkgconfig(xorg-macros), pkgconfig(libudev), pkgconfig(libevdev), pkgconfig(mtdev) to Requires: of the SDK. This simplifies the build of Xserver modules.- Add support for a driver specific PCI IDs files supplementing what's in xf86VideoPtrToDriverList(). PCI ID lists may be held in /etc/X11/xorg_pci_ids (boo#972126).- Update version to 1.18.2: A big pile of updates in this one. Highlights include: * glamor is updated to use OpenGL core profiles if available, which should improve memory usage and performance on modern hardware, and got some other performance improvements for rpi and other GLES platforms * DRI2, DRI3, and Present all received correctness fixes for hangs, crashes, and other weirdness * Xwayland server has been updated to support the Xv and the xf86vidmode extensions for better compatibility, and fixed some bugs with output hotplug and pointer updates * Xwin saw improvements to window and clipboard management, and a few new keyboard layouts - Remove upstreamed patches: + U_kdrive-evdev-update-keyboard-LEDs-22302.patch- Backport upstream patches for Xephyr input hot-plugging / single-GPU multi-seat support: * U_kdrive-fix-up-NewInputDeviceRequest-implementation.patch * U_kdrive-set-evdev-driver-for-input-devices-automatica.patch * U_ephyr-don-t-load-ephyr-input-driver-if-seat-option-i.patch * U_kdrive-don-t-let-evdev-driver-overwrite-existing-dev.patch * U_ephyr-ignore-Xorg-multiseat-command-line-options.patch * U_ephyr-enable-option-sw-cursor-by-default-in-multi-se.patch * U_kdrive-introduce-input-hot-plugging-support-for-udev.patch * U_kdrive-add-options-to-set-default-XKB-properties.patch * U_kdrive-evdev-update-keyboard-LEDs-22302.patch * U_config-udev-distinguish-between-real-keyboards-and-o.patch- u_os-connections-Check-for-stale-FDs.patch Ignore file descriptor if socket or devices dies. This prevents the Xserver to loop at 100% when dbus dies (boo#954433).- Add 50-extensions.conf Disable the DGA extension by default (boo#947695).- Replaced u_confine_to_shape.diff by u_01-Improved-ConfineToShape.patch and u_02-DIX-ConfineTo-Don-t-bother-about-the-bounding-box-when-grabbing-a-shaped-window.patch.- u_pci-primary-Fix-up-primary-PCI-device-detection-for-the-platfrom-bus.patch Fix up primary device detection for the platform bus to fix the Xserver on older iMacs (boo#835975).- Update to version 1.18.1: First release in the 1.18 stable branch. Major themes are bugfixes in glamor, the modesetting driver, and the Present extension. Xwayland users may want to apply the following pair of patches in addition to this release: https://patchwork.freedesktop.org/patch/72945/raw/ https://patchwork.freedesktop.org/patch/72951/raw/ which combined fix an input issue when hotplugging monitors. Both are likely to be included in a future release unless testing discovers further problems. - Remove upstreamed patches: + ux_xserver_xvfb-randr.patch + U_systemd-logind-do-not-rely-on-directed-signals.patch + U_kdrive-UnregisterFd-Fix-off-by-one.patch + U_modesetting-should-not-reference-gbm-when-it-s-not-d.patch- u_Panning-Set-panning-state-in-xf86RandR12ScreenSetSize.patch Fix panning when configured in xorg.conf* (boo#771521).- Handle source-file-list in build not prep - N_xorg-x11-server-rpmmacros.patch: Delete: Process xorg-x11-server.macros in install- U_modesetting-should-not-reference-gbm-when-it-s-not-d.patch: fix build when gbm is not defined.- u_busfault_sigaction-Only-initialize-pointer-when-matched.patch Only initialize pointer when matched (boo#961439). - u_kdrive-UnregisterFd-Fix-off-by-one.patch -> U_kdrive-UnregisterFd-Fix-off-by-one.patch- Add test for defined macro %build_xwayland This can be used to enable the build of Xwayland and the package xorg-x11-server-wayland using a macro in projconf (boo#960487).- Split out Xwayland: * Build a package xorg-x11-server-wayland * Limit build to Factory (boo#960487).- Enable XWayland on Leap also (boo#960487)- u_kdrive-UnregisterFd-Fix-off-by-one.patch * Copy open file table correctly by avoiding an off-by-one error (boo#867483).- Update to version 1.18.0 - refreshed N_zap_warning_xserver.diff, N_Force-swcursor-for-KMS-drivers-without-hw-cursor-sup.patch - supersedes u_fbdevhw.diff, U_linux-Add-linux_parse_vt_settings-and-linux_get_keep.patch, U_linux-Add-a-may_fail-paramter-to-linux_parse_vt_sett.patch, U_systemd-logind-Only-use-systemd-logind-integration-t.patch- Update to version 1.17.4: Minor brown-bag release. The important fix here is Martin's clientsWritable change which fixes a crash when built against xproto 7.0.28. - supersedes u_0001-os-make-sure-the-clientsWritable-fd_set-is-initializ.patch- Update to version 1.17.3: Various bugfixes across the board.  The most visible changes include fixing GLX extension setup under Xwayland and other non-Xorg servers (enabling core contexts in more scenarios), and various stability fixes to glamor and the Present extension. - supersededs the following patches: * u_randr_allow_rrselectinput_for_providerchange_and_resourcechange_events.patch * u_CloseConsole-Don-t-report-FatalError-when-shutting-down.patch - removed evdev xorg.conf.d snippet since it's meanwhile shipped with evdev driver itself (since version 2.10.0)- u_vesa-Add-VBEDPMSGetCapabilities-VBEDPMSGet.patch Add VBEDPMSGetCapabilities() and VBEDPMSGet() functions (bsc#947356, boo#947493).- Backport a few upstream fixes for systemd/VT handling (boo#939838): U_linux-Add-linux_parse_vt_settings-and-linux_get_keep.patch U_linux-Add-a-may_fail-paramter-to-linux_parse_vt_sett.patch U_systemd-logind-Only-use-systemd-logind-integration-t.patch U_systemd-logind-do-not-rely-on-directed-signals.patch- Improve conditional enablement of XWayland.- Add patch u_0001-os-make-sure-the-clientsWritable-fd_set-is-initializ.patch Prevent segmentation faults with more than 256 clients (introduced by xproto 7.0.28 increasing the max client count 256 -> 512) Fdo Bug: https://bugs.freedesktop.org/show_bug.cgi?id=91316- Update to version 1.17.2: Pick up a pile of fixes from master. Notable highlights: + Fix for CVE-2015-3164 in Xwayland + Fix int10 setup for vesa + Fix regression in server-interpreted auth + Fix fb setup on big-endian CPUs + Build fix for for gcc5 - Dropped patches: + Patch110: u_connection-avoid-crash-when-CloseWellKnownConnections-gets-called-twice.patch + Patch113: u_symbols-Fix-sdksyms.sh-to-cope-with-gcc5.patch + Patch116: U_os-XDMCP-options-like-query-etc-should-imply-listen.patch + Patch118: U_int10-Fix-error-check-for-pci_device_map_legacy.patch + Patch119: U_xwayland-enable-access-control-on-open-socket.patch + Patch120: U_os-support-new-implicit-local-user-access-mode.patch + Patch121: U_xwayland-default-to-local-user-if-no-xauth-file-given.patch + Patch2000: U_systemd-logind-filter-out-non-signal-messages-from.patch + Patch2001: U_systemd-logind-dont-second-guess-D-Bus-default-tim.patch - Changed patches to work with the new version: + Patch114: u_ad-hoc-fix-for-mmap-s-truncated-offset-parameter-on-.patch- U_os-support-new-implicit-local-user-access-mode.patch, U_xwayland-default-to-local-user-if-no-xauth-file-given.patch, U_xwayland-enable-access-control-on-open-socket.patch * Prevent unauthorized local access. (bnc#934102, CVE-2015-3164)- Fix GNOME X Session for some hybrid graphics (rh#1209347): + add U_systemd-logind-filter-out-non-signal-messages-from.patch + add U_systemd-logind-dont-second-guess-D-Bus-default-tim.patch- Fix build of s390/s390x (bnc#933503)- U_int10-Fix-error-check-for-pci_device_map_legacy.patch * int10: Fix error check for pci_device_map_legacy pci_device_map_legacy returns 0 on success (bsc#932319).- Add xorg-x11-server-byte-order.patch to correctly set X_BYTE_ORDER when compiling tigervnc on ppc64 architecture. Related to bnc#926201- U_os-XDMCP-options-like-query-etc-should-imply-listen.patch * Enable listening on tcp when using -query. (bnc#924914)- Enable systemd-logind integration support: + Add pkgconfig(libsystemd-logind) and pkgconfig(dbus-1) BuildRequires. + Pass --enable-systemd-logind to configure.- u_ad-hoc-fix-for-mmap-s-truncated-offset-parameter-on-.patch * ad hoc fix for mmap's truncated offset parameter on 32bit (bnc#917385) - N_Force-swcursor-for-KMS-drivers-without-hw-cursor-sup.patch * hwcursor still considered broken in cirrus KMS ((bnc#864141, bnc#866152)- Update to version 1.17.1: Fixes for CVE 2015-0255. + xkb: Don't swap XkbSetGeometry data in the input buffer + xkb: Check strings length against request size- u_symbols-Fix-sdksyms.sh-to-cope-with-gcc5.patch Fix sdksyms.sh to work with gcc5 (bnc#916580).- Update to version 1.17.0: + Continued work to strip out stale code and clean up the server. Thousands of lines of unnecessary code have disappeared yet again. + The modesetting driver has been merged into the server code base, simplifying ongoing maintenance by coupling it to the X server ABI/API release schedule. This now includes DRI2 support (so that GLX works correctly) along with Glamor support (which handles DRI3). + Lots of Glamor improvements, including a rewrite of the core protocol rendering functions. - Remove upstream patches: + Patch130: U_BellProc-Send-bell-event-on-core-protocol-bell-when-requested.patch + Patch131: U_fb-Fix-invalid-bpp-for-24bit-depth-window.patch + Patch200: U_kdrive_extend_screen_option_syntax.patch + Patch201: U_ephyr_enable_screen_window_placement.patch + Patch202: U_ephyr_add_output_option_support.patch- Add xorg-x11-server-source package that contains patched xserver sources used to build xorg-x11-Xvnc.- Update to version 1.16.2 - Fix present_pixmap when using present_notify_msc - Fix present_notify to return right away when querying current or past msc.Xext/shm: Detach SHM segment after Pixmap is released - xkb: ignore floating slave devices when updating from master (#81885) - fb: Fix invalid bpp for 24bit depth window - supersedes U_fb-Fix-invalid-bpp-for-24bit-depth-window.patch- fix bashism in post script- XServer looks for dri.pc during configure. dri.pc is currently provided by a Mesa devel package, which is pulled in by other requirements, but it might be better to explicitly require dri.pc.h02-armsrv1 17025429431.20.3-150200.22.5.85.11.20.3-150200.22.5.85.1Xwayland/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:31901/SUSE_SLE-15-SP2_Update/6ea6a2efdf24f4a2bba74c22835e3539-xorg-x11-server.SUSE_SLE-15-SP2_Updatedrpmxz5aarch64-suse-linuxELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=d3514f709db0f9bddf1f97920d0617582a8b9a2c, for GNU/Linux 3.7.0, strippedRR R RRRR RRR R RRRRRRRRRRRRRRRY'P1QNxorg-x11-fonts-coreutf-833e8e1db008e53c4ee7810a2f15ea9b894646ed1f6a70410223a6c462ad1f1f1?7zXZ !t/bQb]"k%#4ղۼK'l;tP ^S,mM$"ޜ:\X?ʮ6RJ*ue/#vW&5>!g:=ΌC&Ɏι}]/Zc&(f/Op>@ Zvj٠TEV 9Ƅ۫WmmNmNRAU@'nP(%WʅJH.)UIF8^Lrqk pWۆ>Ap$(IgRkh(n:9̠'PJYdcmRz4[֓Z `]FKVb= yris>,m˂2\}BZr6ĻVФY@8t%ZD+84ZX7}Ie'`} f7®on`!ERq+o_53_% lb(VE 󆤮Jºfa(!'=臃'޺iIMj(qOb@ R07̯l洅yY.waR[ԶWg0(gq'y$a}o2>* ` S6 +gt{%N.R&|%&uio񦕳mm3hz 12׬ go7lW Ͱ%%4im Э׽ q-~vU]ܔ ^zf P`1Ps/ة6k좐-UDA Fהּ^>gs8k_-x*%tHȥ֧^Zg)OJݕNQ'1]0&;zHIŪb۸Fuܒ[A2W'S+ po {F؄ %T/n j)kbɝPֵjEyBZ8P^՜ЯXݢvĸ<>x!8#<.")cuܱBtn}{;GyAi 5oIDz_G3.+]Mm&b`f!EجA,ݶނS3X-d[Xi^xɰO!p̺ :KR!7Z[W|ro[z<ӻL>>=xkN*q,?8]`vi}ऋ!4bHy,ၞJ]q%h5C}PE d7e{6q%ց_4bjܨ`Lٲ<67|[ܒ\JL̠ JLힺG;%A~ 애 Ne/ĵ+\%݊b:+\Za q V{:ոg(Jĸti9b|讐۵xOpX3]ZQI$mXu)qPn>u1Ha3$hNRU'pdt0Qvgv e{40 >Mf/lEW(σi'lDB^hC _TDWMv!\)(p4('uK=egz'HGJAl(Kou>: ,js5t]QMp#X;%^}LExFAvDJψ աײ1`:ߎj;D-inBM;pUn/jקt mWA"qF-ESPpĈVPX<2B࢟2QQY$צNP{dm5SJ`^zǛ8X3n| u\DKH,ba*v&Y軴KI K~0ëtZ(!v#Qb]aYF3O2g0ZcVE`^bqCH,&;9Oګ[ФފpmXD¼UN]\dyk$;;-Hi[IQ3JR1<8Ai-mo亱q WYiyά+VelԠ%c?u ޶H܊pB&( L[w%GȳKH Ѐ!26,ZHsA`&qtTHZ@gj 2<CŤ,&S &) -Πt|- *"^共JdS+d2EEn[>TP|z=&|AV0寑?ZZ!I~JntP.GTe37eiD<[ bmퟡ+cev㶠B˅s͐6Ax7MpRXԂe!, {J }[ ݈I_)vqbkdke% *oRLrG<МUc9 U2ۭvy̒ $K,Lgբ <([.SΐcWFI` hdTn~+CvzN)jg%F)X&i  }rx|0K*GUCڥMMq.?BP|l mJ&{k$aZ瘴f#Sխ|⊿7æY]nTey/=P; `,'0S38 ; 7ԟ+W'NtYu4?%J2UEG4u^C(u)aIF|ϐ%k(U[l->˱Lj>A/~}yR P$boj1#J9H 4@͗q{GK|wyR,1΍J*XS(u>i 0;d1?d37%L(PG-˝f;Ċj[auBbX 0ϐ綷+8iYS*sqPjkTUfieuT^2$=_)|bÇTܒ;tcs[n\uc;IUVGVaF?N `:]E6$O̡!R9vsnK{ݱjs]pb36+Tlq ):=ETߪzP oq2}ޏ0a [#cb}>v]k4R'j2}ϒf4 8?cH{RP:oO*Pk흦tinE!q B:=r I ΛZ`{d8iH;£_4O˷Ajn4~5նbmU_oxijf.F $&r;8 | y|1;И6~Ay :V U=|DžYJIw+^$lX`C!e8jٚ /*&E-#;t vWv &VPQvhhdJ }NL<I4`LŎ(?릟vsn1B =X^ʌ#ϵ(6Z׿Bk'Ȗg%tԥ 5x|R|cbr6994kW҄ =BBQCU`DFr=YjZ/<|z.|XN|lXgܝON[~)nIz:Kc4WTуm\:'1 ?+WI3(4%r.=L 񴘨oXHD9,Cq]wN M1+xê *ϸQ;bTWGw ;h=W|`'QXU5Lk$caʪa K#S0?֊=7;1}o+9{Lyk_fUkL8x uTv_|vZK6/, ~`Oi -T$}O GwIՖ9ː9@EрHVITZMiRvoM[7}Y51찪`W[Yt-o6vc;e (S:g(&i*ڇH;+PW`;a,5F$-b.DIпqJe*A/2!7")E`݁D$"m4I$4z <J:?X~|Aש5$k#^R_Ԗ0rjQ/v *ʩL5(XH0IL+Y @$sgty ~O14w.?@QyT{}ZT|rFԿ$*l0aUn܄ʘ- ? =,d6)LHG rF xzhT4u(mL '_i $!wEus =JaND/}?R[p3݁eDsa{(e&#PKi7>3҄jZ>#}_@b$^`|(ސcSCQlNA C9&4dmٷ4'*6P3U+5fuSKPGb5PEe[4m=2x3SܭLo\K&$*ȅީR[׻N>7"U LYK2 Cu[{ZT(SS΁PmܗޤC&w(.Ҡ nNa9 @Ƹ"W<^(hR?pT5`ϛ6,6@$C~i]G){Zv"Xj )ԆvQ@{q &ECAd2]cx_{ OWˌž>ҪNU8VĻ # ݑቱ^ЬGn-~VcNu 8&HRaJ I/R'SZE?m5hZkrfg!QR.HsC3u8l7dcoq4 }\ j{= v+kgzxBo))yl@Vg%MdI?b}"bK3%egv%BV(R_ap4v_;#(LwŌk?AT;u&W繋&2s@$W{4L&?Jo#$!mO3#2w&ʛY0'>G~eKdt.>wV7:nLn]NmP1N{'4>##Cg&h`\./483WC"~NDa`c3Lh}eYŰ)n6lB*{po % s;DW]]~X'[F y/ʌCkb֑C퉒2еK!m//R Fa0iЏj>sZ@˞P*U^PC0Ĩ\G`Nwn6-vW˝34/hugktӞn8L&n4yH*޲ܧ'J<8z1w.euXN ԉ>Ic ֺH.QY9_ؘ- v́-'Թf݇kf"f"<@y?uB%ņx.s껶y; nȐp=_Eui`7~ wY~xӅY47}d!].@c`;41k:k=ZHMURDU΍FV짠{i 7u\CA_7˃@?:21Қ Ģ*3S/68co%hO/Mx@tv@wp$ :)Zƥp;#`M1W [Y~N|߻;(`5'On_ [ ~_bAM]qXơy^>,>X&!B$6)t|vg/5$BYHޮ#ZW$X~?_@w{a7gŒ3Zk~~[Xؑ pjyZ]oC5Nu:&]eQbc$LER3Raײ4 )6C ?]Teõoms,0$ܶrY ' Y@9NQF84RL(X|-Wv=vnO"l??(;Y b<Y* {B8D"&5v4aAKN/bɎ,}fw[pClQ8[P xXϷqaHG/woh|0\z"̷֛r6U#NJ:'/_J{Q=AԩcYub (AJť{QMݨL;Kt eɝ%E ;q \s]s:Ջ *V,k@dV/(}:,"҇k?7mv&uIL!3Rtzw/@<9\h(cuB&swT=@9F.HH˰9 l6-9hD7G LqH;G~ jaF,J\nGRLX' `,2[fLe=^[8jGNKSN~RRk2O(18Xg1$4pxj b{C!bLlE c}6a:ÛqKrڟ]G3f =ˀ-=f6v8 63z9ߕQiLx7Ӭ1<7 F&S\mo7ںqZd;Qo3_6SCƏljߜ%=_t)`ՂB[r1` ?ibo @ Vp:'g3 V@ƛm-dGX7%:ŰoϓUZKoWG<,#<fo~HOťP0n N=Ra- 1Ǜ9:ɶuw;)>մ+kovjDy^6utXrjͶ ›o=~/#Q@/6+_[3#L"E>R @F mA.OpUπmRutX:>{q7R٤%ȉ (Dt 4_f6zѲpN)~6 "tFEJrgD3)$3!W$G;^TM tďI“GibN.BCzl;uip_@D([DG3:K`~ tF,ІlC}E i'.~=~(]cO1YI2vz.afj >$yCMLPc{K^X 7~_Ңk<>+}dRaqbC1SUM`3a!s_I[ DŽPŋL3ھ5k:G>6o=MH \9%c5M,$6J}8C&x n`2]&a'@H=.q[5Fi mf3Ȋ2AaXՍ$qA?fTw{f|t\>M,IPqt4`Cn(iRj+.h7r&f,)m{~KbtUa;sFs: p9ue 4Sqəoj /DSGނv| EB^F>:_LG8"ְI: <=uk圭ʩOzT<#~В ~ѝa9|l4(#2]b:Km[]1SFk!gn4hY;j};J81C2qp@q=Kn[,Y;ըgUUpTkV(%urF 8XBf%.l܈c>Ŵ 2@zM 5 , Y{٢2'Qo[) DT>lh[膠^vi6 #g^YįN8m4fu5Y$G 5!קJA2.$x΋dXFoUb,XAk죍JT4XG-1EmX?\d7Ьa D % #,i%z 8GFa` 9?15QmCTV}f/ egVmK43d8{{jKsUboFqLWZ_E{]׿*Gj@7QRH*Ax[a1Ƣn|TJYqħ, ao猊[3jKxÉ ő^l2 d)wJOe.m xO`׊߳l$*ATL f78JԈF ah|cSEfzm`j"XKERA^qn8]ھS?4ۅ߮(LM@pv 6>\$R{~"b/"G ]lO8@z^@f/.J\?MG~IUۛ8wX4Ϲl3-f6̼n$(i-4Sr| M4}j@eI ><*qq@d]|R5`f(AqW0HHx%zj-az F8[G$Y?a5)kR98f0k9>~'|޶yѾWyB`E=a!a^]Af1!Θݲ]vZK^() =ˆ܋-/ުoI &Jg "NE`AQwhET h,Wa/(̷*FtBDu'7ktS7ӺS1T^/=Zo1!5.? J.; Ȱ9GZEӱ!iAQCmi%9z=9U_bVjv Dg9B@ &,,}GO_=<[ P g=k#|_c狈F5;@fYu0i")Q&$ⷷ7S$OĢsdGbЙ8izKg#ꀂ'Tb.pw 2hhl]7گ4sk 1 H:5$Bt|&8'H@os{gZDezD G0Wԯٲ A8)t ,c6yPz {%,r"=qh!pIj7! A!|Ǻ(KY~32#j#jd>k*FB5TFCzaI"fصiLoRJOfEZu25I;k/iPTVm3MVr͟cAY ^xJ@2cYǃ,wx(ĦAH+/(JKYsLx̳TO7"^hi 8X{.G5 )QoP+V$$bRx!]>3vs%V]=*EY*$g}bng=='+R1E  KHD4W7u):y՟3?Cz"O|յ^ŗQNOΓ;1qdž0҃؟d7%! 4^|4 >Rl'62Wb?W,:)DJM\Q ](݃W_W*i=]j}-j2 K} ?)s`bʅ9\QK̻p kHH5b}GmǮG6]GzN*%IIpcI 1]{8Mą #pIE_}LHAh`(wZ Ԇy%~Q ЕRB8\^-Rd0+CؾVO${>[& +FpQ1r(ܟ#jE6 88Oݯ#"ɧU+23\^PŰRr }q fƒFf}7Sʩowx tJSDדN3+#ͭp5ߎj<>Ge/v"lddFhCA";Ͽd+LgI־}@[3R%w*m5]u?տ?E#}ZQ^0oiSF(a 1F화Y0X4^oi9yў-QtHԱHCKQ \ lypE͙}"3xQT(wFRJbn5K/HO%\9;5niL_t={d{ޤu*)US -S)4qY-ӧ=̕Nq?ougA0 I5W[ L( ^~XyEe”oq0({Ѝ|Dk_=k ~sLO ^ӑK BJNf&W]jT&sKYF$Mu>ӹ47Nxj@-Zu|I3 NZ8e# ]j`ntQdu$Qg]]vC}}&ȯlň)M;>,0Px z Iڪ88$TvVQ8"0I{ $i5~d%7tߎWzFj.:;{NV8`hw 2l~ ^֜Z޷,N^#Ih&wB2U'Ka`x>:mӁFxV# )u0RϑH݀]_os;gBa$K's`;Ijg{<qHp!fx'e6{ B'B!yYmCg"qpj{;iV2$DH> n _ _>4ᨖ_^(~(JTRО&sݩ YZ