xorg-x11-server-wayland-1.20.3-150200.22.5.85.1<>,ezVp9|M:%uxewP!"[F"B ׉Vm>8"dV衩R u# LfU" .nVӓbU=G{nϧ$5M)YqϚE饫ޟp!ʉaLmF59bx(Cm8qغL㳌Ol-ɴe!ȏf3 y8t{gƦ؏K4A>pex:=Z+'×Zgrԩ'Vq>A$?d! 2 C +18< > @ D  ((((89 8:FvGHIXY\]^bcdef"l$u8v<wx y"zCxorg-x11-server-wayland1.20.3150200.22.5.85.1Xwayland XserverThis package contains the Xserver running on the Wayland Display Server.ezVh01-ch3a"{HSUSE Linux Enterprise 15SUSE LLC MIThttps://www.suse.com/System/X11/Servers/XF86_4http://xorg.freedesktop.org/linuxx86_64"{HezNa4cb87afbce69a9ffd3b3c3c7279b08862d468286162f23576a77e767ca7f056rootrootxorg-x11-server-1.20.3-150200.22.5.85.1.src.rpmxorg-x11-server-waylandxorg-x11-server-wayland(x86-64)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    libGL.so.1()(64bit)libXau.so.6()(64bit)libXdmcp.so.6()(64bit)libXfont2.so.2()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.25)(64bit)libc.so.6(GLIBC_2.26)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.2)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libc.so.6(GLIBC_2.8)(64bit)libc.so.6(GLIBC_2.9)(64bit)libcrypto.so.1.1()(64bit)libcrypto.so.1.1(OPENSSL_1_1_0)(64bit)libdl.so.2()(64bit)libdl.so.2(GLIBC_2.2.5)(64bit)libdrm.so.2()(64bit)libepoxy.so.0()(64bit)libgbm.so.1()(64bit)libm.so.6()(64bit)libm.so.6(GLIBC_2.2.5)(64bit)libpixman-1.so.0()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.12)(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)libsystemd.so.0()(64bit)libsystemd.so.0(LIBSYSTEMD_209)(64bit)libwayland-client.so.0()(64bit)libxshmfence.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)xkbcompxkeyboard-config3.0.4-14.6.0-14.0-15.2-14.14.1eyem@e7e-%e)1@d?@d@cT@c.cEcOby@b4t@b-b+9b!@b a@az`D`@`v@`v@`t6@`@`<@_^@_^@_@_O@_D@_*@_"@^^W@]@]m@\A\,[@[@[@[ā@[t[i[\Z[Xf@[P}@[D[:[2*[*A[@Z@ZZԐ@ZJ@Z2@ZZ Z}@ZTZ?Z/Z@Z YY@YY@Yh@Yg`Y_wY[@Y;@Y:Y6@XX @X+X@XpXXwoXN@X,J@XW@W@W@WDB@W9@W/*@W'A@W#LW @W @W @WKWW@V@Vn@V3VVm@VxVVV&@VV@V@VV@VGVVVUVA@V0V0V7@UU@U@UUzUuUn@Ui@U0U:T!TTTԬT[@T[@Tk4T`TN3joan.torres@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comtzimmermann@suse.desndirsch@suse.comsndirsch@suse.compatrik.jakobsson@suse.comyu.daike@suse.comsndirsch@suse.comyu.daike@suse.comsndirsch@suse.comsndirsch@suse.comdmueller@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comtiwai@suse.desndirsch@suse.comsndirsch@suse.comsndirsch@suse.comfcrozat@suse.comsndirsch@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.comtobias.johannes.klausmann@mni.thm.dejdelvare@suse.desndirsch@suse.comtiwai@suse.defcrozat@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.commsrb@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.commsrb@suse.commsrb@suse.commsrb@suse.comfcrozat@suse.combwiedemann@suse.comsndirsch@suse.commwilck@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.comrbrown@suse.commsrb@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.deilya@ilya.pp.uasndirsch@suse.comsndirsch@suse.commsrb@suse.comsndirsch@suse.comsndirsch@suse.comopensuse@dstoecker.desndirsch@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.dedenis.kondratenko@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comtobias.johannes.klausmann@mni.thm.defbui@suse.comtobias.johannes.klausmann@mni.thm.dezaitor@opensuse.orgtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.demstaudt@suse.comeich@suse.comeich@suse.comeich@suse.comsndirsch@suse.comsndirsch@suse.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.deeich@suse.comeich@suse.comtobias.johannes.klausmann@mni.thm.delbsousajr@gmail.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comtobias.johannes.klausmann@mni.thm.deeich@suse.comeich@suse.comfcrozat@suse.comeich@suse.comeich@suse.comeich@suse.comhrvoje.senjan@gmail.comeich@suse.comsndirsch@suse.comsndirsch@suse.comsndirsch@suse.comeich@suse.comtiwai@suse.deeich@suse.comtobias.johannes.klausmann@mni.thm.detobias.johannes.klausmann@mni.thm.demsrb@suse.comantoine.belvire@laposte.netmsrb@suse.comeich@suse.comnormand@linux.vnet.ibm.commsrb@suse.comdimstar@opensuse.orgsndirsch@suse.comtobias.johannes.klausmann@mni.thm.deeich@suse.comtobias.johannes.klausmann@mni.thm.demsrb@suse.comsndirsch@suse.comledest@gmail.comsndirsch@suse.com- Add missing fixes on U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch (bsc#1217765).- U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * Out-of-bounds memory write in XKB button actions (CVE-2023-6377, ZDI-CAN-22412, ZDI-CAN-22413, bsc#1217765) - U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch * Out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty (CVE-2023-6478, ZDI-CAN-22561, bsc#1217766)- U_bsc1216261-0003-dix-always-initialize-pScreen-CloseScreen.patch * fixes a regresion, which can trigger a segfault in Xwayland on exit, introduced by U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch (CVE-2023-5574, ZDI-CAN-21213, bsc#1216261)- U_bsc1216261-0001-mi-fix-CloseScreen-initialization-order.patch U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch * Server Damage Object Use-After-Free Local Privilege Escalation Vulnerability (CVE-2023-5574, ZDI-CAN-21213, bsc#1216261)- U_bsc1216133-mi-reset-the-PointerWindows-reference-on-screen-swit.patch * Use-after-free bug in DestroyWindow (CVE-2023-5380, ZDI-CAN-21608, bsc#1216133) - U_bsc1216135-Xi-randr-fix-handling-of-PropModeAppend-Prepend.patch * fix handling of PropModeAppend/Prepend ((CVE-2023-5367, ZDI-CAN-22153, bsc#1216135)- U_xserver-composite-Fix-use-after-free-of-the-COW.patch * overlay window use-after-free (CVE-2023-1393, ZDI-CAN-19866, bsc#1209543)- U_Xext-fix-invalid-event-type-mask-in-XTestSwapFakeInp.patch * fixes regression introduced with security update for CVE-2022-46340 (bsc#1205874)- U_Xi-fix-potential-use-after-free-in-DeepCopyPointerCl.patch * DeepCopyPointerClasses use-after-free (CVE-2023-0494, ZDI-CAN-19596, bsc#1207783)- U_0007-xkb-reset-the-radio_groups-pointer-to-NULL-after-fre.patch * XkbGetKbdByName use-after-free (ZDI-CAN-19530, CVE-2022-4283, bsc#1206017)- U_0001-Xtest-disallow-GenericEvents-in-XTestSwapFakeInput.patch * Server XTestSwapFakeInput stack overflow (ZDI-CAN 19265, CVE-2022-46340, bsc#1205874) - U_0002-Xi-return-an-error-from-XI-property-changes-if-verif.patch * Xi: return an error from XI property changes if verification failed (no ZDI-CAN id, no CVE id, bsc#1205875) - U_0003-Xi-avoid-integer-truncation-in-length-check-of-ProcX.patch * Server XIChangeProperty out-of-bounds access (ZDI-CAN 19405, CVE-2022-46344, bsc#1205876) - U_0004-Xi-disallow-passive-grabs-with-a-detail-255.patch * Server XIPassiveUngrabDevice out-of-bounds access (ZDI-CAN 19381, CVE-2022-46341, bsc#1205877) - U_0005-Xext-free-the-screen-saver-resource-when-replacing-i.patch * Server ScreenSaverSetAttributes use-after-free (ZDI-CAN 19404, CVE-2022-46343, bsc#1205878) - U_0006-Xext-free-the-XvRTVideoNotify-when-turning-off-from-.patch * Server XvdiSelectVideoNotify use-after-free (ZDI-CAN 19400, CVE-2022-46342, bsc#1205879)- U_xkb-proof-GetCountedString-against-request-length-at.patch * security update for CVE-2022-3550 (bsc#1204412) - U_xkb-fix-some-possible-memleaks-in-XkbGetKbdByName.patch * security update for CVE-2022-3551 (bsc#1204416)- U_boo1194181-001-xkb-swap-XkbSetDeviceInfo-and-XkbSetDeviceInfoCheck.patch * Out-Of-Bounds Access in CheckSetDeviceIndicators() (CVE-2022-2320, ZDI-CAN-16070, bsc#1194181) - U_boo1194179-001-xkb-rename-xkb_h-to-xkb-procs_h.patch, U_boo1194179-002-xkb-add-request-length-validation-for-XkbSetGeometry.patch * Out-Of-Bounds Access in _CheckSetSections() (CVE-2022-2319, ZDI-CAN-16062, bsc#1194179)- U_glamor-Make-pixmap-exportable-from-gbm_bo_from_pixma.patch * avoid consequently failing page flip (boo#1197269)- u_sync-pci-ids-with-Mesa-20.2.4.patch * sync pci ids with Mesa 20.2.4 (related to boo#1197046)- U_0002-DRI2-Add-another-Coffeelake-PCI-ID.patch U_0003-dri2-Sync-i965_pci_ids.h-from-mesa.patch U_0004-dri2-Set-fallback-driver-names-for-Intel-and-AMD-chi.patch U_0005-dri2-Sync-i965_pci_ids.h-from-mesa-iris_pci_ids.h.patch * sync GL driver PCI IDs with Mesa (boo#1197045)- U_xfree86-Fix-NULL-pointer-dereference-crash.patch * Fix a regression in u_xfree86-Change-displays-array-to-pointers-array-to-f.patch (boo#1196577) * Credits go to Simon Lees (sflees@suse.de) for finding the fix! - renamed u_xfree86-Change-displays-array-to-pointers-array-to-f.patch to U_xfree86-Change-displays-array-to-pointers-array-to-f.patch since it's a backport from an upstream patch- u_xfree86-Change-displays-array-to-pointers-array-to-f.patch Fix segmentation fault during terminal switches with multiple attached displays (bsc#1188970)- U_xfixes-Fix-out-of-bounds-access-in-ProcXFixesCreateP.patch * CVE-2021-4009/ZDI-CAN-14950 (bsc#1190487) The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write. - U_Xext-Fix-out-of-bounds-access-in-SProcScreenSaverSus.patch * CVE-2021-4010/ZDI-CAN-14951 (bsc#1190488) The handler for the Suspend request of the Screen Saver extension does not properly validate the request length leading to out of bounds memory write. - U_record-Fix-out-of-bounds-access-in-SwapCreateRegiste.patch * CVE-2021-4011/ZDI-CAN-14952 (bsc#1190489) The handlers for the RecordCreateContext and RecordRegisterClients requests of the Record extension do not properly validate the request length leading to out of bounds memory write.- U_rendercompositeglyphs.patch * X.Org Server SProcRenderCompositeGlyphs Out-Of-Bounds Access Privilege Escalation Vulnerability [CVE-2021-4008, ZDI-CAN-14192] (boo#1193030)- u_modesetting-Fix-dirty-updates-for-sw-rotation.patch * Fixes broken rotation support for DRM drivers without hardware rotation support or direct vram access (bsc#1182955)- U_xwayland-glamor-gbm-Handle-DRM_FORMAT_MOD_INVALID-gracefully.patch * xwayland: Fix invisible window produced by Xwayland (boo#1186092, boo#1184906)- U_build-glx-Lower-gl-version-to-work-with-libglvnd.patch, U_meson-Fix-another-reference-to-gl-9.2.0.patch * fix build on sle15-sp3 with updated libglvnd/Mesa and their new pkgconfig files (https://gitlab.freedesktop.org/xorg/xserver/-/issues/893)- U_xwayland-Do-not-crash-if-gbm_bo_create-fails.patch * xwayland: Do not crash if gbm_bo_create() fails (boo#1184072) (boo#1184543)- U_Fix-XChangeFeedbackControl-request-underflow.patch * Fix XChangeFeedbackControl() request underflow (CVE-2021-3472, ZDI-CAN-1259, bsc#1180128)- U_modesetting-Fix-broken-manpage-in-autoconf-build.patch * modesetting: Fix broken manpage in autoconf build (boo#1182510)- add U_hw_do-not-include-sys-io-with-glibc.patch (bsc#1182884)- u_xkb-CVE-2020-14360.patch * Avoid out of bounds memory accesses on too short request (ZDI-CAN-11572/CVE-2020-14360, bsc#1174908)- update U_xkbsetdeviceinfo.patch * fixed broken patch (bsc#1177596, comment#18, ZDI-CAN-11839/CVE-2020-25712)- U_xkbsetdeviceinfo.patch (bsc#1177596, ZDI-CAN-11839/CVE-2020-25712) * fix for Heap-based Buffer Overflow Privilege Escalation Vulnerability- U_present-wnmd-Fix-use-after-free-on-CRTC-removal.patch * fix crash in XWayland when undocking laptop (bsc#1176015) - U_present-wnmd-Relax-assertion-on-CRTC-on-abort_vblank.patch * fix for Xwayland abort in Present code (bsc#1176015) - U_xwayland-Avoid-a-crash-on-pointer-enter-with-a-grab.patch, U_xwayland-Check-status-in-GBM-pixmap-creation.patch, U_xwayland-Do-not-free-a-NULL-GBM-bo.patch, U_xwayland-Update-screen-pixmap-on-output-resize.patch * various xwayland crashes fixes from 1.20 branch (bsc#1176015)- U_0003-Fix-XkbSelectEvents-integer-underflow.patch * Fix XkbSelectEvents() integer underflow [CVE-2020-14361 / ZDI-CAN 11573, boo#1174910] - U_0004-Fix-XRecordRegisterClients-Integer-underflow.patch * Fix XRecordRegisterClients() Integer underflow [CVE-2020-14362 / ZDI-CAN-11574, boo#1174913]- u_xkb-CVE-2020-14345.patch: * Fix XKB out-of-bounds access privilege escalation vulnerability (CVE-2020-14345, bsc#1174635, ZDI-CAN-11428) - u_xichangehierarchy-CVE-2020-14346.patch: * Fix XIChangeHierarchy integer underflow privilege escalation vulnerability (CVE-2020-14346, bsc#1174638, ZDI-CAN-11429)- U_FixForZDI-11426.patch * Leak of uninitialized heap memory form the X server to clients on pixmap allocation (ZDI-CAN-11426, CVE-2020-14347, bsc#1174633)- provide/obsoletes cirrus and ast usermode driver also on openSUSE (jsc#SLE-12127)- specfile: reenabled XFree86-VidModeExtension (boo#1164020)- Build XWayland also on s390.- added patches required for NVIDIA's PRIME render offload support, which is available since release 435.xx (jira#SLE-8470) 0001-xsync-Add-resource-inside-of-SyncCreate-export-SyncC.patch, 0002-GLX-Add-a-per-client-vendor-mapping.patch, 0003-GLX-Use-the-sending-client-for-looking-up-XID-s.patch, 0004-GLX-Add-a-function-to-change-a-clients-vendor-list.patch, 0005-GLX-Set-GlxServerExports-major-minor-Version.patch- provide/obsolete no longer existing xf86-video-ast, xf86-video-cirrus on sle15 (bsc#1120282)- u_xfree86-Do-not-claim-pci-slots-if-fb-slot-is-already.patch * X server does not support mixing fbdev with other drivers, so claiming pci slots when a fb slot is already claimed only leads to quiting with fatal error. (bsc#1119431)- xorg-server 1.20.3 (see changelog below) superseded the following patch we used in sle15 before (bsc#1112020, CVE-2018-14665): - U_Disable-logfile-and-modulepath-when-running-with-ele.patch- U_dix-window-Use-ConfigureWindow-instead-of-MoveWindow.patch * Fix abort triggered by some uses of screensaver. (bsc#1114822)- Update to version 1.20.3 * Disable -logfile and -modulepath when running with elevated privileges (bsc#1112020) * LogFilePrep: add a comment to the unsafe format string. * xfree86: fix readlink call- Update to version 1.20.2: Lots of bugfixes all over the map especially for modesetting, glamor and xwayland!- Update n_xserver-optimus-autoconfig-hack.patch to v5. * Fixes provider auto-configuration with nvidia proprietary driver. (bsc#1103816)- Update to version 1.20.1: This bugfix release fixes several issues in RANDR, Xwayland, glamor, the modesetting driver, and elsewhere. - Packaging changes: + Adapt patch N_Install-Avoid-failure-on-wrapper-installation.patch to work with the new version + Remove patch U_Xext-shm-Refuse-to-work-for-remote-clients.patch + Remove patch U_modesetting-use-drmmode_bo_import-for-rotate_fb.patch + Remove patch u_modesetting-Fix-cirrus-24bpp-breakage.patch + Remove patch U_exa-use-picturematchformat.patch- U_exa-use-picturematchformat.patch * Fix breakage of Xfce (bsc#1102979)- fixed build on s390(x)- u_modesetting-Fix-cirrus-24bpp-breakage.patch * Fix breakage of cirrus 24bpp support on modesetting driver (bsc#1101699)- Remove /var/lib/X11 and its symlink, it is no longer needed and doesn't work with transaction-updates (FATE#325524). - Move README.compiled to another location and use tmpfiles to copy it at runtime.- U_modesetting-use-drmmode_bo_import-for-rotate_fb.patch * fixes rotation in modesetting driver (regression with xorg-server 1.20.0, fdo#106715) * might also fix boo#1099812 ...- U_xkb-Fix-heap-overflow-caused-by-optimized-away-min.patch * Fix heap overflow caused by unexpected optimization, which was possible because of relying on undefined behavior. (boo#1099113)- U_Xext-shm-Refuse-to-work-for-remote-clients.patch * Avoid access to System V shared memory segment on the X server side for clients forwarded via SSH. Also prevent them from hanging while waiting for the reply from the ShmCreateSegment request. (boo#1097227)- Remove n_add-dummy-xf86DisableRandR.patch * After upgrade to 1.20.0 the API officially no longer includes xf86DisableRandR, so there is no need to add it back.- Update to version 1.20.0: New features: + RANDR 1.6, which enables leasing RANDR resources to a client for its exclusive use (e.g. head mounted displays) + Depth 30 support in glamor and the modesetting driver + A meson-based build system, parallel to autotools + Pageflipping support for PRIME output sinks + OutputClass device matching for xorg.conf + Input grab and tablet support in Xwayland - Remove upstream patches: + u_xorg-x11-server-reproducible.patch Solved slightly different + u_os-inputthread-Force-unlock-when-stopping-thread.patch + u_xfree86-add-default-modes-for-16-9-and-16-10.patch + U_xwayland-Don-t-process-cursor-warping-without-an-xwl.patch + U_xwayland-Give-up-cleanly-on-Wayland-socket-errors.patch + U_xwayland-avoid-race-condition-on-new-keymap.patch + U_xwayland-remove-dirty-window-unconditionally-on-unre.patch + U_0001-animcur-Use-fixed-size-screen-private.patch + U_0002-animcur-Return-the-next-interval-directly-from-the-t.patch + U_0003-animcur-Run-the-timer-from-the-device-not-the-screen.patch + U_0004-animcur-Fix-transitions-between-animated-cursors.patch + U_xfree86-Remove-broken-RANDR-disabling-logic-v4.patch + U_glx-Do-not-call-into-Composite-if-it-is-disabled.patch - Adapt patches to work with the new release: + N_zap_warning_xserver.diff + N_fix_fglrx_screendepth_issue.patch + n_xserver-optimus-autoconfig-hack.patch + u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch + u_xorg-wrapper-build-Build-position-independent-code.patch- U_glx-Do-not-call-into-Composite-if-it-is-disabled.patch * Fixes crash when GLX is enabled and Composite disabled. (bnc#1079607)- n_add-dummy-xf86DisableRandR.patch * Add dummy xf86DisableRandR to fix linking with drivers that still call it. See explanation inside the patch. (bnc#1089601)- U_xfree86-Remove-broken-RANDR-disabling-logic-v4.patch * Fix crash on initialization when fbdev and modesetting are used together. (bnc#1068961) - u_randr-Do-not-crash-if-slave-screen-does-not-have-pro.patch * Fix crash when using randr when fbdev and modesetting are used together. (bnc#1068961)- Update and re-enable n_xserver-optimus-autoconfig-hack.patch. (bnc#1084411)- U_xwayland-Don-t-process-cursor-warping-without-an-xwl.patch, U_xwayland-Give-up-cleanly-on-Wayland-socket-errors.patch, U_xwayland-avoid-race-condition-on-new-keymap.patch, U_xwayland-remove-dirty-window-unconditionally-on-unre.patch: * Various crash and bug fixes in XWayland server (bgo#791383, bgo#790502).- Add u_xorg-x11-server-reproducible.patch to make build reproducible (boo#1047218)- U_0001-animcur-Use-fixed-size-screen-private.patch, U_0002-animcur-Return-the-next-interval-directly-from-the-t.patch, U_0003-animcur-Run-the-timer-from-the-device-not-the-screen.patch, U_0004-animcur-Fix-transitions-between-animated-cursors.patch * There is a bug in version 1.19 of the X.org X server that can cause an infinite recursion in the animated cursor code, which has been fixed by these patches (boo#1080312) - supersedes u_cursors-animation.patch (boo#1020061)- Added u_xfree86-add-default-modes-for-16-9-and-16-10.patch (boo#1075249) Improve user experience for users with 16:9 or 16:10 screens- Update to version 1.19.6: Another collection of fixes from master. There will likely be at east one more 1.19.x release in 2018.- Depend on pkgconfig's gl, egl and gbm instead of Mesa-devel. * Those dependencies are what xorg-x11-server really needs. Mesa-devel is too general and is a bottleneck in distribution build. (bnc#1071297)- Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468)- u_os-inputthread-Force-unlock-when-stopping-thread.patch * Prevent dead lock if terminating while on inactive VT. (bnc#1062977)- Update to version 1.19.5: One regression fix since 1.19.4, and fixes for CVE-2017-12176 through CVE-2017-12187.- Update to version 1.19.4: A collection of stability fixes from the development branch, including two minor CVEs (CVE-2017-13721, CVE-2017-13723). - Remove upstream patches: + U_Xi-Do-not-try-to-swap-GenericEvent.patch + U_Xi-Verify-all-events-in-ProcXSendExtensionEvent.patch + U_Xi-Zero-target-buffer-in-SProcXSendExtensionEvent.patch + U_dix-Disallow-GenericEvent-in-SendEvent-request.patch - Adapt patches to work with the new release: + u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch- u_cursors-animation.patch fix cursors animation (boo#1020061)- disable Xwayland for s390x again; it was wrong to enable it; there is no Wayland on s390x and will most likely never exist, since there is no gfx card on such systems and no gfx emulation either (bsc#1047173)- u_Use-better-fallbacks-to-generate-cookies-if-arc4rand.patch If arc4random_buf() is not available for generating cookies: * use getentropy(), if available (which was only recently added to glibc) * use getrandom() via syscall(), if available (there was no glibc wrapper for this syscall for a long time) * if all else fails, directly read from /dev/urandom as before, but employ O_CLOEXEC, do an OsAbort() in case the random data couldn't be read to avoid unsecure situations. Don't know if that's too hard a measure but it shouldn't actually occur except on maximum number of FDs reached (bsc#1025084)- U_Xi-Do-not-try-to-swap-GenericEvent.patch, U_Xi-Verify-all-events-in-ProcXSendExtensionEvent.patch, U_Xi-Zero-target-buffer-in-SProcXSendExtensionEvent.patch, U_dix-Disallow-GenericEvent-in-SendEvent-request.patch * Fix security issues in event handling. (bnc#1035283, CVE-2017-10971, CVE-2017-10972)- enable Xwayland also for s390x (bsc#1047173)- includes everything needed for additional sle issue entries: CVE-2017-2624, bnc#1025029, bnc#1025084, bnc#1025035- update build requirements- modesetting.ids: no longer hardcode Intel's Skylake, Broxton, and Kabylake IDs to modesetting driver; xf86-video-intel is no longer installed by default on these, so it will fallback to modesetting driver anyway; still you now can easily switch back to intel driver by installing xf86-video-intel package (boo#1042873)- Update to version 1.19.3: A couple more minor fixes, most notably a revert of a page-flipping change that regressed some drivers. - Remove upstreamd patches: + u_busfault_sigaction-Only-initialize-pointer-when-matched.patch- Update to version 1.19.2: A collection of stability fixes here across glamor, Xwayland, input, and Prime support. Also a security fix for CVE-2017-2624, a timing attack which can brute-force MIT-MAGIC-COOKIE authentication. - Remove upstream patches: + U_xfree86-Take-the-input-lock-for-xf86RecolorCursor.patch + U_xfree86-Take-the-input-lock-for-xf86ScreenCheckHWCursor.patch + U_xfree86-Take-the-input-lock-for-xf86TransparentCursor.patch- U_xfree86-Take-the-input-lock-for-xf86ScreenCheckHWCursor.patch * Add the missing input_lock() around the call into the driver's UseHWCursor() callback (bnc #1023845). - U_xfree86-Take-the-input-lock-for-xf86TransparentCursor.patch * The new input lock is missing for the xf86TransparentCursor() entry point (bnc #1023845).- U_xfree86-Take-the-input-lock-for-xf86RecolorCursor.patch * fixes random crashes in X in multihead mode if one of the monitors is vertically oriented (bnc #1023845)- N_driver-autoconfig.diff: No longer try to load "amdgpu" DDX by default for all GPUs with ATI vendor ID; this is now handled instead by an "OutputClass" section via kernel driver match, which has been added as config file to xf86-video-amdgpu driver package (bnc#1023385)- N_driver-autoconfig.diff: FGLRX does not support new x-server. This change fixes bad behavior(with empty config) when radeon ddx loads with amdgpu kernel module on SI and CIK cards, and x-server cannot start. Radeon ddx with radeon kernel module loads without any problem.- Update to version 1.19.1: First stable 1.19 release, including a few regression fixes.- Replace pkgconfig(libsystemd-*) with pkgconfig(libsystemd) Nowadays pkgconfig(libsystemd) replaces all libsystemd-* libs, which are obsolete.- Update to final 1.19.0- Exchange xorg-x11-fonts-core Requires for Recommends. The corefonts and cursors are not strickly required as long as one have a substitute such as Adwaita installed.- Update to version 1.18.99.901: - Remove upstream pachtes: + U_glamor-Remove-the-FBO-cache.patch + U_kdrive-fix-up-NewInputDeviceRequest-implementation.patch + U_kdrive-set-evdev-driver-for-input-devices-automatica.patch + U_ephyr-don-t-load-ephyr-input-driver-if-seat-option-i.patch + U_kdrive-don-t-let-evdev-driver-overwrite-existing-dev.patch + U_ephyr-ignore-Xorg-multiseat-command-line-options.patch + U_ephyr-enable-option-sw-cursor-by-default-in-multi-se.patch + U_kdrive-introduce-input-hot-plugging-support-for-udev.patch + U_kdrive-add-options-to-set-default-XKB-properties.patch + U_config-udev-distinguish-between-real-keyboards-and-o.patch - Disable u_os-connections-Check-for-stale-FDs.patch (not applicable anymore) - Adapt patches to work with the new release: + n_xserver-optimus-autoconfig-hack.patch (disabled for now as it causes problems) - Remove X.org stack version prefix. We are already atleast at verion 7.7. Plus we are updating individual components anyway. So the stack version is misleading.- Update to version 1.18.4: Another pile of backports from the devel branch, primarily in glamor, xwayland, and the modesetting driver. - Remove included patches: + u_x86emu-include-order.patch + U_modesetting-set-driverPrivate-to-NULL-after-closing-fd.patch - Update patches to reflect upstream changes: + U_glamor-Remove-the-FBO-cache.patch- U_glamor-Remove-the-FBO-cache.patch Fixes (bsc#983743) by not keeping >1 GB of VRAM busy.- U_modesetting-set-driverPrivate-to-NULL-after-closing-fd.patch: modesetting: Avoid crash in FreeRec() by NULLing a pointer which may still be used (boo#981268).- Replace N_Force-swcursor-for-KMS-drivers-without-hw-cursor-sup.patch by N_Disable-HW-Cursor-for-cirrus-and-mgag200-kernel-modules.patch Only disable HW cursor for cirrus and mgag200. This should fix a regression introduced by using modesetting for Intel gen9+ (boo#980124).- modesetting.ids: Add file for PCI IDs of ASICs which the modesetting rather than the native driver should be used for. This includes all Intel Gen9+ hardware (boo#978954).- removed u_exa-only-draw-valid-trapezoids.patch; no longer needed since pixman 0.32.0- removed no longer needed patch u_ad-hoc-fix-for-mmap-s-truncated-offset-parameter-on-.patch, see https://lists.x.org/archives/xorg-devel/2016-April/049493.html for upstream discussion; obsoleted by upstream patch https://cgit.freedesktop.org/xorg/xserver/commit/?id=4962c8c08842d9d3ca66d254b1ce4cacc4fb3756, which is already in xorg-server 1.18.3- Add permission verification for SUID wrapper - Disable SUID wrapper per default until reviewed- n_Install-Avoid-failure-on-wrapper-installation.patch: rename to: N_Install-Avoid-failure-on-wrapper-installation.patch - u_xorg-wrapper-Drop-supplemental-group-IDs.patch: Drop supplementary group privileges. - u_xorg-wrapper-build-Build-position-independent-code.patch: Build position independent.- n_Install-Avoid-failure-on-wrapper-installation.patch: Fix up build for wrapper. - Place SUID wrapper into a separate package: xorg-x11-server-wrapper- Set configure option --enable-suid-wrapper for TW: This way, the SUID wrapper is built which allows to run the Xserver as root even though the the DM instance runs as user. This allows to support drivers which require direct HW access.- Update to version 1.18.3: A few fixes relative to 1.18.2, including one fairly important performance fix to the Present extension. - Remove U_present-Only-requeue-for-next-MSC-after-flip-failure.patch The patch is included in this release.- Add patch U_present-Only-requeue-for-next-MSC-after-flip-failure.patch Fix a hang while using the present extension Bugzilla: https://bugs.freedesktop.org/show_bug.cgi?id=94515 https://bugs.freedesktop.org/show_bug.cgi?id=94596- Add automake, autoconf, libtool, c_compiler, pkgconfig(xorg-macros), pkgconfig(libudev), pkgconfig(libevdev), pkgconfig(mtdev) to Requires: of the SDK. This simplifies the build of Xserver modules.- Add support for a driver specific PCI IDs files supplementing what's in xf86VideoPtrToDriverList(). PCI ID lists may be held in /etc/X11/xorg_pci_ids (boo#972126).- Update version to 1.18.2: A big pile of updates in this one. Highlights include: * glamor is updated to use OpenGL core profiles if available, which should improve memory usage and performance on modern hardware, and got some other performance improvements for rpi and other GLES platforms * DRI2, DRI3, and Present all received correctness fixes for hangs, crashes, and other weirdness * Xwayland server has been updated to support the Xv and the xf86vidmode extensions for better compatibility, and fixed some bugs with output hotplug and pointer updates * Xwin saw improvements to window and clipboard management, and a few new keyboard layouts - Remove upstreamed patches: + U_kdrive-evdev-update-keyboard-LEDs-22302.patch- Backport upstream patches for Xephyr input hot-plugging / single-GPU multi-seat support: * U_kdrive-fix-up-NewInputDeviceRequest-implementation.patch * U_kdrive-set-evdev-driver-for-input-devices-automatica.patch * U_ephyr-don-t-load-ephyr-input-driver-if-seat-option-i.patch * U_kdrive-don-t-let-evdev-driver-overwrite-existing-dev.patch * U_ephyr-ignore-Xorg-multiseat-command-line-options.patch * U_ephyr-enable-option-sw-cursor-by-default-in-multi-se.patch * U_kdrive-introduce-input-hot-plugging-support-for-udev.patch * U_kdrive-add-options-to-set-default-XKB-properties.patch * U_kdrive-evdev-update-keyboard-LEDs-22302.patch * U_config-udev-distinguish-between-real-keyboards-and-o.patch- u_os-connections-Check-for-stale-FDs.patch Ignore file descriptor if socket or devices dies. This prevents the Xserver to loop at 100% when dbus dies (boo#954433).- Add 50-extensions.conf Disable the DGA extension by default (boo#947695).- Replaced u_confine_to_shape.diff by u_01-Improved-ConfineToShape.patch and u_02-DIX-ConfineTo-Don-t-bother-about-the-bounding-box-when-grabbing-a-shaped-window.patch.- u_pci-primary-Fix-up-primary-PCI-device-detection-for-the-platfrom-bus.patch Fix up primary device detection for the platform bus to fix the Xserver on older iMacs (boo#835975).- Update to version 1.18.1: First release in the 1.18 stable branch. Major themes are bugfixes in glamor, the modesetting driver, and the Present extension. Xwayland users may want to apply the following pair of patches in addition to this release: https://patchwork.freedesktop.org/patch/72945/raw/ https://patchwork.freedesktop.org/patch/72951/raw/ which combined fix an input issue when hotplugging monitors. Both are likely to be included in a future release unless testing discovers further problems. - Remove upstreamed patches: + ux_xserver_xvfb-randr.patch + U_systemd-logind-do-not-rely-on-directed-signals.patch + U_kdrive-UnregisterFd-Fix-off-by-one.patch + U_modesetting-should-not-reference-gbm-when-it-s-not-d.patch- u_Panning-Set-panning-state-in-xf86RandR12ScreenSetSize.patch Fix panning when configured in xorg.conf* (boo#771521).- Handle source-file-list in build not prep - N_xorg-x11-server-rpmmacros.patch: Delete: Process xorg-x11-server.macros in install- U_modesetting-should-not-reference-gbm-when-it-s-not-d.patch: fix build when gbm is not defined.- u_busfault_sigaction-Only-initialize-pointer-when-matched.patch Only initialize pointer when matched (boo#961439). - u_kdrive-UnregisterFd-Fix-off-by-one.patch -> U_kdrive-UnregisterFd-Fix-off-by-one.patch- Add test for defined macro %build_xwayland This can be used to enable the build of Xwayland and the package xorg-x11-server-wayland using a macro in projconf (boo#960487).- Split out Xwayland: * Build a package xorg-x11-server-wayland * Limit build to Factory (boo#960487).- Enable XWayland on Leap also (boo#960487)- u_kdrive-UnregisterFd-Fix-off-by-one.patch * Copy open file table correctly by avoiding an off-by-one error (boo#867483).- Update to version 1.18.0 - refreshed N_zap_warning_xserver.diff, N_Force-swcursor-for-KMS-drivers-without-hw-cursor-sup.patch - supersedes u_fbdevhw.diff, U_linux-Add-linux_parse_vt_settings-and-linux_get_keep.patch, U_linux-Add-a-may_fail-paramter-to-linux_parse_vt_sett.patch, U_systemd-logind-Only-use-systemd-logind-integration-t.patch- Update to version 1.17.4: Minor brown-bag release. The important fix here is Martin's clientsWritable change which fixes a crash when built against xproto 7.0.28. - supersedes u_0001-os-make-sure-the-clientsWritable-fd_set-is-initializ.patch- Update to version 1.17.3: Various bugfixes across the board.  The most visible changes include fixing GLX extension setup under Xwayland and other non-Xorg servers (enabling core contexts in more scenarios), and various stability fixes to glamor and the Present extension. - supersededs the following patches: * u_randr_allow_rrselectinput_for_providerchange_and_resourcechange_events.patch * u_CloseConsole-Don-t-report-FatalError-when-shutting-down.patch - removed evdev xorg.conf.d snippet since it's meanwhile shipped with evdev driver itself (since version 2.10.0)- u_vesa-Add-VBEDPMSGetCapabilities-VBEDPMSGet.patch Add VBEDPMSGetCapabilities() and VBEDPMSGet() functions (bsc#947356, boo#947493).- Backport a few upstream fixes for systemd/VT handling (boo#939838): U_linux-Add-linux_parse_vt_settings-and-linux_get_keep.patch U_linux-Add-a-may_fail-paramter-to-linux_parse_vt_sett.patch U_systemd-logind-Only-use-systemd-logind-integration-t.patch U_systemd-logind-do-not-rely-on-directed-signals.patch- Improve conditional enablement of XWayland.- Add patch u_0001-os-make-sure-the-clientsWritable-fd_set-is-initializ.patch Prevent segmentation faults with more than 256 clients (introduced by xproto 7.0.28 increasing the max client count 256 -> 512) Fdo Bug: https://bugs.freedesktop.org/show_bug.cgi?id=91316- Update to version 1.17.2: Pick up a pile of fixes from master. Notable highlights: + Fix for CVE-2015-3164 in Xwayland + Fix int10 setup for vesa + Fix regression in server-interpreted auth + Fix fb setup on big-endian CPUs + Build fix for for gcc5 - Dropped patches: + Patch110: u_connection-avoid-crash-when-CloseWellKnownConnections-gets-called-twice.patch + Patch113: u_symbols-Fix-sdksyms.sh-to-cope-with-gcc5.patch + Patch116: U_os-XDMCP-options-like-query-etc-should-imply-listen.patch + Patch118: U_int10-Fix-error-check-for-pci_device_map_legacy.patch + Patch119: U_xwayland-enable-access-control-on-open-socket.patch + Patch120: U_os-support-new-implicit-local-user-access-mode.patch + Patch121: U_xwayland-default-to-local-user-if-no-xauth-file-given.patch + Patch2000: U_systemd-logind-filter-out-non-signal-messages-from.patch + Patch2001: U_systemd-logind-dont-second-guess-D-Bus-default-tim.patch - Changed patches to work with the new version: + Patch114: u_ad-hoc-fix-for-mmap-s-truncated-offset-parameter-on-.patch- U_os-support-new-implicit-local-user-access-mode.patch, U_xwayland-default-to-local-user-if-no-xauth-file-given.patch, U_xwayland-enable-access-control-on-open-socket.patch * Prevent unauthorized local access. (bnc#934102, CVE-2015-3164)- Fix GNOME X Session for some hybrid graphics (rh#1209347): + add U_systemd-logind-filter-out-non-signal-messages-from.patch + add U_systemd-logind-dont-second-guess-D-Bus-default-tim.patch- Fix build of s390/s390x (bnc#933503)- U_int10-Fix-error-check-for-pci_device_map_legacy.patch * int10: Fix error check for pci_device_map_legacy pci_device_map_legacy returns 0 on success (bsc#932319).- Add xorg-x11-server-byte-order.patch to correctly set X_BYTE_ORDER when compiling tigervnc on ppc64 architecture. Related to bnc#926201- U_os-XDMCP-options-like-query-etc-should-imply-listen.patch * Enable listening on tcp when using -query. (bnc#924914)- Enable systemd-logind integration support: + Add pkgconfig(libsystemd-logind) and pkgconfig(dbus-1) BuildRequires. + Pass --enable-systemd-logind to configure.- u_ad-hoc-fix-for-mmap-s-truncated-offset-parameter-on-.patch * ad hoc fix for mmap's truncated offset parameter on 32bit (bnc#917385) - N_Force-swcursor-for-KMS-drivers-without-hw-cursor-sup.patch * hwcursor still considered broken in cirrus KMS ((bnc#864141, bnc#866152)- Update to version 1.17.1: Fixes for CVE 2015-0255. + xkb: Don't swap XkbSetGeometry data in the input buffer + xkb: Check strings length against request size- u_symbols-Fix-sdksyms.sh-to-cope-with-gcc5.patch Fix sdksyms.sh to work with gcc5 (bnc#916580).- Update to version 1.17.0: + Continued work to strip out stale code and clean up the server. Thousands of lines of unnecessary code have disappeared yet again. + The modesetting driver has been merged into the server code base, simplifying ongoing maintenance by coupling it to the X server ABI/API release schedule. This now includes DRI2 support (so that GLX works correctly) along with Glamor support (which handles DRI3). + Lots of Glamor improvements, including a rewrite of the core protocol rendering functions. - Remove upstream patches: + Patch130: U_BellProc-Send-bell-event-on-core-protocol-bell-when-requested.patch + Patch131: U_fb-Fix-invalid-bpp-for-24bit-depth-window.patch + Patch200: U_kdrive_extend_screen_option_syntax.patch + Patch201: U_ephyr_enable_screen_window_placement.patch + Patch202: U_ephyr_add_output_option_support.patch- Add xorg-x11-server-source package that contains patched xserver sources used to build xorg-x11-Xvnc.- Update to version 1.16.2 - Fix present_pixmap when using present_notify_msc - Fix present_notify to return right away when querying current or past msc.Xext/shm: Detach SHM segment after Pixmap is released - xkb: ignore floating slave devices when updating from master (#81885) - fb: Fix invalid bpp for 24bit depth window - supersedes U_fb-Fix-invalid-bpp-for-24bit-depth-window.patch- fix bashism in post script- XServer looks for dri.pc during configure. dri.pc is currently provided by a Mesa devel package, which is pulled in by other requirements, but it might be better to explicitly require dri.pc.h01-ch3a 17025429341.20.3-150200.22.5.85.11.20.3-150200.22.5.85.1Xwayland/usr/bin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:31901/SUSE_SLE-15-SP2_Update/6ea6a2efdf24f4a2bba74c22835e3539-xorg-x11-server.SUSE_SLE-15-SP2_Updatedrpmxz5x86_64-suse-linuxELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=d2658f59ef55abe310cc50b84133de4de4890b1d, for GNU/Linux 3.2.0, stripped"RRRRRRR RRR RRR RR RRR RRR RRRRRR!RRRRRRRfzڽ'8?xorg-x11-fonts-coreutf-8637cb05163ac4a1fb0b786f79a312ea810a9dcd29ed4c755fff41ab0381d79b2?7zXZ !t/|kU]"k%#4ղۼK'l;tP ^S,mM$"ޜ:G.`[gCw_gKb.<|<7 Ыj}:ӰvcA{vcG @[# ju`1PO$WC Dr/3:  B('v6PUZ_?YoiYPå&h(]k=E0k:_6K(3;mf EԴc=N"*<| @3i`+P9j2у?e5څ2l) (QN+__,@e9QጆE"I/u?̤3?+LIK fPK6 ĸ,I"y13?o:8Ugx-l`5HD>ihFkL3;KW5F!Y~ n/t|HKm)2;u?1.'K#?DS)b.EOԒ6/Њ-o"@Tm3f|95-!aV-^PĀ֊3NkGBQDu+M'i쿯yNkN@:jD^ $cR%I1z}VgY?`r>}F 2袅i3T(;)؛mnMB%sY9|b'yUةRS=, /,,cZ Z%Tߏvv`Ʉ?^! 0>ǚzI6쵧5l &i43Kmiܟ;=*~,Ju\9|X+ϙjNn{!УG47")T׌HfM^n3K3ٰH,HW_uϡTPދՐ2:B[1vXD1f^dg>iyZ8T?8/cCbq jG(0oT΋"Osd[TGIS-Hp7jСV Tudemq@QIkog 쥌Sz>.`J˜G= m^ &XZ,>%ڴ!/|f9 %_wjhۚ)gDXxFvZShAf8eXe<O6W0|77qF? r I޻<m' A@%=<[Qw2y}GgI 3qmSw;HH:h]{&F3qLmk9^wHHn++|/z!1 nńP!3ENqM|~ poG^A/+uSժVJ7^)fZ \MDŽ6ܱ-^]^կ[~8uJ4JQ=9LW*#;Mm4 OSt[G> + h`VZ'Wyzn_=gfeMG(c:J7kG<۹c*h78Iq_ Z*eh71LioFur`깅-L5r oBrS "w/iokƃشo|@;E!5vkRXB聡(P!D-x݁H&V捪7>sd[;O.钂٦*+Zb,8d4Z3>Ae^/=,BoCty+w߷.)b+ӑ({Q:>y?;:N?>&Ώb&LIUb.1_0`]- ǥP VԽQ~h[QHɛ:Di`W%RΞm.\IwW Npn]uJԔgԾ΂:䆬Х0齭1̐"4{GJ[ƌ1$3]Vp3(YXۄ¤J0< %S2_z|uYV/cY7u';\HQ3bf6L\u5G J؟$j @A⊱ uԀ֋:ϒQu/5 12F\X|@c CHTfg]XB4JӃ'ԙy,=JSb#◓; y$uSZ>w+\%njCOP,#{u,3b8SnE$",,<'$bR}Q< ? 76ݱ$/&fCsa?vg$.Rr4'4 !Rv5k"Εx<_N[?= fm`4ZO<#OHb;|kCĎ PX2<'C䃰d$m2*H.5guc4XoyfJE?0ey܅z$w|{2Iq̈́T/EV!GSkrJd%&fPLz&k1'w0Px)[ozJfk3bA84\0͹("8WXo!U67IFs@~##*'bJ@L /Z\['qr7 $K=T9N)\!U;t/S9d8,2i8^qۊD6o"o_nfm3䡘8[+%TZ!1և',~Q w^UyַW32`|@g*;m/f!i{Pztc.ũ+,:s{1h%]߿bo翂-_{4*z3{y^e 8K_®$"p4?^1I3/dlQ:ߥ~!P]aT>Kh;e u6WCÀ`tXz ~ϡIDzrgS*q Hs`)}qHSqMHuTTQ.#;.pӔb0#uG@J!p{?i;vIg3DA y =ZMYR!KMC[s+$;\K0NxnQُyFBAD8~_aciEOַ::5^EJ4B\r`G߇X aH;!|ЩԛQԛ=}0nx,Y9pHݏ7챝T.+բe[ (EcLOZg"XoogdVdtLAtS]*wӉ ?\a<+-y]TXf|s#R0}u9W\sL)nJ!<-BMVݚP,)>L".q= .5b2:Tc|SۭYU> VBHqm&Hu<>sŰ-R6`N` !~mF%*ti[6r0ګxM>CK/`]QAURu3e[80·e^ߋOaGGHnx+:@|m5cA?c6%MJƔyU5{YpsЎ5Mi<9@p@xZQCMC$6!Y(O`F)ue,QALjƀPk6Sk[0n;VkS{Țl< SlX Z&v׋Aħbv DV7o4褅OF3ޟmi%MAkemԔ␱1%9±0 yҠ +3X)8Y!Xe?tPxKc#=Hz|qkhs]"VZMAT?]NN&MɊئ`CuaktS$coMφ|؂0lb{JӍѮz?zCj֒ܐX"z.fm觔u14&kA?BrbnR;We|0t|X<\dd:%K%0ʞw1"Hxb eޚ| TAçVwѣ" )t Vk)i>1ZuUf ; djB@thl C|&s \`̴VJ5i>1C/?Hk C0%5f%˷ SP aXFS@ƾu\"YdoCĉo6#;ڱ8c,) QI_ћ[,j&ȴӗ?5)Q c!-`_39 Y+/EORJ\Nv2ח\S ¡#wqbr3 #)֚t<-eW%b[2o_SжviJ:-":46RGUͮA >.hۆ[98qX`Dl{X, fu'v5v$3<x1oʰPG퓙דEtvn_ʖֻo2cBYLJ"H;ĝdŸ@ Ml$srӳLx~<n¶G]_+5v6yZ!o`#D+*k/eo+'ݹOSAD%7U|ܮK|8O$Oc1mV=ocP'LP`sZxlL[ E D"[=ÎژpπY$F[鿘~C0)vۙY0O=c8/$Z1ÛeÞD$z`*} zJlg17ɪDMhZ(v7mB63 N -d:`64׬Ȋ @xg>ORUB$kbFQ Ы00˒oMھxwfե]X'*/:y§Ƽ~HO֌m 7i1T%W%{6x(ID_oDUnB_rxQ!"Uslkb_96vogIh7Oe^_oAqaCM[lٰ92j=ȺI>ߐΈbX1ۦWEQ_3#UT{&R gYZ˩tj(\0ƀazH$-V@3INYGŅY@5 Gi}ϋT=j(>e@]3y j M]o). *kT\#束Q_HlS*IC3*0Ě5"t˝8?]'ZVO 7JxHE5({ڧ^9F=|ĔY0DpdS7,*%YU@lj28ј.௉b8}퍉;aYiXԝѳLcsZb]".I8:_H#ϐX/(d6/fX"DBqRDi8`#0\eZpq&-=)\-+;(z{TѲѺFǢEljSI- `9ܠ[d9 }GX Hh^wTXNRhe!y;,dg M@C|ۨ;o+YP$?4'Sagrb|j4;xy'B,G}21 -@|":)Φb k~7 q{ 3xpDI$`Dè' 1ꨞhݝC9Eg U`{KFQ!}<8l"?޳v*떵w$B:Fo8ma{AdrťJH}b y@v& .1`c 8Tve!qf.eD#|cAk`2. Dz+VrH-miF(_p/A4yiTE)2wts'iC/%E3(35W2s& :5j7VZC?EX{X@uTAү*S_G: \GYEM2k&a ` Zak8#]vaJ&sIX/L7 u+s^49x{[X$Ŀ@qҎfa߬!:EofֆPP ǼGG$PW U^;Z]X*(+hv:AbL %foe[b#jB-!tN=Q!rBc(־熛s/"ͳJ(,hj|f۱m9o~A8{Ͳh_hq-WGJ>;g)NkLDRqu25 Z ,:ɾ )IvO#W9Ie.~ޞ3@hb4[:EZ<я:kQ `]+vh(k۞\MTd{nSP# SP6&LCPW 4uYt,ɩ^xU몳 ,+AԃW!  iqn.JRY`j Zߋ؎}\AoC„xbZ/4OS]H+m% p.Ra*Pp(EYtЌo%*$u&;Ro,8bv}^՞)M*e^ѿ=I1 z`hD0oZغdvވu\ɡRNx XtN~BrdZ-dU7tLT&ՍߘGΜ=0Q!vZTlah!M}]p2~ LRr|\!o 6iU9`uRDѡ'%?o1 ֋-=%! ]f;}uKL3}Y>_A\'V+#FqFX\-z.EvC[Cd:AP֥J0%.hQO2~Z[ƍ5Y}!>#l24ˇ8po߶xS5x؅0& mC \7 8˵25\h~oM>[X(?ͩ7[\y`PfGzSyɚزx,r)@-h38Y"csdn4Ah,X2ߌ|Q !vjC5좠EBFI`"}0K1D"E*'cߨG-@h?%A>o/97#x]u?sonu)h ӟ9V Bj+!e674|?CkbXQɛd:B+_p>j4ؽHE3mh}M6ue 8vOo8-6u`ߴL`40js+Tno࣊b_Ƨ9yY(йKɑ l N%olcSdX]( bGZKRK>9:סe>d`.1[e#s>ًm2Q#t xn=ʁfBEBţy6NH۾|/1x?Vї%hA dߓ}qiy;,+2R΢6$Ve03Sx/#$ŗ?@# 4,@ ܁Yh;fL:K3{'Ꮎ\4M•:&<;'l;%LOKF#T䀒^%9*: }6 "&oDB 7Rm!) U?P@a:@NGozQY1<33>ᚱ,>ӟ_B7١Оq'yUBil'r+P+X[ @T/nsl\pDjxܫ1H磎y\ݝբl]ߨȗԸ H=`}m2kE]"ʵ&D#L5Yt"*?S ILYB&']@W ex_soݗQn>;H0xU9{h졭}U wF(Bv9;(LvA/FV MjtDl8B*BߘHSlgܴd׹t`E(~1]r8^u/:,O~VOu_lLhS[t9CRY'fʞ6e]Uad;h' jqv!3V N#oaM"QLꟶJm@$yD??OU~l fs ~H4YDGJHN?'%mw%, k{{n!q{S6eWj,ͻ+"Mm$UNmHpz눑^qa DRTza$q"uvdw;3Zy1*X-lyWk&\tswAW]x!FVXZ|% / ؎iuL>U}ֱr >a0J@HM`KT>/YBTU GVZTb*ֲ~|$k7GPlUVO_nY MPъ/QgbO}'+"DtȎP.Ek)6[-Ezۘ0 m11;k~FkjfFVD\K-L>;B }:|6ZP*ȶu'I,Ƞ]=F[Onfׂ{|K[#?A1k@=ʊus^# )(?[A̢m; >$'sfO6M߲ALZTɣxFFOe2;#V_TV]Z*X>&2ד_ܮ@w鳽F(CVJ[޻hTR4ٞv,j5vTI8{$!GyZ)dE$!2q ;ڔڍʖ𡐙xQlF5$4TxR3ۧ?h! 9L@,a]@]wڭdBawaJ VsT(R@:wR{IpXл'3# ɳ!}mJ>=Iע>sI+|#8!>ep{D ucjat<x0J W.[@wS=d*gǕyVF#7UEk'7E"Ai֡ewvO}W/b }J꜉^tr*xXࡶ"L"Q~zdWbp~ۤLҺ3gdbjBF2%87{$21c0h9%rKPJjX&oeDQ3pbz=FyB݋D#2rMA`xc3Y 6B5jU'4n˂7?^MTzOȸVJ zABXN WPSy^*xu#+fb|LfxQ5M({aqM6!gҹ wNGotuY1'sw诊_n =f㰸@8keXSTs񛌸s֬&`HT|GuYN8DY$#sYQ3p";BXN:C{O4Yh2?6 1SHTnKΓ&CK$a5i l%~^sRT慎mj4,/-QCT<}Re)ȳpWNRQ̾]NKSUA'9@#(aP[F9.0yNQvP "~?:!|j6]3C/I_X mXuuYN+@}싊Lqm6wR9hBG!`8E揳迭[w?L ыޝSb?Q":|TnD&o /o0J!WTrwF6i_YClwct?c# H3$p XʺDR5"! ܨ VWʷV AS84>_(  gE(ȴVuE>i O:C׌]&ʚBP"kk쵈 sWӷ b}=A~ 1S?U#'VRŧ1YFox^X×b- íΗ@1c 5)I$6se_r߰(NAwfUBZh5v4L Y ːZ?A*yv8eī ԓ& EНu2oz9\N 3Ae*⦨C⻑:0#Of2S'SBATg 88J܃opqʰsԿF_ŦYT=gbZ=>IYX}Lj5w_ K&:>$.̆uHeНr= 8y%(AhMHxt9or7RG*xcX#Lե\U j/Go}".m=v-Of*dŦA aFQYf3DPk╊-[@Q{4\wBAv+AqyI_H弩) .ߧ0uS5dөl*nua)͍Ό'2pxЎ7>tUm~ի@S*_LGEss\8_2@ʷ<p shHv|pW}o &q8GL5H5vr0oD%VKYSeF@2ݺl+̀#.1GP%hc%>wC֊nIAJ19$&C6 ;x#RPԓ@@ʠX{ lx/m %#wƭ *\1z:VioqPcrAO].>n щ,wu[?_Wj;$Ķƛa Ogф.78!`# 4]D~9N"M?jںLvC&ق\\Q1?9fN $t Wi؏+Vi 7+*`o.Uˬ+M \Noޙ,1m5{i2<.ҙՑ? ?x!B 2ip5+InE-r=&C{cϹWN-)7 p- 0\wB 2݆xjN&0?sWgmscK8|D5$ba/kq+OjfbT&L;9 aKg'CKQ6+VЖeNGTWbseEJl KR2鳖r7inQ[ b!&h Jrp?z( 9a]MJ-p&xfjHp >5gq|KywFzr"EUNA3RN/9`.U.SuxTkfN`?s8t/IP3E rhyqfZ3uG`eijntZt汙}y1CyV tje(?'GX_콝deefj_ְ;! Һ@׆EI_eo+Kq+qՅN{_>1&u1˸:lꭻtch|KܓG\dURp?{*[6 dj{: -FҘa%FЄUNXJWc} |\P3 Cbh}Ň0NeT ݙD8I3>cT 1 эFmH(CUD|' Wa'w-'wRd*KR]lVGkǍV_jsܦ-]GHvLih`^2QzB,cX./Eqg}~S`9aoQ?\EBPh0`PSJv]~'EU1:IxpIir};Xs>O})q{ SZ#Q!c]jݓV;ӝvT ެ@oxjJR;´F?#:Ž5D"TwLa* O#ͬm3c*~vzҚ't?%C l@ۼWf[W/F1Q'o!zWd$)ES{hT=a˙yO;h&k9jtj1<;9e)e4VK~=T_Jᇸϯ+rP cCe 561Ɇ?ܹf*ab 5JJէ k6a1{>WhTd,x]b )`e-΋eۭ=%7*9.;ɑq.R{%°]-f97;&Dg<e>z3ΐ'pp)^#72b N#Fɔ8<pޠ 4Q ptz`LO0d(3B Ͽ骽W0;dI3_R닑WCRaUXS"TG;l)O@Јc饢po]*ߵε|5 ;4FNϖQM­{Cpl +Pi($qlpU[ iW;M#W"5>-zm)t-))2di.pf\ɀY4pK4Twz<`WWU0U chrX*q<E( WCJjy,3&pF ݸDxb.y^<P_"DO-^ea@6g!R RhlXO՟8˩%SqLFGMY047`{8px(-SmT8q]VidR2H۷d wKD>]0+[hOMi,rAC0Rj|Fqn| Y }t}7 $8-r7%8 %IKM"-݊c]@Wr棞q7"L $M:ԿG (ى)IL8u.!x<\ LI *rF4*pK 1lDn`/sO9# C۫J9pn 1fq(on0÷~h S'b[*RvV1%,E4,d.4n O+FC%tƺsxq|I ؜u:Kdkp7(>Oc$ $]]w0&R|b4FU>͆M5k[p4Ј7A1|W>!&Պ n`mO1en9BVI:݁]aoʚm #\^8=*CH'[ e N{|_2yx3Ӥ&~_f8pnq e,7{.%JmNUpD&;KqkvT/v8|)%}ոeNLFX][|ەroI>z|UhӚo_4ktd[X=FLـkAQhNbd\8Ha ЙeMpҊ6nvc7\]40dEgV/МALm]$@*H8^[F^ )뷫Hy؝ׯ>ON$EZL__%+V52 H]C> `];h\*Wk|*@.XA Qm/):ZA`,M r!IiUJLyG 0/]> HFWyQّ"9Q|I e8r{ ۴m{6p30vyqzՈw״/Q2Y GW0S҃t\T/ C$Z"?m灘xψqvBg`.,-gciCNϚɂ nERq{:o &c^@q\,^|ޜѕ9l$'L!`KP|/iY%pbTUN|ߠ ʼn=4BŠl|t;2^1ޞӣ{/HI=۽Ӵz$wN/=1/uglKoμSRPzW!xÛE]\q:f>}`s@Pbo26)rU8Xֳ- .44-fbn?y1zsM] w .lZV܃xƿ##8v Y?|. OW|1+I!Pd;\FFh#Vj@\, | ȅ-Zlj ?㲦?m#f8쌄E߈aBLqz?g jd* Ҍ)K;ܛO%<-ݗx?[;)F/߇<9 }  h5A;\YUDcp-4=jG[dFJ \X&tDÑze !LM7$*2nRk&VP\Պ)AB^Ç5\ˁDg ڎ]])*#lKFJ3t8,w ZŴV)h_MsoFWFۡmFj3;J:W"KYvw >ƘzzoE-~-}~y;k,C ظgS x0!6m~2W-ƒC`,nߐuT B}}HL B-ACQG$&xHe/ H'*jzٹurG/nΎKWZ0&g87evq,d,6SxgL1Al_cLQҲ >VAz]1dUq9{r(:+T#; NIFw; Ş-_%5٘Rb@X}n@eʒO_@ΥeF7ÿ8C'tOW đ(I&f[vO9A1Z3nI*plԙ)''CĜtGNxcB'q˱iP̬r$cR6Ӡ:! u}*5 $E܄w~isa0@h:L7{7_F-;%i႖ C/ G45_1`Ke1~|]T Z szd tKO峋˺N\y*N1LA麏4e LacIQVǘq8r9Qq_4,ASS0-2f7Ōqaai=Qp-(u}">Ȧă[!3ln@@ e#`nh7=}Ucxtכe 80jhEx.R;WaT}1kOSew?w /N'j?JLwGj(F tϖUsY5ai hxIC!҉.ZXjwŖgQ#O*h)%*]ޫY/-wZK+>Y kG06`B]?5jۡ3[9L,DЙqY/neJXyt ֿ͉''>E7`Ɉ _($qpju0@]6IFžg˴Ne3xnjM+}8lQnR+ΠV#$ڼO1,jZęם d(X{.l-MhD*]i[1ʊ4\fuY $b? O/ wc;ܼ}?$O:5ɠ+ZP |1ܠWy0)v;kTR^!̢5%wkvwJX=]}е\"p(oK"mADcY i7!㎣ń7;Lo ~ CoǞ&I$]5ye. zg2=mҍEL2f9^^EIuOE5RiHx3YB~"ocduc-n`t&=a)ec"sm]p۽$w#zT~f<%jaT"9 ޗf`GU<:V%/Pwxٺŝ-P#Yߚ~:dwomM0@ĉEv,:1Bcs ח4#K\oWOEM=Er> `qQA=VV?.]ONww\σ.UN8zl]zLgxTC aITɲck>C]C,|pu Jpv7.9Nҏ-tCm9WG8I~Iu8fp?I"ylVԘ`A{Tk:)c"ny$Mc/pI4 IU>Mt0GYqO1dOXÆ{ej^CU#֙ BKj{,AHL!Ev_1^T9npܛ^b7 y^RkD=1=좆3W4®~ ͫ/=oo'q.Om^pD\LDf/x^-t>Cruat7sgBX0&d9ۋ|CSQENBsXHq4FP@raMJibwɯz߀p}[q?3SUmJNi6c} ŐZ8Mn { NrH?icf[SGɲg*vH^ύA <Zp3 d,"(/cLFnL3u%Woުw_J~j?]u<<]zn|dW"k׵(3?%uĭq [gzh/P0C@ ZZڎ2kbzҟKv_$elV; w f94D^tkNp7mTT=:yrr:0}aCեUYAu-)ё/uܮ4M޲zyy]]L9P ^.:34.%2o {xą̀HItFJP~:r. [-\vN:bd 9/$`%mhj ZBi >ڼ܉=<7U*&YvUnUP%2XG찂܅oۘA_%vC30 &pAlٝJNEUc1R#i٨Ln$QI"fJg5|TK9c\rË-gkAWWG,?G2c37d n0q;ʹgCzH==kD30~ \Dw:mH>f[ e9k 7 CKD?LatltQRUc9q`diOvIh,Jj2y0Չvm2XELE&=83Ұꓩ 1:k_-0gHy^,#~~fvI9+@N ~q&J7B?_v}awVZ=@:_h韋0Q[w:i"*"+Vxz8GpBh f'DQq84w@ YLx8A騦.(Eu,@6tSmf'ۺ1qTn9&rGN}s  "fvXА+ܠkf8C RQ2&c)Fs6}ME5%NJKeMaQH/"ϵHj"qĸ OOGMׁ)8Dۡ`5@kfV\mRf0'ɻ{:q9uIG:I}rG%H%7u8Qn rV{7QlŦKS6bWJrPE܋cGؾQ||v}ï£]sj{x _(.Žȕ['8VDh+; <( `rgw05$eϩb~)_W]!)ݑYvrƠMFRƿ]qJ #k_#'u c.js©a1Z! bf!5Uu@^#q9`Q77"[;s6, !ɝu_c^Z$ jh| ϕٞTKTЃV u!e cWBLjQ?W8ѪJLcrB8R8{q2 Ɗ,} .Z߭폕X>gt-ie}!1YɘO_ ry>_N0/e!W(B i2{/;oDEjs ss-q9e$kCaKb[euo2XN*@"trڦBJROʞ6~g2tgBIH0ٝ1΂cu]n3E%wc4و<{X ][^ ZzҀ`5Aif{/`z̉նrd; RrY*< vZle ױP]S_Wxw/╇C©I;;uzvh!`k,߿59%>Z6 tԁ ~J Na TD'MQ<~;=QN VvbNI놃#L #1鞈+OV jֳJtc6 0֓^8/_^Xқ,NFrb]J:EMʸjcc=מe!f=c;'!c[3\ٟ&si}Hr!u4hZJ:K5mdž#2ɝo N;{ =3&}Wy;vG/W@FK/*< d&ق<4YfȢzVOЙ|]F_ <ɸZX&d2:Ŷ I:BD]w[߇FhL%|5`'peV@j#W!P.߹ay&X^% OZr0k$C5 &[ca>.`;Wa{ ^׫4efw+i>[Cִ+6nGrҝ˱Эv.Nn-%Kd<3v^:QRDg m[QQ-\+6GQ_4m,ipDAj 0gwXO'>yQxNHsusjSO><)[iXI/dXZ{)Hg%.aй"\8r+pXua[@Zd ˚n340X1KDHPml&f$f&So嘉EPVK&4LS_ռ.e,WyyTχVO& YZ