MozillaThunderbird-translations-common-115.5.0-150200.8.139.1<>,%e_p9|>,cPO 99:(ayclO̘\ѡK"ccvo7hPQa\~NO < C}?*T{à65O|%#/[C2FmPѫF"浗t#VW勆fub= / MMqyvv2=oB2Έ>@Q; 6xȮwPS{iNMeS>>?d)1 @ d ,@]cl  4    0  * \    &( J8 T9<:BF?GXHI X<YHZx[|\]^bcdOeTfWlYulvzCTX^CMozillaThunderbird-translations-common115.5.0150200.8.139.1Common translations for ThunderbirdThis package contains several common languages for the user interface of Thunderbird.e_ibs-power9-13+SUSE Linux Enterprise 15SUSE LLC MPL-2.0https://www.suse.com/System/Localizationhttps://www.thunderbird.net/linuxppc64le ? 95 *   U   C ׭ b ߫ : e д ~ n S ^A큤e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_e_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-115.5.0-150200.8.139.1.src.rpmMozillaThunderbird-translations-commonMozillaThunderbird-translations-common(ppc-64)locale(MozillaThunderbird:ar;ca;cs;da;de;el;en_GB;es_AR;es_CL;es_ES;fi;fr;hu;it;ja;ko;nb_NO;nl;pl;pt_BR;pt_PT;ru;sv_SE;zh_CN;zh_TW)    MozillaThunderbirdrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)115.5.03.0.4-14.6.0-14.0-15.2-14.14.1e]@e9@e-%ee@d dE@d d@ddu@d\dI@d%ydJcccʂ@c@ci@cctcdcb[cN@c@cbbb>bTbw@by@bP#b3"b)@b'E@b8b aZ@a@a@acaaf@a]a2@a @`#@`[`@``~@`pA`]`6?`!'`U_@_إ@_ǁ_^@_i__t@__@_L@_$^^@^˳@^^^ku^E:@^.^g@]@]]]]@]c@]]z3@](v@] ]@]:\\\ޢ@\P\\+@\\r@\eX@\J@\\l@\[[_[G[Ѱ@[Ѱ@[Ѱ@[[][@[D[t[dC[D[:[8@[Z2@Z@Zhu@Z>E@Z*~Z)-@ZfZY@Y@Y@Y@YS@YOYA%@Y3@Y0YR@Y#@X@X!@XXYXAXdX@X0>W@Wu@WW@Wu Wm Wk@W^@WH6WEWDB@W4p@W-W W)@W@V(@V@V>@VV@VVuVzVKVf@V +U)UU@UUg@UMU@T@T@T{ThTXTKmartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgastieger@suse.comwr@rosenauer.orgastieger@suse.comwr@rosenauer.orgastieger@suse.comwr@rosenauer.orgguillaume.gardet@opensuse.orgguillaume.gardet@opensuse.orgguillaume.gardet@opensuse.orgmeissner@suse.comwr@rosenauer.orgguillaume.gardet@opensuse.orgastieger@suse.combjorn.lie@gmail.comwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgastieger@suse.comwr@rosenauer.orgro@suse.dewr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgdimstar@opensuse.orgdimstar@opensuse.orgwr@rosenauer.orgzaitor@opensuse.orgastieger@suse.comdimstar@opensuse.orgwr@rosenauer.orgschwab@suse.deguillaume@opensuse.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgastieger@suse.comastieger@suse.comwr@rosenauer.orgwr@rosenauer.orgpcerny@suse.commailaender@opensuse.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgagraf@suse.comwr@rosenauer.orgbadshah400@gmail.combadshah400@gmail.comdimstar@opensuse.orgwr@rosenauer.orgbadshah400@gmail.comwr@rosenauer.orgastieger@suse.comwr@rosenauer.orgwr@rosenauer.orgastieger@suse.comwr@rosenauer.orgolaf@aepfle.deolaf@aepfle.dewr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgdmueller@suse.comwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgschwab@suse.dedmueller@suse.comwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgledest@gmail.comguillaume@opensuse.orgwr@rosenauer.org- Mozilla Thunderbird 115.5.0 * fixed: Initial message was not automatically selected when opened in conversation (bmo#1856266) * fixed: Newsgroup users using FQDN identity generated message ID headers with incorrect domain name (bmo#1846837) * fixed: Link previews had poor legibility in dark mode (bmo#1820244) * fixed: Plasma's task switcher displayed the default icon when running the Thunderbird Flatpak on Wayland (bmo#1863262) * fixed: Link to Flatpak manifest was incorrect (bmo#1863594) * fixed: Security fixes MFSA 2023-52 (bsc#1217230) * CVE-2023-6204 (bmo#1841050) Out-of-bound memory access in WebGL2 blitFramebuffer * CVE-2023-6205 (bmo#1854076) Use-after-free in MessagePort::Entangled * CVE-2023-6206 (bmo#1857430) Clickjacking permission prompts using the fullscreen transition * CVE-2023-6207 (bmo#1861344) Use-after-free in ReadableByteStreamQueueEntry::Buffer * CVE-2023-6208 (bmo#1855345) Using Selection API would copy contents into X11 primary selection. * CVE-2023-6209 (bmo#1858570) Incorrect parsing of relative URLs starting with "///" * CVE-2023-6212 (bmo#1658432, bmo#1820983, bmo#1829252, bmo#1856072, bmo#1856091, bmo#1859030, bmo#1860943, bmo#1862782) Memory safety bugs fixed in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5.0 - Mozilla Thunderbird 115.4.3 * fixed: Forwarding multiple messages as attachments failed (bmo#1859938) * fixed: Message list scrolling fixes (bmo#1827042,bmo#1845391) * fixed: Some text remained incorrectly visible in the message list when using "Grouped By" sorting (bmo#1839035) * fixed: Subject lines were excessively indented in "Grouped by" views (bmo#1841256) * fixed: "Open Message in Conversation" was incorrectly enabled for selections of multiple messages (bmo#1860539) * fixed: States of collapsed and expanded threads were not maintained when switching folders (bmo#1807063) * fixed: Pressing "n" to move to the next unread message on an unread, collapsed thread opened the thread and selected the second message instead of the first (bmo#1847792) * fixed: Search Folders dialog improvements (bmo#1859050) * fixed: "Read Messages" button in Account Central did not retrieve mail from POP accounts (bmo#1858733) * fixed: Events canceled by the organizer were incorrectly sent cancelation message (bmo#1861355) - Mozilla Thunderbird 115.4.2 * fixed: No messages or calendar items were displayed on startup (bmo#1860885) * fixed: Toolbar & Folder View widget fixes (bmo#1858750) * fixed: Insert image dialog was not properly sized on some localized builds (bmo#1860503) * fixed: The "unencrypted subject" icon was always briefly displayed when replying to a message (bmo#1828591) * fixed: RSS feeds with lengthy attachment filenames cut off visible content (bmo#1858114) * fixed: RSS feeds with no favicon displayed default icon in the folder color (bmo#1858178) * fixed: NNTP messages that were previously downloaded were not displayed if the server went offline (bmo#1859522) * fixed: Vcard photos were not imported when using opening the file with Thunderbird (bmo#1859114) * fixed: Publishing calendars to invalid URLs did not display a helpful error (bmo#1841547) * fixed: Publishing calendar events via authenticated WebDAV failed (bmo#1857033) * fixed: Converting a message to an event failed when the message pane was not displayed (bmo#1857835) * fixed: Redirect dialog displayed for WebDAV calendars was too small (bmo#1856340) * fixed: Visual and Theme improvements (bmo#1844729,bmo#1860218,bmo#1860272)- Mozilla Thunderbird 115.4.1 * new: "Manage Newsgroups Subscription" now displayed on Account Central when using newsgroups (bmo#1847428) * fixed: Manually configured authentication methods on accounts did no always persist (bmo#1855515) * fixed: "Send Autocrypt key in header" preference was available on accounts with no encryption key (bmo#1857541) * fixed: SHA-1 certificates were not accepted in Thunderbird 115; acceptance of SHA-1 messages can now be enabled via optional preference (bmo#1854592) * fixed: Various Flatpak enhancements (bmo#1843110,bmo#1845495,bmo#1850013) * fixed: Opening folder in new tab by clicking scroll wheel/middle mouse button did not work in Folder Pane (bmo#1836853) * fixed: Message list did not automatically scroll to new messages when switching folders (bmo#1850190) * fixed: "Move/Copy to again" was sometimes displayed in the folder context menu when it should not have been (bmo#1855160) * fixed: Multiple message drafts or message templates could not be opened simultaneously for editing (bmo#1853558) * fixed: Tools > Filters dialog did not open in Unified Folder view if no messages were selected (bmo#1844341) * fixed: Printing dialog could be opened, even with no messages selected (bmo#1846190) * fixed: "From" address was editable when creating a new message from a template if the account identity contained Unicode characters (bmo#1850055) * fixed: Opening a saved .eml file in compose window did not preserve message subject from file (bmo#1856166) * fixed: Replying to some plaintext messages with desired quote selected in original message did not preserve formatting of quote (bmo#1839226) * fixed: "Edit as New", "Reply", and "Redirect" could not be used on multiple messages simultaneously (bmo#1855065) * fixed: "Reply to List" option was always enabled, even with no list to reply to (bmo#1851971) * fixed: "Archive" button in message pane was enabled on messages that could not be archived (bmo#1856315) * fixed: "Followup-To" label was incorrectly labeled as "Newsgroups" (bmo#1854801) * fixed: "Save image as" option did not work for RSS feed items displayed as a webpage (bmo#1853498) * fixed: OTR verification dialog was blank, preventing verification of OTR chat sessions (bmo#1852030) * fixed: Calendar ICS parser improvements for more reliable event import (bmo#1857196) * fixed: Permission description strings were missing from Add- Ons Manager (bmo#1842490) * fixed: Various visual fixes (bmo#1855033,bmo#1855204,bmo#1858942,bmo#1857504) * fixed: Security fixes MFSA 2023-47 (bsc#1216338) * CVE-2023-5721 (bmo#1830820) Queued up rendering could have allowed websites to clickjack * CVE-2023-5732 (bmo#1690979, bmo#1836962) Address bar spoofing via bidirectional characters * CVE-2023-5724 (bmo#1836705) Large WebGL draw could have led to a crash * CVE-2023-5725 (bmo#1845739) WebExtensions could open arbitrary URLs * CVE-2023-5726 (bmo#1846205) Full screen notification obscured by file open dialog on macOS * CVE-2023-5727 (bmo#1847180) Download Protections were bypassed by .msix, .msixbundle, .appx, and .appxbundle files on Windows * CVE-2023-5728 (bmo#1852729) Improper object tracking during GC in the JavaScript engine could have led to a crash. * CVE-2023-5730 (bmo#1836607, bmo#1840918, bmo#1848694, bmo#1848833, bmo#1850191, bmo#1850259, bmo#1852596, bmo#1853201, bmo#1854002, bmo#1855306, bmo#1855640, bmo#1856695) Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4, and Thunderbird 115.4.1 - Removed upstreamed patch mozilla-fix-broken-ffmpeg.patch - Mozilla Thunderbird 115.4.0 * pulled and replaced by 115.4.1 - Mozilla Thunderbird 115.3.3 * fixed: Modifier keys did not work as expected when dragging a message over the folder tree on macOS (bmo#1847791) * fixed: "Folder Location" toolbar button did not work for local folders (bmo#1843979) * fixed: "Copy to again" option disappeared from context menu after copying to Gmail folder with non-ASCII name (bmo#1856712) * fixed: Default reply identity did not use "Delivered-To" address when catch-all was active (bmo#1815559) * fixed: "View Headers All" did not work when selected in standalone message window (bmo#1855316) * fixed: Viewing the mail filter log displayed an error if no log file was present (bmo#1789244)- Mozilla Thunderbird 115.3.2 * fixed: "Open in conversation" did not open messages in a thread view (bmo#1849374) * fixed: News messsage with non-ASCII author name were incorrectly canceled (bmo#1854023) * fixed: Localized "Re: " prefix was not stripped from news messages (bmo#1845155) * fixed: Thunderbird attempted to load accounts missing server hostname, causing blank 3-pane window (bmo#1854064) * fixed: Permission description strings were missing from Add- Ons Manager (bmo#1842490) * fixed: Card View displayed incorrect recipient name for mail and news accounts, depending on folder (bmo#1851955) * fixed: Spell check dictionary dialog sometimes pushed Close button out of view (bmo#1856152) * fixed: Importing calendars from iCal files did not work under certain circumstances (bmo#1854422) * fixed: Calendar invitations were not sent to event participants, only organizer (bmo#1847658) * fixed: Calendar alarm dialogs with lengthy descriptions pushed buttons out of view (bmo#1852682) * fixed: Various visual fixes (bmo#1854836)- Mozilla Thunderbird 115.3.1 * fixed: In Unified Folders view, some folders had incorrect unified folder parent (bmo#1852525) * fixed: "Edit message as new" did not restore encrypted subject from selected message (bmo#1788534) * fixed: Importing some CalDAV calendars with yearly recurrence events caused Thunderbird to freeze (bmo#1850732) * fixed: Security fixes MFSA 2023-44 (bsc#1215814) * CVE-2023-5217 (bmo#1855550) Heap buffer overflow in libvpx - Mozilla Thunderbird 115.3 * fixed: Thunderbird could not import profiles with hostname ending in dot (".") (bmo#1825374) * fixed: Message header was occasionally missing in message preview (bmo#1840943) * fixed: Setting an existing folder's type flag did not add descendant folders to the Unified Folders view (bmo#1848904) * fixed: Thunderbird did not always delete all temporary mail files, sometimes preventing messages from being sent (bmo#673703) * fixed: Status bar in Message Compose window could not be hidden (bmo#1806860) * fixed: Message header was intermittently missing from message preview (bmo#1840943) * fixed: OAuth2 did not work on some profiles created in Thunderbird 102.6.1 or earlier (bmo#1814823) * fixed: In Vertical View, decrypted subject lines were displayed as ellipsis ("...") in message list (bmo#1831764) * fixed: Condensed address preference (mail.showCondensedAddresses) did not show condensed addresses in message list (bmo#1831280) * fixed: Spam folder could not be assigned non-ASCII names with IMAP UTF-8 enabled (bmo#1816332) * fixed: Message header was not displayed until images finished loading, causing noticeable delay for messages containing large images (bmo#1851871) * fixed: Large SVG favicons did not display on RSS feeds (bmo#1853895) * fixed: Context menu items did not display a hover background color (bmo#1852732) * fixed: Security fixes MFSA 2023-43 (bsc#1215575) * CVE-2023-5168 (bmo#1846683) Out-of-bounds write in FilterNodeD2D1 * CVE-2023-5169 (bmo#1846685) Out-of-bounds write in PathOps * CVE-2023-5171 (bmo#1851599) Use-after-free in Ion Compiler * CVE-2023-5174 (bmo#1848454) Double-free in process spawning on Windows * CVE-2023-5176 (bmo#1836353, bmo#1842674, bmo#1843824, bmo#1843962, bmo#1848890, bmo#1850180, bmo#1850983, bmo#1851195) Memory safety bugs fixed in Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3 - Add patch mozilla-fix-broken-ffmpeg.patch to fix broken build with newer binutils (bsc#1215309) - Fix i586 build by reducing debug info to -g1. (boo#1210168) - Mozilla Thunderbird 115.2.3 * changed: Card view and vertical layout are now default for new profiles (bmo#1849000) * fixed: Go > Folder menu was disabled (bmo#1849919) * fixed: "Tools" menu was blank when opened from compose window on macOS (bmo#1848155) * fixed: Deleting an attachment from a message on an IMAP server corrupted the local copy when configured with "mark as deleted" (bmo#1135434) * fixed: Manually entered passwords were not remembered for OAuth-authenticated accounts such as Yahoo mail (bmo#1673446) * fixed: Quick Filter's "Keep filters applied" did not persist after restarting Thunderbird (bmo#1846880,bmo#1849221) * fixed: Top-level Quick Filter settings did not persist after restart (bmo#1849249) * fixed: Notifications for new messages with non-ASCII characters in the subject were garbled (bmo#1842384) * fixed: "Mark Thread As Read" did not work when some messages in thread were already read (bmo#1850850) * fixed: New Groups tab in NNTP subscribe dialog id not work as expected (bmo#1848366) * fixed: Negative values were allowed in "Share for files larger than" field (bmo#1850281) * fixed: Thunderbird sometimes crashed when deleting a parent folder with subfolders (bmo#1851293) * fixed: "Send Message Error" appeared intermittently while Thunderbird was idle (bmo#1801668) * fixed: Focused but not selected messages were missing visual indication of focus in card view (bmo#1844263) * fixed: Notification dot did not disappear from taskbar icon on Windows after messages had already been read (bmo#1824889) * fixed: Multiple selected messages could not be opened simultaneously if selection included more than 19 messages (bmo#1851563) * fixed: Email replies received via BCC incorrectly populated From field with default identity (bmo#1851512) * fixed: User was not always notified of message send failures in outbox (bmo#1851542) * fixed: Tag dialog did not close properly after editing tag (bmo#1852414) * fixed: Newsgroup field in compose window did not autocomplete with suggested newsgroup names (bmo#1670457) * fixed: Canceling newsgroup messages did not check if sender matched user's own identity (bmo#1823274) * fixed: Event dialog with several invitees expanded beyond screen height (bmo#1848261) * fixed: Message check boxes were partially obstructed in message list (bmo#1850760) * unresolved: Some folders missing from Unified Folders ()- Mozilla Thunderbird 115.2.2 * fixed: Security fixes MFSA 2023-40 (bsc#1215245) * CVE-2023-4863 (https://bugs.chromium.org/p/chromium/issues/detail?id=1479274, bmo#1852649) Heap buffer overflow in libwebp - Mozilla Thunderbird 115.2.1 * new: Column separators are now shown between all columns in tree view (bmo#1847441) * fixed: Crash reporter did not work in Thunderbird Flatpak (bmo#1843102) * fixed: New mail notification always opened message in message pane, even if pane was disabled (bmo#1840092) * fixed: After moving an IMAP message to another folder, the incorrect message was selected in the message list (bmo#1845376) * fixed: Adding a tag to an IMAP message opened in a tab failed (bmo#1844452) * fixed: Junk/Spam folders were not always shown in Unified Folders mode (bmo#1838672) * fixed: Middle-clicking a folder or message did not open it in a background tab, as in previous versions (bmo#1842482) * fixed: Settings tab visual improvements: Advanced Fonts dialog, Section headers hidden behind search box (bmo#1717382,bmo#1846751) * fixed: Various visual and style fixes (bmo#1843707,bmo#1849823) - Mozilla Thunderbird 115.2 * new: Thunderbird MSIX packages are now published on archive.mozilla.org (bmo#1817657) * changed: Size, Unread, and Total columns are now right- aligned (bmo#1848604) * changed: Newsgroup names in message list header are now abbreviated (bmo#1833298) * fixed: Message compose window did not apply theme colors to menus (bmo#1845699) * fixed: Reading the second new message in a folder cleared the unread indicator of all other new messages (bmo#1839805) * fixed: Displayed counts of unread or flagged messages could become out-of-sync (bmo#1846860) * fixed: Deleting a message from the context menu with messages sorted in chronological order and smooth scroll enabled caused message list to scroll to top (bmo#1843462) * fixed: Repeatedly switching accounts in Subscribe dialog caused tree view to stop updating (bmo#1845593) * fixed: "Ignore thread" caused message cards to display incorrectly in message list (bmo#1847966) * fixed: Creating tags from unified toolbar failed (bmo#1846336) * fixed: Cross-folder navigation using F and N did not work (bmo#1845011) * fixed: Account Manager did not resize to fit content, causing "Close" button to become hidden outside bounds of dialog when too many accounts were listed (bmo#1847555) * fixed: Remote content exceptions could not be added in Settings (bmo#1847576) * fixed: Newsgroup list file did not get updated after adding a new NNTP server (bmo#1845464) * fixed: "Download all headers" option in NNTP "Download Headers" dialog was incorrectly selected by default (bmo#1845457) * fixed: "Convert to event/task" was missing from mail context menu (bmo#1817705) * fixed: Events and tasks were not shown in some cases despite being present on remote server (bmo#1827100) * fixed: Various visual and UX improvements (bmo#1844244,bmo#1845645) * fixed: Security fixes MFSA 2023-38 (bsc#1214606) * CVE-2023-4573 (bmo#1846687) Memory corruption in IPC CanvasTranslator * CVE-2023-4574 (bmo#1846688) Memory corruption in IPC ColorPickerShownCallback * CVE-2023-4575 (bmo#1846689) Memory corruption in IPC FilePickerShownCallback * CVE-2023-4576 (bmo#1846694) Integer Overflow in RecordedSourceSurfaceCreation * CVE-2023-4577 (bmo#1847397) Memory corruption in JIT UpdateRegExpStatics * CVE-2023-4051 (bmo#1821884) Full screen notification obscured by file open dialog * CVE-2023-4578 (bmo#1839007) Error reporting methods in SpiderMonkey could have triggered an Out of Memory Exception * CVE-2023-4053 (bmo#1839079) Full screen notification obscured by external program * CVE-2023-4580 (bmo#1843046) Push notifications saved to disk unencrypted * CVE-2023-4581 (bmo#1843758) XLL file extensions were downloadable without warnings * CVE-2023-4582 (bmo#1773874) Buffer Overflow in WebGL glGetProgramiv * CVE-2023-4583 (bmo#1842030) Browsing Context potentially not cleared when closing Private Window * CVE-2023-4584 (bmo#1843968, bmo#1845205, bmo#1846080, bmo#1846526, bmo#1847529) Memory safety bugs fixed in Firefox 117, Firefox ESR 102.15, Firefox ESR 115.2, Thunderbird 102.15, and Thunderbird 115.2 * CVE-2023-4585 (bmo#1751583, bmo#1833504, bmo#1841082, bmo#1847904, bmo#1848999) Memory safety bugs fixed in Firefox 117, Firefox ESR 115.2, and Thunderbird 115.2- Mozilla Thunderbird 115.1.1 * fixed: Some HTML emails printed headers on first page and message on subsequent pages (bmo#1843628) * fixed: Deleting messages from message list sometimes scrolled list to bottom, selecting bottommost message (bmo#1835173) * fixed: Width of icon columns (like Junk or Starred) in message list did not adjust when UI density was changed (bmo#1843014) * fixed: Old OpenPGP secret keys could not be used to decrypt messages under certain circumstances (bmo#1835786) * fixed: When multiple folder modes were active, tab focus navigated through all folder mode options before reaching message list (bmo#1842060) * fixed: Unread message count badge was not displayed on parent folders of subfolder containing unread messages (bmo#1844534) * fixed: "Undo archive" (via Ctrl-Z) did not un-archive previously archived messages (bmo#1829340) * fixed: "New" button dropdown menu in "Message Filters" dialog could not be opened via keyboard navigation (bmo#1843511) * fixed: "Show New Mail Alert for" input field in "Customize New Mail Alert" dialog had zero width when using certain language packs (bmo#1845832) * fixed: "Account Wizard" dialog was too narrow when adding a news server, partially hiding confirmation buttons (bmo#1846588) * fixed: Link Properties and Image Properties dialogs in the composer were too wide (bmo#1816850) * fixed: Thunderbird version number and details in "About" dialog were not automatically read by screen readers when first opening dialog (bmo#1847078) * fixed: Flatpak improvements and bug fixes (bmo#1825399,bmo#1843094,bmo#1843097) * fixed: Various visual and UX improvements (bmo#1846262)- Mozilla Thunderbird 115.1.0 * changed: Quick Filter bar is now hidden by default (bmo#1835685) * changed: Mail tab toolbar and Unified toolbar heights adjusted to be more consistent (bmo#1843804,bmo#1845500) * fixed: Message-ID header used account domain instead of "From" field domain (bmo#1727181) * fixed: Zooming did not work in multi-message view (bmo#1839006) * fixed: "Clear Recent History" dialog did not resize correctly to fit content (bmo#1843233) * fixed: Tooltip containing full message title did not appear when hovering over message in card view (bmo#1843188) * fixed: Message List column headers became transparent in increased contrast mode (bmo#1842893) * fixed: Message List card padding was incorrect in compact view (bmo#1843480) * fixed: Total message counts and folder sizes were also hidden when "Hide Local Folders" was selected in Folder Pane options (bmo#1843135) * fixed: Messages in deeply nested IMAP folders were inaccessible (bmo#1843637) * fixed: Thunderbird Flatpak could not be executed from terminal using command "thunderbird" (bmo#1843051) * fixed: CardDAV address book dialog did not resize properly to show all available address books (bmo#1836214) * fixed: Various visual and style fixes (bmo#1843459,bmo#1844763,bmo#1838519) MFSA 2023-33 (bsc#1213746) * CVE-2023-4045 (bmo#1833876) Offscreen Canvas could have bypassed cross-origin restrictions * CVE-2023-4046 (bmo#1837686) Incorrect value used during WASM compilation * CVE-2023-4047 (bmo#1839073) Potential permissions request bypass via clickjacking * CVE-2023-4048 (bmo#1841368) Crash in DOMParser due to out-of-memory conditions * CVE-2023-4049 (bmo#1842658) Fix potential race conditions when releasing platform objects * CVE-2023-4050 (bmo#1843038) Stack buffer overflow in StorageManager * CVE-2023-4052 (bmo#1824420) File deletion and privilege escalation through Firefox uninstaller * CVE-2023-4054 (bmo#1840777) Lack of warning when opening appref-ms files * CVE-2023-4055 (bmo#1782561) Cookie jar overflow caused unexpected cookie jar state * CVE-2023-4056 (bmo#1820587, bmo#1824634, bmo#1839235, bmo#1842325, bmo#1843847) Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1, Firefox ESR 102.14, Thunderbird 115.1, and Thunderbird 102.14 * CVE-2023-4057 (bmo#1841682) Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1, and Thunderbird 115.1 - Remove now upstreamed patch mozilla-bmo1775202.patch- Remove bashisms from startup-script (bsc#1213657)- Mozilla Thunderbird 115.0.1 * changed: Added Thunderbird Supernova branding to about:dialog (bmo#1842102) * fixed: Message list was not updated when message was deleted from server outside of Thunderbird (bmo#1837041) * fixed: Scrolling behaved unexpectedly when moving to next message unread message in another folder (bmo#1841711) * fixed: Scrolling animation was unnecessarily used when switching or toggling the sort column in message list (bmo#1838522) * fixed: Attempting to delete a message and then cancelling the action still marked the message as read (bmo#793353) * fixed: Unified Toolbar could not be customized under certain tabs (bmo#1841480) * fixed: Selecting a folder with one or more subfolders and pressing enter did not expand folder (bmo#1841200) * fixed: Tooltips did not appear when hovering over folders (bmo#1839780) * fixed: Deleting large amounts of messages from Trash folder consumed excessive time and memory (bmo#1833665) * fixed: Message Summary header buttons were not keyboard accessible (bmo#1827199) * fixed: "New" button in Message Filters dialog was not keyboard accessible (bmo#1841477) * fixed: Backing up secret keys from OpenPGP Key Manager dialog silently failed (bmo#1839415) * fixed: Various visual and UX improvements (bmo#1843172,bmo#1831422,bmo#1838360,bmo#1842319) * fixed: Security fixes MFSA 2023-27 (bsc#1212438) * CVE-2023-3600 (bmo#1839703) Use-after-free in workers * CVE-2023-3417 (bmo#1835582) File Extension Spoofing using the Text Direction Override Character - Remove obsolete patches mozilla-bmo1568145.patch, mozilla-bmo1005535.patch, mozilla-s390x-skia-gradient.patch- Mozilla Thunderbird 102.12 * fixed: "Searching the directory for recipients certificates" popup could block compose window when "S/MIME reminder" was enabled and using an LDAP address book (bmo#1833651) * fixed: Some elements still used animations with "prefers- reduced-motion" set (bmo#1833353) * fixed: Visual and theme improvements (bmo#1832943,bmo#1832990) * fixed: Security fixes MFSA 2023-21 (bsc#1211922) * CVE-2023-34414 (bmo#1695986) Click-jacking certificate exceptions through rendering lag * CVE-2023-34416 (bmo#1752703, bmo#1818394, bmo#1826875, bmo#1827340, bmo#1827655, bmo#1828065, bmo#1830190, bmo#1830206, bmo#1830795, bmo#1833339) Memory safety bugs fixed in Thunderbird 102.12- Mozilla Thunderbird 102.11.2 * fixed: Thunderbird 102.11.1 contained POP3 client regressions with offline mode and TLS certificate overrides (bmo#1801286,bmo#1816596,bmo#1798785) - Mozilla Thunderbird 102.11.1 * fixed: POP message retrieval stopped after a network error occurred and connectivity was restored (bmo#1798785) * fixed: Reused SMTP connections sometimes silently disconnected, causing timeouts (bmo#1766382) * fixed: Thunderbird could freeze if saving a sent message to IMAP failed (bmo#1745130) * fixed: Creating OpenPGP keys with no expiration was not possible (bmo#1830094) * fixed: News reader did not always issue GROUP command after authentication with remote server, preventing Thundebird from displaying or refreshing news from the server (bmo#1824377) - Update keyring- Mozilla Thunderbird 102.11 * fixed: During Account Setup, the "Checking password..." message was not removed after a failure (bmo#1826022) * fixed: Miscellaneous UI fixes (bmo#1827070) * fixed: Security fixes MFSA 2023-18 (bsc#1211175) * CVE-2023-32205 (bmo#1753339, bmo#1753341) Browser prompts could have been obscured by popups * CVE-2023-32206 (bmo#1824892) Crash in RLBox Expat driver * CVE-2023-32207 (bmo#1826116) Potential permissions request bypass via clickjacking * CVE-2023-32211 (bmo#1823379) Content process crash due to invalid wasm code * CVE-2023-32212 (bmo#1826622) Potential spoof due to obscured address bar * CVE-2023-32213 (bmo#1826666) Potential memory corruption in FileReader::DoReadData() * CVE-2023-32214 (bmo#1828716) Potential DoS via exposed protocol handlers * CVE-2023-32215 (bmo#1540883, bmo#1751943, bmo#1814856, bmo#1820210, bmo#1821480, bmo#1827019, bmo#1827024, bmo#1827144, bmo#1827359, bmo#1830186) Memory safety bugs fixed in Thunderbird 102.11- Mozilla Thunderbird 102.10.1 * fixed: Messages with missing or corrupt "From:" header did not display message header buttons (bmo#1793918) * fixed: Composer repeatedly prompted for S/MIME smartcard signing/encryption password (bmo#1828366) * fixed: Address Book integration did not work with macOS 11.4 Bug Sur (bmo#1720257) * fixed: Mexico City DST fix in Thunderbird 102.10.0 (bug 1826146) was incomplete (bmo#1827503) - Mozilla Thunderbird 102.10 * changed: New messages will automatically select S/MIME if configured and OpenPGP is not (bmo#1793278) * fixed: Calendar events with timezone America/Mexico_City incorrectly applied Daylight Savings Time (bmo#1826146) * fixed: Security fixes MFSA 2023-15 (bsc#1210212) * CVE-2023-29531 (bmo#1794292) Out-of-bound memory access in WebGL on macOS * CVE-2023-29532 (bmo#1806394) Mozilla Maintenance Service Write-lock bypass * CVE-2023-29533 (bmo#1798219, bmo#1814597) Fullscreen notification obscured * CVE-2023-1999 (bmo#1819244) Double-free in libwebp * CVE-2023-29535 (bmo#1820543) Potential Memory Corruption following Garbage Collector compaction * CVE-2023-29536 (bmo#1821959) Invalid free from JavaScript code * CVE-2023-0547 (bmo#1811298) Revocation status of S/Mime recipient certificates was not checked * CVE-2023-29479 (bmo#1824978) Hang when processing certain OpenPGP messages * CVE-2023-29539 (bmo#1784348) Content-Disposition filename truncation leads to Reflected File Download * CVE-2023-29541 (bmo#1810191) Files with malicious extensions could have been downloaded unsafely on Linux * CVE-2023-29542 (bmo#1810793, bmo#1815062) Bypass of file download extension restrictions * CVE-2023-29545 (bmo#1823077) Windows Save As dialog resolved environment variables * CVE-2023-1945 (bmo#1777588) Memory Corruption in Safe Browsing Code * CVE-2023-29548 (bmo#1822754) Incorrect optimization result on ARM64 * CVE-2023-29550 (bmo#1720594, bmo#1751945, bmo#1812498, bmo#1814217, bmo#1818357, bmo#1818762, bmo#1819493, bmo#1820389, bmo#1820602, bmo#1821448, bmo#1822413, bmo#1824828) Memory safety bugs fixed in Thunderbird 102.10- Mozilla Thunderbird 102.9.1 * fixed: Thunderbird was unable to open file URLs from command line (URLs beginning with "file://") (bmo#1816343) * fixed: Source strings for localized builds not uploaded to FTP as expected (bmo#1817086) * fixed: Visual and theme improvements (bmo#1821358,bmo#1822286) * fixed: Security fixes MFSA 2023-12 (bsc#1209953) * CVE-2023-28427 (bmo#1822595) Matrix SDK bundled with Thunderbird vulnerable to denial-of- service attack- Mozilla Thunderbird 102.9 * fixed: Notification about a sender's changed OpenPGP key was not immediately visible (bmo#1814003) * fixed: TLS Certificate Override dialog did not appear when retrieving messages via IMAP using "Get Messages" context menu (bmo#1816596) * fixed: Spellcheck dictionaries were missing from localized Thunderbird builds that should have included them (bmo#1818257) * fixed: Tooltips for "Show/Hide" calendar toggle did not display (bmo#1809557) * fixed: Various security fixes MFSA 2023-11 (bsc#1209173) * CVE-2023-25751 (bmo#1814899) Incorrect code generation during JIT compilation * CVE-2023-28164 (bmo#1809122) URL being dragged from a removed cross-origin iframe into the same tab triggered navigation * CVE-2023-28162 (bmo#1811327) Invalid downcast in Worklets * CVE-2023-25752 (bmo#1811627) Potential out-of-bounds when accessing throttled streams * CVE-2023-28163 (bmo#1817768) Windows Save As dialog resolved environment variables * CVE-2023-28176 (bmo#1808352, bmo#1811637, bmo#1815904, bmo#1817442, bmo#1818674) Memory safety bugs fixed in Thunderbird 102.9- Mozilla Thunderbird 102.8.0 * new: Added option to build RNP library with OpenSSL backend (use "--with-librnp-backend=openssl" configure option) (bmo#1799123,bmo#1805215) * changed: Thunderbird now warns user that OpenPGP is disabled if RNP library is outdated or missing (bmo#1799874) * fixed: "Get Messages" did not retrieve messages from Gmail accounts using a local folder as a deferred inbox (bmo#1799106) * fixed: Various visual and UX improvements (bmo#1777788,bmo#1790278) * unresolved: Source strings for localized builds not uploaded to FTP as expected (bmo#1817086) * fixed: Various security fixes MFSA 2023-07 (bsc#1208144) * CVE-2023-0616 (bmo#1806507) User Interface lockup with messages combining S/MIME and OpenPGP * CVE-2023-25728 (bmo#1790345) Content security policy leak in violation reports using iframes * CVE-2023-25730 (bmo#1794622) Screen hijack via browser fullscreen mode * CVE-2023-0767 (bmo#1804640) Arbitrary memory write via PKCS 12 in NSS * CVE-2023-25735 (bmo#1810711) Potential use-after-free from compartment mismatch in SpiderMonkey * CVE-2023-25737 (bmo#1811464) Invalid downcast in SVGUtils::SetupStrokeGeometry * CVE-2023-25738 (bmo#1811852) Printing on Windows could potentially crash Thunderbird with some device drivers * CVE-2023-25739 (bmo#1811939) Use-after-free in mozilla::dom::ScriptLoadContext::~ScriptLoadContext * CVE-2023-25729 (bmo#1792138) Extensions could have opened external schemes without user knowledge * CVE-2023-25732 (bmo#1804564) Out of bounds memory write from EncodeInputStream * CVE-2023-25734 (bmo#1784451, bmo#1809923, bmo#1810143, bmo#1812338) Opening local .url files could cause unexpected network loads * CVE-2023-25742 (bmo#1813424) Web Crypto ImportKey crashes tab * CVE-2023-25746 (bmo#1544127, bmo#1762368, bmo#1789449, bmo#1803628, bmo#1810536) Memory safety bugs fixed in Thunderbird 102.8- Mozilla Thunderbird 102.7.2 * fixed: Various crash fixes (bmo#1806245,bmo#1806247)- Mozilla Thunderbird 102.7.1 * fixed: Microsoft Office 365 accounts were unable to authenticate (bmo#1810760) * fixed: Switching identities caused remote images in HTML signatures to not be shown (bmo#1807200) * fixed: Thunderbird failed to import vCards that contained "\r\r\n" line endings (bmo#1800305) * fixed: Contribution button for add-ons opened Contribution page in a Thunderbird tab, instead of the external browser (bmo#1805808) * fixed: XMPP did not respond to unrecognized IQ queries, causing some servers to close the connection (bmo#1806630) * fixed: Window titlebar buttons (minimize/maximize/close) were not displayed in Windows 10 "Dark" color mode (bmo#1810961) * fixed: Various security fixes MFSA 2023-04 (bsc#1207119) * CVE-2023-0430 (bmo#1769000) Revocation status of S/Mime signature certificates was not checked - Mozilla Thunderbird 102.7 * new: Enterprise policies now support Thunderbird-specific preferences (bmo#1791637) * fixed: Localized builds and langpacks now use "comm-l10n" repository; downstream builds using official langpacks should not need to make changes (bmo#1765629,bmo#1766080,bmo#1801150,bmo#1807161) * fixed: Having too many folders open at startup caused loss of MSF files (bmo#1800202) * fixed: Copying an email from one local folder to another local folder sometimes caused "Another Operation is using the folder" error on Windows 7 (bmo#1792071) * fixed: Email address pill allowed for incorrectly formatted email addresses (bmo#1799390) * fixed: Creating security exceptions for messages sent using a self-signed certificate failed if hostname contained uppercase letters (bmo#1735803) * fixed: S/MIME certificate verification was prohibitively slow (bmo#1791130) * fixed: OpenPGP key import failed for key blocks with comments that contain Unicode characters (bmo#1721668) * fixed: Chat conversation sidebar was too wide under certain circumstances, making scrollbar unusable (bmo#1801645) * fixed: On Mac, deleting events from Today Pane with "Backspace" key deleted selected messages instead (bmo#1763468) * fixed: Various security fixes * unresolved: OAuth2 authentication not working for Microsoft 365 Enterprise accounts. See the Blog post for additional information. (bmo#1810760) MFSA 2023-03 (bsc#1207119) * CVE-2022-46871 (bmo#1795697) libusrsctp library out of date * CVE-2023-23598 (bmo#1800425) Arbitrary file read from GTK drag and drop on Linux * CVE-2023-23599 (bmo#1777800) Malicious command could be hidden in devtools output on Windows * CVE-2023-23601 (bmo#1794268) URL being dragged from cross-origin iframe into same tab triggers navigation * CVE-2023-23602 (bmo#1800890) Content Security Policy wasn't being correctly applied to WebSockets in WebWorkers * CVE-2022-46877 (bmo#1795139) Fullscreen notification bypass * CVE-2023-23603 (bmo#1800832) Calls to console.log allowed bypasing Content Security Policy via format directive * CVE-2023-23605 (bmo#1764921, bmo#1802690, bmo#1806974) Memory safety bugs fixed in Thunderbird 102.7- Mozilla Thunderbird 102.6.1 * fixed: Remote content did not load in user-defined signatures (bmo#1803942) * fixed: Addons that added new action buttons were not shown for addon upgrades, requiring removal and reinstall (bmo#1793430) * fixed: Various stability improvements (bmo#1798181,bmo#1797616) * fixed: Security fix MFSA 2022-53 (bsc#1206653) * CVE-2022-46874 (bmo#1746139) Drag and Dropped Filenames could have been truncated to malicious extensions- Mozilla Thunderbird 102.6 * fixed: Importing secret OpenPGP keys failed when public key with public subkey was already present (bmo#1795698) * fixed: Message index files were incorrectly deleted when too many folders were opened (bmo#1787609) * fixed: Thunderbird sometimes incorrectly formatted synced vCards (bmo#1792542) * fixed: Recurring events did not display past a certain number of repetitions (bmo#1789437) * fixed: Cookies deleted from the "Show Cookies" dialog were not actually deleted (bmo#1803795) * fixed: Paused RSS feeds did not actually pause updates (bmo#1789120) * fixed: Various visual and UX improvements (bmo#1800189,bmo#1800537,bmo#1801080) MFSA 2022-52 (bsc#1206242) * CVE-2022-46880 (bmo#1749292) Use-after-free in WebGL * CVE-2022-46872 (bmo#1799156) Arbitrary file read from a compromised content process * CVE-2022-46881 (bmo#1770930) Memory corruption in WebGL * CVE-2022-46874 (bmo#1746139) Drag and Dropped Filenames could have been truncated to malicious extensions * CVE-2022-46875 (bmo#1786188) Download Protections were bypassed by .atloc and .ftploc files on Mac OS * CVE-2022-46882 (bmo#1789371) Use-after-free in WebGL * CVE-2022-46878 (bmo#1782219, bmo#1797370, bmo#1797685, bmo#1801102, bmo#1801315, bmo#1802395) Memory safety bugs fixed in Thunderbird 102.6- Mozilla Thunderbird 102.5.1 * changed: Mail extension API updates. See Mail Extension API Docs. * fixed: "Copy to again" menu item was not present after copying message to folder with Unicode name on Unicode- enabled IMAP server (bmo#1798172) * fixed: Calendar date picker was displayed behind "Send Later" window (bmo#1791537) * fixed: Various security fixes MFSA 2022-50 (bsc#1205941) * CVE-2022-45414 (bmo#1788096) Quoting from an HTML email with certain tags will trigger network requests and load remote content, regardless of a configuration to block remote content- Mozilla Thunderbird 102.5 * changed: `Ctrl+N` shortcut to create new contacts from address book restored (bmo#1751288) * fixed: Account Settings UI did not update to reflect default identity changes (bmo#1782646) * fixed: New POP mail notifications were incorrectly shown for messages marked by filters as read or junk (bmo#1787531) * fixed: Connecting to an IMAP server configured to use `PREAUTH` caused Thunderbird to hang (bmo#1798161) * fixed: Error responses received in greeting header from NNTP servers did not display error message (bmo#1792281) * fixed: News messages sent using "Send Later" failed to send after going back online (bmo#1794997) * fixed: "Download/Sync Now..." did not completely sync all newsgroups before going offline (bmo#1795547) * fixed: Username was missing from error dialog on failed login to news server (bmo#1796964) * fixed: Thunderbird can now fetch RSS channel feeds with incomplete channel URL (bmo#1794775) * fixed: Add-on "Contribute" button in Add-ons Manager did not work (bmo#1795751) * fixed: Help text for `/part` Matrix command was incorrect (bmo#1795578) * fixed: Invite Attendees dialog did not fetch free/busy info for attendees with encoded characters in their name (bmo#1797927) * fixed: Various security fixes MFSA 2022-49 (bsc#1205270) * CVE-2022-45403 (bmo#1762078) Service Workers might have learned size of cross-origin media files * CVE-2022-45404 (bmo#1790815) Fullscreen notification bypass * CVE-2022-45405 (bmo#1791314) Use-after-free in InputStream implementation * CVE-2022-45406 (bmo#1791975) Use-after-free of a JavaScript Realm * CVE-2022-45408 (bmo#1793829) Fullscreen notification bypass via windowName * CVE-2022-45409 (bmo#1796901) Use-after-free in Garbage Collection * CVE-2022-45410 (bmo#1658869) ServiceWorker-intercepted requests bypassed SameSite cookie policy * CVE-2022-45411 (bmo#1790311) Cross-Site Tracing was possible via non-standard override headers * CVE-2022-45412 (bmo#1791029) Symlinks may resolve to partially uninitialized buffers * CVE-2022-45416 (bmo#1793676) Keystroke Side-Channel Leakage * CVE-2022-45418 (bmo#1795815) Custom mouse cursor could have been drawn over browser UI * CVE-2022-45420 (bmo#1792643) Iframe contents could be rendered outside the iframe * CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061) Memory safety bugs fixed in Thunderbird 102.5- Mozilla Thunderbird 102.4.2 * changed: "Address Book" button in Account Central will now create a CardDAV address book instead of a local address book (bmo#1793903) * fixed: Messages fetched from POP server in `Fetch headers only` mode disappeared when moved to different folder by filter action (bmo#1793374) * fixed: Thunderbird re-downloaded locally deleted messages from a POP server when "Leave messages on server" and "Until I delete them" were enabled (bmo#1796903) * fixed: Multiple password prompts for the same POP account could be displayed (bmo#1786920) * fixed: IMAP authentication failed on next startup if ImapMail folder was deleted by user (bmo#1793599) * fixed: Retrieving passwords for authenticated NNTP accounts could fail due to obsolete preferences in a users profile on every startup (bmo#1770594) * fixed: `Get Next n Messages` did not consistently fetch all messages requested from NNTP server (bmo#1794185) * fixed: `Get Messages` button unable to fetch messages from NNTP server if root folder not selected (bmo#1792362) * fixed: Thunderbird text branding did not always match locale of localized build (bmo#1786199) * fixed: Thunderbird installer and Thunderbird updater created Windows shortcuts with different names (bmo#1787264) * fixed: LDAP search filters unable to work with non-ASCII characters (bmo#1794306) * fixed: "Today" highlighting in Calendar Month view did not update after date change at midnight (bmo#1795176)- Mozilla Thunderbird 102.4.1 * new: Thunderbird will now catch and report errors parsing vCards that contain incorrectly formatted dates (bmo#1793415) * fixed: Dynamic language switching did not update interface when switched to right-to-left languages (bmo#1794289) * fixed: Custom header data was discarded after messages were saved as draft and reopened (bmo#195716) * fixed: `-remote` command line argument did not work, affecting integration with various applications such as LibreOffice (bmo#1793323) * fixed: Messages received via some SMS-to-email services could not display images (bmo#1774805) * fixed: VCards with nickname field set could not be edited (bmo#1793877) * fixed: Some recurring events were missing from Agenda on first load (bmo#1771168) * fixed: Download requests for remote ICS calendars incorrectly set "Accept" header to text/xml (bmo#1793757) * fixed: Monthly events created on the 31st of a month with <30 days placed first occurrence 1-2 days after the beginning of the following month (bmo#1266797) * fixed: Various visual and UX improvements (bmo#1781437,bmo#1785314,bmo#1794139,bmo#1794155,bmo#1794399)- Mozilla Thunderbird 102.4.0 * changed: Thunderbird will automatically detect and repair OpenPGP key storage corruption caused by using the profile import tool in Thunderbird 102 (bmo#1790610) * fixed: POP message download into a large folder (~13000 messages) caused Thunderbird to temporarily freeze (bmo#1792675) * fixed: Forwarding messages with special characters in Subject failed on Windows (bmo#1782173) * fixed: Links for FileLink attachments were not added when attachment filename contained Unicode characters (bmo#1789589) * fixed: Address Book display pane continued to show contacts after deletion (bmo#1777808) * fixed: Printing address book did not include all contact details (bmo#1782076) * fixed: CardDAV contacts without a Name property did not save to Google Contacts (bmo#1792101) * fixed: "Publish Calendar" did not work (bmo#1794471) * fixed: Calendar database storage improvements (bmo#1792124) * fixed: Incorrectly handled error responses from CalDAV servers sometimes caused events to disappear from calendar (bmo#1792923) * fixed: Various visual and UX improvements (bmo#1776093,bmo#17 80040,bmo#1780425,bmo#1792876,bmo#1792872,bmo#1793466,bmo#179 3543) * fixed: Various security fixes MFSA 2022-46 (bsc#1204421) * CVE-2022-42927 (bmo#1789128) Same-origin policy violation could have leaked cross-origin URLs * CVE-2022-42928 (bmo#1791520) Memory Corruption in JS Engine * CVE-2022-42929 (bmo#1789439) Denial of Service via window.print * CVE-2022-42932 (bmo#1789729, bmo#1791363, bmo#1792041) Memory safety bugs fixed in Thunderbird 102.4 - Rebase mozilla-silence-no-return-type.patch to apply with fuzz=0 - Added mozilla-partial-revert-1768632.patch to fix build on i586 - Mozilla Thunderbird 102.3.3 * new: Option added to show containing address book for a contact when using `All Address Books` in vertical mode (bmo#1778871) * changed: Thunderbird will try to use POP NTLM authentication even if not advertised by server (bmo#1793349) * changed: Task List and Today Pane sidebars will no longer load when not visible (bmo#1788549) * fixed: Sending a message while a recipient pill was being modified did not save changes (bmo#1779785) * fixed: Nickname column was not available in horizontal view of Address Book (bmo#1778000) * fixed: Multiline organization values were displayed across two columns in horizontal view of Address Book (bmo#1777780) * fixed: Contact vCard fields with multiple values such as Categories were truncated when saved (bmo#1792399) * fixed: ICS calendar files with a `FREEBUSY` property could not be imported (bmo#1783441) * fixed: Thunderbird would hang if calendar event exceeded the year 2035 (bmo#1789999) - Mozilla Thunderbird 102.3.2 * changed: Thunderbird will try to use POP CRAM-MD5 authentication even if not advertised by server (bmo#1789975) * fixed: Checking messages on POP3 accounts caused POP folder to lock if mail server was slow or non-responsive (bmo#1792451) * fixed: Newsgroups named with consecutive dots would not appear when refreshing list of newsgroups (bmo#1787789) * fixed: Sending news articles containing lines starting with dot were sometimes clipped (bmo#1787955) * fixed: CardDAV server sync silently failed if sync token expired (bmo#1791183) * fixed: Contacts from LDAP on macOS address books were not displayed (bmo#1791347) * fixed: Chat account input now accepts URIs for supported chat protocols (bmo#1776706) * fixed: Chat ScreenName field was not migrated to new address book (bmo#1789990) * fixed: Creating a New Event from the Today Pane used the currently selected day from the main calendar instead of from the Today Pane (bmo#1791203) * fixed: `New Event` button in Today Pane was incorrectly disabled sometimes (bmo#1792058) * fixed: Event reminder windows did not close after being dismissed or snoozed (bmo#1791228) * fixed: Improved performance of recurring event date calculation (bmo#1787677) * fixed: Quarterly calendar events on the last day of the month repeated one month early (bmo#1789362) * fixed: Thunderbird would hang if calendar event exceeded the year 2035 (bmo#1789999) * fixed: Whitespace in calendar events was incorrectly handled when upgrading from Thunderbird 91 to 102 (bmo#1790339) * fixed: Various visual and UX improvements (bmo#1755623,bmo#17 83903,bmo#1785851,bmo#1786434,bmo#1787286,bmo#1788151,bmo#178 9728,bmo#1790499) - Mozilla Thunderbird 102.3.1 * changed: Compose window encryption options now only appear for encryption technologies that have already been configured (bmo#1788988) * changed: Number of contacts in currently selected address book now displayed at bottom of Address Book list column (bmo#1745571) * fixed: Password prompt did not include server hostname for POP servers (bmo#1786920) * fixed: `Edit Contact` was missing from Contacts sidebar context menus (bmo#1771795) * fixed: Address Book contact lists cut off display of some characters, the result being unreadable (bmo#1780909) * fixed: Menu items for dark-themed alarm dialog were invisible on Windows 7 (bmo#1791738) * fixed: Various security fixes MFSA 2022-43 (bsc#1204411) * CVE-2022-39249 (bmo#1791765) Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators * CVE-2022-39250 (bmo#1791765) Matrix SDK bundled with Thunderbird vulnerable to a device verification attack * CVE-2022-39251 (bmo#1791765) Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack * CVE-2022-39236 (bmo#1791765) Matrix SDK bundled with Thunderbird vulnerable to a data corruption issue - Mozilla Thunderbird 102.3 * changed: Thunderbird will no longer attempt to import account passwords when importing from another Thunderbird profile in order to prevent profile corruption and permanent data loss. (bmo#1790605) * changed: Devtools performance profile will use Thunderbird presets instead of Web Developer presets (bmo#1785954) * fixed: Thunderbird startup performance improvements (bmo#1785967) * fixed: Saving email source and images failed (bmo#1777323,bmo#1778804) * fixed: Error message was shown repeatedly when temporary disk space was full (bmo#1788580) * fixed: Attaching OpenPGP keys without a set size to non- encrypted messages briefly displayed a size of zero bytes (bmo#1788952) * fixed: Global Search entry box initially contained "undefined" (bmo#1780963) * fixed: Delete from POP Server mail filter rule intermittently failed to trigger (bmo#1789418) * fixed: Connections to POP3 servers without UIDL support failed (bmo#1789314) * fixed: Pop accounts with "Fetch headers only" set downloaded complete messages if server did not advertise TOP capability (bmo#1789356) * fixed: "File -> New -> Address Book Contact" from Compose window did not work (bmo#1782418) * fixed: Attach "My vCard" option in compose window was not available (bmo#1787614) * fixed: Improved performance of matching a contact to an email address (bmo#1782725) * fixed: Address book only recognized a contact's first two email addresses (bmo#1777156) * fixed: Address book search and autocomplete failed if a contact vCard could not be parsed (bmo#1789793) * fixed: Downloading NNTP messages for offline use failed (bmo#1785773) * fixed: NNTP client became stuck when connecting to Public- Inbox servers (bmo#1786203) * fixed: Various visual and UX improvements (bmo#1782235,bmo#1787448,bmo#1788725,bmo#1790324) * fixed: Various security fixes * unresolved: No dedicated "Department" field in address book (bmo#1777780) MFSA 2022-42 (bsc#1203477) * CVE-2022-3266 (bmo#1767360) Out of bounds read when decoding H264 * CVE-2022-40959 (bmo#1782211) Bypassing FeaturePolicy restrictions on transient pages * CVE-2022-40960 (bmo#1787633) Data-race when parsing non-UTF-8 URLs in threads * CVE-2022-40958 (bmo#1779993) Bypassing Secure Context restriction for cookies with __Host and __Secure prefix * CVE-2022-40956 (bmo#1770094) Content-Security-Policy base-uri bypass * CVE-2022-40957 (bmo#1777604) Incoherent instruction cache when building WASM on ARM64 * CVE-2022-3155 (bmo#1789061) Attachment files saved to disk on macOS could be executed without warning * CVE-2022-40962 (bmo#1776655, bmo#1777574, bmo#1784835, bmo#1785109, bmo#1786502, bmo#1789440) Memory safety bugs fixed in Thunderbird 102.3- Mozilla Thunderbird 102.2.2 * changed: Setting added to change Calendar event double-click action to open `Edit Event` dialog rather than view only; Set `calendar.events.defaultActionEdit` to `true`. * fixed: Running `Compact Folders` on maildir folders caused a redownload of all messages in the folder * fixed: Accessing mail folders in profiles with many folders was slow * fixed: SMTP servers were not always properly initialized, and were not listed in `Account Settings` * fixed: APOP authentication unsupported when connecting to POP3 server * fixed: OpenPGP key discovery failed * fixed: POP accounts hosted by AOL were not able to authenticate using OAuth2 * fixed: Unable to open context menu in newsgroups header for groups that are not subscribed- Mozilla Thunderbird 102.2.1 * new: Commandline argument to open Calendar at startup added (`-calendar`) * changed: Buttons to connect automatically discovered Address Books and Calendar during `Account Setup` now displayed * fixed: Compacting IMAP folders failed when "Just mark as deleted" was set * fixed: Message threading status and sort order was not transferred when applying column layout to other folders * fixed: Folder names with half-width Kana characters were displayed incorrectly * fixed: Digital signing of messages was not disabled after switching to an identity that could not sign * fixed: POP message retrieval stopped after a network error occurred and connectivity was restored * fixed: Activity Manager didn't show "Get Messages" activity when "Leave messages on server" was turned off and no new messages were found * fixed: Mail quota color did not update properly for multiple accounts * fixed: Profile export failed if an expected file did not exist * fixed: `Check Spelling` dialog could exceed screen size when many dictionaries were available * fixed: Dragging a news message to the Desktop caused Thunderbird to hang when synchronized for offline use * fixed: `Remove All Expired Articles` was not displayed on expired NNTP messages * fixed: Sending messages to encrypted Matrix rooms failed in some cases * fixed: Adding a CalDAV calendar on BSD-based OS's failed due to DNS errors * fixed: Various visual and UX improvements * fixed: Various security fixes MFSA 2022-38 (bsc#1203007) * CVE-2022-3033 (bmo#1784838) Leaking of sensitive information when composing a response to an HTML email with a META refresh tag * CVE-2022-3032 (bmo#1783831) Remote content specified in an HTML document that was nested inside an iframe's srcdoc attribute was not blocked * CVE-2022-3034 (bmo#1745751) An iframe element in an HTML email could trigger a network request * CVE-2022-36059 (bmo#1787741) Matrix SDK bundled with Thunderbird vulnerable to denial-of- service attack - Mozilla Thunderbird 102.2 * new: Config setting added to disable OpenPGP "encryption is possible" reminder: `mail.openpgp.remind_encryption_possible` * changed: Thunderbird on macOS will now prompt for Primary Password on startup if set * changed: Thunderbird will no longer offer to import OpenPGP keys that are incomplete * changed: Selecting or unselecting a dictionary in the `Spelling` compose toolbar button will no longer immediately close the menu; Making dictionary changes via the editor context menu will continue to close the context menu * changed: Contact address lines are now adjusted to appear in the expected order * changed: Custom1-4 fields restored to Address Book UI; existing data is preserved from pre-102 profiles * fixed: Thunderbird startup performance improvements * fixed: `ALT+` keypress events were intercepted by the Spaces Toolbar, preventing special character entry on Windows * fixed: Searching on attachment status did not work in Message Search dialog * fixed: Repairing IMAP folders in Offline mode removed local copy of the folders * fixed: POP3 message download progress bar was not displayed * fixed: POP `Fetch headers only` mode did not work for some server configurations * fixed: POP accounts using GSSAPI or NTLM authentication were not able to log into the server * fixed: A TLS certificate override dialog for self-signed certificates was not shown for IMAP accounts * fixed: Saving attachments from newsgroups did not work * fixed: Setting contact type to "None" was not possible if a type was previously set * fixed: Editing a contact without Name fields populated filled in the email address into the name fields * fixed: Address book toolbar buttons were not keyboard accessible * fixed: Auto-detection of CalDAV and CardDAV via DNS records used server domain leading to failures * fixed: Various visual and theme improvements * fixed: Various security fixes MFSA 2022-36 (bsc#1202645) * CVE-2022-38472 (bmo#1769155) Address bar spoofing via XSLT error handling * CVE-2022-38473 (bmo#1771685) Cross-origin XSLT Documents would have inherited the parent's permissions * CVE-2022-38476 (bmo#1760998) Data race and potential use-after-free in PK11_ChangePW * CVE-2022-38477 (bmo#1760611, bmo#1770219, bmo#1771159, bmo#1773363) Memory safety bugs fixed in Thunderbird 102.2 * CVE-2022-38478 (bmo#1770630, bmo#1776658) Memory safety bugs fixed in Thunderbird 102.2, and Thunderbird 91.13 - Mozilla Thunderbird 102.1.2 * fixed: The fix for bug 1777765 (no POP download progress bar) was backed out from this release to address broken POP message download with `Fetch headers only` selected in Account Settings (bug 1783552).- Add mozilla-bmo1775202.patch to fix build on ppc64le - Mozilla Thunderbird 102.1.1 * changed: OpenPGP Key Manager will clear selected keys after a deletion is performed * fixed: Update notification popups were still displayed after switching to another desktop workspace on Linux * fixed: macOS display issues made Thunderbird unusable * fixed: OpenPGP public key was not automatically attached after enabling encryption from reminder and default setting is "Do not encrypt" * fixed: Importing OpenPGP keys stored in binary format failed * fixed: Exporting an OpenPGP public key from Account Settings failed * fixed: Saving encrypted OpenPGP attachments created corrupt files * fixed: Receiving many OpenPGP keys in a single email caused Thunderbird to hang * fixed: POP3 message download progress bar was not displayed * fixed: OAuth2 authentication was not available when the mail domain did not match the OAuth provider domain * fixed: OAuth did not work with some POP servers * fixed: RSS feed URL links in headers panel could not be activated by keyboard * fixed: Self-signed TLS certificates did not work with POP3 connections * fixed: Non-ascii characters in passwords did not work with POP3 connections * fixed: An error was not displayed when an incorrect password was entered for a POP3 account * fixed: NNTP articles were not displayed in preview pane when a Primary Password was set * fixed: NNTP articles did not download when the hostname of the server was not all in lower-case * fixed: Saving NNTP messages to local disk failed * fixed: Drag and Drop from Address Book into Compose window sometimes added unexpected contacts to the target * fixed: "Default" label not shown for emails when editing a contact * fixed: Contact Title, Role, and Organization fields could be displayed in the wrong order * fixed: Contact birthdays on February 29 were displayed incorrectly in non-leap years * fixed: Detection of photos in vCards improved * fixed: Drag and drop contacts to another address book was not available * fixed: Contacts stored in a Google CardDAV address book contained extra backslashes in text fields * fixed: Contacts without First/Last/Display Names appeared blank in contact list * fixed: Auto-attaching vCard and OpenPGP keys did not always work as expected * fixed: Settings page used caused excessive CPU usage * fixed: Calendar did not respect `Date and Time Formatting` in Settings * fixed: OpenPGP Key Import wizard did not adapt to dark theme * fixed: Various visual and theme improvements * fixed: Various accessibility improvements * unresolved: "Get Map" feature missing from address book for physical addresses - Mozilla Thunderbird 102.1.0 * fixed: Activity Manager did not display POP message downloads * fixed: Mail Folder Properties dialog was not sized correctly, cutting off contents * fixed: Expired news messages did not display an error * fixed: Calendar Column Picker closed prematurely after selecting/deselecting a single column * fixed: Various UI improvements * fixed: Various security fixes MFSA 2022-32 (bsc#1201758) * CVE-2022-36319 (bmo#1737722) Mouse Position spoofing with CSS transforms * CVE-2022-36318 (bmo#1771774) Directory indexes for bundled resources reflected URL parameters * CVE-2022-36314 (bmo#1773894) Opening local .lnk files could cause unexpected network loads * CVE-2022-2505 (bmo#1769739, bmo#1772824) Memory safety bugs fixed in Thunderbird 102.1 - Mozilla Thunderbird 102.0.3 * changed: Support for Google Talk chat accounts removed * fixed: Thunderbird could crash on startup on Windows 11 * fixed: After compacting folders, new downloaded messages were inaccessible * fixed: Marking a message as a Favorite (starred) did not update the thread pane when using Unified Folders * fixed: Compose window failed to populate some fields when S/MIME was configured * fixed: Non-text attachments has an incorrect "charset=windows-1250" mime header * fixed: Messages sent as attachments incorrectly had an "X-Mozilla-Cloud-Part" header * fixed: Improved Address Book import/export support in Profile Importer * fixed: IMAP stability improvements * fixed: Offline cache was unusable for NNTP accounts * fixed: Signing S/MIME messages failed * fixed: Various UI improvements - Mozilla Thunderbird 102.0.2 * changed: Double-clicking chat messages will no longer execute a default action * fixed: "File" menu was covered by Spaces Toolbar * fixed: Sub-folders with new messages were not highlighted until clicked * fixed: Attachment paper clip was cut off in message list * fixed: OpenPGP signatures were broken when "Primary Password" dialog remained open * fixed: Non-ASCII messages forwarded as attachments were garbled * fixed: Importing from Seamonkey or Outlook failed in second step * fixed: Deleting messages from a POP server occasionally failed * fixed: Offline cache was unusable for NNTP accounts * fixed: News messages were not shown in preview pane * fixed: Address fields were not populated when using "Edit as new message" * fixed: Sometimes only the first letter of a contact's Organization name was displayed * fixed: Double-click to edit selected contacts action did not work * fixed: Some CardDAV contact fields were displayed with additional backslashes in the value * fixed: Pending chat message contents were not updated when the conversation was not selected * fixed: Various UI improvements - Mozilla Thunderbird 102.0.1 * fixed: Mailbox MSF files could become corrupt in some circumstances * fixed: OpenPGP Key Assistant did not show status for addresses handled by aliases * fixed: Attaching an external OpenPGP public key failed if configured with a subkey ID * fixed: Thunderbird continued using an old password after changing it * fixed: New mail notifications were only shown for one mail account when multiple accounts were configured * fixed: LDAP Address Books could not be configured using IPv6 address literals * fixed: CardDAV contacts (notably Google-hosted) with more than one email address were not always editable * fixed: Address Book accessibility improvements * fixed: Various UI improvements * fixed: Icons converted to new style - Mozilla Thunderbird 102.0 * new: Thunderbird will now display a message when an upgrade migration task is taking a long time to complete * new: es-MX localized build now available * new: What's new link displayed in About: dialog * new: Profile Import/Export UI refreshed and moved to a tab * new: Commandline tools now included for OpenPGP debugging * new: Thunderbird may now be built with OpenPGP support and a system librnp * new: Added menu option to permanently decrypt OpenPGP encrypted messages to a folder * new: OpenPGP: Public keys from email attachments and autocrypt headers now cached for future use * new: Expired OpenPGP recipient keys now indicated in compose window * new: OpenPGP Key Assistant enabled by default * new: OpenPGP Key Properties now supports refreshing keys from key server * new: Spaces vertical toolbar for easier in-app navigation * new: Compose toolbar button for OpenPGP & S/MIME signing available via "Customize Toolbar" * new: "Select all addresses" now supported from composer pill context menu * new: Multiple active spelling dictionaries now supported in compose window * new: `Add dictionaries` item added to `Spelling` button in compose window * new: Added config option to more aggressively warn sender about having many public recipients to an email (`mail.compose.warn_public_recipients.aggressive`) * new: Exporting current profile now supported on importing tab * new: Back/Forward keyboard shortcuts added to Addon Manager * new: New Address Book UI and significant backend overhaul * new: Importing sqlite address books now supported * new: Importing addressbooks via CSV file now supports semi- colon (;) delimited files * new: Opening a **news://** URL now works if an account is not configured for that news server * new: Google Talk chat accounts now support logging in with OAuth2 * new: Matrix chat support enabled by default. This is a * *beta** feature. * new: Printing using the system dialog without preview now supported; Set `print.prefer_system_dialog` to `true` * new: Removing events from a calendar now prompts for confirmation * new: Upcoming events in the Today Pane show how far away they are * new: Icons now displayed on recurring events and modified events within a recurring series * changed: SMTP client will now ignore socket errors after `QUIT` command is sen * changed: Javascript POP implementation enabled by default * changed: Buttons on "Update Failed" popup now open Beta and Release specific pages on Thunderbird website * changed: Replace "About Junk Mail" dialog with a link to the support page * changed: [macOS] Account settings moved to application menu * changed: New profiles will default to using "Threaded" message view * changed: "Discover OpenPGP Key" context menu item is no longer displayed when a key is already available * changed: Duplicated OpenPGP encrypted attachments were shown when `display-attachments-inline` was enabled * changed: Replaced Security compose toolbar button with Encryption toggle and Encryption options buttons * changed: OpenPGP dialog for key "acceptance per email" now displayed in more circumstances * changed: OpenPGP `Key Manager` dialog layout improvements * changed: Writing OpenPGP keyring data will block Thunderbird shutdown to prevent data loss * changed: When automatically attaching OpenPGP keys to emails, Thunderbird will strip key certificates * changed: A notification bar in the compose window will be displayed if encryption is possible but not enabled * changed: Inline attachment filenames now sent without data- uri encoding * changed: Per-recipient and per-domain email format preferences removed; Sending options moved to Compose Settings * changed: Thunderbird can now be used without setting up a mail account * changed: NNTP account set up moved to its own wizard; "Other accounts" wizard removed * changed: Account Manager UI updated * changed: Email account provisioner moved to a tab * changed: Link to create a new email address in Account Setup now hidden if "Email address" contains a value * changed: Addon Search will no longer display addons that are incompatible * changed: Searching from the `Themes` page of Addon Manager will now limit search results to only include themes * changed: Additional fields for download limits, expiration, and password protection added to FileLink template * changed: FileLink will check the provider for sufficient space before uploading * changed: "PreferMailFormat" property removed from addressbook * changed: Address book contact data is now stored in the vCard format. The change isn't backwards-compatible; backups are stored in the profile directory. * changed: Default install directory for Thunderbird Beta changed to not conflict with release versions * changed: Tab icons updated * changed: Message Header toolbar buttons will not display a border when set to show icons only * changed: New message detection for non-INBOX IMAP folders improved * changed: New Javascript NNTP implementation enabled by default; Set `mailnews.nntp.jsmodule` to `false` to disable * changed: Preference for OTR encrypted conversation logging moved to Protocol settings * changed: Thunderbird will not try to use OTR Chat encryption if the protocol supports native encryption * changed: Invitations to IRC and XMPP chat rooms will now prompt the user if they would like to join * changed: Today Pane UI refreshed * changed: Thunderbird will not support "Secondly" or "Minutely" recurring calendar events * changed: Default action of `Edit` button in recurring event dialog changed to display submenu * changed: Support for importing and exporting calendars from Outlook CSV format was removed * changed: Thunderbird will now delay refreshing cached calendars at start-up * changed: Javascript Ical parser (ical.js) enabled by default * fixed: Opening "cid:" links failed * fixed: Message download progress was calculated incorrectly * fixed: `Ctrl+mouse wheel` did not zoom in the message source window * fixed: `Open message in containing folder` did not work for standalone windows * fixed: Multi-message view was not fully scrollable * fixed: Messages did not reload in all open windows after Junk status was changed * fixed: Detached attachments were opened from a temporary copy instead of the selected save location * fixed: IMAP folder subscription changes on servers using OAuth2 authentication were not reflected in folder pane until Thunderbird was restarted * fixed: Improved error reporting for external GnuPG configurations * fixed: Incorrect OpenPGP preferences were used for secondary identities * fixed: Adding an expiry date to an OpenPGP key that did not have one was not possible * fixed: UI showed old OpenPGP key expiry date after changing it * fixed: Importing large OpenPGP key files failed * fixed: OpenPGP "Repair Message" button did not work with some emails * fixed: Importing OpenPGP public keys without a blank line following the header failed * fixed: Dragging and dropping multiple email attachments between windows did not always copy all attachments * fixed: Attachment bar in message compose window was not keyboard accessible * fixed: Triggering recipient pill creation in the compose window incorrectly used the entire field as input * fixed: Compose notification bars were not easily accessible via keyboard * fixed: "Save message" confirmation dialog buttons were not navigable using arrow keys * fixed: Focus jumped in compose window when closing the contacts sidebar * fixed: Save dialog was incorrectly shown when closing empty composer windows * fixed: Incorrect access key used for `File->New->Message` menu item * fixed: Changing focus in the compose window with multiple recipient pills selected did not always deselect the pills * fixed: Sending a message with non-ascii characters in recipient local parts failed unexpectedly when the server did not support SMTPUTF8 * fixed: LDAP Autoconfig could block Thunderbird startup * fixed: Improvements to the Import/Export feature * fixed: Configuring multiple SMTP accounts using the same server was not possible * fixed: `Empty Trash on Exit` did not work with IMAP accounts using OAuth2 authentication * fixed: IMAP server hostname changes were not reflected in `Folder Properties` dialog * fixed: Addons automatically updated when Thunderbird updated despite Addon updates being turned off * fixed: Message size calculations incorrectly included FileLink attachments * fixed: After converting a FileLink attachment back to an e-mail attachment, the privacy notification persisted * fixed: A failed FileLink provider change removed the attachment completely * fixed: Subscribing to CardDAV address books from Account Setup tab did not subscribe to all selected address books * fixed: Adding CardDAV address books failed if an addon- provided address book was present * fixed: Messages with Message-Id headers longer than 332 characters could not be forwarded * fixed: SMTP send progress bar could trigger high CPU usage when the server connection failed * fixed: Improved POP server authentication detection during Account Setup * fixed: News folders did not display biff indicator * fixed: IMAP flag changes from another client were not seen after some inactivity * fixed: Recipients were not de-duplicated before sending, leading to sending errors * fixed: Chat conversations' context menu did not recognize links * fixed: Chat username splitting in the account wizard did not work after changing protocols * fixed: Removing obsolete proprietary chat accounts did not work * fixed: OTR encrypted chat did not work on FreeBSD * fixed: Event edit toolbar button was not disabled when an invitation was selected * fixed: Event view headers and content were not lined up consistently for RTL locales * fixed: Mini-month views did not properly update at midnight * fixed: Some labels in Calendar were displayed in multiple languages * fixed: Thunderbird permitted inline editing of read-only event titles * fixed: Calendar view reloaded when switching tabs * fixed: It was possible to create annual calendar events with invalid days * fixed: Detection of attached vCalendar files improved * fixed: Reminders for events created by another user could not be closed * fixed: MS Teams meeting event descriptions were unreadable when stored on Google Calendar * fixed: Adding a Google calendar with a non-gmail or googlemail e-mail address failed * fixed: Accepting a recurrence exception to an event accepted event associated with the original recurring event rather than the exception * fixed: Various security fixes MFSA 2022-26 (bsc#1200793) * CVE-2022-34479 (bmo#1745595) A popup window could be resized in a way to overlay the address bar with web content * CVE-2022-34470 (bmo#1765951) Use-after-free in nsSHistory * CVE-2022-34468 (bmo#1768537) CSP sandbox header without `allow-scripts` can be bypassed via retargeted javascript: URI * CVE-2022-2226 (bmo#1775441) An email with a mismatching OpenPGP signature date was accepted as valid * CVE-2022-34481 (bmo#1497246) Potential integer overflow in ReplaceElementsAt * CVE-2022-31744 (bmo#1757604) CSP bypass enabling stylesheet injection * CVE-2022-34472 (bmo#1770123) Unavailable PAC file resulted in OCSP requests being blocked * CVE-2022-34478 (bmo#1773717) Microsoft protocols can be attacked if a user accepts a prompt * CVE-2022-2200 (bmo#1771381) Undesired attributes could be set as part of prototype pollution * CVE-2022-34484 (bmo#1763634, bmo#1772651) Memory safety bugs fixed in Thunderbird 91.11 and Thunderbird 102- Mozilla Thunderbird 91.12 * changed: Support for Google Talk chat accounts removed * fixed: OpenPGP signatures were broken when "Primary Password" dialog remained open * fixed: Various security fixes MFSA 2022-31 (bsc#1201758) * CVE-2022-36319 (bmo#1737722) Mouse Position spoofing with CSS transforms * CVE-2022-36318 (bmo#1771774) Directory indexes for bundled resources reflected URL parameters- Mozilla Thunderbird 91.11 * fixed: CLIENTID fix for bmo#1759197 in Thunderbird 91.8.1 did not work; additional fix applied * fixed: "Save-As" attachment dialog did not have filename pre- populated * fixed: Various security fixes MFSA 2022-26 (bsc#1200793) * CVE-2022-34479 (bmo#1745595) A popup window could be resized in a way to overlay the address bar with web content * CVE-2022-34470 (bmo#1765951) Use-after-free in nsSHistory * CVE-2022-34468 (bmo#1768537) CSP sandbox header without `allow-scripts` can be bypassed via retargeted javascript: URI * CVE-2022-2226 (bmo#1775441) An email with a mismatching OpenPGP signature date was accepted as valid * CVE-2022-34481 (bmo#1497246) Potential integer overflow in ReplaceElementsAt * CVE-2022-31744 (bmo#1757604) CSP bypass enabling stylesheet injection * CVE-2022-34472 (bmo#1770123) Unavailable PAC file resulted in OCSP requests being blocked * CVE-2022-34478 (bmo#1773717) Microsoft protocols can be attacked if a user accepts a prompt * CVE-2022-2200 (bmo#1771381) Undesired attributes could be set as part of prototype pollution * CVE-2022-34484 (bmo#1763634, bmo#1772651) Memory safety bugs fixed in Thunderbird 91.11 and Thunderbird 102- Mozilla Thunderbird 91.10 * fixed: Various UX and theme improvements * fixed: Various security fixes MFSA 2022-22 (bsc#1200027) * CVE-2022-31736 (bmo#1735923) Cross-Origin resource's length leaked * CVE-2022-31737 (bmo#1743767) Heap buffer overflow in WebGL * CVE-2022-31738 (bmo#1756388) Browser window spoof using fullscreen mode * CVE-2022-31739 (bmo#1765049) Attacker-influenced path traversal when saving downloaded files * CVE-2022-31740 (bmo#1766806) Register allocation problem in WASM on arm64 * CVE-2022-31741 (bmo#1767590) Uninitialized variable leads to invalid memory read * CVE-2022-1834 (bmo#1767816) Braille space character caused incorrect sender email to be shown for a digitally signed email * CVE-2022-31742 (bmo#1730434) Querying a WebAuthn token with a large number of allowCredential entries may have leaked cross-origin information * CVE-2022-31747 (bmo#1760765, bmo#1765610, bmo#1766283, bmo#1767365, bmo#1768559, bmo#1768734) Memory safety bugs fixed in Thunderbird 91.10- Mozilla Thunderbird 91.9.1 * fixed: Various security fixes MFSA 2022-19 (bsc#1199768) * CVE-2022-1802 (bmo#1770137) Prototype pollution in Top-Level Await implementation * CVE-2022-1529 (bmo#1770048) Untrusted input used in JavaScript object indexing, leading to prototype pollution- Mozilla Thunderbird 91.9 * changed: A warning is now displayed if an OpenPGP key has unsafe attributes that are ignored; See support article. * fixed: OpenPGP integration in Thunderbird 91.8.0 and 91.8.1 did not allow SHA-1 key signatures * fixed: macOS disk image graphics updated * fixed: CalDAV calendars were marked read-only on startup * fixed: Task creation field on macOS incorrectly displayed a search icon * fixed: Various security fixes MFSA 2022-18 (bsc#1198970) * CVE-2022-1520 (bmo#1745019) Incorrect security status shown after viewing an attached email * CVE-2022-29914 (bmo#1746448) Fullscreen notification bypass using popups * CVE-2022-29909 (bmo#1755081) Bypassing permission prompt in nested browsing contexts * CVE-2022-29916 (bmo#1760674) Leaking browser history with CSS variables * CVE-2022-29911 (bmo#1761981) iframe sandbox bypass * CVE-2022-29912 (bmo#1692655) Reader mode bypassed SameSite cookies * CVE-2022-29913 (bmo#1764778) Speech Synthesis feature not properly disabled * CVE-2022-29917 (bmo#1684739, bmo#1706441, bmo#1753298, bmo#1762614, bmo#1762620) Memory safety bugs fixed in Thunderbird 91.9- Mozilla Thunderbird 91.8 * changed: Google accounts using password authentication will be migrated to OAuth2. See KB Article. * fixed: OpenPGP ECC keys created by Thunderbird could not be imported into GnuPG * fixed: Exporting multiple public PGP keys from Thunderbird was not possible * fixed: Replying to a newsgroup message erroneously displayed a "No-reply" popup warning * fixed: Opening `mid:` URLs on macOS failed * fixed: Address books stored in older formats were loaded as SQLite files, causing a crash * fixed: Replicated LDAP directories were lost after switching Thunderbird to "Offline"`mode * fixed: Importing webcals from the commandline failed if the URI ended with an `.ics` file extension * fixed: Various security fixes MFSA 2022-15 (bsc#1197903) * CVE-2022-1097 (bmo#1745667) Use-after-free in NSSToken objects * CVE-2022-28281 (bmo#1755621) Out of bounds write due to unexpected WebAuthN Extensions * CVE-2022-1197 (bmo#1754985) OpenPGP revocation information was ignored * CVE-2022-1196 (bmo#1750679) Use-after-free after VR Process destruction * CVE-2022-28282 (bmo#1751609) Use-after-free in DocumentL10n::TranslateDocument * CVE-2022-28285 (bmo#1756957) Incorrect AliasSet used in JIT Codegen * CVE-2022-28286 (bmo#1735265) iframe contents could be rendered outside the border * CVE-2022-24713 (bmo#1758509) Denial of Service via complex regular expressions * CVE-2022-28289 (bmo#1663508, bmo#1744525, bmo#1753508, bmo#1757476, bmo#1757805, bmo#1758549, bmo#1758776) Memory safety bugs fixed in Thunderbird 91.8- Add cpu-flag `asimdrdm` to aarch64 constraints, to select newer, faster buildhosts, as the others struggle to build TB.- Mozilla Thunderbird 91.7 * changed: Thunderbird will use the first occurrence of headers that should only appear once * fixed: Auto-complete incorrectly changed a pasted email address to the primary address of a contact * fixed: Attachments with filename extensions that were not registered in MIME types could not be opened * fixed: Copy/Cut/Paste actions not working in Thunderbird Preferences * fixed: Improved screen reader support of displayed message headers * fixed: Various security fixes MFSA 2022-12 (bsc#1196900) * CVE-2022-26383 (bmo#1742421) Browser window spoof using fullscreen mode * CVE-2022-26384 (bmo#1744352) iframe allow-scripts sandbox bypass * CVE-2022-26387 (bmo#1752979) Time-of-check time-of-use bug when verifying add-on signatures * CVE-2022-26381 (bmo#1736243) Use-after-free in text reflows * CVE-2022-26386 (bmo#1752396) Temporary files downloaded to /tmp and accessible by other local users- Mozilla Thunderbird 91.6.2 * fixed: Temporary files from opened attachments were saved with world-readable permission * fixed: Various security fixes MFSA 2022-09 (bsc#1196809) * CVE-2022-26485 (bmo#1758062) Use-after-free in XSLT parameter processing * CVE-2022-26486 (bmo#1758070) Use-after-free in WebGPU IPC Framework- Mozilla Thunderbird 91.6.1 * changed: Thunderbird generated views of meeting invitations are now expanded by default * fixed: Emails were not downloading at startup under some conditions * fixed: Port numbers were not shown in "Confirm Security Exception" dialog for CalDAV connections * fixed: Various security fixes MFSA 2022-07 (bsc#1196072) * CVE-2022-0566 (bmo#1753094) Crafted email could trigger an out-of-bounds write- Mozilla Thunderbird 91.6 * new: Thunderbird will now offer to send large forwarded attachments via FileLink * fixed: Partially signed unencrypted messages displayed an incorrect "partially encrypted" notification * fixed: Attachments filenames were not sanitized before saving to disk * fixed: In the attachment bar, the "Import OpenPGP Key" item displayed for public keys displayed an error and did not import the key * fixed: "Open with" attachment dialog did not have a selected radio button option * fixed: Various security fixes MFSA 2022-06 (bsc#1195682) * CVE-2022-22753 (bmo#1732435) Privilege Escalation to SYSTEM on Windows via Maintenance Service * CVE-2022-22754 (bmo#1750565) Extensions could have bypassed permission confirmation during update * CVE-2022-22756 (bmo#1317873) Drag and dropping an image could have resulted in the dropped object being an executable * CVE-2022-22759 (bmo#1739957) Sandboxed iframes could have executed script if the parent appended elements * CVE-2022-22760 (bmo#1740985, bmo#1748503) Cross-Origin responses could be distinguished between script and non-script content-types * CVE-2022-22761 (bmo#1745566) frame-ancestors Content Security Policy directive was not enforced for framed extension pages * CVE-2022-22763 (bmo#1740534) Script Execution during invalid object state * CVE-2022-22764 (bmo#1742682, bmo#1744165, bmo#1746545, bmo#1748210, bmo#1748279) Memory safety bugs fixed in Thunderbird 91.6- Mozilla Thunderbird 91.5 * fixed: RSS keyword labels without a configured color were illegible * fixed: Thunderbird "about:" dialog did not identify third- party repackaged distributions such as Flatpaks * fixed: Various security fixes MFSA 2022-03 (bsc#1194547) * CVE-2022-22746 (bmo#1735071) Calling into reportValidity could have lead to fullscreen window spoof * CVE-2022-22743 (bmo#1739220) Browser window spoof using fullscreen mode * CVE-2022-22742 (bmo#1739923) Out-of-bounds memory access when inserting text in edit mode * CVE-2022-22741 (bmo#1740389) Browser window spoof using fullscreen mode * CVE-2022-22740 (bmo#1742334) Use-after-free of ChannelEventQueue::mOwner * CVE-2022-22738 (bmo#1742382) Heap-buffer-overflow in blendGaussianBlur * CVE-2022-22737 (bmo#1745874) Race condition when playing audio files * CVE-2021-4140 (bmo#1746720) Iframe sandbox bypass with XSLT * CVE-2022-22748 (bmo#1705211) Spoofed origin on external protocol launch dialog * CVE-2022-22745 (bmo#1735856) Leaking cross-origin URLs through securitypolicyviolation event * CVE-2022-22744 (bmo#1737252) The 'Copy as curl' feature in DevTools did not fully escape website-controlled data, potentially leading to command injection * CVE-2022-22747 (bmo#1735028) Crash when handling empty pkcs7 sequence * CVE-2022-22739 (bmo#1744158) Missing throttling on external protocol launch dialog * CVE-2022-22751 (bmo#1664149, bmo#1737816, bmo#1739366, bmo#1740274, bmo#1740797, bmo#1741201, bmo#1741869, bmo#1743221, bmo#1743515, bmo#1745373, bmo#1746011) Memory safety bugs fixed in Thunderbird 91.5- Mozilla Thunderbird 91.4.1 * fixed: Attachments that should open in Thunderbird, such as ICS attachments, offered to save the file instead * fixed: Saving attachments from IMAP accounts where usernames contained special characters failed * fixed: Temporary files created for forwarded attachments sometimes had the wrong extension * fixed: S/MIME signatures were shown as invalid by Outlook * fixed: URL input boxes on content tabs erroneously displayed a search glass icon on macOS * fixed: Message bars (such as content blocking) did not use high contrast theme colors * fixed: Some messages with autocrypt headers loaded slowly, causing Thunderbird to hang * fixed: Server hostnames were cut-off in the account manager * fixed: Account Setup did not support non-ASCII characters in passwords * fixed: Account Setup did not always retain set values * fixed: Virtual folders did not retain folder selection when a folder name contained non-ASCII characters * fixed: Messages saved as "html" or "eml" did not include message headers * fixed: "Private web page" field was not included when exporting a contact to a vCard * fixed: Addons were still active after restarting Thunderbird in troubleshooting mode with "disable all addons" checked * fixed: FileLink attachments did not always display the FileLink provider's icon * fixed: FileLink privacy notifications persisted in the compose window after removing all FileLink attachments * fixed: "Loading" icon remained after a FileLink upload failed * fixed: Lengthy event names for multiday events did not wrap * fixed: Various theme and UX improvements * fixed: Various security fixes MFSA 2021-55 (bsc#1194215) * CVE-2021-4126 (bmo#1732310) OpenPGP signature status doesn't consider additional message content * CVE-2021-44538 (bmo#1744056) Matrix chat library libolm bundled with Thunderbird vulnerable to a buffer overflow- Mozilla Thunderbird 91.4.0 * fixed: IMAP startup performance improved for accounts with a multitude of folders * fixed: Thunderbird failed to send messages when configured to use an IPv6 SMTP server by IP address (instead of a hostname) * fixed: Forwarding messages with attachments sometimes failed * fixed: Printing multiple messages at once was not possible * fixed: Non-utf8 news groups were not supported * fixed: Thunderbird stalled after sending a message with NNTP and SMTP recipients * fixed: Using Thunderbird with multiple language packs caused high RAM and CPU use and sluggish performance * fixed: Clicking a "mailto:" started the composer with the default sending identity instead of a configured alternate * fixed: Drag and dropped text into a plain text message in the compose window was handled inconsistently * fixed: FileLink messages did not display correctly when viewed in Outlook * fixed: In account setup, after selecting an extension provided protocol, it was not possible to create an IMAP/POP account * fixed: Multiday selections were not cleared when changing week viewed * fixed: When creating a new event by clicking and dragging the mouse to create a box, the view did not auto-scroll after reaching the bottom * fixed: Calendar Invitation Panel did not scroll when multiple invitations were pending * fixed: Calendar print dialog did not have a cancel button * fixed: Various security fixes MFSA 2021-54 (bsc#1193485) * CVE-2021-43536 (bmo#1730120) URL leakage when navigating while executing asynchronous function * CVE-2021-43537 (bmo#1738237) Heap buffer overflow when using structured clone * CVE-2021-43538 (bmo#1739091) Missing fullscreen and pointer lock notification when requesting both * CVE-2021-43539 (bmo#1739683) GC rooting failure when calling wasm instance methods * CVE-2021-43541 (bmo#1696685) External protocol handler parameters were unescaped * CVE-2021-43542 (bmo#1723281) XMLHttpRequest error codes could have leaked the existence of an external protocol handler * CVE-2021-43543 (bmo#1738418) Bypass of CSP sandbox directive when embedding * CVE-2021-43545 (bmo#1720926) Denial of Service when using the Location API in a loop * CVE-2021-43546 (bmo#1737751) Cursor spoofing could overlay user interface when native cursor is zoomed * CVE-2021-43528 (bmo#1742579) JavaScript unexpectedly enabled for the composition area * MOZ-2021-0009 (bmo#1393362, bmo#1736046, bmo#1736751, bmo#1737009, bmo#1739372, bmo#1739421) Memory safety bugs fixed in Thunderbird 91.4.0- Mozilla Thunderbird 91.3.2 * changed: Date selection in Calendar print settings widget changed to use mini calendar widget * changed: OpenPGP: Botan updated to 2.18.2; addresses CVE-2021-40529 * fixed: "Repair Text Encoding" menu item did not work * fixed: Troubleshoot Mode menu item did not always indicate whether troubleshooting mode was enabled * fixed: Message content could be unintentionally hidden due to CSS class names conflicting * fixed: SMTP server port was reset to "0" after clicking the "Re-Test" button in the Account Setup wizard * fixed: No "Paste" option was available in the config editor (about:config) context menu * fixed: Saving a PDF attachment opened in a separate tab saved the email message instead * fixed: Opening a PDF attachment from a message in a standalone or compose window did move the focus to opened attachment * fixed: After restart, Thunderbird was not able to restore opened message tabs when the message was in a folder with non-ASCII characters in its name * fixed: The "pill" indicator was incorrectly shown when sending a message to newsgroup * fixed: When printing from Calendar, after leaving the "Calendar" settings, there was no way to go back * fixed: Month pickers in the Calendar print UI lacked scrollbars when the content overflowed * fixed: Account Manager and Addons Manager were unreadable when using the Dark theme - Mozilla Thunderbird 91.3.1 * changed: OpenPGP public keys will no longer count as an attachment in the message list * changed: Adding a search engine via URL now supported * changed: FileLink messages' template updated; Thunderbird advertisement removed * changed: After an update, Thunderbird will now check installed addons for updates * fixed: New mail popups were displayed while running full screen applications * fixed: Messages received with non-standard "koi8r" encoding were not supported * fixed: Various macOS stability improvements * fixed: PDF attachments opened in Firefox while composing an email * fixed: Addons were disabled when "Offline Settings" were set to "Ask me for online state (on startup)" * fixed: Clicking '"addons://" links in the Addons Manager prompted for an application to open it, rather than opening internally * fixed: The Contacts sidebar "Address Book" drop down was unreadable on Windows * fixed: vCard attachments were not shown when using "inline" view for attachments * fixed: Importing an ICS file with TODO items failed- Mozilla Thunderbird 91.3 * fixed: Default mail headers were set incorrectly when the value contained a colon (:) * fixed: Thunderbird did not send the QUIT command when closing an SMTP connection * fixed: Mail tabs could not be closed using the context menu * fixed: "Print" context menu was still shown when no message pane was displayed * fixed: Windows tray icon did not reappear after restarting Windows Explorer * fixed: Compose window attachment drag and drop fixes * fixed: Various macOS stability improvements * fixed: Drag and Drop area for file attachments on Windows was incorrect * fixed: CardDAV address books without a name did not work * fixed: Thunderbird tried to refresh disabled and manual-only calendars when the network state changed from offline to online * fixed: Various Calendar event dialog fixes * fixed: Various security fixes MFSA 2021-50 (bsc#1192250) * CVE-2021-38503 (bmo#1729517) iframe sandbox rules did not apply to XSLT stylesheets * CVE-2021-38504 (bmo#1730156) Use-after-free in file picker dialog * CVE-2021-38505 (bmo#1730194) Windows 10 Cloud Clipboard may have recorded sensitive user data * CVE-2021-38506 (bmo#1730750) Thunderbird could be coaxed into going into fullscreen mode without notification or warning * CVE-2021-38507 (bmo#1730935) Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports * MOZ-2021-0008 (bmo#1667102) Use-after-free in HTTP2 Session object * CVE-2021-38508 (bmo#1366818) Permission Prompt could be overlaid, resulting in user confusion and potential spoofing * CVE-2021-38509 (bmo#1718571) Javascript alert box could have been spoofed onto an arbitrary domain * CVE-2021-38510 (bmo#1731779) Download Protections were bypassed by .inetloc files on Mac OS * MOZ-2021-0007 (bmo#1606864, bmo#1712671, bmo#1730048, bmo#1735152) Memory safety bugs fixed in Thunderbird ESR 91.3 - Drop unused pkgconfig(gdk-x11-2.0) BuildRequires - Drop mozilla-neqo-fix-fips-crash.patch which is now upstream - add mozilla-bmo1724679.patch (bmo#1724679, boo#1182863) fix some env variables which are enabled for any value- Mozilla Thunderbird 91.2 * changed: Saving a single message as .eml now uses a unique filename * fixed: New mail notifications did not properly take subfolders into account * fixed: Decrypting binary attachments when using an external GnuPG configuration failed * fixed: Account name fields in the account manager were not big enough for long names * fixed: LDAP searches using an extensibleMatch filter returned no results * fixed: Read-only CalDAV calendars and CardDAV address books were not detected * fixed: Multipart messages containing a calendar invite did not display any of the human-readable alternatives * fixed: Some calendar days were displayed incorrectly or duplicated (eg. two "29th" days of a particular month) * fixed: Phantom event was shown at the end of each day in Calendar week view * fixed: Various security fixes MFSA 2021-47 (bsc#1191332) * CVE-2021-38502 (bmo#1733366) Downgrade attack on SMTP STARTTLS connections * CVE-2021-38496 (bmo#1725335) Use-after-free in MessageTask * CVE-2021-38497 (bmo#1726621) Validation message could have been overlaid on another origin * CVE-2021-38498 (bmo#1729642) Use-after-free of nsLanguageAtomService object * CVE-2021-32810 (bmo#1729813, bmo#https://github.com/crossbeam- rs/crossbeam/security/advisories/GHSA-pqqp-xmhj-wgcw) Data race in crossbeam-deque * CVE-2021-38500 (bmo#1725854, bmo#1728321) Memory safety bugs fixed in Thunderbird 91.2 * CVE-2021-38501 (bmo#1685354, bmo#1715755, bmo#1723176) Memory safety bugs fixed in Thunderbird 91.2- Mozilla Thunderbird 91.1.2 * Thunderbird will now warn if an S/MIME encrypted message includes BCC recipients * fixed: Message Security popup did not display all recipients due a missing scrollbar * fixed: Delivery Status Notifications were only shown for the first recipient * fixed: Composing a message from a template with attachments failed due to a temporary file being removed * fixed: Attachment sizes were no longer included on printed emails * fixed: A message sent with multiple attachments sometimes only sent one * fixed: Thunderbird sometimes attached the wrong messages when forwarding multiple messages by attachment * fixed: Thunderbird did not re-prompt for an SMTP username if one was not provided * fixed: Messages with BCC recipients that were held in the Outbox did not retain the BCC header when moved to the Sent folder * fixed: Thunderbird displayed reminders for events that were cancelled or declined * fixed: New Feed Account dialog did not honor dark mode - Mozilla Thunderbird 91.1.1 * Menu item for disabling subject encryption for a single message added * Printing messages that are not currently displayed is no longer supported, including printing multiple messages at once * fixed: Buttons on compose window dialogs did not have a visual indication of focus * fixed: Dropdown fields in message compose window were unreadable on Windows 7 with a dark theme * fixed: Multiple bulk mail notification warnings were displayed * fixed: Enabled/Disabled state of message filters did not persist as expected * fixed: Printing a message did not print a list of its attachments * fixed: Images attached from a web page were not sent as expected * fixed: OpenPGP public key was attached multiple times when forwading a message * fixed: Windows tray icon disappeared if Thunderbird was started by a shortcut with "Run" set to "Minimized" * fixed: Windows tray message count badge displayed the "unread" count instead of the "new" message count * fixed: Some downstream Thunderbird builds were incorrectly checking addons for a signature, causing all addons to be disabled * fixed: Addressbooks set up with autoconfig showed no search results * fixed: Various CardDAV setup and auto-detection fixes * fixed: Dates (such as birthday) stored in contacts may display the wrong date; a one-time manual fix may be needed for dates that are incorrect. * fixed: Attached VCards displayed as plain text when an email was HTML formatted * fixed: Mailing list names with non-ASCII characters incorrectly displayed with an error * fixed: LDAP directories were not searched for matches when adding recipients to an email * fixed: Clicking "Connect to an LDAP address book" in account setup opened CardDAV setup dialog * fixed: LDAP address books using Kerberos/GSS-API authentication did not authenticate * fixed: LDAP search queries containing non-ASCII characters produced no results * fixed: IRC server connections did not automatically retry after a timeout * fixed: Calendar event editor did not honor `mail.spellcheck.inline` - MOZ_ENABLE_WAYLAND env variable now overrides automatic detection if already set before startup - Mozilla Thunderbird 91.1.0 * Thunderbird registered Accessibility Handlers using same GUIDs as Firefox, causing performance issues for NVDA users * Focus lost when reordering accounts by keyboard in the Account Manager * Account setup did not use provider display name for setting up calendars * Various theme and UX fixes MFSA 2021-41 (bsc#1190269) * CVE-2021-38492 (bmo#1721107) Navigating to `mk:` URL scheme could load Internet Explorer * CVE-2021-38495 (bmo#1723391, bmo#1723920, bmo#1724101, bmo#1724107) Memory safety bugs fixed in Thunderbird 91.1 - add mozilla-bmo531915.patch to fix build for i586 - Remove obsolete patch mozilla-disable-wasm-emulate-arm-unaligned-fp-access.patch- Mozilla Thunderbird 91.0.3: * fixed: Folder icons could be overridden by linked favicons in HTML messages * fixed: Unified folders showed no messages when underlying folders were removed * fixed: Folder pane toolbar did not always persist after restarting Thunderbird * fixed: Compose window attachment pane did not close when disabling signing of an OpenPGP message * fixed: Using "Reply to List" with some list emails incorrectly opened a "no-reply" warning * fixed: Account setup UX issues with Exchange autodiscover * fixed: Account settings did not display non-UTF-8 server descriptions correctly * fixed: Thunderbird sometimes sent an unnecessary "SMTPUTF8", causing some servers to reject mail * fixed: No mouseover pop was displayed with event details for non-all-day events in the Today Pane * fixed: Filtering tasks in the Today Pane did not work * fixed: Email based event scheduling displayed the date and time in a format unreadable by humans - Mozilla Thunderbird 91.0.2: * new: Tags are now colored in mail filter editor * changed: Context menu items related to OpenPGP and attachments are now hidden when not applicable * fixed: Creating a new account with manual setup failed * fixed: Recipient autocomplete always preferred the primary email address for a contact * fixed: LDAP performance improvements * fixed: Extensions listed on the Recommended Addons did not have a clear way to view details in a browser * fixed: Status checkmark on View > Calendar > Calendar Pane > Show Calendar Pane was reversed * fixed: mid: URLs in calendar invites did not open the linked mail message * fixed: Various theme and UX fixes - Mozilla Thunderbird 91.0.1 MFSA 2021-37 (bsc#1189547) * CVE-2021-29991 (bmo#1724896) Header Splitting possible with HTTP/3 Responses - appdate screenshot URL updated (by mailaender@opensuse.org) - Mozilla Thunderbird 91.0 * based on Mozilla's 91 ESR codebase * many new and changed features https://www.thunderbird.net/en-US/thunderbird/91.0/releasenotes/#whatsnew * Renamed "Add-ons" to "Add-ons and Themes" and "Options" to "Preferences" * Thunderbird now operates in multi-process (e10s) mode by default * New user interface for adding attachments * Enable redirect of messages * CardDAV address book support - Removed obsolete patches: * mozilla-bmo1463035.patch * mozilla-ppc-altivec_static_inline.patch * mozilla-pipewire-0-3.patch * mozilla-bmo1554971.patch - add mozilla-libavcodec58_91.patch - removed obsolete BigEndian ICU build workaround - updated build requirements - Readd mozilla-silence-no-return-type.patch- Mozilla Thunderbird 78.13 * changed: WeTransfer FileLink provider removed * changed: The fix for bmo#1707360, from Thunderbird 78.12.0, was removed for causing regressions * fixed: OpenPGP: Homebrew's GPG Smartcard libraries not found on M1 Macs * fixed: Various security fixes MFSA 2021-35 (bsc#1188891) * CVE-2021-29986 (bmo#1696138) Race condition when resolving DNS names could have led to memory corruption * CVE-2021-29988 (bmo#1717922) Memory corruption as a result of incorrect style treatment * CVE-2021-29984 (bmo#1720031) Incorrect instruction reordering during JIT optimization * CVE-2021-29980 (bmo#1722204) Uninitialized memory in a canvas object could have led to memory corruption * CVE-2021-29985 (bmo#1722083) Use-after-free media channels * CVE-2021-29989 (bmo#1662676, bmo#1666184, bmo#1719178, bmo#1719998, bmo#1720568) Memory safety bugs fixed in Thunderbird 78.13- Mozilla Thunderbird 78.12 * fixed: Sending an email containing HTML links with spaces in the URL sometimes resulted in broken links * fixed: Folder Pane display theme fixes for macOS * fixed: Chat account settings did not always save as expected * fixed: RSS feed subscriptions sometimes lost * fixed: Calendar: A parsing error for alarm triggers of type "DURATION" caused sync problems for some users * fixed: Various security fixes MFSA 2021-30 (bsc#1188275) * CVE-2021-29969 (bmo#1682370) IMAP server responses sent by a MITM prior to STARTTLS could be processed * CVE-2021-29970 (bmo#1709976) Use-after-free in accessibility features of a document * CVE-2021-30547 (bmo#1715766) Out of bounds write in ANGLE * CVE-2021-29976 (bmo#1700895, bmo#1703334, bmo#1706910, bmo#1711576, bmo#1714391) Memory safety bugs fixed in Thunderbird 78.12- Mozilla Thunderbird 78.11 * fixed: OpenPGP could not be disabled for an account if a key was previously configured * fixed: Recipients were unable to decrypt some messages when the sender had changed the message encryption from OpenPGP to S/MIME * fixed: Contacts moved between CardDAV address books were not synced to the new server * fixed: CardDAV compatibility fixes for Google Contacts * fixed: Folder pane had no clear indication of focus on macOS * fixed: Windows theme improvements * fixed: Various security fixes MFSA 2021-26 (bsc#1186696) * CVE-2021-29964 (bmo#1706501) Out of bounds-read when parsing a `WM_COPYDATA` message * CVE-2021-29967 (bmo#1602862, bmo#1703191, bmo#1703760, bmo#1704722, bmo#1706041) Memory safety bugs fixed in Thunderbird 78.11 - Added the new Mozilla's GPG key, expiring on 2023-05-17 to the mozilla.keyring file- Mozilla Thunderbird 78.10.2 * new: Added support for importing OpenPGP keys without a primary secret key * new: Add-ons manager displays a preferences icon for mail extensions that include an options page * fixed: OpenPGP messages with a high compression ratio (over 10x) could not be decrypted * fixed: Selected OpenPGP key was lost after opening the Key Properties dialog in Account Settings * fixed: Parsing some OpenPGP user IDs failed * fixed: Various improvements to OpenPGP partial encryption reminders * fixed: Troubleshooting information page did not display row labels on macOS * fixed: Mail toolbar buttons were too big when displaying both icons and text * fixed: Various security fixes MFSA 2021-22 * CVE-2021-29957 (bmo#1673241, bsc#1186198) Partial protection of inline OpenPGP message not indicated * CVE-2021-29956 (bmo#1710290, bsc#1186199) Thunderbird stored OpenPGP secret keys without master password protection - Mozilla Thunderbird 78.10.1 MFSA 2021-19 * CVE-2021-29951 (bmo#1690062, bsc#1185633) Thunderbird Maintenance Service could have been started or stopped by domain users- Mozilla Thunderbird 78.8.1 * changed: Removed the fix for bug 1689804 introduced in Thunderbird 78.9.0, restoring the previous behavior * fixed: Various security fixes MFSA 2021-17 (bsc#1185633) * CVE-2021-29950 (bmo#1673239) Logic issue potentially leaves key material unlocked- Mozilla Thunderbird 78.10 * fixed: Usability & theme improvements on Windows * fixed: Various security fixes MFSA 2021-14 (bsc#1184960) * CVE-2021-23994 (bmo#1699077) Out of bound write due to lazy initialization * CVE-2021-23995 (bmo#1699835) Use-after-free in Responsive Design Mode * CVE-2021-23998 (bmo#1667456) Secure Lock icon could have been spoofed * CVE-2021-23961 (bmo#1677940) More internal network hosts could have been probed by a malicious webpage * CVE-2021-23999 (bmo#1691153) Blob URLs may have been granted additional privileges * CVE-2021-24002 (bmo#1702374) Arbitrary FTP command execution on FTP servers using an encoded URL * CVE-2021-29945 (bmo#1700690) Incorrect size computation in WebAssembly JIT could lead to null-reads * CVE-2021-29946 (bmo#1698503) Port blocking could be bypassed * CVE-2021-29948 (bmo#1692899) Race condition when reading from disk while verifying signatures- Mozilla Thunderbird 78.9.1 * new: Support recipient aliases for OpenPGP encryption. Documentation can be found https://wiki.mozilla.org/ Thunderbird:OpenPGP:Aliases. * fixed: The key and signature parts of the message security popup on a received message could not be selected for copy/paste. * fixed: Various UX and theme improvements MFSA 2021-13 (bsc#1184536) * CVE-2021-23991 (bmo#1673240) An attacker may use Thunderbird's OpenPGP key refresh mechanism to poison an existing key * MOZ-2021-23992 (bmo#1666236) A crafted OpenPGP key with an invalid user ID could be used to confuse the user * CVE-2021-23993 (bmo#1666360) Inability to send encrypted OpenPGP email after importing a crafted OpenPGP key- Mozilla Thunderbird 78.9 * fixed: New mail notification displayed old messages that were unread * fixed: Spaces following soft line breaks in messages using quoted-printable and format=flowed were incorrectly encoded; existing messages which were previously incorrectly encoded may now display with some words not separated by a space * fixed: Some fields were unreadable in the Dark theme in the General preferences panel * fixed: Sending a message containing an anchor tag with an invalid data URI failed * fixed: When switching tabs, input focus was not moved to the new tab * fixed: Address Book: Syncing a read-only Google address book via CardDAV failed * fixed: Address Book: Importing VCards with non-ascii characters would fail * fixed: Address Book: Some values may not have been parsed when syncing from Google address books. * fixed: Add-ons Manager did not show if an addon used experiment APIs * fixed: Calendar: Removing a recurring task was not possible * fixed: Various security fixes MFSA 2021-12 (bsc#1183942) * CVE-2021-23981 (bmo#1692832) Texture upload into an unbound backing buffer resulted in an out-of-bound read * MOZ-2021-0002 (bmo#1691547) Angle graphics library out of date * CVE-2021-23982 (bmo#1677046) Internal network hosts could have been probed by a malicious webpage * CVE-2021-23984 (bmo#1693664) Malicious extensions could have spoofed popup information * CVE-2021-23987 (bmo#1513519, bmo#1683439, bmo#1690169, bmo#1690718) Memory safety bugs fixed in Thunderbird 78.9 - cleaned up and fixed mozilla.sh.in for wayland (boo#1177542)- Mozilla Thunderbird 78.8 * fixed: Importing an address book from a CSV file always reported an error (bmo#1685048) * fixed: Security information for S/MIME messages was not displayed correctly prior to a draft being saved (bmo#1683701) * fixed: Calendar: FileLink UI fixes for Caldav calendars (bmo#1669803) * fixed: Recurring tasks were always marked incomplete; unable to use filters (bmo#1686466) * fixed: Various UI widgets not working (bmo#1690098) * fixed: Dark theme improvements (bmo#1691106) * fixed: Extension manager was missing link to addon support web page (bmo#1642219) * fixed: Various security fixes MFSA 2021-09 (bsc#1182614) * CVE-2021-23969 (bmo#1542194) Content Security Policy violation report could have contained the destination of a redirect * CVE-2021-23968 (bmo#1687342) Content Security Policy violation report could have contained the destination of a redirect * CVE-2021-23973 (bmo#1690976) MediaError message property could have leaked information about cross-origin resources * CVE-2021-23978 (bmo#1682928, bmo#1687391, bmo#1687597, bmo#786797) Memory safety bugs fixed in Thunderbird 78.8 - Update create-tar.sh to use https instead of http (bsc#1182357)- Mozilla Thunderbird 78.7.1 (bsc#1181848) * changed: Building OpenPGP shared library linked to system libraries now supported (bmo#1634963) * changed: MailExtension errors now shown in Developer Tools console by default (bmo#1650149) * changed: MailExtensions: Dynamic registration of calendar providers now supported (bmo#1652885) * fixed: OpenPGP improvements (bmo#1655210) * fixed: Message preview was sometimes blank after upgrading from Thunderbird 68 (bmo#1653168) * fixed: Email addresses whitelisted for remote content not displayed in preferences (bmo#1652575) * fixed: Importing data from Seamonkey did not work (bmo#272292) * fixed: Renaming a mail list did not update the side bar (bmo#1632331) * fixed: MailExtensions: messenger.* namespace was undefined (bmo#1641573)- Mozilla Thunderbird 78.7 * changed: MailExtensions: browserAction, composeAction, and messageDisplayAction toolbar buttons now support label and default_label properties (bmo#1583478) * fixed: Running a quicksearch that returned no results did not offer to re-run as a global search (bmo#1663153) * fixed: Message search toolbar fixes (bmo#1681010) * fixed: Very long subject lines distorted the message compose and display windows, making them unusable (bmo#77806) * fixed: Compose window: Recipient addresses that had not yet been autocompleted were lost when clicking Send button (bmo#1674054) * fixed: Compose window: New message is no longer marked as "changed" just from tabbing out of the recipient field without editing anything (bmo#1681389) * fixed: Account autodiscover fixes when using MS Exchange servers (bmo#1679759) * fixed: LDAP address book stability fix (bmo#1680914) * fixed: Messages with invalid vcard attachments were not marked as read when viewed in the preview window (bmo#1680468) * fixed: Chat: Could not add TLS certificate exceptions for XMPP connections (bmo#1590471) * fixed: Calendar: System timezone was not always properly detected (bmo#1678839) * fixed: Calendar: Descriptions were sometimes blank when editing a single occurrence of a repeating event (bmo#1664731) * fixed: Various printing bugfixes (bmo#1676166) * fixed: Visual consistency and theme improvements (bmo#1682808) * fixed: Various security fixes MFSA 2021-05 (bsc#1181414) * CVE-2021-23953 (bmo#1683940) Cross-origin information leakage via redirected PDF requests * CVE-2021-23954 (bmo#1684020) Type confusion when using logical assignment operators in JavaScript switch statements * CVE-2020-15685 (bmo#1622640) IMAP Response Injection when using STARTTLS * CVE-2020-26976 (bmo#1674343) HTTPS pages could have been intercepted by a registered service worker when they should not have been * CVE-2021-23960 (bmo#1675755) Use-after-poison for incorrectly redeclared JavaScript variables during GC * CVE-2021-23964 (bmo#1662507, bmo#1666285, bmo#1673526, bmo#1674278, bmo#1674835, bmo#1675097, bmo#1675844, bmo#1675868, bmo#1677590, bmo#1677888, bmo#1680410, bmo#1681268, bmo#1682068, bmo#1682938, bmo#1683736, bmo#1685260, bmo#1685925) Memory safety bugs fixed in Thunderbird 78.7- Mozilla Thunderbird 78.6.1 * changed: MailExtensions: browserAction, composeAction, and messageDisplayAction toolbar buttons now support label and default_label properties (bmo#1583478) * fixed: Running a quicksearch that returned no results did not offer to re-run as a global search (bmo#1663153) * fixed: Message search toolbar fixes (bmo#1681010) * fixed: Very long subject lines distorted the message compose and display windows, making them unusable (bmo#77806) * fixed: Compose window: Recipient addresses that had not yet been autocompleted were lost when clicking Send button (bmo#1674054) * fixed: Compose window: New message is no longer marked as "changed" just from tabbing out of the recipient field without editing anything (bmo#1681389) * fixed: Account autodiscover fixes when using MS Exchange servers (bmo#1679759) * fixed: LDAP address book stability fix (bmo#1680914) * fixed: Messages with invalid vcard attachments were not marked as read when viewed in the preview window (bmo#1680468) * fixed: Chat: Could not add TLS certificate exceptions for XMPP connections (bmo#1590471) * fixed: Calendar: System timezone was not always properly detected (bmo#1678839) * fixed: Calendar: Descriptions were sometimes blank when editing a single occurrence of a repeating event (bmo#1664731) * fixed: Various printing bugfixes (bmo#1676166) * fixed: Visual consistency and theme improvements (bmo#1682808) MFSA 2021-02 (bsc#1180623) * CVE-2020-16044 (bmo#1683964) Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk- Mozilla Thunderbird 78.6 * new: MailExtensions: Added browser.windows.openDefaultBrowser() (bmo#1664708) * changed: Thunderbird now only shows quota exceeded indications on the main window (bmo#1671748) * changed: MailExtensions: menus API enabled in messages being composed (bmo#1670832) * changed: MailExtensions: Honor allowScriptsToClose argument in windows.create API function (bmo#1675940) * changed: MailExtensions: APIs that returned an accountId will reflect the account the message belongs to, not what is stored in message headers (bmo#1644032) * fixed: Keyboard shortcut for toggling message "read" status not shown in menus (bmo#1619248) * fixed: OpenPGP: After importing a secret key, Key Manager displayed properties of the wrong key (bmo#1667054) * fixed: OpenPGP: Inline PGP parsing improvements (bmo#1660041) * fixed: OpenPGP: Discovering keys online via Key Manager sometimes failed on Linux (bmo#1634053) * fixed: OpenPGP: Encrypted attachment "Decrypt and Open/Save As" did not work (bmo#1663169) * fixed: OpenPGP: Importing keys failed on macOS (bmo#1680757) * fixed: OpenPGP: Verification of clear signed UTF-8 text failed (bmo#1679756) * fixed: Address book: Some columns incorrectly displayed no data (bmo#1631201) * fixed: Address book: The address book view did not update after changing the name format in the menu (bmo#1678555) * fixed: Calendar: Could not import an ICS file into a CalDAV calendar (bmo#1652984) * fixed: Calendar: Two "Home" calendars were visible on a new profile (bmo#1656782) * fixed: Calendar: Dark theme was incomplete on Linux (bmo#1655543) * fixed: Dark theme did not apply to new mail notification popups (bmo#1681083) * fixed: Folder icon, message list, and contact side bar visual improvements (bmo#1679436) * fixed: MailExtensions: HTTP refresh in browser content tabs did not work (bmo#1667774) * fixed: MailExtensions: messageDisplayScripts failed to run in main window (bmo#1674932) * fixed: Various security fixes MFSA 2020-56 (bsc#1180039) * CVE-2020-16042 (bmo#1679003) Operations on a BigInt could have caused uninitialized memory to be exposed * CVE-2020-26971 (bmo#1663466) Heap buffer overflow in WebGL * CVE-2020-26973 (bmo#1680084) CSS Sanitizer performed incorrect sanitization * CVE-2020-26974 (bmo#1681022) Incorrect cast of StyleGenericFlexBasis resulted in a heap use-after-free * CVE-2020-26978 (bmo#1677047) Internal network hosts could have been probed by a malicious webpage * CVE-2020-35111 (bmo#1657916) The proxy.onRequest API did not catch view-source URLs * CVE-2020-35112 (bmo#1661365) Opening an extension-less download may have inadvertently launched an executable instead * CVE-2020-35113 (bmo#1664831, bmo#1673589) Memory safety bugs fixed in Thunderbird 78.6- Mozilla Thunderbird 78.5.1 * new: OpenPGP: Added option to disable email subject encryption (bmo#1666073) * changed: OpenPGP public key import now supports multi-file selection and bulk accepting imported keys (bmo#1665145) * changed: MailExtensions: getComposeDetails will wait for "compose-editor-ready" event (bmo#1675012) * fixed: New mail icon was not removed from the system tray at shutdown (bmo#1664586) * fixed: "Place replies in the folder of the message being replied to" did not work when using "Reply to List" (bmo#522450) * fixed: Thunderbird did not honor the "Run search on server" option when searching messages (bmo#546925) * fixed: Highlight color for folders with unread messages wasn't visible in dark theme (bmo#1676697) * fixed: OpenPGP: Key were missing from Key Manager (bmo#1674521) * fixed: OpenPGP: Option to import keys from clipboard always disabled (bmo#1676842) * fixed: The "Link" button on the large attachments info bar failed to open up Filelink section in Options if the user had not yet configured Filelink (bmo#1677647) * fixed: Address book: Printing members of a mailing list resulted in incorrect output (bmo#1676859) * fixed: Unable to connect to LDAP servers configured with a self-signed SSL certificate (bmo#1659947) * fixed: Autoconfig via LDAP did not work as expected (bmo#1662433) * fixed: Calendar: Pressing Ctrl-Enter in the new event dialog would create duplicate events (bmo#1668478) * fixed: Various security fixes MFSA 2020-53 (bsc#1179530) * CVE-2020-26970 (bmo#1677338) Stack overflow due to incorrect parsing of SMTP server response codes- Mozilla Thunderbird 78.5.0 * new: OpenPGP: Added option to disable attaching the public key to a signed message (bmo#1654950) * new: MailExtensions: "compose_attachments" context added to Menus API (bmo#1670822) * new: MailExtensions: Menus API now available on displayed messages (bmo#1670825) * changed: MailExtensions: browser.tabs.create will now wait for "mail-delayed-startup-finished" event (bmo#1674407) * fixed: OpenPGP: Support for inline PGP messages improved (bmo#1672851) * fixed: OpenPGP: Message security dialog showed unverified keys as unavailable (bmo#1675285) * fixed: Chat: New chat contact menu item did not function (bmo#1663321) * fixed: Various theme and usability improvements (bmo#1673861) * fixed: Various security fixes MFSA 2020-52 (bsc#1178894) * CVE-2020-26951 (bmo#1667113) Parsing mismatches could confuse and bypass security sanitizer for chrome privileged code * CVE-2020-16012 (bmo#1642028) Variable time processing of cross-origin images during drawImage calls * CVE-2020-26953 (bmo#1656741) Fullscreen could be enabled without displaying the security UI * CVE-2020-26956 (bmo#1666300) XSS through paste (manual and clipboard API) * CVE-2020-26958 (bmo#1669355) Requests intercepted through ServiceWorkers lacked MIME type restrictions * CVE-2020-26959 (bmo#1669466) Use-after-free in WebRequestService * CVE-2020-26960 (bmo#1670358) Potential use-after-free in uses of nsTArray * CVE-2020-15999 (bmo#1672223) Heap buffer overflow in freetype * CVE-2020-26961 (bmo#1672528) DoH did not filter IPv4 mapped IP Addresses * CVE-2020-26965 (bmo#1661617) Software keyboards may have remembered typed passwords * CVE-2020-26966 (bmo#1663571) Single-word search queries were also broadcast to local network * CVE-2020-26968 (bmo#1551615, bmo#1607762, bmo#1656697, bmo#1657739, bmo#1660236, bmo#1667912, bmo#1671479, bmo#1671923) Memory safety bugs fixed in Thunderbird 78.5- Mozilla Thunderbird 78.4.3 * fixed: User interface was inconsistent when switching from the default theme to the dark theme and back to the default theme (bmo#1659282) * fixed: Email subject would disappear when hovering over it with the mouse when using Windows 7 Classic theme (bmo#1675970)- Mozilla Thunderbird 78.4.2 MFSA 2020-49 (bsc#1178611) * CVE-2020-26950 (bmo#1675905) Write side effects in MCallGetProperty opcode not accounted for - Mozilla Thunderbird 78.4.1 * new: Thunderbird prompts for an address to use when starting an email from an address book entry with multiple addresses (bmo#84028) * fixed: Searching global search results did not work (bmo#1664761) * fixed: Link location was not focused by default when adding a hyperlink in message composer (bmo#1670660) * fixed: Advanced address book search dialog was unusable (bmo#1668147) * fixed: Encrypted draft reply emails lost "Re:" prefix (bmo#1661510) * fixed: Replying to a newsgroup message did not open the compose window (bmo#1672667) * fixed: Unable to delete multiple newsgroup messages (bmo#1657988) * fixed: Appmenu displayed visual glitches (bmo#1636243) * fixed: Visual glitches when selecting multiple messages in the message pane and using Ctrl+click (bmo#1671800) * fixed: Switching between dark and light mode could lead to unreadable text on macOS (bmo#1668989)- Mozilla Thunderbird 78.4 * new: MailExtensions: browser.tabs.sendMessage API added (bmo#1641576) * new: MailExtensions: messageDisplayScripts API added (bmo#1504475) * changed: Yahoo and AOL mail users using password authentication will be migrated to OAuth2 (bmo#1606339) * changed: MailExtensions: messageDisplay APIs extended to support multiple selected messages (bmo#1617461) * changed: MailExtensions: compose.begin functions now support creating a message with attachments (bmo#1662018) * fixed: Thunderbird could freeze when updating global search index (bmo#1669872) * fixed: Multiple issues with handling of self-signed SSL certificates addressed (bmo#1590474) * fixed: Recipient address fields in compose window could expand to fill all available space (bmo#1666463) * fixed: Inserting emoji characters in message compose window caused unexpected behavior (bmo#1638874) * fixed: Button to restore default folder icon color was not keyboard accessible (bmo#1663075) * fixed: Various keyboard navigation fixes (bmo#1667567) * fixed: Various color-related theme fixes (bmo#1668410) * fixed: MailExtensions: Updating attachments with onBeforeSend.addListener() did not work (bmo#1662015) MFSA 2020-47 (bsc#1177977) * CVE-2020-15969 (bmo#1666570, https://github.com/sctplab/ usrsctp/commit/ffed0925f27d404173c1e3e750d818f432d2c019) Use-after-free in usersctp * CVE-2020-15683 (bmo#1576843, bmo#1656987, bmo#1660954, bmo#1662760, bmo#1663439, bmo#1666140) Memory safety bugs fixed in Thunderbird 78.4- Mozilla Thunderbird 78.3.3 * OpenPGP: Improved support for encrypting with subkeys (bmo#1665497) * OpenPGP message status icons were not visible in message header pane (bmo#1670067) * OpenPGP Key Manager was missing from Tools menu on macOS (bmo#1662279) * Creating a new calendar event did not require an event title (bmo#1663303)- Mozilla Thunderbird 78.3.2 (bsc#1176899) * OpenPGP: Improved support for encrypting with subkeys * OpenPGP: Encrypted messages with international characters were sometimes displayed incorrectly * Single-click deletion of recipient pills with middle mouse button restored * Searching an address book list did not display results * Dark mode, high contrast, and Windows theming fixes - Mozilla Thunderbird 78.3.1 * fix crash in nsImapProtocol::CreateNewLineFromSocket (bmo#1667120) - Mozilla Thunderbird 78.3.0 MFSA 2020-44 (bsc#1176756) * CVE-2020-15677 (bmo#1641487) Download origin spoofing via redirect * CVE-2020-15676 (bmo#1646140) XSS when pasting attacker-controlled data into a contenteditable element * CVE-2020-15678 (bmo#1660211) When recursing through layers while scrolling, an iterator may have become invalid, resulting in a potential use-after- free scenario * CVE-2020-15673 (bmo#1648493, bmo#1660800) Memory safety bugs fixed in Thunderbird 78.3 - requires NSPR >= 4.25.1 - removed obsolete thunderbird-bmo1664607.patch - Mozilla Thunderbird 78.2.2 https://www.thunderbird.net/en-US/thunderbird/78.2.2/releasenotes - added thunderbird-bmo1664607.patch required for builds w/o updater (boo#1176384) - Mozilla Thunderbird 78.2.1 (bsc#1174230) * based on Mozilla's 78 ESR codebase * many new and changed features https://www.thunderbird.net/en-US/thunderbird/78.0/releasenotes/#whatsnew * built-in OpenPGP support (enigmail neither required nor supported) - added platform patches: * mozilla-s390x-skia-gradient.patch * mozilla-pipewire-0-3.patch * mozilla-bmo1512162.patch * mozilla-bmo1626236.patch * mozilla-bmo998749.patch * mozilla-sandbox-fips.patch * thunderbird-remove-python2.patch - removed obsolete platform patches * mozilla-s390-bigendian.patch * mozilla-nestegg-big-endian.patch * mozilla-openaes-decl.patch * mozilla-cubeb-noreturn.patch- Mozilla Thunderbird 68.12 * fixed: Various security vulnerabilities MFSA 2020-40 (bsc#1175686) * CVE-2020-15663 (bmo#1643199) Downgrade attack on the Mozilla Maintenance Service could have resulted in escalation of privilege * CVE-2020-15664 (bmo#1658214) Attacker-induced prompt for extension installation * CVE-2020-15669 (bmo#1656957) Use-After-Free when aborting an operation- Mozilla Thunderbird 68.11 * fixed: FileLink attachments included as a link and file when added from a network drive via drag & drop (bmo#793118) * fixed: Various security fixes MFSA 2020-35 (bsc#1174538) * CVE-2020-15652 (bmo#1634872) Potential leak of redirect targets when loading scripts in a worker * CVE-2020-6514 (bmo#1642792) WebRTC data channel leaks internal address to peer * CVE-2020-6463 (bmo#1635293) Use-after-free in ANGLE gl::Texture::onUnbindAsSamplerTexture * CVE-2020-15659 (bmo#1550133, bmo#1633880, bmo#1646787, bmo#1650811) Memory safety bugs fixed in Thunderbird 68.11- Mozilla Thunderbird 68.10.0 * fixed: Chat: Topics displayed some characters improperly (bmo#1644024) * fixed: Calendar: Filtering tasks did not work when "Incomplete Tasks" was selected (bmo#1593711) MFSA 2020-26 (bsc#1173576) * CVE-2020-12417 (bmo#1640737) Memory corruption due to missing sign-extension for ValueTags on ARM64 * CVE-2020-12418 (bmo#1641303) Information disclosure due to manipulated URL object * CVE-2020-12419 (bmo#1643874) Use-after-free in nsGlobalWindowInner * CVE-2020-12420 (bmo#1643437) Use-After-Free when trying to connect to a STUN server * MFSA-2020-0001 (bmo#1606610) Automatic account setup leaks Microsoft Exchange login credentials * CVE-2020-12421 (bmo#1308251) Add-On updates did not respect the same certificate trust rules as software updates- Mozilla Thunderbird 68.9.0 * fixed: Custom headers added for searching or filtering could not be removed (bmo#1631577) * fixed: Calendar: Today Pane updated prior to loading all data (bmo#1635613) * fixed: Stability improvements (bmo#1625677) * fixed: Various security fixes MFSA 2020-22 (bsc#1172402) * CVE-2020-12405 (bmo#1631618) Use-after-free in SharedWorkerService * CVE-2020-12406 (bmo#1639590) JavaScript Type confusion with NativeTypes * CVE-2020-12410 (bmo#1619305, bmo#1632717) Memory safety bugs fixed in Thunderbird 68.9.0 * CVE-2020-12398 (bmo#1613623) Security downgrade with IMAP STARTTLS leads to information leakage- Mozilla Thunderbird 68.8.1 * fixed: IMAP stability improvements (bmo#1586494) * fixed: HTML tags in IRC topic changes were rendered incorrectly (bmo#1607097) * fixed: MailExtensions: Websockets could not be used (bmo#1627649) - Use a symbolic icon from branding internals- Mozilla Thunderbird 68.8.0 * fixed: Account Manager: text fields were too small in some cases (bmo#1616387) * fixed: Account Manager: Authentication method did not update when selecting an SMTP server (bmo#1631437) * fixed: Links with embedded credentials did not open on Windows (bmo#1609451) * fixed: Messages were sometimes sent with a badly formed address when filled from the address book (bmo#1629842) * fixed: Accessibility: Screen readers were reporting too many activities from the status bar (bmo#1628891) * fixed: MailExtensions: Setting IMAP messages as read with browser.messages.updated failed to persist (bmo#1631184) * fixed: Various security fixes MFSA 2020-18 (bsc#1171186) * CVE-2020-12397 (bmo#1617370) Sender Email Address Spoofing using encoded Unicode characters * CVE-2020-12387 (bmo#1545345) Use-after-free during worker shutdown * CVE-2020-6831 (bmo#1632241) Buffer overflow in SCTP chunk input validation * CVE-2020-12392 (bmo#1614468) Arbitrary local file access with 'Copy as cURL' * CVE-2020-12393 (bmo#1615471) Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection * CVE-2020-12395 (bmo#1595886, bmo#1611482, bmo#1614704, bmo#1624098, bmo#1625749, bmo#1626382, bmo#1628076, bmo#1631508) Memory safety bugs fixed in Thunderbird 68.8.0- Mozilla Thunderbird 68.7.0 * new: MailExtensions: Raw message source available to MailExtensions (bmo#1525274) * changed: MailExtensions: messages.update function extended to mark messages as junk or not junk (bmo#1598332) * changed: MailExtensions: browser.compose.begin functions no longer expand mailing lists (bmo#1612480) * fixed: Various improvements to account setup when connecting to an Exchange server (bmo#1598861) * fixed: Thread collapsed when opening news message in a new window (bmo#1526765) * fixed: Addons not automatically updated to compatible version after upgrade from Thunderbird 60 (bmo#1574183) * fixed: Updating addons did not prompt when requesting new permissions (bmo#1620861) * fixed: Extra recipients panel not keyboard-accessible (bmo#1612717) * fixed: Accessibility: Status bar was not detected by screenreaders (bmo#1621287) * fixed: MailExtensions: messages.query by folder name did not require accountsRead permission (bmo#1625793) * fixed: Calendar: Invitations with embedded null bytes did not always decode correctly (bmo#1623896) * fixed: Calendar: Cancelled events didn't show with a line- through (bmo#1621210) * fixed: Various security fixes MFSA 2020-14 (bsc#1168874) In general, these flaws cannot be exploited through email in Thunderbird because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts. * CVE-2020-6819 (bmo#1620818, bsc#1168630) Use-after-free while running the nsDocShell destructor * CVE-2020-6820 (bmo#1626728, bsc#1168630) Use-after-free when handling a ReadableStream * CVE-2020-6821 (bmo#1625404, bsc#1168874) Uninitialized memory could be read when using the WebGL copyTexSubImage method * CVE-2020-6822 (bmo#1544181, bsc#1168874) Out of bounds write in GMPDecodeData when processing large images * CVE-2020-6825 (bmo#1572541,bmo#1620193,bmo#1620203, bsc#1168874) Memory safety bugs fixed in Thunderbird 68.7.0- Mozilla Thunderbird 68.6 * new: Thunderbird now displays a popup window when starting up on a new profile (bmo#1590036) * changed: Thunderbird now provides partial updates resulting in smaller downloads (bmo#1410512) * fixed: Searching in message bodies led to false negatives under some circumstances in quoted-printable encoded HTML bodies (bmo#1614796) * fixed: "Get New Messages for All Accounts" not working for OAuth2-authenticated IMAP accounts (bmo#1593611) * fixed: Various security fixes MFSA 2020-10 (bsc#1166238) * CVE-2020-6805 (bmo#1610880) Use-after-free when removing data about origins * CVE-2020-6806 (bmo#1612308) BodyStream::OnInputStreamReady was missing protections against state confusion * CVE-2020-6807 (bmo#1614971) Use-after-free in cubeb during stream destruction * CVE-2020-6811 (bmo#1607742) Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection * CVE-2019-20503 (bmo#1613765) Out of bounds reads in sctp_load_addresses_from_init * CVE-2020-6812 (bmo#1616661) The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission * CVE-2020-6814 (bmo#1592078, bmo#1604847, bmo#1608256, bmo#1612636, bmo#1614339) Memory safety bugs fixed in Thunderbird 68.6- Mozilla Thunderbird 68.5 * new: Support for Client Identity IMAP/SMTP Service Extension (bmo#1532388) * new: Support for OAuth 2.0 authentication for POP3 accounts (bmo#1538409) * fixed: Status area goes blank during account setup (bmo#1593122) * fixed: Calendar: Could not remove color for default categories (bmo#1584853) * fixed: Calendar: Prevent calendar component loading multiple times (bmo#1606375) * fixed: Calendar: Today pane did not retain width between sessions (bmo#1610207) * fixed: Various security fixes * unresolved: When upgrading from Thunderbird version 60 to version 68, add-ons are not automatically updated during the upgrade process. They will however be updated during the add- on update check. It is of course possible to reinstall compatible add-ons via the Add-ons Manager or via addons.thunderbird.net. (bmo#1574183) MFSA 2020-07 (bsc#1163368) * CVE-2020-6793 (bmo#1608539) Out-of-bounds read when processing certain email messages * CVE-2020-6794 (bmo#1606619) Setting a master password post-Thunderbird 52 does not delete unencrypted previously stored passwords * CVE-2020-6795 (bmo#1611105) Crash processing S/MIME messages with multiple signatures * CVE-2020-6797 (bmo#1596668) Extensions granted downloads.open permission could open arbitrary applications on Mac OSX * CVE-2020-6798 (bmo#1602944) Incorrect parsing of template tag could result in JavaScript injection * CVE-2020-6792 (bmo#1609607) Message ID calculcation was based on uninitialized data * CVE-2020-6800 (bmo#1595786, bmo#1596706, bmo#1598543, bmo#1604851, bmo#1605777, bmo#1608580, bmo#1608785) Memory safety bugs fixed in Thunderbird 68.5- Mozilla Thunderbird 68.4.2 (bsc#1162777) * changed: Calendar: Task and Event tree colours adjusted for the dark theme (bmo#1608344) * fixed: Retrieval of S/MIME certificates from LDAP failed (bmo#1604773) * fixed: Address-parsing crash on some IMAP servers when preference mail.imap.use_envelope_cmd was set (bmo#1609690) * fixed: Incorrect forwarding of HTML messages caused SMTP servers to respond with a timeout (bmo#1222046) * fixed: Calendar: Various parts of the calendar UI stopped working when a second Thunderbird window opened (bmo#1608407)- Mozilla Thunderbird 68.4.1 * changed: Various improvements when setting up an account for a Microsoft Exchange server: Now offers IMAP/SMTP if available, better detection for Office 365 accounts; re-run configuration after password change. (bmo#1592258) * fixed: Attachments with one or more spaces in their names couldn't be opened under some circumstances (bmo#1601905) * fixed: After changing view layout, the message display pane showed garbled content under some circumstances (bmo#265393) * fixed: Tags were lost on messages in shared IMAP folders under some circumstances (bmo#1596371) * fixed: Various theme changes to achieve "pixel perfection": Unread icon, "no results" icon, paragraph format and font selector, background of folder summary tooltip (bmo#1605612) * fixed: Calendar: Event attendee dialog was not displayed correctly (bmo#1604797) * fixed: Various security fixes MFSA 2020-04 (bsc#1160305, bsc#1160498) * CVE-2019-17026 (bmo#1607443) IonMonkey type confusion with StoreElementHole and FallibleStoreElement * CVE-2019-17015 (bmo#1599005) Memory corruption in parent process during new content process initialization on Windows * CVE-2019-17016 (bmo#1599181) Bypass of @namespace CSS sanitization during pasting * CVE-2019-17017 (bmo#1603055) Type Confusion in XPCVariant.cpp * CVE-2019-17021 (bmo#1599008) Heap address disclosure in parent process during content process initialization on Windows * CVE-2019-17022 (bmo#1602843) CSS sanitization does not escape HTML tags * CVE-2019-17024 (bmo#1507180, bmo#1595470, bmo#1598605, bmo#1601826) Memory safety bugs fixed in Thunderbird 68.4.1 - Removed patch that is now upstream: mozilla-bmo1511604.patch - Added patch to fix broken URL-bar on s390x: mozilla-bmo1602730.patch- Mozilla Thunderbird 68.3.1 * changed: In dark theme unread messages no longer shown in blue to distinguish from tagged messages (bmo#1596702) * changed: Account setup is now using client side DNS MX lookup instead of relying on a server. (bmo#1349337) * fixed: Searching LDAP address book crashed in some circumstances (bmo#1601389) * fixed: Message navigation with backward and forward buttons did not work in some circumstances (bmo#533504) * fixed: WebExtension toolbar icons were displayed too small (bmo#1598955) * fixed: Calendar: Tasks due today were not listed in bold (bmo#1598885) * fixed: Calendar: Last day of long-running events was not shown (bmo#1572964)- Mozilla Firefox Thunderbird 68.3 * new: Message display toolbar action WebExtension API (bmo#1531597) * new: Navigation buttons are now available in content tabs, for example those opened via an add-on search (bmo#787683) * changed: "New email" icon in Windows systray changed from in- tray with arrow to envelope (bmo#1594200) * fixed: Icons of attachments in the attachment pane of the Write window not always correct (bmo#1593280) * fixed: Toolbar buttons of add-ons in the menubar not shown after startup (bmo#1584160) * fixed: LDAP lookup not working when SSL was enabled. LDAP search not working when "All Address Books" was selected. (bmo#1576364) * fixed: Scam link confirmation panel not working (bmo#1596413) * fixed: In Write window, the Link Properties dialog wasn't showing named anchors in context menu (bmo#1593629) * fixed: Calendar: Start-up failed if the application menu is not on the calendar toolbars (bmo#1588516) * fixed: Chat: Account reordering via drag-and-drop not working on Instant messaging status dialog (Show Accounts) (bmo#1591505) MFSA 2019-37 (bsc#1158328) * CVE-2019-17008 (bmo#1546331) Use-after-free in worker destruction * CVE-2019-13722 (bmo#1580156) Stack corruption due to incorrect number of arguments in WebRTC code * CVE-2019-11745 (bmo#1586176) Out of bounds write in NSS when encrypting with a block cipher * CVE-2019-17009 (bmo#1510494) Updater temporary files accessible to unprivileged processes * CVE-2019-17010 (bmo#1581084) Use-after-free when performing device orientation checks * CVE-2019-17005 (bmo#1584170) Buffer overflow in plain text serializer * CVE-2019-17011 (bmo#1591334) Use-after-free when retrieving a document in antitracking * CVE-2019-17012 (bmo#1449736, bmo#1533957, bmo#1560667, bmo#1567209, bmo#1580288, bmo#1585760, bmo#1592502) Memory safety bugs fixed in Firefox 71 and Firefox ESR 68.3- Remove patch thunderbird-broken-locales-build.patch due to switch to a different method for building locales - Added patch mozilla-bmo849632.patch to fix some webgl-problems on big endian machines (sync from FF)- Mozilla Thunderbird 68.2.1 * new: A language for the user interface can now be chosen in the advanced settings (multilingual UI) (bmo#1590206) * fixed: Problem with Google authentication (OAuth2) (bmo#1592407) * fixed: Selected or unread messages not shown in the correct color in the thread pane (message list) under some circumstances (bmo#1585765) * fixed: When using a language pack, names of standard folders weren't localized (bmo#1575512, boo#1149126) * fixed: Address book default startup directory in preferences panel not persisted (bmo#1591364) * fixed: Various visual glitches: Conditions in filter editor not high enough, folder location widget not showing folder name, problem with menubar customization, add-on home page links accumulating, theme issues on Windows 7 (bmo#1590666) * fixed: Issues when upgrading from a 32bit version of Thunderbird to a 64bit version. Note: If your profile is still not recognised, selected it by visiting about:profiles in the Troubleshooting Information. (bmo#1587067) * fixed: Chat: Extended context menu on Instant messaging status dialog (Show Accounts) (bmo#1591506) - added mozilla-bmo1504834-part4.patch to fix some visual issues on big endian platforms- Mozilla Thunderbird 68.2 * new: Message Display WebExtension API * new: Message Search WebExtension API * Bugfixes Better visual feedback for unread messages when using the dark theme Various issues when editing mailing lists Integration with macOS addressbook and notifications not working after introduction of notarization Application windows not maintaining their size after restart Issues when upgrading from a 32bit version of Thunderbird to a 64bit version. * various security fixes MFSA 2019-33/2019-35 (bsc#1154738) * CVE-2019-15903 (bmo#1584907) Heap overflow in expat library in XML_GetCurrentLineNumber * CVE-2019-11757 (bmo#1577107) Use-after-free when creating index updates in IndexedDB * CVE-2019-11758 (bmo#1536227) Potentially exploitable crash due to 360 Total Security * CVE-2019-11759 (bmo#1577953) Stack buffer overflow in HKDF output * CVE-2019-11760 (bmo#1577719) Stack buffer overflow in WebRTC networking * CVE-2019-11761 (bmo#1561502) Unintended access to a privileged JSONView object * CVE-2019-11762 (bmo#1582857) document.domain-based origin isolation has same-origin- property violation * CVE-2019-11763 (bmo#1584216) Incorrect HTML parsing results in XSS bypass technique * CVE-2019-11764 (bmo#1548044, bmo#1558522, bmo#1571223, bmo#1573048, bmo#1575217, bmo#1577061, bmo#1578933, bmo#1581950, bmo#1583463, bmo#1583684, bmo#1586599, bmo#1586845) Memory safety bugs fixed in Thunderbird 68.2 - removed upstream patches: * mozilla-bmo1512162.patch * mozilla-bmo1573381.patch * mozilla-bmo1585099.patch- Mozilla Thunderbird 68.1.2 (bsc#1153879) Bugfixes * Some attachments couldn't be opened in messages originating from MS Outlook 2016 * Address book import from CSV * Performance problem in message body search * Ctrl+Enter to send a message would open an attachment if the attachment pane had focus * Calendar: Issues with "Today Pane" start-up * Calendar: Glitches with custom repeat and reminder number input * Calendar: Problems with WCAP provider - add mozilla-bmo1585099.patch to fix build with rust >= 1.38 - add mozilla-fix-top-level-asm.patch to fix LTO build (w/o PGO) - updated translations-other locale list - remove kde.js since disabling instantApply breaks extensions and is obsolete with the move to HTML views for preferences (boo#1151186) - Update create-tar.sh (bsc#1152778) - Update mozilla-bmo1512162.patch to the patch now commited upstream * No more -O1 builds for ppc64le necessary - Deactivate currently useless crashreporter for the last remaining arch- Mozilla Thunderbird 68.1.1 Bugfixes * Issues with attachments in IMAP messages * Gmail accounts ignored a non-standard trash folder selection * Entering/pasting lists of recipients into the addressing widget or mailing list not working reliably, especially when lists contained multiple commas or semicolons * Edit mailing list not working * Various theme fixes, especially dark theme improvements for Calendar * Contrast between tag label and background not optimal * Account Central pane always loaded at start-up * "Config Editor" button not removed if blocked by policy * Calendar: Free/busy information in attendees dialog not scrolled correctly. Note: Scroll arrows still not behaving correctly MFSA 2019-32 * CVE-2019-11755 (bmo#1240290) Spoofing a message author via a crafted S/MIME message- Mozilla Thunderbird 68.1.0 * Offer to configure Exchange accounts for Office365. A third- party add-on is required for this account type. IMAP still exists as alternative. * Edit tag not working * Write window: "Insert > Characters and Symbols" not working * Moving/dragging messages from "Search Messages" result dialog not working * Command line -compose "attachment=" not working * Custom views not working * Issues with list of content types/actions for incoming attachments * "Learn More" links in Error Console not working * Visual glitches: Quick Filter Bar tag buttons too tall, missing scroll bar on Connection Setting subdialog, LDAP server selection after "New", "Edit" and "Delete" * Calendar: Parts of CalDAV dialog not working MFSA 2019-30 * CVE-2019-11739 (bmo#1571481, bsc#1150939) Covert Content Attack on S/MIME encryption using a crafted multipart/alternative message * CVE-2019-11746 (bmo#1564449, bsc#1149297) Use-after-free while manipulating video * CVE-2019-11744 (bmo#1562033, bsc#1149304) XSS by breaking out of title and textarea elements using innerHTML * CVE-2019-11742 (bmo#1559715, bsc#1149303) Same-origin policy violation with SVG filters and canvas to steal cross-origin images * CVE-2019-11752 (bmo#1501152, bsc#1149296) Use-after-free while extracting a key value in IndexedDB * CVE-2019-11743 (bmo#1560495, bsc#1149298, https://w3c.github.io/navigation-timing) Cross-origin access to unload event attributes * CVE-2019-11740 (bmo#1563133, bmo#1573160, bsc#1149299) Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, Firefox ESR 60.9, Thunderbird 68.1, and Thunderbird 60.9 - Mozilla Thunderbird 68.0 * based on Firefox ESR 68 * File link attachments can now be linked to again instead of uploading them again * Mark all folders of an account as read * Run filters periodically. Improved filter logging * OAuth2 authentication for Yandex * Language packs can now be selected in the Advanced Options. Preference intl.multilingual.enabled needs to be set (and possily also extensions.langpacks.signatures.required needs to be set to false) * Added a policy engine that allows customized Thunderbird deployments in enterprise environments, using Windows Group Policy or a cross-platform JSON file * TCP keepalive for IMAP protocol * Full Unicode support for MAPI interfaces: New support for MAPISendMailW * Calendar: Time zone data can now include past and future changes. All known time zone changes from 2018 to 2022 are included. * Chat: In each conversation an individual spellcheck language can be selected now MFSA 2019-28 * CVE-2019-11711 (bmo#1552541) Script injection within domain through inner window reuse * CVE-2019-11712 (bmo#1543804) Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects * CVE-2019-11713 (bmo#1528481) Use-after-free with HTTP/2 cached stream * CVE-2019-11714 (bmo#1542593) NeckoChild can trigger crash when accessed off of main thread * CVE-2019-11729 (bmo#1515342) Empty or malformed p256-ECDH public keys may trigger a segmentation fault * CVE-2019-11715 (bmo#1555523) HTML parsing error can contribute to content XSS * CVE-2019-11716 (bmo#1552632) globalThis not enumerable until accessed * CVE-2019-11717 (bmo#1548306) Caret character improperly escaped in origins * CVE-2019-11719 (bmo#1540541) Out-of-bounds read when importing curve25519 private key * CVE-2019-11720 (bmo#1556230) Character encoding XSS vulnerability * CVE-2019-11721 (bmo#1256009) Domain spoofing through unicode latin 'kra' character * CVE-2019-11730 (bmo#1558299) Same-origin policy treats all files in a directory as having the same-origin * CVE-2019-11723 (bmo#1528335) Cookie leakage during add-on fetching across private browsing boundaries * CVE-2019-11724 (bmo#1512511) Retired site input.mozilla.org has remote troubleshooting permissions * CVE-2019-11725 (bmo#1483510) Websocket resources bypass safebrowsing protections * CVE-2019-11727 (bmo#1552208) PKCS#1 v1.5 signatures can be used for TLS 1.3 * CVE-2019-11728 (bmo#1552993) Port scanning through Alt-Svc header * CVE-2019-11710 (bmo#1400563, bmo#1507696, bmo#1510345, bmo#1533842, bmo#1535482, bmo#1535848, bmo#1537692, bmo#1540590, bmo#1544180, bmo#1547472, bmo#1547760, bmo#1548611, bmo#1549768, bmo#1551907) Memory safety bugs fixed in Firefox 68 and Thunderbird 68 * CVE-2019-11709 (bmo#1515052, bmo#1533522, bmo#1539219, bmo#1540759, bmo#1547266, bmo#1547757, bmo#1548822, bmo#1550498, bmo#1550498) Memory safety bugs fixed in Firefox 68, Firefox ESR 60.8, and Thunderbird 68 - removed patches that are now upstream * mozilla-bmo1375074.patch * mozilla-i586-DecoderDoctorLogger.patch * mozilla-i586-domPrefs.patch * mozilla-bmo1464766.patch * mozilla-bigendian_bit_flags_alias.patch - added patch to make builds reproducible * mozilla-bmo1568145.patch - added a bunch of patches mainly for big endian platforms * mozilla-bmo1504834-part1.patch * mozilla-bmo1504834-part2.patch * mozilla-bmo1504834-part3.patch * mozilla-bmo1511604.patch * mozilla-bmo1512162.patch * mozilla-bmo1554971.patch * mozilla-bmo1573381.patch * mozilla-nestegg-big-endian.patch * mozilla-ppc-altivec_static_inline.patch - added patches to fix build on armv7: * mozilla-bmo1463035.patch * mozilla-disable-wasm-emulate-arm-unaligned-fp-access.patch - added patch to fix non-return function * mozilla-cubeb-noreturn.patch - added patch to fix aarch64 build: * mozilla-fix-aarch64-libopus.patch (bmo#1539737) - added patch to reduce build-load * mozilla-reduce-rust-debuginfo.patch - added patch to fix locales-build * thunderbird-broken-locales-build.patch - added patch to fix implicit declarations * mozilla-openaes-decl.patch - added samba-patch from Firefox * mozilla-ntlm-full-path.patch- Mozilla Firefox Thunderbird 60.8 MFSA 2019-23 (bsc#1140868) * CVE-2019-9811 (bmo#1538007, bmo#1539598, bmo#1563327) Sandbox escape via installation of malicious language pack * CVE-2019-11711 (bmo#1552541) Script injection within domain through inner window reuse * CVE-2019-11712 (bmo#1543804) Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects * CVE-2019-11713 (bmo#1528481) Use-after-free with HTTP/2 cached stream * CVE-2019-11729 (bmo#1515342) Empty or malformed p256-ECDH public keys may trigger a segmentation fault * CVE-2019-11715 (bmo#1555523) HTML parsing error can contribute to content XSS * CVE-2019-11717 (bmo#1548306) Caret character improperly escaped in origins * CVE-2019-11719 (bmo#1540541) Out-of-bounds read when importing curve25519 private key * CVE-2019-11730 (bmo#1558299) Same-origin policy treats all files in a directory as having the same-origin * CVE-2019-11709 (bmo#1515052, bmo#1533522, bmo#1539219, bmo#1540759, bmo#1547266, bmo#1547757, bmo#1548822, bmo#1550498, bmo#1550498) Memory safety bugs fixed in Firefox 68, Firefox ESR 60.8, and Thunderbird 60.8 - Calendar: Problems when editing event times, some related to AM/PM setting in non-English locales- Mozilla Firefox Thunderbird 60.7.2 MFSA 2019-20 (bsc#1138872) * CVE-2019-11707 (bmo#1544386) Type confusion in Array.pop * CVE-2019-11708 (bmo#1559858) sandbox escape using Prompt:Open- Mozilla Firefox Thunderbird 60.7.1 MFSA 2019-17 (bsc#1137595) * CVE-2019-11703 (bmo#1553820) Heap buffer overflow in icalparser.c * CVE-2019-11704 (bmo#1553814) Heap buffer overflow in icalvalue.c * CVE-2019-11705 (bmo#1553808) Stack buffer overflow in icalrecur.c * CVE-2019-11706 (bmo#1555646) Type confusion in icalproperty.c - No prompt for smartcard PIN when S/MIME signing is used - Removed obsolete patches: [thunderbird-bsc1137595.patch]- Fix security vulnerabilities in Thunderbird 60.7 (bsc#1137595) * CVE-2019-11706 (bmo#1555646) * CVE-2019-11705 (bmo#1553808) * CVE-2019-11704 (bmo#1553814) * CVE-2019-11703 (bmo#1553820) - Added patches: [thunderbird-bsc1137595.patch]- Mozilla Firefox Thunderbird 60.7 MFSA 2019-15 * CVE-2019-9815 (bmo#1546544, https://mdsattacks.com/) Disable hyperthreading on content JavaScript threads on macOS * CVE-2019-9816 (bmo#1536768) Type confusion with object groups and UnboxedObjects * CVE-2019-9817 (bmo#1540221) Stealing of cross-domain images using canvas * CVE-2019-9818 (bmo#1542581) Use-after-free in crash generation server * CVE-2019-9819 (bmo#1532553) Compartment mismatch with fetch API * CVE-2019-9820 (bmo#1536405) Use-after-free of ChromeEventHandler by DocShell * CVE-2019-11691 (bmo#1542465) Use-after-free in XMLHttpRequest * CVE-2019-11692 (bmo#1544670) Use-after-free removing listeners in the event listener manager * CVE-2019-11693 (bmo#1532525) Buffer overflow in WebGL bufferdata on Linux * CVE-2019-7317 (bmo#1542829) Use-after-free in png_image_free of libpng library * CVE-2019-9797 (bmo#1528909) Cross-origin theft of images with createImageBitmap * CVE-2018-18511 (bmo#1526218) Cross-origin theft of images with ImageBitmapRenderingContext * CVE-2019-11694 (bmo#1534196) Uninitialized memory memory leakage in Windows sandbox * CVE-2019-11698 (bmo#1543191) Theft of user history data through drag and drop of hyperlinks to and from bookmarks * CVE-2019-5798 (bmo#1535518) Out-of-bounds read in Skia * CVE-2019-9800 (bmo#1499108, bmo#1499719, bmo#1516325, bmo#1532465, bmo#1533554, bmo#1534593, bmo#1535194, bmo#1535612, bmo#1538042, bmo#1538619, bmo#1538736, bmo#1540136, bmo#1540166, bmo#1541580, bmo#1542097, bmo#1542324, bmo#1546327) Memory safety bugs fixed in Firefox 67, Firefox ESR 60.7, and Thunderbird 60.7 - Attachment pane of Write window no longer focussed when attaching files using a keyboard shortcut- Reactivate s390x * Merged big endian patches from MozillaFirefox to make Thunderbird compile under s390x again (see below) * Added ac_option --with-system-icu (same as Firefox, but in this case only for big endian machines as not to break existing archs) - Added patches: [mozilla-bmo1005535.patch] [mozilla-bigendian_bit_flags_alias.patch] [mozilla-s390-bigendian.patch] [mozilla-s390-context.patch]- Sync with Devel:Mozilla:*:next- Merge changes from MozillaFirefox * Merge spec-file update "Enable Firefox to build with Rust >= 1.30 with fix" (revision 28) * Merge create-tar.sh to now download tar-balls for thunderbird directly as is done with Firefox- Mozilla Thunderbird 60.6.1 MFSA 2019-12 (bsc#1130262) * CVE-2019-9810 (bmo#1537924) IonMonkey MArraySlice has incorrect alias information * CVE-2019-9813 (bmo#1538006) Ionmonkey type confusion with __proto__ mutations- Mozilla Thunderbird 60.6.0 * Calendar: Can't create repeating event with end date when using certain time zones, for example Europe/Minsk * some minor bugfixes * using 60.6.0esr Mozilla platform (bsc#1129821)- Mozilla Thunderbird 60.5.3 * fixed a regression on the Windows platform: Problem when using "Send to > Mail recipient" on Windows- Mozilla Thunderbird 60.5.2 * UTF-8 support for MAPISendMail * Problem with S/MIME certificate verification when receiving email from Outlook (issue introduced in version 60.5.1)- Mozilla Thunderbird 60.5.1 * CalDav access to some servers not working MFSA 2019-06 (bsc#1125330) * CVE-2018-18356 bmo#1525817 Use-after-free in Skia * CVE-2019-5785 bmo#1525433 Integer overflow in Skia * CVE-2018-18335 bmo#1525815 Buffer overflow in Skia with accelerated Canvas 2D * CVE-2018-18509 bmo#1507218 S/MIME signature spoofing- Mozilla Thunderbird 60.5.0: * FileLink provider WeTransfer to upload large attachments * Thunderbird now allows the addition of OpenSearch search engines from a local XML file using a minimal user inferface: [+] button to select a file an add, [-] to remove. * More search engines: Google and DuckDuckGo available by default in some locales * During account creation, Thunderbird will now detect servers using the Microsoft Exchange protocol. It will offer the installation of a 3rd party add-on (Owl) which supports that protocol. * Thunderbird now compatible with other WebExtension-based FileLink add-ons like the Dropbox add-on MFSA 2019-03 (bsc#1122983) * CVE-2018-18500 bmo#1510114 Use-after-free parsing HTML5 stream * CVE-2018-18505 bmo#1497749 Privilege escalation through IPC channel messages * CVE-2016-5824 bmo#1275400 DoS (use-after-free) via a crafted ics file * CVE-2018-18501 bmo#1512450 bmo#1517542 bmo#1513201 bmo#1460619 bmo#1502871 bmo#1516738 bmo#1516514 Memory safety bugs fixed in Firefox 65 and Firefox ESR 60.5 - requires NSS 3.36.7 - removed obsolete patch mozilla-no-stdcxx-check.patch - rebased patches- Mozilla Thunderbird 60.4.0: * New WebExtensions FileLink API to facilitate add-ons * Fix decoding problems for messages with less common charsets (cp932, cp936) * New messages in the drafts folder (and other special or virtual folders) will no longer be included in the new messages notification MFSA 2018-31 * CVE-2018-17466 bmo#1488295 Buffer overflow and out-of-bounds read in ANGLE library with TextureStorage11 * CVE-2018-18492 bmo#1499861 Use-after-free with select element * CVE-2018-18493 bmo#1504452 Buffer overflow in accelerated 2D canvas with Skia * CVE-2018-18494 bmo#1487964 Same-origin policy violation using location attribute and performance.getEntries to steal cross-origin URLs * CVE-2018-18498 bmo#1500011 Integer overflow when calculating buffer sizes for images * CVE-2018-12405 bmo#1494752 bmo#1503326 bmo#1505181 bmo#1500759 bmo#1504365 bmo#1506640 bmo#1503082 bmo#1502013 bmo#1510471 Memory safety bugs fixed in Firefox 64, 60.4, and Thunderbird 60.4 - requires NSS 3.36.6- Mozilla Thunderbird 60.3.3 * Thunderbird 60 will migrate security databases (key3.db, cert8.db to key4.db, cert9.db). Thunderbird 60.3.2 and earlier contained a fault that potentially deleted saved passwords and private certificate keys for users using a master password. Version 60.3.3 will prevent the loss of data; affected users who have already upgraded to version 60.3.2 or earlier can restore the deleted key3.db file from backup to complete the migration. * Address book search and auto-complete slowness introduced in Thunderbird 60.3.2 * Plain text markup with * for bold, / for italics, _ for underline and | for code did not work when the enclosed text contained non-ASCII characters * While composing a message, a link not removed when link location was removed in the link properties panel- Fix build on openSUSE Leap 15.x w.r.t. rust-std requirement- Mozilla Thunderbird 60.3.2 * Encoding problems when exporting address books or messages using the system charset. Messages are now always exported using the UTF-8 encoding * If the "Date" header of a message was invalid, Jan 1970 or Dec 1969 was displayed. Now using date from "Received" header instead. * Body search/filtering didn't reliably ignore content of tags * Inappropriate warning "Thunderbird prevented the site (addons.thunderbird.net) from asking you to install software on your computer" when installing add-ons * Incorrect display of correspondents column since own email address was not always detected * Spurious (encoded newline) inserted into drafts and sent email- Mozilla Thunderbird 60.3.1: * Double-clicking on a word in the Write window sometimes launched the Advanced Property Editor or Link Properties dialog * Fixe Cookie removal * "Download rest of message" was not working if global inbox was used * Fix Encoding problems for users (especially in Poland) when a file was sent via a folder using "Sent to > Mail recipient" due to a problem in the Thunderbird MAPI interface * According to RFC 4616 and RFC 5721, passwords containing non-ASCII characters are encoded using UTF-8 which can lead to problems with non-compliant providers, for example office365.com. The SMTP LOGIN and POP3 USER/PASS authentication methods are now using a Latin-1 encoding again to work around this issue * Fix shutdown crash/hang after entering an empty IMAP password- update to Thunderbird 60.3.0 * various theme fixes * Shift+PageUp/PageDown in Write window * Gloda attachment filtering * Mailing list address auto-complete enter/return handling * Thunderbird hung if HTML signature references non-existent image * Filters not working for headers that appear more than once - Security fixes for the Mozilla platform picked up from 60.3 (Firefox ESR release). In general, these flaws cannot be exploited through email in Thunderbird because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts (MFSA 2018-28) (bsc#1112852) * CVE-2018-12391 (bmo#1478843) (Android only) HTTP Live Stream audio data is accessible cross-origin * CVE-2018-12392 (bmo#1492823) Crash with nested event loops * CVE-2018-12393 (bmo#1495011) Integer overflow during Unicode conversion while loading JavaScript * CVE-2018-12389 (bmo#1498460, bmo#1499198) Memory safety bugs fixed in Firefox ESR 60.3 * CVE-2018-12390 (bmo#1487098, bmo#1487660, bmo#1490234, bmo#1496159, bmo#1443748, bmo#1496340, bmo#1483905, bmo#1493347, bmo#1488803, bmo#1498701, bmo#1498482, bmo#1442010, bmo#1495245, bmo#1483699, bmo#1469486, bmo#1484905, bmo#1490561, bmo#1492524, bmo#1481844) Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3- Update _constraints for armv6/7- Add patch to fix build on armv7: * mozilla-bmo1463035.patch- Add memory-constraints to avoid OOM errors- provide / obsolete MozillaThunderbird-devel as this is no longer shipped to allow migration scenarios- update to Thunderbird 60.2.1: * Calendar: Default values for the first day of the week and working days are now derived from the selected datetime formatting locale * Calendar: Switch to a Photon-style icon set for all platforms * Fix multiple requests for master password when Google Mail or Calendar OAuth2 is enabled * Fix scrollbar of the address entry auto-complete popup * Fix security info dialog in compose window not showing certificate status * Fix links in the Add-on Manager's search results and theme browsing tabs that opened in external browser * Fix localization not showing the localized name for the "Drafts" and "Sent" folders for certain IMAP providers * Fix replying to a message with an empty subject which inserted Re: twice * Fix spellcheck marks disappeaing erroneously for words with an apostrophe * Calendar: First day of the week can now be set * Calendar: Several fixes related to cutting/deleting of events and email schedulin * Fix date display issues (bsc#1109379) * Fix start-up crash due to folder name with special characters (bsc#1107772) - Security fixes for the Mozilla platform picked up from 60.1 and 60.2 (Firefox ESR releases). In general, these flaws cannot be exploited through email in Thunderbird because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts (MFSA 2018-25): * CVE-2018-12377 (bsc#1107343, bmo#1470260) Use-after-free in refresh driver timers * CVE-2018-12378 (bsc#1107343, bmo#1459383) Use-after-free in IndexedDB * CVE-2017-16541 (bsc#1066489, bmo#1412081) Proxy bypass using automount and autofs * CVE-2018-12376 (bmo#69309,bmo#69914,bmo#50989,bmo#80092, bmo#80517,bmo#81093,bmo#78575,bmo#71953,bmo#73161,bmo#66991, bmo#68738,bmo#83120,bmo#67363,bmo#72925,bmo#66577,bmo#67889, bmo#80521,bsc#1107343) Memory safety bugs fixed in Firefox 62 and Firefox ESR 60.2 * CVE-2018-12385 (bsc#1109363, bmo#1490585) Crash in TransportSecurityInfo due to cached data * CVE-2018-12383 (bsc#1107343, bmo#1475775) Setting a master password did not delete unencrypted previously stored passwords- Update file list since minidump-analyzer is only available when crashreporter is enabled- remove non-free untar licenced code from distributed tarball- Add conditional for pkgconfig(gconf-2.0) BuildRequires, and pass conditional --disable-gconf to configure: no longer pull in obsolete gconf2 for Tumbleweed.- update to Thunderbird 60.0: https://www.thunderbird.net/en-US/thunderbird/60.0/releasenotes/ * Improved message handling and composing * Improved handling of message templates * Support for OAuth2 and FIDO U2F * Various Calendar improvements * Various fixes and changes to e-mail workflow * Various IMAP fixes * Native desktop notifications - Security fixes which can not, in general, be exploited through email, but are potential risks in browser or browser-like contexts: MFSA 2018-19 (bsc#1098998) * CVE-2018-12359 (bmo#1459162) Buffer overflow using computed size of canvas element * CVE-2018-12360 (bmo#1459693) Use-after-free when using focus() * CVE-2018-12361 (bmo#1463244) Integer overflow in SwizzleData * CVE-2018-12362 (bmo#1452375) Integer overflow in SSSE3 scaler * CVE-2018-5156 (bmo#1453127) Media recorder segmentation fault when track type is changed during capture * CVE-2018-12363 (bmo#1464784) Use-after-free when appending DOM nodes * CVE-2018-12364 (bmo#1436241) CSRF attacks through 307 redirects and NPAPI plugins * CVE-2018-12365 (bmo#1459206) Compromised IPC child process can list local filenames * CVE-2018-12371 (bmo#1465686) Integer overflow in Skia library during edge builder allocation * CVE-2018-12366 (bmo#1464039) Invalid data handling during QCMS transformations * CVE-2018-12367 (bmo#1462891) Timing attack mitigation of PerformanceNavigationTiming * CVE-2018-5187 (bmo#1461324,bmo#1414829,bmo#1395246,bmo#1467938, bmo#1461619,bmo#1425930,bmo#1438556,bmo#1454285,bmo#1459568, bmo#1463884) Memory safety bugs fixed in Firefox 61, Firefox ESR 60.1, and Thunderbird 60 * CVE-2018-5188 (bmo#1456189,bmo#1456975,bmo#1465898,bmo#1392739, bmo#1451297,bmo#1464063,bmo#1437842,bmo#1442722,bmo#1452576, bmo#1450688,bmo#1458264,bmo#1458270,bmo#1465108,bmo#1464829, bmo#1464079,bmo#1463494,bmo#1458048) Memory safety bugs fixed in Firefox 61, Firefox ESR 60.1, Firefox ESR 52.9, and Thunderbird 60 - requires NSPR 4.19 and NSS 3.36.4 - source archives are now signed directly (removed checksum signature check) - imported patches from Firefox 60 * mozilla-bmo1375074.patch * mozilla-bmo1464766.patch * mozilla-i586-DecoderDoctorLogger.patch * mozilla-i586-domPrefs.patch - removed obsolete patches * mozilla-language.patch * tb-ssldap.patch * mozilla-develdirs.patch - removed -devel subpackage as old-style extensions are mainly gone - storing of remote content settings fixed (boo#1084603)- update to Thunderbird 52.9.1 * Deleting or detaching attachments corrupted messages under certain circumstances (bmo#1473893, bsc#1100780)- update to Thunderbird 52.9.0: MFSA 2018-16 (bsc#1098998) * CVE-2018-12359 (bmo#1459162) Buffer overflow using computed size of canvas element * CVE-2018-12360 (bmo#1459693) Use-after-free when using focus() * CVE-2018-12372 (bmo#1419417, bsc#1100082) S/MIME and PGP decryption oracles can be built with HTML emails * CVE-2018-12373 (bmo#1464667, bmo#1464056, bsc#1100079) S/MIME plaintext can be leaked through HTML reply/forward * CVE-2018-12362 (bmo#1452375) Integer overflow in SSSE3 scaler * CVE-2018-12363 (bmo#1464784) Use-after-free when appending DOM nodes * CVE-2018-12364 (bmo#1436241) CSRF attacks through 307 redirects and NPAPI plugins * CVE-2018-12365 (bmo#1459206) Compromised IPC child process can list local filenames * CVE-2018-12366 (bmo#1464039) Invalid data handling during QCMS transformations * CVE-2018-12374 (bmo#1462910, bsc#1100081) Using form to exfiltrate encrypted mail part by pressing enter in form field * CVE-2018-5188 (bmo#1456189,bmo#1456975,bmo#1465898,bmo#1392739, bmo#1451297,bmo#1464063,bmo#1437842,bmo#1442722,bmo#1452576, bmo#1450688,bmo#1458264,bmo#1458270,bmo#1465108,bmo#1464829, bmo#1464079,bmo#1463494,bmo#1458048) Memory safety bugs fixed in Firefox 60, Firefox ESR 60.1, and Firefox ESR 52.9 * Thunderbird will now prompt to compact IMAP folders even if the account is online * Option for not decrypting subordinate message parts that otherwise might reveal decryted content to the attacker. Preference mailnews.p7m_subparts_external needs to be set to true for added security. * Fix various problems when forwarding messages inline when using "simple" HTML view - correct requires and provides handling (boo#1076907) - reduce memory footprint with %ix86 at linking time via additional compiler flags (boo#1091376)- Build from upstream source archive and verify source signature (boo#1085780)- update to Thunderbird 52.8 (bsc#1092548) MFSA 2018-13 * CVE-2018-5183 (bmo#1454692) Backport critical security fixes in Skia * CVE-2018-5184 (bmo#1411592, bsc#1093152) Full plaintext recovery in S/MIME via chosen-ciphertext attack * CVE-2018-5154 (bmo#1443092) Use-after-free with SVG animations and clip paths * CVE-2018-5155 (bmo#1448774) Use-after-free with SVG animations and text paths * CVE-2018-5159 (bmo#1441941) Integer overflow and out-of-bounds write in Skia * CVE-2018-5161 (bmo#1411720) Hang via malformed headers * CVE-2018-5162 (bmo#1457721, bsc#1093152) Encrypted mail leaks plaintext through src attribute * CVE-2018-5170 (bmo#1411732) Filename spoofing for external attachments * CVE-2018-5168 (bmo#1449548) Lightweight themes can be installed without user interaction * CVE-2018-5174 (bmo#1447080) (Windows only) Windows Defender SmartScreen UI runs with less secure behavior for downloaded files in Windows 10 April 2018 Update * CVE-2018-5178 (bmo#1443891) Buffer overflow during UTF-8 to Unicode string conversion through legacy extension * CVE-2018-5185 (bmo#1450345) Leaking plaintext through HTML forms * CVE-2018-5150 (bmo#1388020,bmo#1433609,bmo#1409440,bmo#1448705, bmo#1451376,bmo#1452202,bmo#1444668,bmo#1393367,bmo#1411415, bmo#1426129) Memory safety bugs fixed in Firefox 60, Firefox ESR 52.8 and Thunderbird 52.8- Exclude bigendian archs for now, have not built since version 45.8.0 ExcludeArch: ppc ppc64 s390 s390x- update to Thunderbird 52.7 * Searching message bodies of messages in local folders, including filter and quick filter operations, did not find content in message attachments * Better error handling for Yahoo accounts - The following security fixes are included as part of the mozilla platform. In general, these flaws cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts (MFSA 2018-09, bsc#1085130, bsc#1085671): * CVE-2018-5127 (bmo#1430557) Buffer overflow manipulating SVG animatedPathSegList * CVE-2018-5129 (bmo#1428947) Out-of-bounds write with malformed IPC messages * CVE-2018-5144 (bmo#1440926) Integer overflow during Unicode conversion * CVE-2018-5146 (bmo#1446062) Out of bounds memory write in libvorbis * CVE-2018-5125 (bmo1416529,bmo#1434580,bmo#1434384,bmo#1437450, bmo#1437507,bmo#1426988,bmo#1438425,bmo#1324042,bmo#1437087, bmo#1443865,bmo#1425520) Memory safety bugs fixed in Firefox 59, Firefox ESR 52.7, and Thunderbird 52.7 * CVE-2018-5145 (bmo#1261175,bmo#1348955) Memory safety bugs fixed in Firefox ESR 52.7 and Thunderbird 52.7- update to Thunderbird 52.6 (bsc#1077291) * Searching message bodies of messages in local folders, including filter and quick filter operations, not working reliably: Content not found in base64-encode message parts, non-ASCII text not found and false positives found. * Defective messages (without at least one expected header) not shown in IMAP folders but shown on mobile devices * Calendar: Unintended task deletion if numlock is enabled * Mozilla platform security fixes MFSA 2018-04 * CVE-2018-5095 (bmo#1418447) Integer overflow in Skia library during edge builder allocation * CVE-2018-5096 (bmo#1418922) Use-after-free while editing form elements * CVE-2018-5097 (bmo#1387427) Use-after-free when source document is manipulated during XSLT * CVE-2018-5098 (bmo#1399400) Use-after-free while manipulating form input elements * CVE-2018-5099 (bmo#1416878) Use-after-free with widget listener * CVE-2018-5102 (bmo#1419363) Use-after-free in HTML media elements * CVE-2018-5103 (bmo#1423159) Use-after-free during mouse event handling * CVE-2018-5104 (bmo#1425000) Use-after-free during font face manipulation * CVE-2018-5117 (bmo#1395508) URL spoofing with right-to-left text aligned left-to-right * CVE-2018-5089 Memory safety bugs fixed in Firefox 58 and Firefox ESR 52.6 - dropped obsolete mozilla-ucontext.patch- update to Thunderbird 52.5.2 * This releases fixes the "Mailsploit" vulnerability and other vulnerabilities detected by the "Cure53" audit MFSA 2017-30 * CVE-2017-7845 (bmo#1402372) Buffer overflow when drawing and validating elements with ANGLE library using Direct 3D 9 * CVE-2017-7846 (bmo#1411716, bsc#1074043) JavaScript Execution via RSS in mailbox:// origin * CVE-2017-7847 (bmo#1411708, bsc#1074044) Local path string can be leaked from RSS feed * CVE-2017-7848 (bmo#1411699, bsc#1074045) RSS Feed vulnerable to new line Injection * CVE-2017-7829 (bmo#1423432, bsc#1074046) Mailsploit part 1: From address with encoded null character is cut off in message header display- Explicitly buildrequires python2-xml: The build system relies on it. We wrongly relied on other packages pulling it in for us.- Escape the usage of %{VERSION} when calling out to rpm. RPM 4.14 has %{VERSION} defined as 'the main packages version'.- update to Thunderbird 52.5.0 (bsc#1068101) * Better support for Charter/Spectrum IMAP: Thunderbird will now detect Charter's IMAP service and send an additional IMAP select command to the server. Check the various preferences ending in "force_select" to see whether auto-detection has discovered this case. * In search folders spanning multiple base folders clicking on a message sometimes marked another message as read * IMAP alerts have been corrected and now show the correct server name in case of connection problems * POP alerts have been corrected and now indicate connection problems in case the configured POP server cannot be found MFSA 2017-26 * CVE-2017-7828 (bmo#1406750. bmo#1412252) Use-after-free of PressShell while restyling layout * CVE-2017-7830 (bmo#1408990) Cross-origin URL information leak through Resource Timing API * CVE-2017-7826 Memory safety bugs fixed in Firefox 57 and Firefox ESR 52.5- Drop obsolete libgnomeui-devel BuildRequires: No longer needed. - Add explicit pkgconfig(gconf-2.0), pkgconfig(gobject-2.0), pkgconfig(gtk+-2.0), pkgconfig(gtk+-unix-print-2.0), pkgconfig(glib-2.0), pkgconfig(gobject-2.0) and pkgconfig(gdk-x11-2.0) BuildRequires: Previously pulled in by libgnomeui-devel, and is what configure really checks for.- Mozilla Thunderbird 52.4.0 (bsc#1060445) * new behavior was introduced for replies to mailing list posts: "When replying to a mailing list, reply will be sent to address in From header ignoring Reply-to header". A new preference mail.override_list_reply_to allows to restore the previous behavior. * Under certain circumstances (image attachment and non-image attachment), attached images were shown truncated in messages stored in IMAP folders not synchronised for offline use. * IMAP UIDs > 0x7FFFFFFF now handled properly Security fixes from Gecko 52.4esr * CVE-2017-7793 (bmo#1371889) Use-after-free with Fetch API * CVE-2017-7818 (bmo#1363723) Use-after-free during ARIA array manipulation * CVE-2017-7819 (bmo#1380292) Use-after-free while resizing images in design mode * CVE-2017-7824 (bmo#1398381) Buffer overflow when drawing and validating elements with ANGLE * CVE-2017-7805 (bmo#1377618) (fixed via NSS requirement) Use-after-free in TLS 1.2 generating handshake hashes * CVE-2017-7814 (bmo#1376036) Blob and data URLs bypass phishing and malware protection warnings * CVE-2017-7825 (bmo#1393624, bmo#1390980) (OSX-only) OS X fonts render some Tibetan and Arabic unicode characters as spaces * CVE-2017-7823 (bmo#1396320) CSP sandbox directive did not create a unique origin * CVE-2017-7810 Memory safety bugs fixed in Firefox 56 and Firefox ESR 52.4- Add alsa-devel BuildRequires: we care for ALSA support to be built and thus need to ensure we get the dependencies in place. In the past, alsa-devel was pulled in by accident: we buildrequire libgnome-devel. This required esound-devel and that in turn pulled in alsa-devel for us. libgnome is being fixed to no longer require esound-devel.- update to Thunderbird 52.3 (boo#1052829) Fixed issues: * Unwanted inline images shown in rogue SPAM messages * Deleting message from the POP3 server not working when maildir storage was used * Message disposition flag (replied / forwarded) lost when reply or forwarded message was stored as draft and draft was sent later * Inline images not scaled to fit when printing * Selected text from another message sometimes included in a reply * No authorisation prompt displayed when inserting image into email body although image URL requires authentication * Large attachments taking a long time to open under some circumstances security Security fixes from Gecko 52.3esr * CVE-2017-7798 (bmo#1371586, bmo#1372112) XUL injection in the style editor in devtools * CVE-2017-7800 (bmo#1374047) Use-after-free in WebSockets during disconnection * CVE-2017-7801 (bmo#1371259) Use-after-free with marquee during window resizing * CVE-2017-7784 (bmo#1376087) Use-after-free with image observers * CVE-2017-7802 (bmo#1378147) Use-after-free resizing image elements * CVE-2017-7785 (bmo#1356985) Buffer overflow manipulating ARIA attributes in DOM * CVE-2017-7786 (bmo#1365189) Buffer overflow while painting non-displayable SVG * CVE-2017-7753 (bmo#1353312) Out-of-bounds read with cached style data and pseudo-elements# * CVE-2017-7787 (bmo#1322896) Same-origin policy bypass with iframes through page reloads * CVE-2017-7807 (bmo#1376459) Domain hijacking through AppCache fallback * CVE-2017-7792 (bmo#1368652) Buffer overflow viewing certificates with an extremely long OID * CVE-2017-7804 (bmo#1372849) Memory protection bypass through WindowsDllDetourPatcher * CVE-2017-7791 (bmo#1365875) Spoofing following page navigation with data: protocol and modal alerts * CVE-2017-7782 (bmo#1344034) WindowsDllDetourPatcher allocates memory without DEP protections * CVE-2017-7803 (bmo#1377426) CSP containing 'sandbox' improperly applied * CVE-2017-7779 Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3- mozilla-ucontext.patch: use ucontext_t instead of struct ucontext- mozilla-disable-neon-option.patch has been dropped silently, so remove the --disable-neon option as it is not available anymore.- update to Thunderbird 52.2.1 * Problems with Gmail fixed (folders not showing, repeated email download, etc.) introduced in version 52.2.0. (boo#1045895)- update to Thunderbird 52.2 (boo#1043960) * Embedded images not shown in email received from Hotmail/Outlook webmailer * Detection of non-ASCII font names in font selector * Attachment not forwarded correctly under certain circumstances * Multiple requests for master password when GMail OAuth2 is enabled * Large number of blank pages being printed under certain circumstances when invalid preferences were present * Messages sent via the Simple MAPI interface are forced to HTML * Calendar: Invitations can't be printed * Mailing list (group) not accessible from macOS or Outlook address book * Clicking on links with references/anchors where target doesn't exist in the message not opening in external browser MFSA 2017-17 * CVE-2017-5472 (bmo#1365602) Use-after-free using destroyed node when regenerating trees * CVE-2017-7749 (bmo#1355039) Use-after-free during docshell reloading * CVE-2017-7750 (bmo#1356558) Use-after-free with track elements * CVE-2017-7751 (bmo#1363396) Use-after-free with content viewer listeners * CVE-2017-7752 (bmo#1359547) Use-after-free with IME input * CVE-2017-7754 (bmo#1357090) Out-of-bounds read in WebGL with ImageInfo object * CVE-2017-7756 (bmo#1366595) Use-after-free and use-after-scope logging XHR header errors * CVE-2017-7757 (bmo#1356824) Use-after-free in IndexedDB * CVE-2017-7778, CVE-2017-7778, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777 Vulnerabilities in the Graphite 2 library * CVE-2017-7758 (bmo#1368490) Out-of-bounds read in Opus encoder * CVE-2017-7763 (bmo#1360309) Mac fonts render some unicode characters as spaces (MacOS only) * CVE-2017-7764 (bmo#1364283) Domain spoofing with combination of Canadian Syllabics and other unicode blocks * CVE-2017-7765 (bmo#1273265) Mark of the Web bypass when saving executable files (Windows only) * CVE-2017-5470 Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2 - requires NSS 3.28.5- remove legacy -Os optimization breaking gcc7/i586 (boo#1042090)- explicitely optimize with -O2 for openSUSE > 13.2/Leap 42 to work with gcc7 (boo#1040105, boo#1042090)- update to Thunderbird 52.1.1 * fixed crash when compacting IMAP folder (boo#1038753) * Some attachments could not be opened or saved if the message body is empty * Unable to load full message via POP if message was downloaded partially (or only headers) before * Large attachments may not be shown or saved correctly if the message is stored in an IMAP folder which is not synchronized for offline use- update to Thunderbird 52.1.0 * Background images not working and other issues related to embedded images when composing email have been fixed * Google Oauth setup can sometimes not progress to the next step * requires NSS >= 3.28.4 - security fixes (boo#1035082), MFSA 2017-13 * CVE-2017-5443 (bmo#1342661) Out-of-bounds write during BinHex decoding * CVE-2017-5429 (bmo#1341096, bmo#1342823, bmo#1343261, bmo#1348894, bmo#1348941, bmo#1349340, bmo#1350844, bmo#1352926, bmo#1353088) Memory safety bugs fixed in Firefox 53, Firefox ESR 45.9, and Firefox ESR 52.1 * CVE-2017-5464 (bmo#1347075) Memory corruption with accessibility and DOM manipulation * CVE-2017-5465 (bmo#1347617) Out-of-bounds read in ConvolvePixel * CVE-2017-5466 (bmo#1353975) Origin confusion when reloading isolated data:text/html URL * CVE-2017-5467 (bmo#1347262) Memory corruption when drawing Skia content * CVE-2017-5460 (bmo#1343642) Use-after-free in frame selection * CVE-2017-5461 (bmo#1344380) Out-of-bounds write in Base64 encoding in NSS * CVE-2017-5449 (bmo#1340127) Crash during bidirectional unicode manipulation with animation * CVE-2017-5446 (bmo#1343505) Out-of-bounds read when HTTP/2 DATA frames are sent with incorrect data * CVE-2017-5447 (bmo#1343552) Out-of-bounds read during glyph processing * CVE-2017-5444 (bmo#1344461) Buffer overflow while parsing application/http-index-format content * CVE-2017-5445 (bmo#1344467) Uninitialized values used while parsing application/http-index-format content * CVE-2017-5442 (bmo#1347979) Use-after-free during style changes * CVE-2017-5469 (bmo#1292534) Potential Buffer overflow in flex-generated code * CVE-2017-5440 (bmo#1336832) Use-after-free in txExecutionState destructor during XSLT processing * CVE-2017-5441 (bmo#1343795) Use-after-free with selection during scroll events * CVE-2017-5439 (bmo#1336830) Use-after-free in nsTArray Length() during XSLT processing * CVE-2017-5438 (bmo#1336828) Use-after-free in nsAutoPtr during XSLT processing * CVE-2017-5437 (bmo#1343453) Vulnerabilities in Libevent library * CVE-2017-5436 (bmo#1345461) Out-of-bounds write with malicious font in Graphite 2 * CVE-2017-5435 (bmo#1350683) Use-after-free during transaction processing in the editor * CVE-2017-5434 (bmo#1349946) Use-after-free during focus handling * CVE-2017-5433 (bmo#1347168) Use-after-free in SMIL animation functions * CVE-2017-5432 (bmo#1346654) Use-after-free in text input selection * CVE-2017-5430 (bmo#1329796, bmo#1337418, bmo#1339722, bmo#1340482, bmo#1342101, bmo#1344081, bmo#1344305, bmo#1344686, bmo#1346140, bmo#1346419, bmo#1348143, bmo#1349621, bmo#1349719, bmo#1353476) Memory safety bugs fixed in Firefox 53 and Firefox ESR 52.1 * CVE-2017-5459 (bmo#1333858) Buffer overflow in WebGL * CVE-2017-5462 (bmo#1345089) DRBG flaw in NSS * CVE-2017-5454 (bmo#1349276) Sandbox escape allowing file system read access through file picker * CVE-2017-5451 (bmo#1273537) Addressbar spoofing with onblur event- update to Thunderbird 52.0.1 * Clicking on a link in an email may not open this link in the external browser * addon blocklist updates - enable ALSA for systems w/o PA - require libffi explicitely to fix PPC64LE build where a system library is required- update to Thunderbird 52.0 * Optionally remove corresponding data files when removing an account * Possibility to copy message filter * Calendar: Event can now be created and edited in a tab * Calendar: Processing of received invitation counter proposals * Chat: Support Twitter Direct Messages * Chat: Liking and favoriting in Twitter * Chat: Removed Yahoo! Messenger support * serveral bugfixes - security fixes (bsc#1028391, MFSA 2017-09): In general, these flaws cannot be exploited through email because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts. * CVE-2017-5400: asm.js JIT-spray bypass of ASLR and DEP (bmo#1334933) * CVE-2017-5401: Memory Corruption when handling ErrorResult (bmo#1328861) * CVE-2017-5402: Use-after-free working with events in FontFace objects (bmo#1334876) * CVE-2017-5403: Use-after-free using addRange to add range to an incorrect root object (bmo#1340186) * CVE-2017-5404: Use-after-free working with ranges in selections (bmo#1340138) * CVE-2017-5406: Segmentation fault in Skia with canvas operations (bmo#1306890) * CVE-2017-5407: Pixel and history stealing via floating-point timing side channel with SVG filters (bmo#1336622) * CVE-2017-5410: Memory corruption during JavaScript garbage collection incremental sweeping (bmo#1330687) * CVE-2017-5408: Cross-origin reading of video captions in violation of CORS (bmo#1313711) * CVE-2017-5412: Buffer overflow read in SVG filters (bmo#1328323) * CVE-2017-5413: Segmentation fault during bidirectional operations (bmo#1337504) * CVE-2017-5414: File picker can choose incorrect default directory (bmo#1319370) * CVE-2017-5416: Null dereference crash in HttpChannel (bmo#1328121) * CVE-2017-5426: Gecko Media Plugin sandbox is not started if seccomp-bpf filter is running (bmo#1257361) * CVE-2017-5418: Out of bounds read when parsing HTTP digest authorization responses (bmo#1338876) * CVE-2017-5419: Repeated authentication prompts lead to DOS attack (bmo#1312243) * CVE-2017-5405: FTP response codes can cause use of uninitialized values for ports (bmo#1336699) * CVE-2017-5421: Print preview spoofing (bmo#1301876) * CVE-2017-5422: DOS attack by using view-source: protocol repeatedly in one hyperlink (bmo#1295002) * CVE-2017-5399: Memory safety bugs fixed in Thunderbird 52 * CVE-2017-5398: Memory safety bugs fixed in Thunderbird 52 and Thunderbird 45.8 - removed obsolete patches * mozilla-aarch64-48bit-va.patch * mozilla-binutils-visibility.patch * mozilla-flex_buffer_overrun.patch * mozilla-gcc6.patch - added generic mozilla patches * mozilla-aarch64-startup-crash.patch - require newer versions of NSPR and NSS - use Gtk3 for Tumbleweed- update to Thunderbird 45.8.0 (boo#1028391) * MFSA 2017-07 CVE-2017-5400: asm.js JIT-spray bypass of ASLR and DEP (bmo#1334933) CVE-2017-5401: Memory Corruption when handling ErrorResult (bmo#1328861) CVE-2017-5402: Use-after-free working with events in FontFace objects (bmo#1334876) CVE-2017-5404: Use-after-free working with ranges in selections (bmo#1340138) CVE-2017-5407: Pixel and history stealing via floating-point timing side channel with SVG filters (bmo#1336622) CVE-2017-5410: Memory corruption during JavaScript garbage collection incremental sweeping (bmo#1330687) CVE-2017-5408: Cross-origin reading of video captions in violation of CORS (bmo#1313711) CVE-2017-5405: FTP response codes can cause use of uninitialized values for ports (bmo#1336699) CVE-2017-5398: Memory safety bugs fixed in Firefox 52 and Firefox ESR 45.8- update to Thunderbird 45.7.1 * fixed Crash when viewing certain IMAP messages (introduced in 45.7.0)- update to Thunderbird 45.7.0 * Message preview pane non-functional after IMAP folder was renamed or moved * "Move To" button on "Search Messages" panel not working * Message sent to "undisclosed recipients" shows no recipient (non-functional since Thunderbird version 38) * Security updates from MFSA 2017-03 (Gecko 45.7.0) boo#1021991. In general, these flaws cannot be exploited through email in Thunderbird because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts: CVE-2017-5375: Excessive JIT code allocation allows bypass of ASLR and DEP (bmo#1325200, boo#1021814) CVE-2017-5376: Use-after-free in XSL (bmo#1311687, boo#1021817) CVE-2017-5378: Pointer and frame data leakage of Javascript objects (bmo#1312001, bmo#1330769, boo#1021818) CVE-2017-5380: Potential use-after-free during DOM manipulations (bmo#1322107, boo#1021819) CVE-2017-5390: Insecure communication methods in Developer Tools JSON viewer (bmo#1297361, boo#1021820) CVE-2017-5396: Use-after-free with Media Decoder (bmo#1329403, boo#1021821) CVE-2017-5383: Location bar spoofing with unicode characters (bmo#1323338, bmo#1324716, boo#1021822) CVE-2017-5373: Memory safety bugs fixed in Thunderbird 45.7 (boo#1021824)- update to Thunderbird 45.6.0 (boo#1015422) * The system integration dialog was shown every time when starting Thunderbird * MFSA 2016-96 CVE-2016-9899: Use-after-free while manipulating DOM events and audio elements (bmo#1317409) CVE-2016-9895: CSP bypass using marquee tag (bmo#1312272) CVE-2016-9897: Memory corruption in libGLES (bmo#1301381) CVE-2016-9898: Use-after-free in Editor while manipulating DOM subtrees (bmo#1314442) CVE-2016-9900: Restricted external resources can be loaded by SVG images through data URLs (bmo#1319122) CVE-2016-9904: Cross-origin information leak in shared atoms (bmo#1317936) CVE-2016-9905: Crash in EnumerateSubDocuments (bmo#1293985) CVE-2016-9893: Memory safety bugs fixed in Thunderbird 45.6- Mozilla Thunderbird 45.5.1: * CVE-2016-9079: SVG Animation Remote Code Execution (MFSA 2016-92, bsc#1012964, bmo#1321066)- Mozilla Thunderbird 45.5.0 (boo#1009026) * Fixes for security flaws that cannot be exploited through email because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts: CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1 (bsc#1010411) CVE-2016-5297: Incorrect argument length checking in Javascript (bsc#1010401) CVE-2016-9066: Integer overflow leading to a buffer overflow in nsScriptLoadHandler (bsc#1010404) CVE-2016-5291: Same-origin policy violation using local HTML file and saved shortcut file (bsc#1010410) CVE-2016-5290: Memory safety bugs fixed in Thunderbird ESR 45.5 (bsc#1010427) - Changed behavior: * Changed recipient address entry: Arrow-keys now copy the pop-up value to the input field. Mouse-hovered pop-up value can no longer be confirmed with tab or enter key. This restores the behavior of Thunderbird 24. * Support changes to character limit in Twitter - Bugs fixed: * Reply with selected text containing quote resulted in wrong quoting level indication * Email invitation might not be displayed when description contains non-ASCII characters * Attempting to sort messages on the Date field whilst a quick filter is applied got stuck on sort descending * Mail address display at header pane displayed incorrectly if the address contains UTF-8 according to RFC 6532- update to Thunderbird 45.4.0 (boo#999701) * Display name was truncated if no separating space before email address. * Recipient addresses were shown in wrong color in some circumstances. * Additional spaces were inserted when drafts were edited. * Mail saved as template copied In-Reply-To and References from original email. * Threading broken when editing message draft, due to loss of Message-ID * "Apply columns to..." did not honor special folders- update to Thunderbird 45.3.0 (boo#991809) * Disposition-Notification-To could not be used in mail.compose.other.header * "edit as new message" on a received message pre-filled the sender as the composing identity. * Certain messages caused corruption of the drafts summary database. security fixes: * MFSA 2016-62/CVE-2016-2836 Miscellaneous memory safety hazards * MFSA 2016-63/CVE-2016-2830 (bmo#1255270) Favicon network connection can persist when page is closed * MFSA 2016-64/CVE-2016-2838 (bmo#1279814) Buffer overflow rendering SVG with bidirectional content * MFSA 2016-65/CVE-2016-2839 (bmo#1275339) Cairo rendering crash due to memory allocation issue with FFmpeg 0.10 * MFSA 2016-67/CVE-2016-5252 (bmo#1268854) Stack underflow during 2D graphics rendering * MFSA 2016-70/CVE-2016-5254 (bmo#1266963) Use-after-free when using alt key and toplevel menus * MFSA 2016-72/CVE-2016-5258 (bmo#1279146) Use-after-free in DTLS during WebRTC session shutdown * MFSA 2016-73/CVE-2016-5259 (bmo#1282992) Use-after-free in service workers with nested sync events * MFSA 2016-76/CVE-2016-5262 (bmo#1277475) Scripts on marquee tag can execute in sandboxed iframes * MFSA 2016-77/CVE-2016-2837 (bmo#1274637) Buffer overflow in ClearKey Content Decryption Module (CDM) during video playback * MFSA 2016-78/CVE-2016-5263 (bmo#1276897) Type confusion in display transformation * MFSA 2016-79/CVE-2016-5264 (bmo#1286183) Use-after-free when applying SVG effects * MFSA 2016-80/CVE-2016-5265 (bmo#1278013) Same-origin policy violation using local HTML file and saved shortcut file- Fix for possible buffer overrun (bsc#990856) CVE-2016-6354 (bmo#1292534) [mozilla-flex_buffer_overrun.patch]- add a screenshot to appdata.xml- update to Thunderbird 45.2 (boo#983549) Security fixes: * CVE-2016-2818, CVE-2016-2815: Memory safety bugs (MFSA2016-49) - drop mozilla-flexible-array-member-in-union.patch, upstream- mozilla-binutils-visibility.patch to fix build issues with gcc/binutils combination used in Leap 42.2 (boo#984637)- build with -fno-delete-null-pointer-checks for Tumbleweed/gcc6 as long as underlying issues have been addressed upstream (boo#986162)- Fix running on 48bit va aarch64 (bsc#984126) - Add patch mozilla-aarch64-48bit-va.patch- update to Thunderbird 45.1.1 * When entering members into a mailing list, the enter key dismissed the panel instead of just moving onto the next line * Email without HTML elements was sent as HTML, despite "Delivery Format: Auto-detect" option * Options applied to a template were lost when the template was used * Contacts could not be deleted when they were found through a search * Views from global searches did not respect "mail.threadpane.use_correspondents"- The conditional testing for gcc was failing for different openSUSE versions, drop it and apply patches unconditionally.- Add patches to fix building with gcc >= 6: + mozilla-gcc6.patch: patch taken from fedora's git and is essentially identical to upstream firefox patch: https://hg.mozilla.org/mozilla-central/rev/55212130f19d. + mozilla-flexible-array-member-in-union.patch: patch taken from upstream bmo#1272649.- Copy the icons to /usr/share/icons instead of symlinking them: in preparation for containerized apps (e.g. xdg-app) as well as AppStream metadata extraction, there are a couple locations that need to be real files for system integration (.desktop files, icons, mime-type info).- update to Thunderbird 45.1.0 (boo#977333) * MFSA 2016-39/CVE-2016-2806/CVE-2016-2807 (boo#977375, boo#977376) Miscellaneous memory safety hazards- For openSUSE > 13.2, the build fails for i586 as it goes out of memory. Prevent this from happening by disabing parallel build in this particular case (i.e. do not pass mk_add_options MOZ_MAKE_FLAGS%{?jobs:-j%jobs}).- update to Thunderbird 45.0 (boo#969894) * Add a Correspondents column combining Sender and Recipient * Much better support for XMPP chatrooms and commands * Remote content exceptions: Improved options to add exceptions * Implement option to always use HTML formatting to prevent unexpected format loss when converting messages to plain text * Use OpenStreetmap for maps (even allow the user to choose from list of map services) * Allow spell checking and dictionary selection in the subject line * Allow editing of From when composing a message * Add dropdown in compose to allow specific setting of font size * Return/Enter in composer will now insert a new paragraph by default (shift-Enter will insert a line break) * Allow copying of name and email address from the message header of an email * Mail.ru supports OAuth authentication * MFSA 2016-16/CVE-2016-1952/CVE-2016-1953 Miscellaneous memory safety hazards * MFSA 2016-17/CVE-2016-1954 (bmo#1243178) Local file overwriting and potential privilege escalation through CSP reports * MFSA 2016-18/CVE-2016-1955 (bmo#1208946) CSP reports fail to strip location information for embedded iframe pages * MFSA 2016-19/CVE-2016-1956 (bmo#1199923) Linux video memory DOS with Intel drivers * MFSA 2016-20/CVE-2016-1957 (bmo#1227052) Memory leak in libstagefright when deleting an array during MP4 processing * MFSA 2016-23/CVE-2016-1960/ZDI-CAN-3545 (bmo#1246014) Use-after-free in HTML5 string parser * MFSA 2016-24/CVE-2016-1961/ZDI-CAN-3574 (bmo#1249377) Use-after-free in SetBody * MFSA 2016-27/CVE-2016-1964 (bmo#1243335) Use-after-free during XML transformations * MFSA 2016-34/CVE-2016-1974 (bmo#1228103) Out-of-bounds read in HTML parser following a failed allocation * MFSA 2016-35/CVE-2016-1950 (bmo#1245528) Buffer overflow during ASN.1 decoding in NSS (fixed by requiring 3.21.1) * MFSA 2016-36/CVE-2016-1979 (bmo#1185033) Use-after-free during processing of DER encoded keys in NSS (fixed by requiring 3.21.1) * MFSA 2016-37/CVE-2016-1977/CVE-2016-2790/CVE-2016-2791/ CVE-2016-2792/CVE-2016-2793/CVE-2016-2794/CVE-2016-2795/ CVE-2016-2796/CVE-2016-2797/CVE-2016-2798/CVE-2016-2799/ CVE-2016-2800/CVE-2016-2801/CVE-2016-2802 Font vulnerabilities in the Graphite 2 library - remove obsolete patches: * mozilla-arm-disable-edsp.patch * mozilla-icu-strncat.patch * mozilla-arm64-libjpeg-turbo.patch - added required mozilla platform patches: * mozilla-no-stdcxx-check.patch- update to Thunderbird 38.7.2 * disable Graphite font shaping library (same upstream changelog as 38.7.1)- update to Thunderbird 38.7.1 * disabled Graphite font shaping library- update to Thunderbird 38.7.0 (boo#969894) * MFSA 2015-81/CVE-2015-4477 (bmo#1179484) Use-after-free in MediaStream playback * MFSA 2015-136/CVE-2015-7207 (bmo#1185256) Same-origin policy violation using performance.getEntries and history navigation * MFSA 2016-16/CVE-2016-1952 Miscellaneous memory safety hazards * MFSA 2016-17/CVE-2016-1954 (bmo#1243178) Local file overwriting and potential privilege escalation through CSP reports * MFSA 2016-20/CVE-2016-1957 (bmo#1227052) Memory leak in libstagefright when deleting an array during MP4 processing * MFSA 2016-21/CVE-2016-1958 (bmo#1228754) Displayed page address can be overridden * MFSA 2016-23/CVE-2016-1960/ZDI-CAN-3545 (bmo#1246014) Use-after-free in HTML5 string parser * MFSA 2016-24/CVE-2016-1961/ZDI-CAN-3574 (bmo#1249377) Use-after-free in SetBody * MFSA 2016-25/CVE-2016-1962 (bmo#1240760) Use-after-free when using multiple WebRTC data channels * MFSA 2016-27/CVE-2016-1964 (bmo#1243335) Use-after-free during XML transformations * MFSA 2016-28/CVE-2016-1965 (bmo#1245264) Addressbar spoofing though history navigation and Location protocol property * MFSA 2016-31/CVE-2016-1966 (bmo#1246054) Memory corruption with malicious NPAPI plugin * MFSA 2016-34/CVE-2016-1974 (bmo#1228103) Out-of-bounds read in HTML parser following a failed allocation * MFSA 2016-37/CVE-2016-1977/CVE-2016-2790/CVE-2016-2791/ CVE-2016-2792/CVE-2016-2793/CVE-2016-2794/CVE-2016-2795/ CVE-2016-2796/CVE-2016-2797/CVE-2016-2798/CVE-2016-2799/ CVE-2016-2800/CVE-2016-2801/CVE-2016-2802 Font vulnerabilities in the Graphite 2 library- adjust _constraints to current peak build memory and disk usage- update to Thunderbird 38.6.0 (boo#963520) * Filters ran on a different folder than selected * MFSA 2016-01/CVE-2016-1930 Miscellaneous memory safety hazards * MFSA 2016-03/CVE-2016-1935 (bmo#1220450) Buffer overflow in WebGL after out of memory allocation- Using -g for CFLAGS is controlled via project settings, it should not be enforced by the mozilla buildsystem.- Add build conditionals for valgrind and -Os - Convert existing conditions for kde to bcond- update to Thunderbird 38.5.1 * requires NSS 3.20.2 to fix MFSA 2015-150/CVE-2015-7575 (bmo#1158489) MD5 signatures accepted within TLS 1.2 ServerKeyExchange in server signature - explicitely require libXcomposite-devel- update to Thunderbird 38.5.0 (bnc#959277) * MFSA 2015-134/CVE-2015-7201 Miscellaneous memory safety hazards * MFSA 2015-138/CVE-2015-7210 (bmo#1218326) Use-after-free in WebRTC when datachannel is used after being destroyed * MFSA 2015-139/CVE-2015-7212 (bmo#1222809) Integer overflow allocating extremely large textures * MFSA 2015-145/CVE-2015-7205 (bmo#1220493) Underflow through code inspection * MFSA 2015-146/CVE-2015-7213 (bmo#1206211) Integer overflow in MP4 playback in 64-bit versions * MFSA 2015-147/CVE-2015-7222 (bmo#1216748) Integer underflow and buffer overflow processing MP4 metadata in libstagefright * MFSA 2015-149/CVE-2015-7214 (bmo#1228950) Cross-site reading attack through data and view-source URIs- update to Thunderbird 38.4.0 (bnc#952810) * MFSA 2015-116/CVE-2015-4513/CVE-2015-4514 Miscellaneous memory safety hazards * MFSA 2015-122/CVE-2015-7188 (bmo#1199430) Trailing whitespace in IP address hostnames can bypass same-origin policy * MFSA 2015-123/CVE-2015-7189 (bmo#1205900) Buffer overflow during image interactions in canvas * MFSA 2015-127/CVE-2015-7193 (bmo#1210302) CORS preflight is bypassed when non-standard Content-Type headers are received * MFSA 2015-128/CVE-2015-7194 (bmo#1211262) Memory corruption in libjar through zip files * MFSA 2015-130/CVE-2015-7196 (bmo#1140616) JavaScript garbage collection crash with Java applet * MFSA 2015-131/CVE-2015-7198/CVE-2015-7199/CVE-2015-7200 (bmo#1188010, bmo#1204061, bmo#1204155) Vulnerabilities found through code inspection * MFSA 2015-132/CVE-2015-7197 (bmo#1204269) Mixed content WebSocket policy bypass through workers * MFSA 2015-133/CVE-2015-7181/CVE-2015-7182/CVE-2015-7183 (bmo#1202868, bmo#1205157) NSS and NSPR memory corruption issues (fixed in mozilla-nspr and mozilla-nss packages) - requires NSPR 4.10.10 and NSS 3.19.2.1 - added explicit appdata provides (bnc#952325)- fix build on aarch64 by reusing the crashreporter conditional from MozillaFirefox- update to Thunderbird 38.3.0 (bnc#947003) * MFSA 2015-96/CVE-2015-4500 Miscellaneous memory safety hazards * MFSA 2015-100/CVE-2015-4505 (bmo#1177861) (Windows only) Arbitrary file manipulation by local user through Mozilla updater * MFSA 2015-101/CVE-2015-4506 (bmo#1192226) Buffer overflow in libvpx while parsing vp9 format video * MFSA 2015-105/CVE-2015-4511 (bmo#1200148) Buffer overflow while decoding WebM video * MFSA 2015-106/CVE-2015-4509 (bmo#1198435) Use-after-free while manipulating HTML media content * MFSA 2015-110/CVE-2015-4519 (bmo#1189814) Dragging and dropping images exposes final URL after redirects * MFSA 2015-111/CVE-2015-4520 (bmo#1200856, bmo#1200869) Errors in the handling of CORS preflight request headers * MFSA 2015-112/CVE-2015-4517/CVE-2015-4521/CVE-2015-4522/ CVE-2015-7174/CVE-2015-7175/CVE-2015-7176/CVE-2015-7177/ CVE-2015-7180 Vulnerabilities found through code inspection * MFSA 2015-113/CVE-2015-7178/CVE-2015-7179 (bmo#1189860, bmo#1190526) (Windows only) Memory safety errors in libGLES in the ANGLE graphics library - rebased patches- update to Thunderbird 38.2.0 (bnc#940806) * MFSA 2015-79/CVE-2015-4473 Miscellaneous memory safety hazards * MFSA 2015-80/CVE-2015-4475 (bmo#1175396) Out-of-bounds read with malformed MP3 file * MFSA 2015-82/CVE-2015-4478 (bmo#1105914) Redefinition of non-configurable JavaScript object properties * MFSA 2015-83/CVE-2015-4479/CVE-2015-4480/CVE-2015-4493 Overflow issues in libstagefright * MFSA 2015-84/CVE-2015-4481 (bmo1171518) Arbitrary file overwriting through Mozilla Maintenance Service with hard links (only affected Windows) * MFSA 2015-85/CVE-2015-4482 (bmo#1184500) Out-of-bounds write with Updater and malicious MAR file (does not affect openSUSE RPM packages which do not ship the updater) * MFSA 2015-87/CVE-2015-4484 (bmo#1171540) Crash when using shared memory in JavaScript * MFSA 2015-88/CVE-2015-4491 (bmo#1184009) Heap overflow in gdk-pixbuf when scaling bitmap images * MFSA 2015-89/CVE-2015-4485/CVE-2015-4486 (bmo#1177948, bmo#1178148) Buffer overflows on Libvpx when decoding WebM video * MFSA 2015-90/CVE-2015-4487/CVE-2015-4488/CVE-2015-4489 Vulnerabilities found through code inspection * MFSA 2015-92/CVE-2015-4492 (bmo#1185820) Use-after-free in XMLHttpRequest with shared workers- update to Thunderbird 38.1.0 (bnc#935979) * MFSA 2015-59/CVE-2015-2724/CVE-2015-2725 Miscellaneous memory safety hazards * MFSA 2015-60/CVE-2015-2727 (bmo#1163422) Local files or privileged URLs in pages can be opened into new tabs * MFSA 2015-61/CVE-2015-2728 (bmo#1142210) Type confusion in Indexed Database Manager * MFSA 2015-62/CVE-2015-2729 (bmo#1122218) Out-of-bound read while computing an oscillator rendering range in Web Audio * MFSA 2015-63/CVE-2015-2731 (bmo#1149891) Use-after-free in Content Policy due to microtask execution error * MFSA 2015-64/CVE-2015-2730 (bmo#1125025) ECDSA signature validation fails to handle some signatures correctly (this fix is shipped by NSS 3.19.1 externally) * MFSA 2015-65/CVE-2015-2722/CVE-2015-2733 (bmo#1166924, bmo#1169867) Use-after-free in workers while using XMLHttpRequest * MFSA 2015-66/CVE-2015-2734/CVE-2015-2735/CVE-2015-2736/CVE-2015-2737 CVE-2015-2738/CVE-2015-2739/CVE-2015-2740 Vulnerabilities found through code inspection * MFSA 2015-67/CVE-2015-2741 (bmo#1147497) Key pinning is ignored when overridable errors are encountered * MFSA 2015-69/CVE-2015-2743 (bmo#1163109) Privilege escalation in PDF.js * MFSA 2015-70/CVE-2015-4000 (bmo#1138554) NSS accepts export-length DHE keys with regular DHE cipher suites (this fix is shipped by NSS 3.19.1 externally) * MFSA 2015-71/CVE-2015-2721 (bmo#1086145) NSS incorrectly permits skipping of ServerKeyExchange (this fix is shipped by NSS 3.19.1 externally) - requires NSS 3.19.2- update to Thunderbird 38.0.1 * includes Lightning as default extension - rebased patches - removed obsolete patches: * mozilla-ppc.patch * mozilla-nullptr-gcc45.patch * mozilla-bug1024492.patch - dropped openSUSE specific patches * thunderbird-shared-nss-db.patch * mozilla-shared-nss-db.patch the provided feature seems not to be used and its maintenance is not worth the ongoing efforts - tb-develdirs.patch is now mozilla-develdirs.patch as it is a platform configuration now- mozilla-arm64-libjpeg-turbo.patch: fix libjpeg-turbo configuration- add mozilla-bug1024492.patch: * Fixes build against GCC 5.x- update to Thunderbird 31.7.0 (bnc#930622) * MFSA 2015-46/CVE-2015-2708 Miscellaneous memory safety hazards * MFSA 2015-47/VE-2015-0797 (bmo#1080995) Buffer overflow parsing H.264 video with Linux Gstreamer * MFSA 2015-48/CVE-2015-2710 (bmo#1149542) Buffer overflow with SVG content and CSS * MFSA 2015-51/CVE-2015-2713 (bmo#1153478) Use-after-free during text processing with vertical text enabled * MFSA 2015-54/CVE-2015-2716 (bmo#1140537) Buffer overflow when parsing compressed XML * MFSA 2015-57/CVE-2011-3079 (bmo#1087565) Privilege escalation through IPC channel messages- update to Thunderbird 31.6.0 (bnc#925368) * MFSA 2015-30/CVE-2015-0815 Miscellaneous memory safety hazards * MFSA 2015-31/CVE-2015-0813 (bmo#1106596)) Use-after-free when using the Fluendo MP3 GStreamer plugin * MFSA 2015-33/CVE-2015-0816 (bmo#1144991) resource:// documents can load privileged pages * MFSA-2015-37/CVE-2015-0807 (bmo#1111834) CORS requests should not follow 30x redirections after preflight * MFSA-2015-40/CVE-2015-0801 (bmo#1146339) Same-origin bypass through anchor navigation- update to Thunderbird 31.5.0 (bnc#917597) * MFSA 2015-11/CVE-2015-0836 Miscellaneous memory safety hazards * MFSA 2015-12/CVE-2015-0833 (bmo#945192) Invoking Mozilla updater will load locally stored DLL files (Windows only) * MFSA 2015-16/CVE-2015-0831 (bmo#1130514) Use-after-free in IndexedDB * MFSA 2015-19/CVE-2015-0827 (bmo#1117304) Out-of-bounds read and write while rendering SVG content * MFSA 2015-24/CVE-2015-0822 (bmo#1110557) Reading of local files through manipulation of form autocomplete- update to Thunderbird 31.4.0 (bnc#910669) * MFSA 2015-01/CVE-2014-8634/CVE-2014-8635 Miscellaneous memory safety hazards * MFSA 2015-03/CVE-2014-8638 (bmo#1080987) sendBeacon requests lack an Origin header * MFSA 2015-04/CVE-2014-8639 (bmo#1095859) Cookie injection through Proxy Authenticate responses - added mozilla-icu-strncat.patch to fix post build checks- update to Thunderbird 31.3.0 (bnc#908009) * MFSA 2014-83/CVE-2014-1587 Miscellaneous memory safety hazards * MFSA 2014-85/CVE-2014-1590 (bmo#1087633) XMLHttpRequest crashes with some input streams * MFSA 2014-87/CVE-2014-1592 (bmo#1088635) Use-after-free during HTML5 parsing * MFSA 2014-88/CVE-2014-1593 (bmo#1085175) Buffer overflow while parsing media content * MFSA 2014-89/CVE-2014-1594 (bmo#1074280) Bad casting from the BasicThebesLayer to BasicContainerLayer- fix bashism in mozilla.sh script- Limit RAM usage during link for ARM- remove add-plugins.sh and use /usr/share/myspell directly (bnc#900639)MozillaThunderbird-translationsibs-power9-13 1700731046 115.5.0-150200.8.139.1115.5.0-150200.8.139.1115.5.0-150200.8.139.1extensionslangpack-ar@thunderbird.mozilla.org.xpilangpack-ca@thunderbird.mozilla.org.xpilangpack-cs@thunderbird.mozilla.org.xpilangpack-da@thunderbird.mozilla.org.xpilangpack-de@thunderbird.mozilla.org.xpilangpack-el@thunderbird.mozilla.org.xpilangpack-en-GB@thunderbird.mozilla.org.xpilangpack-es-AR@thunderbird.mozilla.org.xpilangpack-es-ES@thunderbird.mozilla.org.xpilangpack-fi@thunderbird.mozilla.org.xpilangpack-fr@thunderbird.mozilla.org.xpilangpack-hu@thunderbird.mozilla.org.xpilangpack-it@thunderbird.mozilla.org.xpilangpack-ja@thunderbird.mozilla.org.xpilangpack-ko@thunderbird.mozilla.org.xpilangpack-nb-NO@thunderbird.mozilla.org.xpilangpack-nl@thunderbird.mozilla.org.xpilangpack-pl@thunderbird.mozilla.org.xpilangpack-pt-BR@thunderbird.mozilla.org.xpilangpack-pt-PT@thunderbird.mozilla.org.xpilangpack-ru@thunderbird.mozilla.org.xpilangpack-sv-SE@thunderbird.mozilla.org.xpilangpack-zh-CN@thunderbird.mozilla.org.xpilangpack-zh-TW@thunderbird.mozilla.org.xpi/usr/lib64/thunderbird//usr/lib64/thunderbird/extensions/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:31591/SUSE_SLE-15-SP2_Update/cdb899a82afbbee2c7c339d7e88ef081-MozillaThunderbird.SUSE_SLE-15-SP2_Updatedrpmxz5ppc64le-suse-linuxdirectoryUTF-8 Unicode text (Zip archive data, at least v2.0 to extract Zip archive data, at least v2.0 to extract)exported SGML document, UTF-8 Unicode text (Zip archive data, at least v2.0 to extract Zip archive data, at least v2.0 to extract)exported SGML document, ASCII text (Zip archive data, at least v2.0 to extract Zip archive data, at least v2.0 to extract)cbs=U?utf-854ae15cab29785960c482caa3e4fad3fd699a132d362dc540fcabd974e174c5f? 7zXZ !t/]"k& ޟQiGⵝS#؜9˳V}zoE;3xAtj=ge|3Ga[NR<_:(L6bETҗӠw'DHiyh#Q_JaWU[1Y.򞎭pmJ`&fM7A(}/\l;M@&p&#'%r_ms"!U35;傤c6*r@Grpԩ`T[[Vprd1R=R/`~uJ3oRy5OAI&èr&2 xdr"u_nQYs)_J=u:,@TPa$¿%?N@I{?uͫu n` ji 1WN'#noR(*4yӖBh 9w^[wD)@/k3&\DovSZXUۓ $=RgmiY~r|ү/ RPhjDH;e$Ӌۙ㻠LG};{;A)i]zN~TRP{1ϩ4aB7l3,w=Z&YZz CJ|CTzsEkAS < |ȳJlEn$|xg3d(tZ̐/ݺDl>B-v" PƸ?pU/W>.Z<cNLE;>߳M)j?ӡ(,W_D&` tGIMC#>;t},)>B3͗(3h˟c_lgzg]-]h[!B*2L7DzC7Ƶ!|<# Yqi; \xº5 $D4nEB>TyʣYyXL*Ų3 9pG8Âbr'clD~hZﺶd菗?\78 1/iĒ#U'00%gM%.6PH]舲u{&tI\<X$#Y<$c azwN\JghE^kcu]Oxܪ ?$4\A/ymÉ/zT VW[DcVWb0IHMT݌MĔE)_a 0 x,NxWs>p1L[v=C6 4N]} %Yr.T'|na%i76pnF:>{8x-Txvϯ3Vʯ}'Lhj7۟4,Ծj,^v~6ʍٿ6'f0oq~wHa+,hz+ͩ-u } 5uDv3!-LC`}þґ;n^6iA ǟ4vn2*M4k 63V>Ҷ^d+ ,.rn=.">Bk)*_ % SxnԠC/{H'C쾾2׻/$1߅Xk'Qrx23lZ[ִRш_890<6m|d"|OZ4PBV0K@G Spg-KU0M6W{Ռ\$>Ȋ6//נ$;SUq٢'e-("Wl汨Q)0ō_Ѧ0 O- E>}!`^U‘$TU\*%A kZ@lD )kӚpEFzڞ H%$sՍ&rH;kf!$ ~uP)).aBƓ_YKQK!PV# j#Xj'x 0{ kO;?3d&`rE#)^A9Q6ˆ"JrǮlEʻMM ; w韣̞HV^ն恃SXEZDjVy8Bw-B9DkX'*wmV,Fߘ~ Cnn`|-4dlBqUܾZ5:NftC? NL='D"dD~/FkA/tuΠR 2$ _"yaI@q}WJ.-qF$ ziM^lf ĶXd2QV?w8Nq vlI S ~ (yP\TP]A^brMSQ4ڏHv+$J_׸pjmQ}T,-$*߁Y U*pp4g* FX2=KI[|L܍@7K˰]Eյ]0ySI˦n0i(O|e^=Aqew'lgj֟@-wi }⳻:ڿ61Z򆼓Hɚ6爇A%P"%e]º$ ͍LgQY0%v-k*ץ3պBsvoMus*/Q30x?O$2(傾ZL!4PֺD1 %!B:@ #dKL +02 qK517,ͅFit2{ =̵f_s/)%>an6 .yAзn,L̼)ݤOO>Nbׇ0VX,fܺ +vlS6Eq^$t%"{:'BL?B̈@>qlZXNq ,:(!XrGx ;_iY}$-alh%O~QLa煑yş.c*3SRd{ߚe{ yirx/z6@bc n;2-nTMRt|s+'"`X>P{ukAk`VQK_c^Rx8aӒrT)F=C)g)'U|sToXBKo\뽳LHĦ/Ɖ(!MEp{AWbU֌L<!zNҰbNaBGO"Qٕqn"66sB6AO+H6dFQDXF q^'xoN0NR׎MCĖ钮)2e2W./,gcQX/`4 )*0& s4qƥE z`| qn0Zwd@wY2foS;s%"c?Zh2, I?1lo,lF:|.MNipG9c4LyG:xXM<)ݠd3k񟼨]nbP0cx54*GODbWVhi「e ͼqaU[DS>d_1(~:w_b=AQ/ C-/mh)Y?Z@3A@~UѠ?=)2_ aOΑHb%{IxsLomy~h͈ɽhux t [ӛZ[ /ӾO00/!L2vȓ==hVGF_#9l,+V[ǯL.R?P7o7d6bQph PNP'7c]onYD * ',7ˣK~~(ua 1b5cA6Xh5\rG^5:h' p@feo".DD V59|f՛"$ew}S/ .I&Qj J!NbmRb;ٔ lJ]y! k'J,YC hz_Nz7NВo[lC7O׾%0`& a/pc|sr8#Җ)m ľq_ 0 (wЏ9ym^9C2")im= pJ^fZ_N7s4 6^܁ڈUw`V|8N5c"09Zqta+=(Dy9J.絷I?2a!a,Oef#9g^gSW(.>2 ?qll(V!]㒤J|~F p YKe\˵!ǸRel'mi a0tDJNXOɰ[ GWeb g0DVɹ-q緈r垕)}V 2jGd^ $-Afw!=F1-ݵ(5~K@kwS=B ;A/stnwW(qngN7b.hܭs]-Z>:m&uPa d[*q_BI]eL|C[`1;EvIMH'"-YiBՂf#_|;W&eF4a,(mQ,VYF8j%s9纜ݣvڕe!)lX &g`-3w9@Se Ur(Q!2ݕs& ҂>EjOw{G@-&~@*?66k:O06'T،. upwH<‹ԌD72-? Zh|r~>TRFTE¬>gLe$dwWn +QPbjQ+WɺΙy`yR~r~dԨ&ME-iC: zWė f2Ҏ3T\P`(tE/ɦTٲGCT4u\hޭT9l;]ƧʪVV'o3O`rgl N莢_~pvT"A/zfm Lq?^rp-YNxV$3~d w"E(Ʌ;|pπ%k "j7Kh r? Viu_rv]DS—)+|O@/?cPܿYh\~V fEpTq>,| ~!&'ъ޶Du٦};\`N !K-K4V2p(Lj렂f垥׿أk`5 wk3k5,H(カ3 y&t Cet_NL➤DM½G G܉bTj'k !>`uꟛLwm&o}kyUnSF;Y' Yv}kW[,[TXK雨5TTϚ1eׯWv*䩒݅齯:WRkpmWd L AQ79Ņw`DPB_ xᛶ@Yzn'7Y7u1$AT-%Sx\jyhmv1Wr)`=d_Ȍ*K >sጇaMvBK|'FA 0Nw%M%A؅v1QInƍ")I[|G|%ZcW_Dr".+{y.ጎթ1"C䨗o(ʀCHNGUw PdG0 GyML`_Ϻ/A(f)/ wG1dӗ1l.?dkƫ[yRfXmTEs$Rqg- X ޝ˵(:: _\Z +;xJPbJKF{tul)H_Z~8ϵO9Y慾4KΧqsy&>[_V.X?7rGҥ ndj+ˮ:B~C`dE:mwp|!V.πrd{Qԑ L @2)&(:C#NlnsXNt&oծ)E_ୂч0ܪtw!3c(~WN)Y4ái; 4V}t݀Ɛm<صdnlMJd(>ۯ KXԀtSJvg( E-;5żD+S{rui?2:u=z('Pб1V[v,b2a]žm-;N+yui\̄0ʳy=j n0OבP %u6.@wm8ʜFMɥc٥`hիB;﫢z]J[7'Ȼt- ji}RIgyr*Vg}핕=6ukz>Ʀ&qcُKOfX2C]EN$ؼ27H ݃ p8bFú"VV;ِԴcd2j uEX35,r042LM+;ۘozΜ;$.Ϝkjl@u\)ّorȈ¢;z\;?ǻ`a&жO|vSX%Ҷݫ>}oЋE2JoExGFhIIG8igS&Y񔊓I9~,q@J'zN |{?~ʯ($~=⠃61j#XGq#~BZsB*ͅk qwl) ;CzliECFO4Mc{x^ɦٯtǿg6+47L%nhͻ|Ij;"R 8fV~tMt|oEOV)UmIqMVk\O4Vչ}NRX,Sue^/8g*~ 'S΍́$h"h6j꾤B .6]nCӹQNڨa_4+ };lAb 77ϺC\(LNRCOx1 s˅v:Fv /F5^Ɨȏxl@=Y[>n\:|Fә탏jt^;yѻ1RtkXNe|A;=7`ЅfP9 Sef[:tx,{Rum!^V}N[p?bjq{ˤ.r~O`R!>!|Ad"'x'ԦX\p)`ABv7nQg(w')Қ͗I.Mj,G4MY$OOUi}ou lOQӟ|]|/5v9H12 DkFz&eq'{A~)*"c 6v-ra5y n4.6EŢNE)c( WAZ^dc\<O\ݠSF@m`-`̀ -yz`7'| !J*'camV .&<,^ḰA&o _;3C D~4nB1'~K$!pI4=!) g0Dpl"9EBnZWiF%|z0L{s9-OҨT'BpDoOJ܀tә|s׻t5ZcY4O jT9x~MJLoBTPm#Mji04o$xT w .]>ct03Cxl Jb|ОE=aoskkez{)ɠ(=v  t?Ih -=J(e^;*t5ݞUV^:# E7hz`0&S4,L>gCTQfOKLdg{qw HOK~Ak(Լq2ɡ_hq|i_'7k7]]'%0^GB'cȾ^}$bbЈH>['s_Én;^#mw5DN'$i}Z#FN K/>+y>GeR6H>rDNwXfؐ1~ t(ao^s QS͗1l,ػ4d< Rsbj0eν&g>k' ؘ? 'dWpd\܆Ș@׏P/?cUCw7W83t jkօ `zMB]Uq}x5~K: Jy]76G~1Gew]pm${{'ۋ Wuc[KL >(O%&im1[?'kW5RgsM^6M vy|uWo=Y[PjaM ܄zv5\&%:P4Q1Vk.b kGS`}Ņzfl o/@muLE_#4'.1{90߳=01|bG}\y>|gPYUF nuB\d`l6YA;9z"`/~7wb BK#G+@ۑWH C^وj?=B',r*MC9=F(\@ [ִ0mX (%˼/eۗ2lkz,ݜ |ћ:]To `ᦊ|o/^ܥm0Q>\uGT%L芲Z/'B>}dtR{o)>lMнFl4f$d98JOUћڣ$KT$tDqX$C3x8%4}\ߚ>-93Iy9@ Bɮ q&<ڢ9\L7\:rLsy{v HWDā!F! F붷 `tE7E r̼X9$M`'QYMb;  S c.`nCpftWzçF1BCJF\$h1H6ڙMZ(D1}%ϛJ ~9}O•.Jd5$Yt*arN=H١z@4n 0|:'.BCui?̙`t$Vk%3һTy>1!YR*&B :H2`p,;~R΃QڝM\Cy6r FcR$18BhSsCf vԁJTq{1s*L-lv.D-vE,<ǎK,yRb֩g CIMQGc(~x0'HָҨ fxa?7$zZϽNO{4-ο|́D9^E]O|=w8KӀp=xJ?Fe5BfպC\){X 7 A%,HWQg2W=wH1 F '`՞-c. ;j* {V2`#> TgYylxܮ2!FF:p5HvQAgeĹ,~Ϭ$׾Qo'9vZ 0(1a\ ^b(e~[5QvBI{ĶuDZ[< uV{)XD6楈moɖNmIM5;d2o=aqxUdJ^nBC0V@Trk{DdШWַg­[{Adpg主^x %odq10WeܔQB*#'oME,7V7Ue̷k/< I1K5e7gڀCcPH0͏2U~r5ξN6# Ż:SR%7koU$5[$Įh]ɭ,` o UG|Pl-<8)Qĺ?U6R!(0,r j˃]`0"axS9BpU;LH,`~GKoy?KQ# 3_`ΐ.r}*ˁ~ہ׀oq{Ro,n'-iN}T*e6fua+DZtFb3 > FkHN>Q@L~(]b~xm6kэ[zrYx.%\⤀.7<'Ò[΍Ȩk HMJ"$ ybv>Tz98>rk~Pt5?Zٲ`.|j2. +A]ܥ)/[$m,kY[ZLɭUa&@xE ;k` ʰwEkFFݿ -hpy֏uG inSx;7 *AV!6IJR -v 0sAA*O&$e\8Uu4y5-ׁb^kxiFKXX~O>}Aq̻x 2İbKo(x ZRen7ϔ2GENJ\A `meIqrtiS꒩W:PK#6oHFƑ L>WMƃTrI ƪKiΙΊ dq^ԳQ.]2NF}'Ap Ƞ35\Mq#u;}CzDҾXŴT]aja#%K+ ϦBI:9![l:-Yp*{KUp7(K:x7`r&^-#7RæqY(/qͻz(Z 'eEFj j$n _5mO%d*N1z~b#KbHK΅"L{t 8_~jU5Oˍ:Pıu1Q{x_" r[1tSϢ+~F,i.s5#<̂h[4ccy]E2)=ltW59ljT!xS-r:EZ@O-$ :ŝj fdWx .$'_FD7{/E]i"=+"g.^xS4n} \8:Ŵic˹1!^ɋ kPg R39R9im\ffd:q5mu,3gbޅ$)XYm[2N/2 - DȦEj{,z_$Tv3 kn1tpV8zgJMBb fH7XǭNgKV'*m+o _rX:4R}3>S&4WBSvXq,i$ ZCr_#7Yv'# =3򚇤E^Hi*Y`*=U p[Vn~Q6 s rņ{zS5f"`Z\ oNO(p^kz"6ڦCE(OXʑ,$A,p~ oֳg*)3P:a4<ȹN$82RԈ=Bin}l+)18>)a?x&T"%1NE~.~ԟ@QR`Cs"x%0.wOc+D[% !aq \\ ΂ ]e#5y tq%SLCylzQeA!?O0WP5ve8Gs?wBh 6|;`8N /yL>m^+Z؞*}4:K:|7xWЉs2{_hq#dOh &d7zeIOE9%NUa*]y׮ $ou1ۦEÌ[Xp Z)#}w"sAmfV{*%?5ֶܐIJ ?M)ANtx4X53)v>G(x9`ϻatQyd\EFuxi]EtyNLsȉ;"Xd.穊dEB!ͰDnj/rI[%]s n0qgF}_%Egݺey@g9 ^}2|}xq뙒_ (t?D>7.hBtST eh +|CD"{P"8wy' 9`;ndc?]{}/QN?w!Z`k7hD9whA- bƞ(֐y`_~ݚm'R)mdO% F٪] Q1Dž}(AQlY ΛjW7~Xb{N4l e)}@V+'DXRI=n>g[M!zH"5d3rm iboCi*A7!sƑYjB|3!]hV?ys]{D{[(beAӘ U$aEQ`hvګcS@j5Oqao !XXzӾ { T.J W1]ʬߋ`yH 9aΒ90p2)2~֌_]rа :8CEncAWEnTcMp#LI%%불׺/B*Ǥ[҈*Nع+GfV֯:D }ZPTha6 S9OXQ 8&&SȊ'KS%IPo&?/jY5`lHE>tYukcᱱ߶9P&2Koen+}h<8'Ӊ?ԃ0sevC& Fl[TZ;~/!Z*W@  :_U.~MG΀[_p-%$|[SAgPt~S8d۞b5 R%M;3k^߱,6kh GJȬ{g( ?Uk. p= r X>u`](lzg2#׃"܉KPU9rmGA!Wi'"J +XU(*?b stfbtu|+Kb| Dxq#̿f2pUwZ$bec-ۂeP$g%q][SnX˘t㷗>S7\kuø\N[3$X FcpjIsZ""۴w脗iȤ nQꦭi]6r󹷀+NpXc\XDŽo. Uk ZTϪ|)==.fVv}}9 }ցNT;>&.cvBӨ#bRyWNJ%foW-k ty`j)93AҎOO׺Eu GNy&JF{VB'BG ϏS[ P=0lH2oB!ο(ah&~695YW ީA6Ivz vd&?NdG*` 0.7w> l XL2W;ߞ-)ȁA'KYbLac6*cյ: zaO 9^Y J_Z4bdr⢾'s&`*lQS/|7y\/?R U \SDЖUx1]¬9;mCDnR|W>Rp-:?jN[/ f~!ծ,nbW dH7_^8#u}lNa݊ 1R @jQfm7'/ilM o#c;Ѿkl,M1½˧jb*i L>O4 7>]]gyXtuZ,dwQ4G0qcr>vԁ `oW,<""$rةRz%NIzS痰%G[c_ PNG̣p>\[[6ڄ~~|_O1tyydP]tN&JTT ^5sC葿r /S|^4{ wچ<1($V[tT7 aIYpIv S67#J8S!!%N8l:Εf WZT,ApHJ Z@YcuI1WQtjh3 TYKNBYt1)[ߪ"!]-! 5kU~I6OtK{[iSUBJ7 4&5bF}Mr&3ꀟ|p"5-;]8ZB&'ڦtiX;\7󀑝CuaKy=|hap 0 95M`t%tS5Ji~"Rm O؉ZlB]̀ Rn챴~8?{}UB[TuIjs3UߋgjLm_2+}"4 oKL `Tijw`y)d}g 9)7^nyhgZ-wDEJ$hjZ+wŴjaQ6d?9&Uf8SVbh^]1t@k|m%:rOwLajcP}ѷ& p,8- )^Xm@Y{\h=d7)ƷAo- /hf=&m6hZ?RuhA*|%zZdue"M}B &H6\oRP];hZ,̯Q.*61 ߽xiNbs&T乐X)]1z==EIwQY "zr+yXQEEB(Bޜr' )(tuxM?{M}E˧/R`:/7y,^uwzل !v!Ԇ7.G;UH5|﵈XiTo2 :L[%hKh'Q3Cfl2ɵ !/,MmEO߭!.Yڵ"? gI/#%ݛ<84>!R^(ն]u/."{@0It =ɫwgCټ۸ Z\HXBtpLelK ROSWV[EbO+ݠQvip$QVƾsCţZGX _.()?N8Ts4t}y8 Y H^nhދb$A;Ɵޤ PiܚEH"gE E[eTAy!FCTkwIs;JZ䳭*%ѭN r8 (CPYZnG.=OOd ,z@B7)bˉvyxtW(k&P>֏ ]˟iJn!i8:Agz!=q52N7 YZ\_L^ͪ#ɋ5:G cӴp^hG *4zs/Qw{%q,/yLabq3]Váơ|GELMhY"Nٖ46+36).< /-N"b"!>jeA!50Hj D2$ޔi0& 0YoƕZKƭxo%f!j}9Ǝ:}7?!?FF!*;Xk&HOyI:[~4%~aaR+ZVl Vɪֿ0O˻A$(H$c!̗gF^ Q5n7EPJhwܞ A`4Eɫb֬()b`0rJ ƀe>5cf|5 -7{|\NNOI54PXLGX<` IYM]S~er5voڑoԜvIԜ^[+otfoov;<^Nݕ(=5(Mq&;4b+H<_y,{0^z\ύ0T:>'n3C=˂ ' J[,ߦ-?,2Ŀ:h%z ֥)f(mМX|;Kb xmB]yu؞Ui.8eR?uAal:ky{ g-Ng+żuV>nEƧ1K W;R2?G8u[) [0RAAе@Ϫ[b}]t&w 4p }Xn:M 5Ǡ`_.j ?vȩ8IMOM-,Cd5* apgJQ:vzQ6H,JHs!p'aҸxMENl}qSjTW"#V5z4 u*vUM@i6{+b 'Rk͚v@pw&ʝ@<񻹧7#+nF_#ȉvZׁ!ϧ$쐌()uLhL54J ɡKڡ!}묞Kq ?֓%]B*o!vX!-9u"$?õụS +@yL #<3kѱEq¥b,VlE~EHhtMPgWR 2$v@M)j{YuV٧DO"M[jZzQraA!!iF;v ^l'@fVƁ]iK3Rpa)>8#d`G@dlM7jl]̹Ycg·Җ 0^.u%,c~GB`E[Ҍ>Ugqrp1\@e`ߖ!cG"̩ðN'ۇNEپ&UӺf+}r73@@'DL@- RdW:^Dx@q__ xTׁ *)3)EI=}KIKsß%_z? D7*\yrd9g 1|zF@Z)z1%Xu3`+'(5QqBUtXM){0vkU#o0d?6|2R8trbI׾I,P^/,;t-S"V@\,]ߟ(ƁLސO*+ ~J@x.˸r\nQ2w3!&L6HWĘ^8j<|& ŚSF.`tq"|W c/,CmPI[ܯABxAO_iZ1KӾ8#1!fΤ I @C)ōGQ뤒iu w-~aZ=c.ͅP~m s\ȥ,z (Ze/TPܢÓP }G9W&@:u@SQ/,>IT9ϖޝԋ `uOGv?M"+LJ"ʗҞW\O0#UyL)+b[!mPD0jK>v%0@BaJ? 듡VH-:3#Ol1pV͝~ar8tc(,?Cd3эY~!B^Tߓǜ^]?gS18Sǂ £lAK648(PP!/ϭ[*UtT4BlQϊny ݊> =H|`Hh7&Mt ;ӟpM 0!̷,<]1F4Jfk @R_F٤))6BsY kDe#Έ:ĝD'&67p :肾w77UfY]Lp Kʂ!<+i2`(ӏHWeʅл UkzrM{ss;tY57IƤ/3(Z|&R R/LBkKms-ݒm)]]nLy t`=,*+z~*88pG&^1v:K?CZۄ0܁x|ˬY" EʚGD!w1*x NPU`}XV" " du_Y7W~ؽq.8.z0pdVؑUkDV 醬OY 8w!E"|?ޘdX85xx2opY>mMמqҪRx՛2AY6񏯞~St9rnd6η_G9HJz"??#$UfeѠfSkI{ ݳz4v`) "Ĥu͡{ӟKښrݑ{eX'&-8b&=-ƝOq#и:ղ3}Ƃ/0)!O#*{ ߶ې`Qwl9 lQ_/n8Ծo38M"Wppn(v&JW[Cwx ?V[3$x`F1~ye*n+Gi*U{cxP x)Tw՝{A]Mњ1yrkY,Է!h#gRt,.䗶J$_(M>B|= A{J L+VzKћC6o>S^$O3R^ݏKj$JUW?M$8k?,w=QWOD0L!vQ:%FMxWG~Ucwv̜-Fsٍ՘Mt7prۋo_u2=4t`N7&DOشjr`G؊l5NNk< .o2nUĤiƬETt\aM7j:xx8.OCz97oҐ,yƫaS(:} fu/ k3F$l|b't+!uܑO[<>[1m;[TL+%Ç1"F%ɣ𡼯>͸D"xD}hC< &C@v!Tv`z%ѮĀ-eP9gP"@xq=_-xћ[b۞aSoA5E#j0,}2ݩUt( {%4fdmOGoH- b12+d%΃k[֤0Ie,! V<]Ņ0"H'½#0<\!Yؙ-xHJdR7{Xfb=lC + b0txlpg1>y!u^Fy_bq%,T'ؼ̫|-T E^), &z:3꒧ ~˩^.TZذ_^kXlIz]L:MiKŇ^jlY")Xȹ˭|+d*{vЩ-lJk4,ODyu bH- ݫjkHge}ӪF9v1و$.{SPLE7~lbOֱHh4yL9_sf*cKf[W[JQecPkx_qlS[Qu?h$bf搸dQ!7d7K'~j M%4Fyf - t{)ayY1ֻDR{h` ` ֐S%tz.9WE Z@qV!<)?[ Up}BL<;|fD64ZǦ]QF<嬍>&=8WF^!jUomѯSAc\2ԑ 7RFq6D0›tάdww)),>=m!!,j=%R) EָFe #`h9HLmY=/<4AY}o]=zai{3?}n,~@O0Y]w7/J#R4IO #Q3Zj?<iفJ|QӾU(g7rh?)_}9QHFTrRk^Nj+h"HfMZ,p''a(HAZN3`4zƻu7^ULy vEi> ngZ&X)nqZқzljM2{ٮ-@qM q8e[.?U _Jľ(ʳ4 ~s!d곭4,Q[@APw2-Kƥ>4|tsRNa!E^9;Q%ah:`*04VZ'=E!Ѭv"ɨ\^$h"#lLۘFDW+ق51H_dj9^8zέgg_mzGRh!VirOb鎌Nޕ{r]\fPVDZk5՞z%SAfo*̪^ڀa׈Vdk*TTТOK6Ju$P5zx&o[æ[^{{?8#"&j4;lB=.@&N,3'D!(M}-Kj+gX?v2Bؕ~EXrRrB]~}@ή>:IX^\S32ie)n?Љ/ 1ER>%2Y@DL9꜋wM?z4e|k^Ґb=ǙzSQEoA7+)/C_{&PDc[B*p%$;5/U`w[ ncE y^0!f]W&^*?/YɒS'%RW-#E9U:;k Z.'n˝KtaIfxJ4+i0/wULS?Ugg)$bx$XmED /-IXhJ>T]uU]ΊǥS9=z2f/-ONJpQPm˰4.+ jN}^#-z p'D V eTt}-'ۑSʨn)An,I'yxl81Kf2[1(5JHZNv)iBBM t<4F5*$k%'l=FfVo–Z4̙PE9LM |s|؛8H> H\Ni0VER) ,aF#p:G O(UrM"1{ ds==VaƠ~鴐6lƦg _vpn$|_`ȫ=QzA:R߅I#5_,)(|Zhy#*'00&BnvLCbT+qX<0SYAC,2|Q(oɔQ0I>)=PJH-֣a[t~6fGBhA#qkCLg?٢?%ϸt H_`ͨ\Z6m줇3=tDhm =ݡz^=I7o:|*E"[cjIuX0ļ+3{ckޛ+H s*]&IT `Nn):x}AG#CEޜ']\O؉3twiyT'<1/9` )9"맔u k N_db^.߭yhx8"p\FkRVPC"cg6L\})aq:P 19Qmag) ,gvJ1=u*uթ ʚ Y>/1'5X?|T^kMpFtNo=1Xd {gB{iR"DS}P.Rh8ߵR+Pe3ClHw(F8y}-J-f_qG^?&Q_(rigfPfCxDL!E7ut_N(ICmrXR茱EbcU|^!]CLB9"nN5?Ytrr8s k%ld#ghDQDo h“}E<{ܭ:^ن\{$b'Zl[Sw0k-qY~12ұB>-b1 i3f1sW8'bC;W|s۾(ԐF `A]p?3GҐޕIA@9j0>%[QmUhjV 4w2A:i]2<$WƜtn\$J\Pwͻ&ŎiY z/f#Lo,Wvaie &,786f\@ "/kOaW?(iv*J^!)EVP' 2ܻXJ5eTEQ#Ld ҌBuհMk8ю ޘNb>Q.km[K&"!JMil,(r'-ꤰCfCȂP9@t;6+Ʀ6- sW:\{:E(%1 FaHQg~]w?v~nLI,eH3ڬ>Dl!\U+Eg(0|?:32?9s=k[XPe=bpCq֝dqu$(`9&%m11 T/E18:_'""av#7 j+aQvA|NwvfHnC;JKx, O'H8s ON@%g# W ͌{b)E/߱6JPVBS*k:}>ϡ!e_'Βd݄C69+F:f< B`fD#od(l¦X}Eܵa6Ĵ1y0 ] `Qxc'mԹTKRƑ2 ns:oBEEn咝kr*Sc4ϿYKO>GǮD 4fVya.oLwJl5Y*O wi3wY|V\keDU\f]·9%; Kny [GWxhp/#mv[*N<5%NP SQt3u~=OmL`uzmFCS8qslo?."la|H!މrT1H|nG}gxr6w|[ApDn;2R#@[WjK~%;m>:=6mjz .?i a `mD+%ܔb$-7JP/$ N G\=!5ye z(P' l&5[h,P릏g>jՂrH/i.|ȍD+BPʧ{bGY 3M4Avx:[ӝEa8LPhT:IF,,YQo?keK)!:9%3Z9K7ӭHX,t2Jc幚Ut}.1ZFۡʪU*L'!AX9>NzcHgll:* NɊt*b4\rh_d (\rF׽[Ðv0O wga?wmL)|2f> )j^j/en?ousx#vl?H^8lyiͣH-4v1}3Hmx{䄭?@ ttGU΄!fN@J],4Tia& >=_7/"N4b%r9|Q/g!{ǵ} ,!$SḢHmi6QR7S/N˜h ^4|>KEfl.ANާ>!"ǰ/<ָsf0S>{U2^ȕ]Mє>2 rt5$7D[M-(y]LqgWu u,2mT;J7нMu8:70JC)=yau_{"5vzaeU D4WK5gf@Z\docRg+Mx۾L/r\=IkO JؚnTLǜVzW'M:uƻҝ6+A7K3~M8eFl//ɛYE"n Bԓd/=t /U(i#L󌋸 %:^~V1woXPQA h>kI$L(DCy'/4w41u:|P| Y!/UY֏Zu'>ecSi+)z!ڧ,y::'*:KY([0k艛v_*@4}kXdm$05L鵥[8-n@WPn"\:}-eC,^u/]صx$P:P̗Q!t $BrN+("v$ PPDe8i9s,@1ڟ{iTzBWAQD2ɃG67jLoGfHQΨY` Yd5/sax#xNyJ1:}!v' $R~5-H *o b,5DsMs -CtO2Ӕbˍ8"rչtuV)"˰ݙ{lF34WǙd\݃2-d ͸k/:gR#,{?k7rCaO ~1gћgW Έ Ӆ?ZFpONpWW!jilLy6LM}],V#g'#lI?{]h{=1Fi5&z.>T _=be+3SCtS$<= dJPnH\ںi`#W^;H!6{&E6 #eF?|&Х=S9R1—eSq! K9tlḰ9/Җ]? k NxI7h=\xU">jn%SO9AI2 Lmex]J:Ae/3tl ss BA Qs W ykcɰ9smv(%,7|Ȗ] (H5=aa3&o6aRR|(ͦ;;Yf|BIDRz9V^+ >ʉ~pͪh֟Wf^ڻ<%bk{+^* y X?SD6t'߭ǎǠ* !gZAZnTC"Rl k@Jc&8U#VǔmvZZ2=>Q k5Ak|*^qdŀH`xeaܩ#W咇^_FJ);WE󫫑P߁V^h{MFb|H$'+DI22.8uSFʣBz*gc Ly)4lCkAVgj`Ih)0 5׋Ez^|ˀȗ?#)*|D1RJF߭meTKk|ֲg@>ainȂd0t"Tp SZ BbIk4<}*sM 괊T mes +bvk jD}''\:\&ܪQ Jw5Omϋ]b \qv{Ic.@TҖuۉ.FiV>n .jebHXm'KsI0|6sR]SQvZ CZi>%;M >;mrxCp_j5B6#:E"MGڃ^W$ 2T`.8hD/*,]Z _C0I]3)iy’M~`r7(d胜{{xc.˰?86F~;#5O[' Ġq%dsRfV0_R jg9R"${+Nm X$H)mք xz2X"2Sqiz#z@Sgs&z,|N-c o5!Zi *u<_;^jcVD=YŒˬ\ޫa[.sa^֥BhZ2 if*EKk,LrLSʻ]Lp$^wF#B p{I11=r̀edI|`Va?mUffƅRK=zuV3֍n$I^ȈnJ",%Fն@ٗiuFQc+|Eu O7jsdWG }Va>&(0K 跏=A. 1vTRNj.wuNȯ/q0׭ibky=y+gB L>?J7tk@x|EV#jk@`wF>ڼ`{Vg[Ҹn Q^Zx]wzg;6ȆJ_l&A(Ny&k ~TPl"}^kP=|̖]6&αyE?G(T jwk"-d$&`4 uj֫*RPۤM ppn5jIGxh.0jޅwYTߝT$r)M5-BNNd/+>O(ҥSy;!O`m]["M+0ɍ<Cn}_i5= HFXH#Tݧ9­^A않A zi?œ*n m̉b"1{|OE DLׯ94<̘\,^"Iڲ bpLϨe >Z71(8;S/OgaWPj3k4odpa%s0B|*,Daܙ#Tq/`njqX3>BԗyZikj{OnCO~~p ɵ8.+qҙ]:YvՏrk&Fڕ,'{%gⱙd mm{0M!.V 9Sӟ̗箻ANT|\25;,tZj${  x!bY ~9Ia,}kEE\Iwv"Ӻ=ojϳ f;RM=\։=N>v )4ȓӨŚ6oj6Cb0l䋑 ӝ>{J( -M-; ZAOA!Cuy #R1I,nUΓ( |KGux|r2BƖ`XO=mK_l{gYV99?oAUFR~Vh'a$}QóJ:}@RZ..4gIXz;l)QZ5Jzژl|gIH@"?֑ےΦ0B\dYyir81hS?mT/0Z~ݷɥ 󁨌Mqq,rW(7PQ,3iHN6FpxH#%|9Bv,5bWTtdeEo# 焋ao|Z2`g DžVR?x~ܶrpJ,V9F9+hw/Fqً&H@VzJ]+S"Z4Nj{: ~Qi.5|ҊT'.pdzsϩ?[zd?qI<pj#2<4L{y%^6 _j,ޮeOEx#<81(('X;]k;+׼[Q _+"<aZI\'+6W˔>>Kd(JqP\BUl鶰z׉Wi2-hEkc UdPzWޝ']lvq+m/ W9BK趱`mriAVeI pu. #|Q_/L}ina^lG[x3_I)JE*@M)]EH2R  |h51_WQ,ɖG"O8@%h?obE'q}Zn{1;<ض߼ B-cLah4 Tޥ! @_T\ϝBXmO>߈Om%֋‘^L3הw7>0JA_j 6R{M$jx nkv/6}~MSPI$ŕf~l@ r̕wkEJ}G Hsߐ4@UEHd|XbS/VZ|.MF-vѶQ@bq#W8OC^"٨V q Ã/wB$1?O<[esZ ߟ=l o’" *!mٽ6Ml%] jHp6kfu=SF(!wsx$NXs{.py +o : TFoc} 5' ѭt$L3Qe=~<!I0;ƹzV0rm8ѭh 4edߞdϻm+ T~9 n 5ہRjk;?m'%0ZB yճXڸL1 bڹЋ GM7ܰrq&C % -8HMRܯ6t K!\'aPqNWM~&p;/orI,6!R?Ϟ4*9JlBSo^ll9C5)FS(?z?A7s:M3R[] t¾>RVbaW}̴&nxhwx&1z^Gna i _ A|˴GC@қh}9p籛QG܂:{mWoF sH;ʌhߖP~K)K*oAG;@+sLvcNN"V7ҏ=vUj j4[OJQKg\rX.iF @\S&4 ?.E 1][I/gǑΠ9#=٫Gқai\QxlOĕVgFuqŔ`Hy1 ZmZ%MK5Vs8k\px18;I9bNEoC[cMtDwQZg`]X5x>'9)}sƟX 4S17d0<pW̚P6s0'rOC-&Bu_ɕ)a 5!&_nT7,@R^K(N51;x8r 3(>A#Qm-V۰ YM_>uR6H=:n86<ہ2z&SYҩ ]F,p7vlD +Tϴ4Ekv%Kh.ft2vA/!XےN-k6R+  T7婙#%+S_=ql^!9 }s~I5FIqpZzBos%ݨ6vw֚ U8+B dQs\7lENXTH Ȼx|x|&j:: .zϥj:g!wlA} YZSouv}}=c|+pIhy;߸ymza')_ 7ip6~ߨRl$Mq6ƚtOnc+z _D z, mHn<|uQ/[AK%XUuOQxBpńz>zF,Rtl?ք~}Y2A!ւծ׾v H(Zo䨍(͊7؀!"(Ra sSGF8H g ;J |7oq~@:Sq ?S' 4Vj?5ea)Rd8TRQj8%k8~98`.:Uc{guKhyK9!6vUJ~_LrW3+YĔ}P`0n6"!1N7OڟEbx@~sF؏qH l"5)VSC!@n*4;gI(URVAҌ\^tVCˊAI=%Qc(/}NmR;ebC澞7YtM̙RN汸u) DqK 9"3%yS>$ͪڼV`dJu>'EWHp/nW>c1!DuG jh6p-!jJ.luDk[=rL?u UQ ;4w˖R2d3=ƗY?#.˂#G_Ir\LE en)£Ȩ&Bnh>](՟@wvEe/Vq nzl0lKKk)h@ƗʓTI"BLl wnٍ~ب1yN*kcw~'8ZA=+5<c g++KN}uA1# E=aNO!M۫l-έL[kٲ+ǖ8s֋ ډ`b+%4juPE-ʜdSj:n͕d)t4I&E +g v(Bh{G|uuȂI3W̤kpfD2+`l$"-K-[МyBMO@ HH٩³i0g"!>Bfx~$yr<45aZ`5p0@l$o_I|q5#ʹ X !ma&%* ˣClYetx˸ɥIńIޚ%!ar+,d9K}p0b0 v[!?ԮTlP/х!wӊ Ƴ&;[!ÉxqΓ?/t/T< ]6o|*֎E^@adV 0l6cvo(f`V'/ $pSiDƼ^b9D#[*p9Eq슐4z5 ,lwVJ8iOޭH/GXA}3uCAQMʆO 40!W uLk.G vk#g:7Zœ!WC(q⹘}1W=FBUTso>5FPq,anՍc}{ZAIáCE|Ac:JASH1/.޾Tv 7r;ނ5k$ Gv!= ,}[)\%%)HI-,*V%FΈ7=-SkcmZSz/ Y <(qwr mE 4EKQQG92I~]Lyf5VUz>K%Ok~ ey*^R:^L-:'Jv۞ŀlA$U =99F5}+91OFpcSѠ oݴռܝDf4WX4QM6sq FT`}@%%pjbIޟcSt"^p_S%,2cQh[ stLբ?0K+oDOTLI`K LR*q|JM(îζ`Dv8Dz' zJ}0>lD{֓ߐ >fV^Yzʒcۚ6kID! )Bp <)σ(a<-[ّs?Hu sL\,d%bSTN`_"ih$Bs9r+@~1,7w1~=iL4Jko~S Mygiב1o1&5cQ .NtE%as2W[7@sU K,R^`ڙ5e <sΨʸ6ص&Ӷs;p?\Dm'!"3Dm+L^NP? w&RdRru1 |~3`S@hQVuyC But9{I5gۏ><4q~{NE]Cw6=|@1&qY0 ՗B'8`~TjnLS|LQ raCQKQ[ e 6MeAx@5{RkAwn8[&:qY,8)/z!tFJEdg3Q2CBDI9aWARm\ DH:-Y*r l )s"))s_g ݀pE!s6\IΊ֨A{eI>G<,W0Z44{>d?ϕGcYoT(0J)FmObEgs :,=(,AOT|P8 $(VD-Z$$׬5C lqU[A&^'/Dy>UݭU2w@:N=1Ϲp?] 6DTk!&1@؛@F,5?p&hJ\p q(r*Q ;㪊/)L\e,:E{q3ߧ$b IԁA cl7TmJaOݹ4(L y2E=^/^g*畀"Ɍ6l4z—q^\,%s!mAFCrW>a{^0x$y˯U ljU+SC=5c嗠U$hw!L96}~\kr/95RC="П@UӠ," $G3Ӫ&Йq84] p:jN2ijhmNF/"Dφy ^5JG X[/+)SkGh1?^2;a@\*2H`r-Ax7O1Vt7 k?S d r¢Ǒ3KK,/T)w[z:?0<@:CsUdrl1WASqeolA4L,|GwӤ9zVaY$b3B^T,17~_Pr x~iPWrEWzQvU^+PΝy/ CtAaCȕ37"EFףH?OyT/ 4>x!|r ϟ]Eה|̒=ɏS:UYxC'E#-ƪ=pbec8IѴE)CoG.V7w[b[n'_TkG}i;ҥcޝjOzS2\4Ø?mѤ&I;6 SH <;"2MVeu1D:9h\uVCMSFҷpKkwlrc5T6!Tͼ?5T{\Dt\c1> ROV`B4!k- i,I6SȦUĬ) g7"62i>Ep'7>r*NlJ|;xE(ufRJ4RA U *Ư g,Tl#b"7fqx~UCXȼ5 o"hAi83f:p:°^y2ϱ(ߗpNm zi?-s"`T InWCKxsoɀжI BPG4!Kr圛H^g4V`bpc+)JCq7[jԢmHg@8aI:3N؋IBݔ+[xq@F.6z5OSe¯G xc0#*‹#M F7-$t$Icq$wOgFw͠=}AQV# 4.jo{#I4A;eWhU>D|Fߚl@KhU$Ñ{Y9' Fpt2 Ύ6\ Nc~=TvnO=yC; *9,Ч?I忆^Y@P?k E7l{I%{ vMe!6^߽_:[3"jZUX8̅Pwj} BoibII[wBe\I^#+'3D,٧R6Qc5Pj/d:6Ѯ ʼ,hQWRXhKZ(UQ΂5oc,_(HmhWgQݼa|9[,^ċk̭F ;M{ҢQlZ=xgEʨT.sS|{5X[uړf`wYGB-z3U"i1EYG{2qV”4C_z\.pKʊ4}wW:qn"GLH">]nB>Vc]Pv*4T]WLQ`)t"aCDAWavޑEpbam)."~Z{pO4¸^:F7Nkoݞ((Z}IyMEz1LLL>y1Hе deK> 7ᯭ͓!ƼW`R_@Z<ݣ': x퀈aSǞj+m"Oq*2bo~xaPq)&&YN;%4%0zZq$`ɖIJ 5[@'-MAwEw5k۲o\s,sp`屵68|{hq)p52G|̂amĆVf#K~b/)v *}B>f,=~IY_8!g;gspI{> _gL11o#"^?Oe'?{w+0 sX%uXG]EE y. +u s|q4<.")ďر/&N0BvOgm`ϒ1=}<1mfMzO)^W5ZiyGI\^?_cNh3ImwVMs}'!G[[a~ < UG){5=e1"*i** m ̢0PkwPR64Z -b4v <,#\#;OfuaFwQXR>A$(p,͝x-`l\9Kqޚz)uj:.'np+3>ze8. ~q'H05!Jc+1^JY{@3/xsM\?%5`F9ߝ"U;ܥ{u08A7#\3ͪWwEl*Chrz5rt@ 9I0 !JLqmb;ofTo65PG*KCޅG_Mc64}< h!d~a3`j"F-ώO<$}AHr[;4]la~nQ {tv>UpLpvy_԰7*r:Q%yf;VBTYISg-̪c؛.䛖#;MEChH#E6cMnz{n-EkZتj:@HJodH+2Io$Gh|,͜)Ð !)](ɕwi@LCc1$l=tI<Y|So[B\.*Y1 $v%qPibuMo5e|8r6b ~ت$Kfb?Pw0:v楀~uSj,;7vLjK~5ywN n NKep/cyFz$}jܘyU24xZ{ wxmn;M6i2 ꡏi8xc+HQ5q1qgO])3 ;L3?N)%Sb:ylДV$> UOo1z: -C"/E"b&( ,PvH Ҝl䐽KRgPkpյɎH⊿)M\lHo 0J5Y*( WM<7R.%lUc>XPUQH}}?+=cA.ǿ;eNX1]\tbeV6ɀ˿ K-T"m-q+6Akt@X_lvPMO4o*b= ج3[3t v0cˇ/Qdxh kĶS"Ce Xw%A/9~]R'm 0Ub*`X? VT7>]X SM%Rvʘz#+ q"HmE;mnt&h/ `ƙzuwz5oS_,8$A<}[cFX6ggqvcTi+:kD _fDna*p1.TNKG#g5b_^; 1M%PP77!,y9YSl1NXFL0ך+p}څ\۵[^n{ZtΌO4!(@OGA%KMh4M $=̀AKR/iN-+A@ɦ c4vnR'$PP>$NI)o SꩃMQ^Gy rt䙫4ZxLPN͌.aua XB,tv6A-WL8AAYjP ʼr MP N-k'#%_ ڲ/Ol(Q68 11vK(3{N#;K}f!"+A.: EL+*jiJ9~-v[Kn*X d h v =5ͤ*ͫ-鐵9vl('\rn*4PnbA$S{hUi=MgZ\)粜QLX}zz*0 qb5-G$Ép}KT. Fe6? < œ=ҷHl1nx2]JC={}A*nT0J&4o=E$E&-qp87B3[}3_i#dĩ!cU[] tIa3V#[YOÚCZ,tIZ{ۢsk.rޓ.iqN8~bK*9ڝ4.׶ơV |Ϧ:K+"f@?Jc>fFmhH~ KqK:DiƋs*ɑLE܉ ǵ~κ';{{/h 8^d{|vh98zRyJq|urr Yet FP?yDeqI\Zs}UL=L[l>ӰZ kcs!6JWlgAys\ H[)=_Ե,ikJSܴ_Gh¬ͮGjhTupQ#tLxOEz9'|NLxAl~0jkN+<ݟl*-WUJ*u3ER0۠9!#`""ȂZSojEju5dGh^VQ`tfH$y`;>bз\6,"VIU]rF(^Uܺo oV37cHP[RْxF洆5T1^*ux݇w+yÑBA9`r{tB/Ǘ A~q Gp6& !.ifK"bg51H 9a*oc^jRm'>?:]^ٓL^ .B@JXjNF::b^c 2IAy5[V*be* 96 n$ԭeZ+t f2! ҨuɇHYm uQ܁{P߿ ڸ0(7RG.i ,'gMyy+6Ufo jMfJ+P#S[&L"J|"S)Ζ&O*FxjGZjb)&n؉۹}y+M'E~G3ٖf_9iq ڽ> )~,1NFx~~k;[U=ɮe·!byfIƮc~0+[.振-!7F:#[䂾5q{.%Kݴ"yƎĦ`3f uL[ ิzP}Ld~NvjHuwu`'1! 'kV偂JY<֫ EB;o^Nɥ71ZE :a_ze\~]lute:YHGB $2.k^g$_6Wtp(IE4JO&KcPH3Qw4 Gr/! ԁPΈ[׼0TEP/tF{ZzH6Ќ ÂwmۡP7^DJJ 3L0 EޔiE"/beBJg*yUS;+{<b~q-Sδ-stCAKTb_Q}sۭ['-*jV}rMmUC,[(^ JCg\b(KWþO0u8f{Xp nq j, ɋD\ʥ偦Aal 4>,v-b'X(Ƹn^ߔ&pEw]w3{/vqTm\HR,L ~2WlMPGi{ ˇ|*uҒȗG W>4paoָSCZᶛv;F&*I'y]EW+۲DF"RO{0$ҰTL IVP&AFϢ_|q~au+H^t ]eZCf*'wOqP _8YSPp˧|[O.__YtgFq8qPO\=HW!dY X$Y.x ajmn},u{6G\ԟQ6-CMv>3c.[Gf|lӻ_ lږpAA]+yH*SϞ.iqRdP("h9Xٵ䫅hDC[L].E[[Int}m|uAs>͠XW}m5ϸD51|ˏ@)*0ɫC=-a/a"M#鞋*#TLV^H#Smov_^t\u]7nEB! tTdؖY788DS2IW(m8r){dUN|R6c˞:aL@v˾b8jGoOA]IR\%bRҷN~2y9 /|N:R*DTqaAQKu/ w&BOCjuiRM + ̀.MO x)#a+#6108Ñ>T$̠ˠn0_2Eͱb9&t>>h$սۅz"UNC`B,ٰK!t~.g< su>sJ*]qBIg}Nİ'@$iݵg\Y/*0H6ꟃARTQ0\1VN6g*u|)` wrsw@V׃hΉztꓞ񤿣H fiK^5TYgTDj>SQSUQ'oϼ Y 8Z+`^)h2taź7 ]9OgZhMFAyzYӉ0`vI? (O?<_|'ōzuU5E䔾a8Hnjd1JA;#zVo˼XUŁbJI]S|/IIT\PHArE֔_82.^հ|NXZ<Ï\L&v:~;?tje@s'?aw9nO )+y DѪ~/Y:|Hioeiػ?|WqVUNHfLc Pj0).Xjzu}R~RN/ůAP-@saHǿnJ-8[" sֳRZmK9<+*T1d0FNlrYp x3;[כ]vРK.; d#c6〃]ݦ./Edk$F{k* 4%(7wNݠ ¸i-#O/FWvRGdSGٳOmųWx\^ ߣ*f()-!ezMO݊ Dǣh,г@.ڳ1-4 t{U:= rܺI›4_h j1m賋~alV>I(b\&%Ͷzߊϣ\VR@P`cc_>_g//O ķؗFUorӈz,({zIgNmZsyncAccounts.ftlMn@s؃XFP E$RowbbD܆3p\מ$0 Bbe{>V\3L BŖ)z\\tTu't!mC-]iXJ.hPd$D/Ulh t䪨ˤ"1.~ݹt9Ei9M26P#نoUuxe"PA(ri~FF*`ЉӐ<vX}XùgEqAhd_m YqevI$bt˖f@1>|-'8x)Qkhpֹ43HƲX=dy빧/΢LU=wP~o&ZS|02R:d[\!N6mwkʍA?߳[qGE5;mUϘA"~O@C }sr6~Ju. 3{Lu?CY-0Xĵ/ە$kh zJJrEz>ozNSNFx<.4 /3$F,ԧtgsh ҋoLtQes})dJ J-xL~}G}c/o% 0w>f6PK9dK$TUkӛ93T\29:"_xWoG'e>>C`;c?c>X">'y:}|yû7GO(yY߇Re.=Hi%GlCrƿGn(BtDz}v$Qr]:jƁ4J&L1I']cc^ %@5eЕF] tQu(Lё K:*MJś >:voHK幇s Y56zC 2~%mdҎ*,RjLwJ?ZΐFu$+"Th-G8Bt U5dD.DP+nhK$jD(|h !`'IP]M&!Nq[60OBeiwHR:GP[Jˋ22L8{Dj.O90m;}j-K$n4\UQK8a^[DEh#K.c%+|~zԚ w^+kn]u~qլik7H;ZC@!0'ETS20hY<{A^gkF:[yRByab_fv -!|(ry $!E{V0+} p`P;{fklqN =.1axHZ:w?fbt鶏68Hjl=cz/uϰ-zCoUݨ۞gX96k˓CKmFG o+fpo(<%me>#뵼Y[꓏7ch5S-T߭pp@sv>Wx gULߗwJޓ aJ"Z@[ޠȱĚ" zް'ג*:!C!*7G$%Ubo:ji#dVح3N:р^?qgZqxJq<. oKF+6x7Q9Y%W\DEs'#XMoYa|p^'Q 7Avڞ#8ܐ?~6M.N&]i^o6Kv0>QLb~ KZplըTXK8$R3Z5jiy0Tq,E'D(Nmh^BAYe^gy&0G ^'L P~]Z/FID.uFel`e$X;ʹ;^V^g<ՂGAhM=NI*TSon ΁!XFa[ԈPpp!3d!^)cZ_ ĕ}^hlD ^N#Ss &4nsmyߑe]sy;(= 8J\p:^\P}`hvfrE?Ju5{.}=1rwĺ{0 ',o{ GZcsaE~K BΆz+\X 7/syncAccounn]_1TjUGFv.mE.wV˚KnIM`@8AS-`#}Vʶp_s̐r]JSp9s9nύ;0t8t8}E_8`q]x#<=l{t]vG,[o[n?t͜`0J}mu(0=xJ_!slvϙ^έέ \[jkii"{.Q~opioC׹bp]g-1׊5|1\Ia2]Ovfr䳖)pH`N}ٝkX9QO+,>ܑR^;6I0 {#qlwd ҕ igv+y?N9"J$L~̯V[.P*P~2fЕ QбN@49V . lsv;y o>EsN6OPftDCdg8Cz:iVl}r[<(@#&l,g "c_g0Y_i:8dž"%14@"İY1԰tzڊ~5_f>d2 6v̕FQ#;l{F(b/} f| "//AbǠ<rzl3SR}?_7fX#X^@PU:ϸ% 7G՟(RZ8rO]ARCR3laV9-Dӕq(*#s &)ج+̅E^G͓#ȴ*S&U.F٣ \Mtȟ],$"FZM*?Ȑ۱$:݀Xj;k91O[>qgG`00/` sc]N4C}܅0;C@ VMbA Q+g>2Bu~؅`Oo=}]*{!K)uJ#AU-G4u>R=I*{KjˆyR?M ՜fe JxDFPg(ӫ h1R9%2Ξ)/k:b~F*߫WڝA_]_K⢤tUT>U(Sa'UzR)B ̠E#3/&"މC`,-bYLx=ּ  IջS&c;(PI#+讞< ? Y2ِ|CV[\Q ꉐk h}̔&8g9 '௴ٱT7\(F3CLNJsulsyT+$,3Aﰼ;PRR aS7pQԳ:@¯NC ,[xH| i89)”Ķ  weY0', o(8Ô֨"Ʋ)!âFGE=YZt 9:֏]|\Q(lnɋ*gQq0"2=2F}# E K9*u?>/lPX8/]?9$ <ǚF˃ (N' +U:\.Bݜxcz5)Sdǔ2#j&.y;/~E,ȡZ&Lӑgк'?Ԩ7x҉)!ej6;i_,@Ul{W1 YC .MGETJ"r?e`mY, Ǵ by Q#D@FjnSĻ~ɤ'hH9AX+ufjSUO{528{]:Hi_146GW@Oo R7nt=<@GXaNSiHW{.#bU M״qR1&SqAx;7tEp(O'0rԥo] y|M Wo(Z5Hx&"xTǵi'iZ%c^̕83nNAwPpFNx*I@OCA l6JRE^r,JBҺr~/rgQ:>a"k uԂȭ.~g) ~Cmy\ hDR*rfHgsƄ d)nU ǣj"};xgtƍq40jJan*kqg:]5!Qb q/ jjDfq}%ymop(+TaN< y4LB*$a`G2{ZڑU)cʉ*+ ʐ-O7r c5hkXG?xr3T<TRNU{U= }5_BgVuL~H3['9&P׏kt=C`q28m\V,Ro dqZX˪$PL}.1LSVVi}[(-)V[򍆊!ICG_YY{Pݲ>\]8D4mE}0Pe1o&,JZ'~> B7ij4\qCJ72L/G,)(4 PJ9iΖ/T9]$&0h2[Y:b{"j 6@ʗJG&~RLۗZ.%_aj4B1x`hJqWWq#۳ +,9s$.=:9?*h;TlFp+^3dcn~7,}1E'ktҊkgu\*ijV^1Hc*? c50o,dW%WIW:SԏShvJ`޽ zԟ(u'y.fQT7EvXT773'?GHa"W|+0D e'Ilh ch?Ы 9B,JTς(OTIˎ/DIgO{0F2D̔ҁ:Asnb6"('6o,ooQFK6rФ6ڼsܨMj-q oq&C]7$^0#D":E޿R`/v {Ti# V+9]|EH(_(NID=>4 7J§LQ$pQ[ӠuLȲ@|dJa' ^Y+ȥBȱAO Maͥ27v ri=նl'EM YjS/ͮ"%`Ayo=HUI?%}cIߚK8+C[l*ʢ[*mTLōt_Rm5v&uHPlE}%ic)Q-T2meS('SQ,4 7-IXJͿji [ k5 ǦҶɽp3wuM|J+TFK=7@Ĩ~ꦍ25Q^-ae+"ǖa_#eR]wA7&`O~c›O+<ZXe_]ĩ 53Ƅu?>ͥ kwvwyErC9hYLMI8%/)\gPA'*vx=w,|pÝEob} Tv۰QJD[ Ճ3Q4X!܅r3WCgF$?Y&;¬v7XZZa+?=Թ @.t>#ĭw:P_&K#.Շ0./`&nF67 >@gx:m^ ߨڡ/*8GoJNGJdulkF~O ňuVcVw8?/be>8EaϔwG }[P1l2~6i!Jҍi $ڢ>w;KHJ P [&q/3vkohy̹~{L7AB2=AI_ϒ)I)H_0tFZ LODnЧ+VZ\d{ʍ&IE~8J& PAodJ)7K$UT}ZmY+2nTYJRY^^˞'HմVLkZSĂD>*mS$ȵ4E\ bUA29ͩnE[-A?Г-HQv8ԽٖP˘.$mP]:'"yqKL^K*Pk}mژ=#w#}dܼ"w3p g"azy#[w:z-Ov[Ɗom85a/#WO81лֵ(PNvHQ t̷ JɈ1~]psL o8:/{> {sj{﹡|7^3|ohǧ2M\HA%Gp'=b"#yv"I,8%B욮Z`V )Csps%Z_ls^;ۄ$XgE3-Q:Z}z6&J7bɠXztw񷰳g>+ Fv84ÌKxnt Z/>iiu=(mT`r%E]!ڱSLDRM~$3 0PB^v@w!fSMf74r9 2K͎I,) 0 izp5[rzrǟrXr0R<!R0SՃ(H{fP%]|e&1ۃ5n/w3HQ*Du!A*9x_{%""A@[ǷE섢!3Kid}`8cتRT5}/c%=:[ frz 72Q nlOTO2,@#Sg;ap'Ԋ X~z^Df77m+[9Gf@=;4BhU*J:H8h`Z ] Ln;,vY##9k"#3㧁ӻ,"xN<\5=,h& ~5Z]NSH9zs{xTlq |t9ID!b;8p+8[6hy ڍ=,бwvdMIO@fߢ3?rN]kÚx!̦av:~ӽTON"l`99Cr g@~-;I$Btp~$Me.AuPf?2l|XM>ISTfv>g&A %3rRq! DsyncAccounts.ftlTMkSAW\ &-DARhq?yo&oy QkE;mM0/y֤ݸIsUک)C:IOt(陎3_dkto^w^*XYM5-ң"=@7۳Mj C*ccUN l JE ""]B/$,լmJj %++ FUCcHH +<UT5U:bqy."tYL; <5sdc]ӭ9ҼY 2PQY,1Xm" [(D஌!TtZ~Sk["侓ݩt=wu'wNq8HwsJJҬcsecybMpH0nU6z]E5pEZҎuz4Xeu7/NV奆b Lfx0`g^.*N]#?ܭg4]dx>|W/,焋2X4:%ww7`zЕ۽f+ !~Nr 7ue&O$Yi% Ӎ{sk2-%oC5FlXR:ʍe.W2)KYN ;-VP"~PCJvQN(2 }8VCulcOײp,(3ɫ*IOEHOvR0cz<‹#5P=# w9K2 @cSTܺ]Uu#Xj >Oq`<8RS*P?fgت#0Y Ux%N0>g{8YRqvR63?c=dy -Rj'~lj5*iW^""RDryuS~l 9NL0l FYd l/Y)D?MHn+r ֞u[RzVG^Cԋ%/֝Pes&T%:TY8Рs0 )ykA( :gKaX=[^Ch-ՠ)f:1y>\HCFƍZ U:}n&S0= ʆ ')sNW;_y<5=[dSbA"O\Yf~p:UM ƺ%4kLuTbm{dn<_hYlp?A y9f`H2T7)wپu;AG:[q`-<ȥVQ)*.F`L<796ӑ뤚fsQf it'&],Pga|Xli5d"m]s^}U-(S]rn<^佌o%\3-[Տ枙}/"s]#Y]0+qüݟ(h} 7|~LеaA+#MS;dsx3Sk ]"枩>T!u7R_Ʋrn0aSx Vˎ{ٖ9s,ߟ/o'%1Fy>w M 9sHG ̽hTpBhP Pht- D+|Ł2iYy **2FB% R[+p_9gbٜpkc؟fwþw(At4U:u7,v9eboSߛgt*uβScJ(bVTc1p~U^k#"4G 1 V"WxLDޅČu"MלFĈYZñ^{ ;K 1u"&BR&ev꠸#Ov5vx^oぞx,%h oKsv:%Fcu_Նᦠ5F˨1 cHz#[F8ltDrsH RT1o$D|(lqJ*H.w^5A;vI۲tx1}:)lz%!ztP}`(Zg])$I2ҽ~6,6Dc$)^cfb#Q{K9{n?M5p[;{=_pc_ce?f8Ve.W^{۽syncAccoun)PLƚe##:ES%ѢlWvhf0.U@J{If`LYqwz{5Tm v*gniŚ`%}y~YE;dTxȮfٟgKYmGrq6fjBM%m#l#5L5pY XC,SKSn0גgZCv8{=uW ZؗW+W 0ڨ17kd v^ > op6;D O2> '5 &%/D& hZf|jgLel*Jy&#qڢa|.+8׼j&CsA%fnYjP?[ yc AŪДyg-ҶDd[V P,]^Z4Tx$ OXZLѧZASI.=ʯY i)bLnY⚶Y⾭aZ] 9Om_`0% I)YWC\Rj2^^즑ŪFs*)2]C r SBbU> FشՙA>TW\4\+ Bze !!^jYfjYCFL(nkLfi֐#+Ie ;l 8[ )`lp3䊴qҤ-0N &Ft!zJ-3XH -U=AEw:“n3k7㕨۬'Li72@}k+`j >8 {Z_ Xth.3ZNXNLi'ܯ=[_MmerG s&b.+"D )J`8/5>+ z UAI{'v#U@  S鄃ts {Ȼ82?Ba0wvYxv~I/b%JMbi2uЃXBrn ^B%V1{lB%=Tea-A a*J2`8,8l\j?hE=M2^SBw>aw&l ow.stDl Q^I6`u LlQdO PWe2pI'yq~9OU#/oٓM}z'v6PVk5`+3RIնE eƝv iխUJyjK5%m g%dRmp$FG>h۳+Hv{Gɫ1F?I3k8=z5_|1?~}1O@ѐ&7(Cxa h ro,'dpf3ѻ=JN3"4d25jqG5X,hJTۍ1_ =)ZdYOl0r%;  TPn驖 -ʑu‹]}+dXu.0i%wV5V}',YVae4pNxc JX6ùZlsVaznDߨ$ Z^rޝYǾ^cR>N^gWQp'`.Ƶ{d&33pqm86~+U]Kfl9,eYJ$`QY@V 䛂8_#Vf=j,F R.vZ՞-wWu6 `7> !Cw7`p^t_~wәlgxV 10KYdﰩy4D L9tNJ[vEX3L\-!e \YȢ氣pXbUctokCؿ${LuRT# j86}]Pqsop~ne|=L]hojݜ 3]. A cwu9 ɧxsLTwgbvf}[Fc}L yًW]y .-ߦStGȿrpW=|=G`68@*kF>E^1X-tvp˺򻰁eXS[5.w:'|ئ8zI#d1 utBm(To}`鮉4f3tvkb،) 9jFhd'P,yEc}ggx6^"Rp>j4Z #E$2=T4BKd/j9s̻#U*;yP{մOpYX% b1fBa箸Ȯ҅|Rp6"΃*.QT_EfabG]0l .U¹ FɲREbʝ&([ `6~H5 O 2 1G쩸7Fa?&4QOɴAanbdʭirGpƉ#QO@]|awqr/^s0w[mv?EJ"3-}) 2ȝ@QQrYIUfK}cEsra_Os~gwPGO,R ȋdG(汾68ĤB$bénGǕ;:7áe'F9:M ra"mzQ4g#G1pD=%;gs==Gk;NGOǛ35DZ !?{^,*BT-{%@Lalhlns|'s;3 {Ϻ;w6 Nє{FlAoaXFn]xسnఇٚ\P^@]Qus%Կ~6M0͇`jUeH pسӐ*WTKYz;YH՞@5ؽC,N_nqsk+mKOoݲG ;h'kxM"|x♵9>{a5V   wkKW!\9߂`!P3n}Ճr~1 v4 &6;8x_uew G:{*#cGF$JMFBtJV$EP sqj̅\IUeJk- nP[<<иcy:(ƼRVr,N[ML|3*&wv}ӹ4=Pl-ok3)@r YZ cy#2S]佛Aw4qLY+=q/Ke|83YEnqP?.ˆ kMf>ec?,I45 dR2n4(|*,odH/YZR$c, \S'`ޠRo`ϴ~$!B)_z/2:jc i1S_?&Iށ)y?kɱd8m7r+tl]CZ.4 YϘm5dNߥ(ۈ}c-Β6d}[_x聉8Kɲ?M!3&6`ȡq\L7޲;}tt1TŸex#|6%b1B_l%p;K7a}x4Uu,)C [B&cYYS'\mF^qN.&NY,+De4)2G 󃇜i.`nQik[3q6pF'{[|Oo1Ď+,NB{!&$S]8ss LxEff<%a\zٖW3xZ'[^̀,JM`r x3ECeW&͒d\*[O\z\ǽ2;.vmqx*FF~sF\$L5;U"9;++cm&KiBʭq %;v꿙?}mtsyncAccounts.ftlTj0}߯HZB/PH!4}Y[Jm7{|Mm_ [9gFs7PQ -:1_Q30@a[\Y:+G| %._q 4mwK*'c#['FV((bG @5++/Zzݍ%f-k![IM ː tq֡olbK>'7kQZS,A `ܸGVA[}P`01m*zU1k KQ>~KϹDF1S ]f-w 9[o0Q}Ux.g}Ր (`򥂓ڜ9P|"N|Zi!&?x Rz*rp9)/8T%- ,=-vg[J*aɝ$.BU[(bY⹼y-b[,c>Sm.L+jyg+HIuYv&w*PhN5ОXů)*9 MJ@X#n2zά[MrJΦY$>VzraɅvR|ƒNI8qJ@[ QUbȕP}uC6 Xl#u(kڰ BmUU _dķ2Z,\B|Y-8 jSQu@0~l Znfe)ҥ^U+R^sJ6/|ۛŻW/ }dT io?'xɋ7_ՔqS4~vwf4<3=hᘩ?6^I"kԟU,*MYW C(JyhkAL1irG1>=pRҜPMUCUѨ~Z-E:Eм9}>H,DQ8Z\n`7qoi:$hƈ0j tx-;Qk`FW, M8Zvgk6ZB-Ez}@#aiETnD%Ő e&1RFm.ק֧QvCYQ RݍS E[C[FC 3p^IEs|Z _Vܬ $ 5~t#n1qrZt'pJJ&qG3z[&=Ui5UiL7P:ܚru+Ipx4-K\"m3l\ mª\\,mԶlT4\X0!F5{qp~7M^=.(Ul< wfɩEaRCK鄩)"W'(,G/qw%)y/\qr BnNZc3J)DG c;*sVN^r ŀmءwY, t-'&N |ޗC~"$ ylHrq|n"5HEG4+YF,j|in9.ċ<p}EHU{Y))zBRuS\׷[Ч$0G=K  &"w7Kp:5^F~=2\]u6.UeV,[t?0*ȩȼVF՘jo-DAqͳKCT(#Mˤe#;Er6#H^S>,S7#D,QuSsGddQSJTR*8JV`Ш##&T⼾eޑ-;Z'T٧K\k)>rA_ox>.?i28GUNiǢh-J37`5h~C`OHaekޞۗ886RϠ+AS(A (n$iLY~A]9M}xtZڙҴTw|VX&Nd^dO'\52X5鷀[U{#D\Q?( ?ԌݐsyncAccounShclbXDVR$F`Pb7lFr8@r9K쓤?=d7gVlL_Xs<]<9#w* |״g,DKWhʆȅp*_r!(yۖ3`2du@Z0r㳊*BͩR&BIUBdΙ;RRVӊe+$kA7#?s6oZ*K+@ ʀ*ACu}Is\&圩Ce'AiP),\.sk3B}b>?_oO^yp~ᅱ`zZҘ5XUUZlH)+PQ(sBp*a\VЙFQ3 }-KC=c6SlV<[U9|d27p>T oPHdM#5.v/C{PDϭRu\m,5ltUBs6X|Fgą6rsK "+ɝ xUcb;i Ё~')Y[$'tLn2l(\}8lSĚ+>q:d]\먏gtg5G=WX`AfE p:8a 5%}pF !7!smJ]:3+z wxtԖ8UʆuP$=<ŠEnC׬2J ă{ʉ`:eH ʈZHsLvu! k@. L` & ZUp}yaRyG)쵇1Lr{WO,zM mEWmB1ȱul%؇X?H|VJf~[ d\Sk?G@-Բn=$\/M,\ ia5' `B5|RjG豻? ae7VIYJpsL(FuMë=\gL`vf;Uܭ~̥mcN5f4g|d17yԜ} 3ע͹^bGv'BjW]>??޳fӹo/B)GSNA& $}Cs+f['n ]QD#m4m+`AR9(ֲ(RE>k4@55UdqpM&GBd \EK]odJPBUefݠV2ӟp2+v;vh4Z*)\! _J(=bRveب=T>nP9;тk>5_xS 8 '{̱ WGp55J\ Umx3Ոr`|-6J'S/|xf <ٯLܵy S&_Qk- S#\ѡLAhXuQ([,qjMáXϘZ PM 3M$Xa:6 .wzbmГ˥`FLSdvkw]F35~eg0-rk"ArgM tiAikίK!2=Wp~v.p!v6i=f&DLe*7uœχVi ]tNmeޗM?1W>A R"C7g#T+xJ+yIL\D;ʌB=8pc=3΂RO*N?V' .d»2ضgDG8kƄMU=Th#)v.rĵS_-b~SeL  i/{ډtecX4-d ~i&dI¼fYCgJeU`=,e e){n|Ƚg zӓ"pFQMk t^n>|uGKC[>=`*[[%G0{7+bn}%Sʥh{ 9S-w7emvi*= t0K"(& -˙jE`&RFjb<#>D|hDf!eqcASCYM1 QDoszre,_0&яFEL B&h"ASM,8BkZNȼO`ס?`x q o~zDrYe$''e#*:*^y 6 Y=Gw,XF˂&fzR]e)WϿ!FiHʓ]0;L>0ϨFTq 86E|E.1Go7@村 '3L1hb|AzXjrb(έ"=-QYv 6Jڋ8\w3Ǜ>MM| j^n7<'^rXR,wcO磵Xf LcFr _q1S8[2|/(IGFT\BD<8dJoAKTw_ m07|i+@AoRB CUmpX¥ImQqx_yPb]3&ɖc,iRSH"I GFc=AB>bH38l|.x+;'(#50jXfD#Ȏ"l+_24\ܣ^ɾq*oQv4sg% ʉ!wW~pzk$ޱ,ˉ--R):t|x\E{A67M@2#4^<}a8B\-.ֵظh@F1Ct o wGOjag~%\&ظQO]dY⢀#WQ|c$4/*m2*8ry෴ vu~4?ߴ/*WnG YO\vc2v䔏~簼z7 k4o 9UyTv4j!ثVo>,&6mUw>=?͎H SXJ A#StVQk~mȁDd4SlxswR#x!Lf˥DNA'PJCkC@ؖ6[=W(fzksx  8B3DQ5q[<\X:FQ 8 "'B:>l9ZncKYV蜔Q@^j!')&Fv׵vy{lxTlK(]G ' D3L}HWcpm0;.:2*{3sn6q~R,C祈qdJ,KNhY`)%8D[k*$F q%^O\;;zP@h xVRQGq3$&Tu<[Χ_e`ۈ24-hc9"cbfg,MTV~kX,muyU37EM,J3;Д.L K8SN֠ФfT55D(AMJc>ERfE-UNv7 )7F5_FtYi:UMavf}']jƴ}gz Vh}n]D\ٺ00~a4 &y-$MI)I}̧`vV;g|n~S8F$Ib !q餧k8BUrA∸q$|ݳ^ZA`TW_OMk$yD ,-HQ(L}H|4*zjk.fKzF_=8kRީ+IƄM"7teb `em,L$r$uT?\.Lf K-)k-Ez{U˞)|zr|Ej 7mr f0KY`JUV^/4V]Dz'EVBB;c 4CjwSKS{\mg ;U;0.nU<g,oo&s-c OS_:jQ3a6zpMX*+[=n67*t=N_li 9=D'[x#ɴ]_D>'Sn;WRHr31n"?slo98gؼ) D>qQi\Vk阗ϔ17ف6}!@١oJzjo(ky/AAC})SV[@)zYfvv)qR{ qcOLT2э19m_WuX~`ej@0&C_-]g1H&wl*#aԅ:Ss:(i (GR( G.^{{AmƱGsf];xBBHqxD?}vn@8蒛iMx{z{Oo5xR8lPQ[ - R*=I7\p|~~lfgg)~B:uLN1t"셺|2RtL}╻:KddsңSfF[6*Gt)YI.Ȋ.u\@@̴O&),2 ?IDZĸ<֖߯cdG?X=Ӏy$:>zvWR4寧ו. z?紐nM.mĦAR]DඞLdi]l ՝9l9jZlX#Y@t=n',uQk\ _Hl.4,%RPt;m\"jgQG K1TJEh%JQDQC=7-d7%tGEg)#m!p) Fiuߵ!{ v&<#ޠHLr?=sigH#prLk/`:AB\(: v$A9'Vnp^%\'*5Ia+HM~n"ĕ!jRIJ<n׿ }-d( %w;(Xpho8Κ DtwS\뛓)y<NjAmӑjʔZk݈t<$B`\|[bT7ys okVf [Zt`48-E1>oMwY}Ka:XaRika/uX:K,иÓiAe!,Pl*bf@ %?eZEoЙqwOW9l! VQ mCk{Rc,أ\9`I32NS+NTܾ ͓ăYly:ܡ><{'K5~D/د.1<n"5|K\Ig>PuVS·:%xH%;?‹@-|O˒rY'.^*|zp"fz-cчk}+M cݠV?@9}Ӱi[][èMy(FI-1\e娃;*3ߟk~~V:[-lZJנRʨZ7d@Q,qͻVP"CФ="Jn9^,KS.,9S (b;5q%}pJvM&aa+lhy!(#?hް-:ZǟDK="0E\ r?syncAccoun͒ܶS,We7gb˩~FJ|H$A.U開J8R쓤?Y+`/?htٚ+T2e/dA7U/T-^3,Kp&yNyyzt<)+I63w3ْPjא?$[H)4ɸҒ/j2z .K$b)PMZW<r5sl>;::q1ɟ͘$RytM 0U>"oMN]I%TJJ@H!x&bl.Xáz-a%KI2W9 J9p W54? A(= .rnKMłe)ڠQT&KYei~gH>1++0+!ʌyR(,*yuQ"%=GiBE̟R:(jl]8Hiج9 0x9[ew=\m`/VZ\ Æsy]ĀZص0 k~T]xoZJZ'3%1.)ɔyr_J!#a@L״\Uf= VRFjF ^z  G>T nPH%EEW߂-.v?/Cs'@D˭rF%q xVM AAłOqЂKa ^C0 :8(e:Q3-{Y{󾋞?OF.ջH]0) |G{eU1qFL.xa9Pk !70y]&5ԧsMpkR%K _Ы/Ӽ{85H1ihƠ4 .~&>@NȂsIiIFfht rw8_tM-_=@iۍEo-M]r׭jרI0tQwߠkdp(.@ @(*a]஄o2.mv5[tu@3 Q`mCדh3pVqyTgwuN4}I|596]M y Ǵ!I$ `_bC`olTkLG"әl ) F@ Ƨ&l Q<-><@\ݴvlqr8/-+go\:\μDs?<]jsۺS:+1-A}|#xdהܾcw]'nx =ɝ^hӺrZ4#*5 rJm3f8.i' %co*!L̸^ʒ攂ڿY'۲M̒r;KiDP#=FsBK{ni9%ŢcI >J Iό")TeW.c/9-%*$^q̶g1_lEebLJ) Vi'f;]ZcVuciUNg[%n#WbMga~7c;ttpR>AEyNQ*iFo\!&9FI<%P`_\']?۔Ts\[굊AOV93bL y-.{wb&0oBlMc~~iT{_?7I\ bmr5M)AGFʝ_ YWBd(0:2Yy8K.a|:J7-s V'k-3z;;+a`F0'Cw 愔, ShQ\&n 9W do+Tj2F9~jTEӗ>f \BCdd6WtiI hH<2X`NSÆhZЋFI.R7eC:,{\ WVĐ( A^ p#h?Zs/ĆAHrzZC TN=jz\Gę܇޷CoEn7@}`rS`"{-.I]PSە翿J#Aw*Wc beIPH6w~X.grRSKNᱹC6)^Ȼաs=B@{JÏt⹦p/ʌz0n:CbtxD]1:4C2%Iin ==1B#lф#Kń92^ܙ,f'7E6 AC@;Uj`F-}=2#lP Cj5 qv;mqQEw(3, ۖ[X(d{sZ9 k65p*M] %S#s*5xP UÆr;i'@xa d~2+bNU&Dk"yW m04u|OJ*ۻz=4*],oP0<s}_lp PXRC>+3 ><'}tzV^1%>: TTK!|䰙Xtx"zXuW+'ArE%4{ Cq~3xGOj4MN&1M66lf,I<=@Kl\BO\_rY--4#?5Wۨ ?6yk.ܲ'w1-uo3w4-}3wܕy{}K^vk6ˎ7+2c#@ ^'=dc{@6q>X?ivU' R#x-,K9О@) >® eG1Opkvdyf9k(yb-tpAZEH f3kIQnLl^9)Qs%.!')MfǘWfL|JGf0FZ .N>fǀcg#DLJ#M4 @0R1<[*ޞUͳ%q>/aN&Sdv`/Vh =.Rt/Kz>ʟ{0}OIJbv+Ut];^ Xo^nUtV-w-OP]"Ot_V3Ho NV*S%2lΣ}%} DZi13P +*&Pe}synýb{ lg/ nB '%TYC3s%@lT}JGПFSfD{/CѓYQKϹCE#WGbztYi:UlQ_~mg bG:~3 G]D_ %staWW|h"ZMߟ%$48lkvS C/71HIpҠ葢fWL(ʟ8NQKzIZWZm`KЧ5Vfz* ӅpRu([Ⱦ $J>kI5zqJF 5}8o5)_T\ҕ $RcBN2 @Y $VcRe70,lXҹ֒\]R`_ԓ+R\ mk7,`b+Ur =_hxʩב[-WQBj;(DQaR7\z|2`'sTYɈ1h3Sv !:Q̅H:ٲ \!3Z aF !ԨѷF||L4nޫ SVkbxB0RGSl穸$<%'ʲk?ޞ/INC5ZԞSYkZ_tΪ 'D*80㭙À9Zt'V /S_*jQ4}:"r,i{s FF5tv_z|,Ln"lvqÕ »i5&K@R)DdxFb+j=a+!{-"@Ƹw}L!'Pnx؝}]]U堇U)JweH>ڛ>FÚasbX({N3`i.-q8 `5Ҏ;CB6C> XjVz94 .ҵ`. }bމIR-$tMk&h4)~ e 't37ρS_ Z>Hŵ7lw0uK&+[EQfl@yf9b{U[.% eנ]:t' n/[[SL^ H1mZb{_`1UkJhAr<mjA 65|7jV#lAhr|"j E4Kd¡Qj"ahw@vsqsZw0jXiBc:mMBBu\-&wE^΅{8\N zH%q僔=lq8to/ڌmϭ#cxP9)^9IZ3R t.NnՋ\~S`ƈcDJL"b"5=޶{'=k(pq7ɓgwg’=U_s:]@'JЕBϝ{)EER(Eҽ07j6#V9}Ӌ1)W_UY!z]4QJq ?[rEd+đ1r ` f~zy)S2bB{J'^- Yhң/g=mHJGÅԃXmXҙRZoi,@9\\Q5XH R-9N$ ԥͯr6zgreʂO@) jJ$wi<:@D+ Ae',A>!^w^{]r{zxQ?Ã>>_;o98_"o{`h7Hʙmf3Մ*V? ,>8F;>f$Pbz  ҭv{%Jv d0`YwR@JFT qqΎ:ي FZ?^8tBBdb8 H6qih @ D̘թGhaC} :`5W7' Ln9hmS)D '*%ۆ}qtT CQRPN">ސ}' 7w;i r\ޱrmԫa}Yzͣ>q`TNRVf3BD@VVkFY]aȉ Hu1 ^|qj}MXm03pl)p[΍vTw'7r@C(&WN}k#Qn?R\9ɸwҾV﹒ܟe*_u*r>݌mxr706~_]b"e?  B'bC;m{W%8 [3zj'όN7' ܖ0;x98!jda<TK©=p5rؖmRߡOgI:qlaUd70eP&O ˂ Yn:Rbv@aR@8vTPE 1j- @S$KлdK-":e: K8ǡԹK\jFlR21XD^߇E8 'rKZ?:85 %9ohMq5D3e[UN1==Z}u xZo OH-# |^ E -Khj^E1Z]RD\&ꑵmo%b k"޹d➩ ;o-·Ȳ FSJуOTSE3*YXFP#@9)m8:n o<u3#}Qads*&CӠzWڼd^Kj 9h^v޼,b7Fʤ\淢:ykkPd~ ɉ}|JMhlVZE;$؜3)lL%uV0l~=0ZH1%Diئؤ 4f:]9MF~<3pbDa[ԙx4>1*mp@AsdpHaiAZ~J-֪MUU6""fsyncAccounE9Ň:JeSK:]Aϓb ^"+@x(eA˴ &H0*B"_Pġ;́ >NiGe8Y ф+[lF95īT!yn#!w}!&]׭gJG:ooXoGW :9 gjB-DϿ:u!(Uas53s{`K  Ht mҫ4e }jHVw9^kBZa+},HR0c`ԎsH`i.9.@{#$M/y C ԙ4f;@\R QE>LGIJ9x$`seK?Snה,1I~2y lSF[80fpoHvoH VUޡ"X\LۣLcs_r21:ƢQ'1Qly CJDoTlHSt|'!N7YxӤ)S>IڢK[ں<`xOBU:FlNf7e&Z*:UiN=b]=J4gZ`XS,JT5tMwg\UrMK@^]26&ggJbQ CN׍ru8Ug4\JIݞeX[TN*Yci@י<._aYZO%UhikDMܐ\jɵ-sx˵͊)u/4  c(d뗽6uc%2}Q>'_^rjZ'r[Y#%NFc,gێܶ}XM8kmƎ GYqEDzCAIE)J3kg?g$ܯyLuCb䑬 ϚvyRE$*cDh\/_^iA&v[>&W!TdUe؊\q5[ْD._U$SwvV8gpmkzF3b5+ON4O8АJ  ŕ`>ysڴrEUTT9'~ ߝUI]2>QY g'-Yi,t;q E˔b^]- 噒,[IyAkN5lKEh;sR4{@O{9a Q8'޻ӎq:t";q4J^'GJ`Pgٔ;|)_vI'S\I( )XR?SiaOvR&3NdVY];h{ζK i2Rj OZ,l1BwD3(*Z5ud>}/ΩGjAS|OO?U->|)Ê }'R5K"# Kmֵtfj[ӏ+VvrDzj2r붭)U :[:ڽ$kpQ3,tMF)E ŞMO~$EHd$ ]w~G2QէV_͗门wvVB輪VU/Ja FF_HD'CY"kq\Ka$r<JFijCPat3 LI[&HSa2'W _MJt_ 1חU,d4Ԟk @ d c~}+^333F7.cn$ A3 :ql4ߘ2[*hs밍fn# a過Gnd(#Zj.S=^IO6 \kw  G*E[NM:3T=6T:a8|IX 7 Щ}c"U3?Ccp”5eu\+\)gA/2D;O 9KL4#O  BJ))ۭ1̓ 8RLQP7(8=ŷ3ֲ)TJǜ9@c#3VSS9qG :nG8ю Q{V;!F+ޒ br7Lf|n1͛Xc_c猝pϗ}9]#l{L6GhЃmAіʺfMe뜳&o!hpec<\{ !qu&ɥ^;iRC0. yZ?A7@EL"]D jФ` %-Eǘ=cªBo7*a*GjHL;B*+ f̔+IX٫0,7\i;;Aӊ&8ѝ:VR,0Q |N 0^8 ֆ0T5ǎ֤5 i2naGI{THL);#)D~b/Q7O&sMoű(t(lۋl,EC5m3Ҹ9dd71֎ bn/)aꁆM${BHR*#>j \Zgx.=ƳEN q<3FW ڎ|cۥf4JA~bv ;Q'-\kvz/̥Ugs%% o4 '$S>H)DWI@Akv]g!evy =#W#"^n & t8S"2Zh\<6BCH:t)> *8\ZOa7 \pE! jr g[@?/Q9iMVᖵ1'eo%K FPQ^Vy)ze%Wl\,$MNY=n$);AQs7pPȭ"jTttJ?4p[:F?:!YM-s" ;]!3ZYRg{v:ePI%=2,b{m>{z-sN IHǨ$T9USʶUN36θk6ܕ9-;15m1O$~6"QDP+=RܲsL\Aȓ˴wƢMjBԢV Jon3^u[f9Lj0n<.[(v eNkGIdv*ldqi:=F#;%cS:]>vn0EA6^G@ }ɮL{$^Fr[cXꆃ7!t@l/ylhy7#jH-9?r+6E:ZJȨD.o_,/T^4%Qb~=, F~)IZ<@4Nki<ır؝U bfIQrq 4;͏M2bcټ 38Ky F6±K&\wtvU=5v>y}eȬBX.'J1M2 擕6Aʕu1d"oRgCbŢ4C^@*d/3X!L86/{?l׳SOkĚX\A1$x2c-9~kf1_UW:Gx'TF?󁜕ĦQ޳erڲgLNBUT2&wrL C f8Sv3bܑu3GKv 4I c'/%җ 1QMy\sZEۋ &3R@7Y t9ԐBdfڒĬH"]ov72pږH?Sذs}Hsnw3V}9z&a5eH,byM[B&ozxx ^!lIJL[9#+,Bѐ ey&L1 QAxȉ5SK 68BtPoBq!)0@ 9 +m;(v2_jb)ߗ#ہYFqc.F@z#ˠbۂixvphxdO9TjDKu^!E­kzX̣\û5ke6FtW Pݦ _1|abi{3r\C&ĊDm Fw$tcC8gmRT{wc7Vmg*tCq`:TtܑkHuZ[qP8l׫i<|Jd;4k:F"]G_hm,Oqlm'E]@ƀ>PRjzt, ^ǧ):7uaLih)}j-i )}}qic% j635!C5\ 4s37ex m̶hL[!1b'[{|17 2<҉+9na/!lٷHFV !u:ΩYk'CY]遠p:;m{AkyԀA+"s+C]O#F4EFw=ꗀ i,Q qoC  4!7|e~ ,V:֍!TH7:[`t<3*%V ?%e=^<0LL :W[BBTЉ&`݀cY+-%~@6\Q]nuW͔2xZ6 t.T*673K8WZ #.nX~D~XmJo;^Z~_(|[+,Rr{ A#?NbTFGH\sCa}!ЛI:KʲHIiPdv4f}N+Wkw!() |GXps69@`u\\^ ܴ;k ěy*H&(XrtsA "// 9Ud29??y s)H_!$3ŚQ4N1=㫁1*Gew[jVҍuLowB5+vb FɿZ]n~)U@-}25.6d b X3QS&q{! 9/07IREvE_CrpCnKF~P1#?)θ=[Zb #..%n!\%19=1ˊPTy# jTXβlM`7e(#K*ZXdZX=9Jߝ8.c͌Y(F[;re,[Ă^Ip; Xpj|Ywђ8QlS4i>Ň|QK%-^$&a2bucr1<˕:gjB47VsӴa2%wH>QB0>AҌW75 ~ߕ~nF'(1-;: )Km?ĥ)(p~G0=X&1Zx dTHJ8>)#=`8l\i˙i{U%ƹI6,e/JSJI>D+ɿ6B,08f˞ _>s_}lq k;_oksa.+Dr&pJJQ" y*7|z`$~Q*:r{P Trflm~`wC`٧p:0dB7eҏ=U d1SiCӶgo.i@}Ll(AKI&VP%RtnQW3>j݄uHNn\fAW'ݖG!xn@!l}X DS K|O'|ٲr1 -TICE,>3 9X >0 rKSE v"2IF! ~#(3>p}{꧄i]6О*c('bγLz[pFΈdO):9R#9܊~mv*At7=氃p{tNoE`/)$_ϝ5.rLnlܵ#MPCeLam!NkHͣ7jGA=u! ..h(Β>mFJG;tc_7w sz1YܮZ1" *hə; i$ys<hI 'ư%UrOOiОR7]~ge0(W[I7C>.̘ZAvD:7s1azz[COǝ?5ڀcx@)SWd@`I٩jJ6dU-8aYoQTį%և/ 3$arFϭ9jO{^yv]M6lВаP+A5F¾. \;he(0Lt(3Gur|( UV;DMiƗ:IHuP73ʆB TfHqޔg~4> 3ϟaa6UtP ^(nO'8رֵ \S.AgRҒ*{T]x5W%o=_(/F -*2D]Lq$}'$̰zi& OJ VOlOOkh$QR |Ѡ0lAkV4.#s &5m:GM`J;Gb'|sYRĹO?ϟz[*ʿw/ڵXУ|n w;L n ms >[|iɷ|kC`FKqS>J8CN'iM)w֧rsaZ2@5% 9C'7I)i8{)y3gito]NbV UD]tnw yҌB8%Dy;:[ .#0.O@fpz(>k_Ĝ uۖzkG;f}\GSxگ}3@~|ubXHs-`eO x~%0nCS" kV`$d3Hѻ7lD߶`sV,mA}z_n~J"J<ȑrV=D`n#e&w@ YəovgYe.1NY2.Yr3,ץf]3_R$~d:;shŋůkA"5Ie1d6NdҺZLJC@ZgEJZ#͂ȝ^^\\.gٙt6*Yʍ:H? q--w*Q +AҔ-xAõ!"KH<)jN0vS H),< }r5D#?SSzw.4G^`I h7#4)1M+cOd[qypE|ͷG8ԓ/Goeiz`=PҚqVTPHRbP뤱F:>oP\$↾ <%::J{ !@Nnjul oR.DʚQ b? To7մz<Ǽ2j_)47 vpy9es`CP E[U4ReԌ^kjHH* ח.$ꄷD@.btZѳ2}T$j>7rIΗ]/l%nh{#hGiϹ.ϝ?T{\%mo!BI ֚)xɸDŧ!7[s ܢi{S;z߹gNj8J7ef':$7nhP ʀTUv 8? 4)dzF15;f4TfI{P͙O'pQ}~ri AsճHDC9"*Ax>QhLV*oi]LӧA11SRc7i81IJN m<7a-c13Z$ajlN&& 惲PK#K fvw}۝Տ -trM^mxŪ깘?[ ou_B;epHQCB0p!|𷔑!Իo)YU8 psR7,\w1XJ6tM%ngX)X/WnF}W,^E@MvlEaD^$+A~OO%=eZ]i{̜щU҉klGS83|Ņ_l'"R)ad,X;~!仉e!H\NņƋR:ooXU&pM45,^RMKe7yD̰ĉseY.wKwh ^c Ը ^w,v92W@LWsC#`Ӵ*w7/cjCKx,yo[e, &ЪY L#5I$)*c}R֤wwm͘#^F v/5&=yiY(VF¼!ěGPs*c_,8AIizw;!_sUCڒT_/ }i˄$2zw/TGgAZfjެL0R=p֚2D>1+SF|bԄ&ZVPC&ui6%ZIFK>߈x}tiy6OQ=NC {Dy ]\ܐWdщ g1j.#'R1IX<8EEЈ''6| ?7dK,υyGvʲ߾v\TY/Z2*SFRx^D͋HfQsnE,ޏ,w(8I0l ߨ~Oُh, v6reMG p+j5Y4J#ҕ/([^rή8k- X]":%[]Sؕߊg9nŕδy_?nrw[IVp.sak|YY!.^-f.OQ ;F`dtoiZ[xГYŸ I#mE*/%Cv/ȄX&vĠzI +I/8_/?¤cVfxA 5qսѪvѺa#:r}e ߅yʉ\5ۭzG$^tkvrtӦ9%ὄP} s^ftIE>!g ~7v slW77~$;ץ+[}yV2 wb9eN@3Mω/٧w%jtĝ iz #!W * q.<Ԑ2@(w+ ijJ{+ i6P|iӻtJи1":t_ Tl>V9cϾM/|zO3+Viۡ7cT*:I7ցQ&s_k<}ڃ۰[Du~geh h/,}9Yj\u$H4 O p[:5jq^fF@[_d |`!h}2 |4m:Ymƶ3"vCs猊 TAWy0pܚcFHg|D5݃v|S~Ӕ*שCQNsE)O],\,Te}@aC$B Hټ'o)~qub52/z8&b ьً(s=PoD7I-Nt"pyL9-?c5S| 12mU"ICa/`/h<a5i{_݇/$yg^7IEUh >Z@d!3[ pctX2I ƀCҿP6uTBD럾^3*9_ ή; No\7RNkX*?.1ӥPrI.Jњʘol>:M1AtB+*(*I2DY<P8xF(h#/Iw []RMjK{0Mljy k 9j0>XXcb&3YbP4y&fT\o'.OX0NMeyyHsQG@cdƟLJĊFaNR hk!.«K.ÐP{6>R/KyͯkFY-=]{O7gS\lVhR(+(TwH oc|enhsPTwI1 `wߜ <N1M'Ax;ŤpO0xz}_ٻ4v}tIےkwd<Ͼ6׋lkSW>z\bm_o6l|r:F$0ClE4t9 Sۮ@}da3n%~۞[hC=oJ)qUgN]g?\D5`<iԜAQm}(PvڪK _R>'QgbI=U\Eh'Nס8[c7h[.<'{NuDnpwT_4eηoq\>1s|Uudqڮ~Y"F!ޔkG[M_POd(0q3 #E<JQ{65]#66Qg3/岤KK8)MPQH"kò,Q)*n<7+#y}p8?= % b!U"SH8LQdvZȯO,^77+=OZD 9i( S4;Hkf?vy6`xw-(k-QAq8SKvW=|?GG M'ɹԭ`LשSN:xS}qn-?,JMatav0B_oŻRkM/O귫e!n~ȻŵFbzөMqP=@TAZ40BF;c/=y3jK՘N/7_w5J7şsQ c+ &*#DzUꮴ2>W R}?ϟDlϟ:ҥ.޶yͻ%s7fz#FDBX0F\kHUb>T!-?FU6|1s]:1CF5-- ą`e/&:~~^CPTJ.e}i[W121S6>E!kh*X %tX~jC++/ ,6{ѬfكbqEa)`nIȌZ)d*#  2=^w,̏l ː|qӉK'zT it'N  Z$yM'FhI㞤t#jxˆf#r'Fv :SxSTjӋ >19@.5n^(V+@>0(ÇBE.Y; K,-ғ 叭?F ̂BOH`{hN ޳LV"ܭu,o;QyLZIt0vFLEhlεhLf6;8'x+$C@yjA0TC -;el5F)Au2 ʀD}9g u0^I8FOȍ2Y o B$0@\ga|G4#ݹ, M u~. o;o Nխ̲%ryHP͉'b삝 NSf37\=uڋn0*eÆԞ  GxKmc:eif |H&`CxŔ@Bˡu НJgܢd:OֺNXZ%Ot]+ ⛂y5cA#fQoZ)' AQZ@ξF, U*~{56!#,Rϡ 9+i|"uV_e 6Y œs0kb f5X `}1;pֺA;7Qwd';독_st_Ғ>[0&D-͛vVG o)@}Ҵo(: rϑ}&Ǭ ˀ+lDZ~5keJl*K6N4r$ܳCc' s7djӣ #=qnG}ts,Ս7bbBkW N7ۘh&8$%N,mhkc`=¸Q%"q !@s GDA&~$ =jX:!ⴢCdKF{A#wkV嬥ɰ٩G\݂ Eӑ%"45+{ c:Fkje;UzNWjrv-Ujh8G;Yi(! =aؠF!عn=${H5| *u /"w漖.趍&üKL)LNih>z E>qhAs T~9As"grf:iw`⤋~ ;8}bCE9;}"*vNQroq=$n`gԮv`"c8E5RDfRMqeP0A5AWF `NC/Wz+V)k %oTI$ ̹ Sb\^ ehc-Tb#(ZrnW9ڔknCbdO`Q@49 _}{_qZJ{!W kq9B͡kK Y 3E4"gjR%W";~N?6)nC۪g[љ#t`.䏮6B"'(%:L cq|Jz!l\#7 /m'6}(O)8HY萨  w ,*4˒6YD,7mhzqyLiz7|~d,8́yǐA_Z(z%ʰP#ӣT T!v՝2zUZ͈1ttCGo!NFyn1` lFv\F=HܠJnhcZ(NpZ pǰ2Ƀ'._Q^]g0M"(p.C$ѭ~$ȳ&+kl@b0l(Pal%ǘZN ${q:)v%+z\.T\r ,0<ɝX]>e=  DhEj hԘmtζ֥WtU)őm>q]~n]Y\\F#dgɲB77qdϦ< %koIOw_鞲Je%(V|8‚έ3p-~ QoƤ<]dVb'$E?19 QqH#:1/c@֢;7׺(IwLAX#(>r@Tj8 H&\vF-]fZ ymyP/c6779yXe< c'AI@ =|JCN'r@oA~A\BO qCGOU22)KfP+̝196o"/ Ȑ$lOU=Z`ꈊ0b`2ޒ#ƒ.a0~cT+Ϥk0N!Z6vtO6cLr5%h:x &'nFO6pGs`{Ȫ#)>臼AW U jDay7mz Ǹ|J`8sCzwN]Z1q$a8Ъ.2Lqi/H.B3w\ kpTg6d^,Y-\)Dk(R#Q h(EüAnA6$Obv˃c/AT73%5 g[{Tx d#n T΄F7ȎS#4kzNjuV[P)M qNV4/<6ͣ8o|^e7^UTⰺ"#|L{=)jKMH۩ -N–¡D_s,BBِ4ZI*^keᷞ a7dUzpA:s̢rh `C-'7NR$lAKq #QR.yjh@R+vxILξILk Uոfp5Qט1's| qt)`lw, "0g@<5 9hs!(=*Elr 쇶u] [a5&[ʱuq5 Aqw{={<pzkhɫ%Q{QGw>JQ)H\ùbԅet%g!3C\;i #G1aZd,X"AlGIȀYkc"25bM=WɽsuY3{rM3Q bK`=C:iI{'iMDc-م.K6UlIeMJj:ܕ|DN6CykiFbB|Wr$CI3F pCRSQ]J PnBG bC}H)ԝ-ڢ~j,ϑ10äi(졲_۪P,BۃGjK5`孩d}7ll;Dz`p3$ 1™`Vm;GK[l۲!VOn+b~>D!]+GPeq W/W4uun8G;_z6L ,M_; I]㗆dA*Pn9/٭6ɎA<(„ nϦk[Hx(7hhyimafe|O,>P\?{RƸeD;L^ԤZeH3mr  zOlOQliOMAT}6N{EY.T8 c"a_EL0_fP 2{qmlK&8JEٝԯ?_$鶞cZrL+4ŨxaGnhAK e bW+ƹ-1.Z%)M3h[]hiTdxy(p)G-Nۗ?xׄPfŷEh&I#qp‚zScKЎI>}jC1qK,0 wB@݆<׫>x7/ޟ$zMCgi{#`~ mDc{,d1@I+'p8e/@8/juwP皛БiM_Ƌp1!uMqr\<HZZY"`\s+e}Ԣ>S Gvĝ(KJppb[A3(ol\Y?=X*8OQ`o9llL`{j@vÉ+3 I\~T[wY!&YFzՋ5'Ԧ,vC/zý3NFĎ<(ۑ|r*"9<@fAC4|]+v?S]rK=o/nb'3^9q ̐jS&_pe "atprXe;6F#Y>nFa qvAí0Hx%KSb3S^EaCШv Gƚ-cAc=ka宸FlB03sQ3GRCӞ#;pEB^ƅbr pg)cUiv^+hDm3gbG u4԰/zwkԟfd7 *"q"h+H_qF}<:ŅDQ`\Af؂$4B|(#1s#z$&DZCnc_ q %ñxKO2'Ō5/LVZ|^KX962B*F=+9%>Aw6Q #/\ $' b6DbfIrn3zmQ6_?66Rdtswnc~++~_ߑ,,r}-pRƶP}Mh1ur4#6 ]yS^X8gLҖU5=2`Uup 1|Mቭ rOzEijgm?]Q]$qѷ.ʭq^)4Z?*d-uIY<*ϸ" v 0G En! ^_3܌DewJ3H. 1bGvq,EC=72P}&}cbx>x730#sN`,Q.:5\q+GjW t>oT e4*9`GY %.Zy0`H? AsRpxVdM~r^fyI+jNk;`f54]yYł al = =8{쓬b4o6”h:~d򱦸ީ(Wl2 }AgwO9qz<0 s <نw |)Il$CJ7{`iG'.׹8d}7[|b_NŅ)n20lҌ½/׊DXt{-~G{Haz6Elh]\j@=FЇJLTa1I!=Vl+ь=Z1"=T䬃4֯Fcol~fj3U7 ʇ8}5TRԑQf0=GC$wG M32 wqiI"-.Տˋ]u 'J,uGƩ NJ襃h&6{y]e*t00z QMU(ADz *a_E: l)(={2/嵫>Ue]~Xf U4z4*4i39lmw7VU-Bˊ/A,qv؉4GITQ_W4~lj踊 ]md,X|O0 w<Yѕ2QP/ K;fI;֧?s>.}<퉢TR;2$y仰eò6P8ER1}g+DM.`#zur);q$"<{SWx\L 5+.8*Jԅs`>9}L|ym;DMK4Cg9>6L]хu[Uѩ3_Ub.}V@8eӴ[(𝼦z/¦N Qq7_h5Grs%0.3EOl0`8M'W[.z6ׁ**uwYN= (XOsd03SBjnwTgy zSxj\EhQ#ofа&%hi~7T؉n~D5nJtt=a?(ګ>i+>}e8 +* Қ:2T YX h-'{1?qY-rH(`ߗ*!nFl8n{NS$Sqru4m@ɨe 9=?/-do\ףw2{=I1XA>B{J:Q%υ#9KvZf6*Z4?IaP_RӏGow궐O#ᰎ.+ӥ'}z q.-[w{q1gi'KCq3ݘiLUj ?7=_`OrKUjTSsL79tVoN_ 3m g+T{/tUIqm*->zjZ|ZRlMS.Ń6NutNăv{-Atb+ka6Nj_tb\sڴw_/h/EU+L-*JnT%]uUUVlWNJ}I_?u%SlSwWm2 3tE#kSjewWJO3rq ?z[shpV:J:;8V7^Zzmފ{IoeF_ca?^aWʖuaDn:w"M c@"+YuNd[ɦQD ;bVƹ4vL]u}:H]㯥l#|@W@/qV;NOvN1 !l2k"t@Ka?Ood?JEU5`׏{5#]-8Ve\LVei;]a;O%}PZkbWePW{NL~ї* ]+";T+j|z/n^_\WMݮUڰ: mo11"zɿdYbqzdi UQsi/`vd󖤹-&!O9'^97w :O`tyrcJ wI|HnOz@}' +v*лtA1gFDdl_Gg$ \[(- = O&KCR- X4ttܖ޶UyχEޯtmFWh &hG?rK]h|VmlMJGl {Մѫn;(f3-g'[:},ObuQ-a%@Q T8|rnl"n;T;jAST:8~V_8z'Ue|(#ۀe86 )fLD m]BQ{|DFnc:$so-BGH6,_X(2"kpDjuK,kS%3 hGY@\-Lb/~IkX+L?>]2ƬSZ=q)+6Fy%?m1szlGo dMPhiz1<."+"J-]D1ei4ZIݑ8%X H ! iA!zzgX緀)A 9bF cģ蒺ҜX׏{)ޭ,4=pJ-:nXLJ<Ϊ>؞`.s .Q4 {B1^fe' ;P;H23aMBVМDpgÝ/o }UT"VaV"%m/yFAw;]G%-(D,0BwD">^~PU:adӿƁ ydOO48!'l@ZXzI2Jf$H,O>oų6Dv)Is xFb RsFЊ+2$>WYCDY2i_ ^Aۂ g%YVVJw F@KYMW;2ۍ =!࠺V0!QғpbBA4穇xݻ'2\[?.-7;4uճtwH" uq{ӵ2#|.w_S' 3"pzmAR ll5n(n͖(d{Vc+ A+ħaC n+P%A{2z2C$5_PM/,/No \k нw*z,Tf⛂PneWZ:OZ)" &Z-JS^Amæk^z}/+]ҶpKYnx`a:1#ohuCR^.>H[ L?^j-^'.UvG/Aw-qc'~º NZz{eZѠvN%v8b T>kʵSݫnڠs7^j] /wۤ,K; .G .\e%峛_HzH])ئ /98|;qʹGlðOWԟ܂&?b o,<"Z\f[Δ؂ iAeW^4u;(*BHW;ϖI&Žp4`3ΘbooW$W^'N=4τq?R8h@/%h[Hk&zS+}|{;t_ {o2,iv`_U[-^B|+{ӒzV\NF7zO?$W#( ˞$䒑0:mA \ŬgakĎ ]# )*YRs~)>A=u݅+9lG}anoJd}N#rQj҇I>:'N3綜 &aח!-H[GG깚LW+,%l!J>"@q `Ps!CXl=& )rVW+&8|81;Z}@<(f< u??o]n!:͞=x'ۊϘ{2k0yY]3a#$ +$Kअt[<&vp]{gq?81|! :tg,W4uoW?/DZy@o *S̊};2mGdž"g𢡄|q#\|@,ySQtxt^HӠ8]>/ -9 ~Nw$HxCbmJp2hrGE,Yٛ嬡ꮫdRf5$ow zzC_u[ ؄HJܻ،gGwwkա`bΌB0#3pZ5;~֏=ID;[[X! JJKIN6BwH]3n3G!' ςyKs؂C1!-2KZWIGzPJƐ\"#.Nj~jX$BOY!ǩ~aGC]s-:|W?3|dGֶSg/xE'+RV$1 O6ƀ9.R2'׹%`h݇IYL{ZjipjSH !Odēg:MG6 'O/?ˇU)!0)?_lr !G8]e- xDG0눜twyF apX⏧D bt"+3y@x^q]ƹ# n3*֜wqD@"9NT*Uj M, nۘ< h`!mfCV.V֨F>c.D(VI1!E ut!w}n!:8"'#u]м81PRʙg+p["VRӀ;"~S (Ih EkjxO~ƯI?_xqN5A`,><`kZ(La(G1;ܴl"|C| t? \j*80P" l.d7/KQ =*40zpwb-d~ŜnE ލ7)sdc#dn.GnL5 9Y;ve Y4j \UT,¯O,h`B0YU_!g^X4Tn~U>Ro?Ǩ2}inߌܑ/џu!ZtΙ1ܺ,6jYA15cjѠJkUԋ#eG !kLBٞ[QvJW%"FcaGBMY ˕udfT ,Ynp sc9X@Xfydtt/:.uO,gs*3a[ϧ.DlKQ=BNŁ] {ypS:^MUgTr=]ߚ9bdgr>-~hRu#|;1kaĮ#jɂc:)ua|Z? fe+Fn$6 kXuraػnO"8 _$*dBz: PIL/y@L\Y*cɎ8 n0~%vW#>3]5]$C8,uh)XXeh̴Pj|U@¦x:]n Z:K̊HjqZ7v,IM?q1C u./j=#2gͳI_6'R&BP'W܇խnrc()hW+n/B&ڱxZtm~/ÊsOi}w%MP !NM_ˤk9ˠØ^~cӸl0DVشn[@bp:!+r^.;^;z!gR'AV{<[;n]]:`XF;PTCB{ܸ)A. sc1Q칕 !j.O8>/!fT.X B%Iw ̃aUTV͎:vΚP{=nz!pA +v-6JnT M̥7\CY Z 2I"a'n P[fޑMfkz<(+^8̐"b*#|s}f}ȧEH 7}_ 0|Q v Yg>K6^@A}&ESۨ'Ж"E7H7ZҤչ&q;l~? _36+=B59ks'.Lː`ٮ3'|ZWii7Pt RVHӣ%K܀~BYNu5x =Y%i町>%|RO:c!XR,N3Üwf'oot ={̝ZFPCl7],\J=%5CgdK>pE@l `:G($MV?n'D5gQAOgS_ądx7TKb7X2.n2̳gr1[Gd1킗8} 8ݐ9itx[K!:V}JFj'WISRfMOF >t^twGoc$d;:$bC^9xAI|L[ʠ%i mhBkMg a/{^[plk:0#;>n4nd.& eEvG>9 uB_h 1YTu*x~ggx?:mgJi6&tC"WM?H}"/1yjM̌CE4מNTƝbc|#%T_-‰T6aJ]OCX&T@ x|knwn6 M^ ^S w6YJAPVKep6(e=ug:ّm~j2|5jO1՚M*ӺN| PW_OD15W+-k0;uйO6]Ɇ Pos@2T"zh ?tݟ=QDCE-4A maxxꜨz|ܘ]$mO0 = thėT8} UR7=T ՞ٮ·3ܗyf.pf)MRCfL&4-:~-^:a 7('OӵzT@71ttxy0q!~&nfV;K(Uq>z^H +mH֡"eUg^~:O|FV񶆎r@Y,ZZ' /82WOuOhC)QBMYXt]Zkjbn\|Qͬ?N{4̥oaxa){ %d:ɝs?kH4Q)?hw? 'a^t$Br4I+B |r:&6Θ -?dlqܞ&Kplȣ~'izHkf}Lw8hٖ mG5C Ebaӹt>,hj]Ⱦcȏlc2S|ce߶c l>vAnz//pfyyLu8 !;1oq=>Zmhm#{cN.tN2 U47zP 7Cwؐby2nSKU "&&ZOJWҳDN&tmS4s{x+gH K_~/mW.Nha@bmZcod #1/y2wv&8S:N@syncAccounts.ftlTMk@W b9H8DuwF 7 clм͓NBIY*ZfT*J aC~s7i<9k.G:e|B)]/FPqT8ʜAD2Sd{xTU ANlZXdX`er@v}Hgq^,%y" {_n|A`ZV>s T.ws.GPYY+Q4UWVR@-3:9:QVk^s)۬kRR{ 3G62嗌o`Vm8~CLPc4l9Uɚ$bk;ltGn h湓|Uhs򪀟R*Z ~\S۲/!]Z1:Y&s#/,Iw{Nƺ)%FIBrbؙȗGv Ⅻd3Se9î_n:RGI\ U솴s~ڐ+syJ}|h#Lf}5Tɮ=Oळ"f&?Fhs6k!>9LR,ޔpN['+iel.9g>n<2 !@[9+=Yqm?*!*xcx>a ?!r2`,C<;E@yA)-)?Ջɤl,DMƣ ~1jZhn ]6|Ndl Q3٫b*; )VE_Ҙ\{G}ÞIc Z[YPa8iSE&'Ƃw'83Yj(mw(:Q~l Ge>}A={r񑰒s":d|՛~>z//1w9?GxY/re|ފ4;|wX~WܖF Q*4YsQ:¢uozMIɫ\BOl .",0BCBTK`z S8 U$(/IsslIk\DC+v %\)7 fs V?ޖIF%{ 2C 7ϯdp&~I=Unf3$聿"QY՘|fա3ڱspԣd r%K 3Ce*AO"&4ш1h$ԩ,3'.ؓS7q΁IؚVkYdłm4eA5XN6zdd +M Xz٣jO8J3UMrk~D`nNd$3/I+1jIN,2wj)ERђ%K'Ϋn"(U&ٛC5"¿kR>Q`_RT|Cjl!5{OqXD*JUdY3/>|K))Y%J-" '6DmB,] TBWO:845]baІW"-Q(zT<$ QI),VW1 F/jD8'f~0By('K|Ƽ0Xeя zPT=#/QhlHDQIQ3qԚ2n]BKݪGAh` ̜@a g[Mr0 &k.^-BEY٘%V?qQ˙X`Ee3оxwE)C~󦞘*3L|29y82&+ vL8Rlj&U@{ ?_Q%/=i]ўa߃4Oи/Ӽ}X90Q_ ~y4Y܆: 犤ز.A@xnx#>⭵=_tߙ$pBOBmmO f!t1} y%!`$E 6)4jxuIAU RP7 #|&ʊм#TuįZIoX2ټ' }k@E_{~\%ӛN1>斟6=c2l1/1ׂ!TKL!;G@"q_@o%d)8f\Ƕ r<٦=DtZB0R&T/CI#|scڟiUA§=I@M Ӈ#+;=p˃ TYS@!,u*AȚfъEQ* 1S‹:{4Z7%EuF" :(ބgD@qv3]uQ=E.ͺfFóivMrھθbquV !4=6݊rOyx9IxK3(BVM֩$Tλ,Ru-khH K4xNޒ+a`F=?eEhmx봁"(>֍'"G*{iriUuЩ4ףЃ^{;k"aq3UemX2:2cvb~o㝰gWP'G.<Ĉ%W;,ٍ1kw]~5{#< Az^8=ٓbF돉 mlQj0+`br p' }g1RTzxi/Jx ,˨9"Ne\~Uqw1f~`G8_~I/H{!eK2VFcRBHtl K@.l( ONb)F,)pD )ÁXh|87eN UHT "WN,bm&o;WCe;1OLNLNrTd3-#hU>$t'5NsGٜ;{}Fù?dB69)F%iʖ".C>1U?~W#}=h4U\dkbKk[rg4=TιP]WnT4QRPr[(ZԈI9J7\cM *(f334xifSh~ٰr7` j9W 6ˉO 3`ZejT^Ui sQFbF9(JRNGpݝpu/{WC,ԃ [4ɂ.;vWk鬶и pTwܱ?5({l;Nat  i.ݥf9s>SsA0|chc~Duqxd.WKr7]"d\8Q*Qd bz81Rr*Ue x$HB`^F4FU8KZ옢g{%KnhJv3-bh*୘9aJ:ߨZTQˆpZچ p3AYL0)EdgG>dTЉ%C"m['pYx.0|?a`5=mk]l=r'F.T1¨Dst(`M:E{M)N紦RK}])4R!dr-2 Ba]o1ݣg"?ye-jTt6fwI+rHz-NGE/:sZ1 "^]VդR^UtM~5qBȋpzKm􌎦wF),I2Y-)mԥ& Ju!68M-n iߔ~?:vOrB?&hήI#LZcaG"tF$ʸag-F6&jdkέ {3!=p@LC(C+\Ṕ}=aQmv25Aѳ+n?RfVYPfq$K#g(K}ȣF`Յ3_oP[$^&+foP,o׫#zl<iW:q nCHtus-@_c ʠND2x7Q!LiM(+O (pM+ Uڎ._6ɡ&ڄ"]|?zD#iׅݜ =p7׸#]39@oC ֕<^' ҌۭЏRS~3Yr=Oc7C12[]+g.{[&Ǭh>uRO?|sl"RRJD#|N403|wW 0i_syncAccounts.ftlTn@+T bY @ U*RKcM<`5pV v7ȟ%8ҔnX3{^>cjKfz/飸c@A(4L]IyInL*Ukc:75['4|]ٔ/#4WgX܄/iH$UP?IjBO'n\M9٤<:HyX̀U7>jS3N#6xQu- #u͸~ġHOkP5EX,z<8xxwʴKICLtZA%rFU-S,^$ ^^fկ qd=OȨD/⋥ְuRZr#Vt2{h{7"Y9 ,c؊xIݐ6B@9#|C{@b:(kKuNڨVf4oJR7"}j733M!b= @nt}_qEc*9qbKPJh G0f ߑ;"#3lx<1FrKEEDG[1ݥ$یةO=ɝҁu-NtTREFub [zX.GF]fw) -表}M$Y2EQ6jT!7;Gc+rG@{ޢ ,9B@WxӸ8NL+9ñh<~ ߤz -*p)< W>8UsTaNTiV  ɤ-&9!ct4cѨ" ku&3Q89||N9Kk 9 XrZd7$.8:G!vQ.RE, ܺ +r_{$Xr,h“.(,-miMpVCascJ@r%X~l*%<}B=4yù&4至'{ySi/t#Jl/nلw򍥻a WHױ"r Mp} M5[:Y/%p[cVNhy!SCSqɄ$uJGÕqɶWE~mh)i& .i=AY;aEjO*(;Zd$AdI!Q iA׻C" g.XT8Cdk"`4;`O0ސf~Ibuq|9hr.QN꜐Y>C%416NpX\^݃; Z0q*HwLլr: - eIm'mEsKRD:HӴW{ÕƤs^AFc S E] ojĖuZ!>\V7AѳvMdv{]+(.SKޏeFzW!unإ][PTp܁1T2gR8 M:e2f)Ti0u[S1VFiiw0έifd=W_jyu"czgJ*:h-Qޓk{|ihQY1vPZf<%y.5&wN 7D-l~/EZ|-m#>u_%v},lZiyE7^15xIɬG;Sc ?qߧM#ǩ7^؎)?q'3Nh._H(X2ImLn5荚.\>Jb=:@-X9h/W7qw@glciԉiRҌȒS  EIL(} ܡSOPINҧU P}$U.ytErM(u=+B- rHL;'Ti/.NQ9L@n5bZ rDOQ9;5o$}X86%_dMn]roì~! Uk6T*9vmR3\nj<@4ӪeaArlUl=UTN!ѨPE]@7n`.3i-I[e7w#zQJQ"{uI6hA\3mNMpyx۫B5Ʊ # GigU ik4xŭ\TDdN =D hDn y]y]?,Zl{u ;q@$:Щq\|*ePW{ z8&7vȓs83 `??a8)pB0m*Etv< syncAccounMܶtf8IkF"ȁpE əL`9r^R! oI#)(Q36=/O*y8< 2rKN-UN7#3b5Sp$\J/Ƃ{W]Bkd9"~7"JRYw դL6M 7sX5`r(*$cC9U0B S^?<#f6;]JtƀmgN"S͂Yȁv5 7n#7ȧ+t/].ɘf<:f?O\II pY رך ͎`E4'͙yTWg3A0ӱ`:f$CF Ν4`T g~Kġt$~[|hW7o%^ۯ$(Y .y|i&҅R0bE4H(2R8'_VYm=)=aLbdIlVcQl ڂ&jhTʬnsߔ,%L(vq3>mMߝVGFJax~[89򅆵sd \ Zw F =OJ^ȗ/#İ6G1;13Q ztN /:ւ`0)@ڠ?=" ^ԄvPj׆bv ),錢3sۦޗS{]:^u;;.&'cTgjY12I9B˒њTgumNSTfh&܀ 0;'b1S߼9]VχaE5Œjj-@z4F\Kc@'52"W-lPOyVe[14d pX3Už"B 5 E**kgZ4]٨,8iwLqʓ&a6a钁?Mp 8Ð9цR&ivߴ_$z_J"8sab=8F`nZ$\;yDxc ]9G^Y:UL0,Ċe t(4dֳ-(\0 u2NX,v f6z{ ;I/Լ!Q+f֑vބ6CF7a,q hx}QB1Ĺyp/1ς%S1qIAP@71U%$Qr!0{ aivH6i8uKr]spvla:F^m&]XA6eGdwj,#z.Ij: j…x>Aw.OХ# J5s&Ͷ5|x/VsJ5y@xexOͻwjC~X^j+$JaZUݕUË>N 4kw,ZhO\neO%8g&x|-٭F2*'xy[,A6|!?~C{Y}~֫vZhe-AQAÌeW(|x8 PD2$1V(OE(( 9:L-V* 6Ȱ |C&Q˨-yRoDNo /P 9]<1IB^ Xu\3.VːemyBUl\*ȔVwٌt< lCT=Y4M R b"36)8#B4%F0n$wdupZLcɟ P U`XNVMj"7![įI8O6[;qz ΰɥe ;5z":䣃za&~9ߓa T9pR&7%z|*Ҥ|T< U@/t$(AFrb$oA ȏ3Z36b"Pi 84?pm .R9k^bX6`gNYᮉ)pVω;?d{=( )rrtO l*sHLPl.c{R,> $:P赹'cwjvy>!]guZP;aN;}:w޶R~ {S!t QlYNS-K({ m8` q/\[cv 3FQt0.=߹Ijk4ffKTţF6?9IB㕶EЁ@94׹7[Di3 {V\ N:jP.Z6қC[ MϿ}(vD% rBT>NV#A:Z0Ym-k]-$Xy!i/굀*2*r.'?B?HsC`jPιe1[1qą>&#^xaUBلS!g{nMZS\&3j>NB;Ysົ}? Y1cấK1kB3%Ҫuu@uvoL{V%ڙXXfrغ#Y<6IB? U z9aʟ5ނK _l!&c.w!bOp"+\\nq塤;8!H*Qo{ORKhb?PZ(6T?!,q1{\98a+@([?,/ #xQ(9jW*ኵ6GcC$WdPv?-\ja +fX{:gpA9>e#s(ttH3\e]eJ'7fqK;!;GgQ͐66!C[=8N pZZJb5Ŷ㸎 m)H/M>sإ`֚Uy%y~}9w#l`S$vSc+'_$ϰ#! .ߌ hʛq5e}J\K؉iྼe6{.Mac30wՄ夔nxp n%kδL=Z;v8O,I[V xt QQqONt e7SKYe$﹡Iw򐓦[7en:˗KB%+ha(dMse4 ^ F'1ͪ$SB-TA+f ` r/(N(N!Fvh͕!S7 ɡ*N{\l.6M.@4hQGȵŗ9`EoB^Oҡlǒb;9869pf܇LZD(F8!S*` ),PZ*%S*BF-~ Q9{vt‚&ȰrítH(T +U :!F27q|@&3䘃F>GUi~gUtA,ޢJx bagdф X8E *` 4BpkTJZ oQET`$iV֖E,w>[{6{w N:Od_vm'DnAb@^RJ(0`:{yVeIƱM3/(z1i|1\Ϩ&>3-jYR !U<4| ğhw:dwBlJ5>CB 3%>)HgSݎ" ZD0ʇX25T1uLq,N1,^+R!$fv3ljqY4zc,]e?r=Kk Ȏ`b 뙎`D^N>qZh $fTX3 [#N-n}%G?[ɱ:NG[+<v0in8V _BJ(5 "҉L+f3F-|Yf#T*\6MwEvq(|m [6N gKDji{Lpf {vk_rhg_W9gsNS1syncAccounts.ftlTn0C Dr1@E M ȳE"]d ~:Pt^=OڥDݑpQ |AŦb`\0:5"55jpFtos<始-ym"S4LK`o@_0y8d(GaV}r(b|0$Z7 DB Lʻ7xmRq,  .i{޸c 寧)V)&őkPyi(T"T? Kpb-2MUI ,^%ѓ{o Zlx9{_Qxx@ifȕo=K`4徕hj~zx:0 9Ҍ,!LCw[tv훸ZEsuA0/J#4xьe8eq_D9o1vդ.[{,>qUH+$=jd_Sȉ1vXS5̒屍]t\0m!p8mT*z9Px2dxd[KȊNgu#Wv~KIds2B݅B6v!9bDZ~b[uwmZ/ٖI(apcbH=.Pg10i ^ W~?If)R$|EԈ\|4Q^F&&8269sExFf̴~91ejp"} ܛ|3gS@|Vyy 7 rlUX0p8e@d 02* !a?8V'@LFx<׹*<5Fhg mF~9'pfxɒ\WN1eƐtG~Wp1lGo>@WNTҎ3\b,Gr;"^bSSw'w*y8YLhLsa=Pc(%Ԛ ~)T<:≜ ;#(OB ρk+<~|z'wB>7F,ra=8竗7F|9d՝ж 7msFoYϋ(*L`[S"WbX]#ψt4m D2@V6s՟ΕVsտ%bBWךͨi(_bnG Y4++Ύ?bgQ(A Cj Eu*pb\;6ɸ~իSX=Qhr`i@VVQ VDB5(Ьh$T|'+r sF[e7C#z[A*^]6*:k μ{*ͫqw Q5K&8;%hdN_!8\A%hMul#@ `K!3d1/b-Pu%+'V94UkTF>/2rXfZ{u vjp:Щq\e+`I-ou^}Jvۇxz4裿Erv< syncAccoun]ǭM&(\p$ kPԌg{כ<@ $@ҾGdG)J3k{_$+<y5y!3r& FJ&nb&ZbD3\ Ay3o4+Ȗ 5PYp$)ӒȹW2B5Yi]9=]ەgR-O),v:;::urd9k5s>eTW7튕 45] SJeЎ=D;:&sPR5*xy2#_!INSX6=b7-( 6x͠' P+ZyW2*r960x@[4T3PֻiC#]Rts e pUO"D-?yJKa2ևqmd%9g=ࡩB-UsWz~X1H$kjс%0Ym vS6!{Ozܬ)Ѿf pYN] XΩZ^j.xl-5Ӌ}[ܩE,Wk:v}!Jt1{}Wn6oЌ/sрp"7P %ypDRH,\B,[.be7G6scrlCv3Ӆ`JT8dL6ÒڙO7#w,v`%Jdsj)qL >eLCGK]@<`5l D5sszÚ9[]>y9m* F!GVChNԔ|;'M *({i W0F)eu K0H595L[ȯ;>ifF~Ĝ :_aq@W/Q 68-9 BU#0?pMG0>6iH] { iDry²ɽ0mTPuhIl%ycKHJ`޴^Tb̫6p #JnяB J5[hr@f'_>|㓀5e ?&ϴ=yCغ;$,%fa;dj2kY -lN@߶*gf~L3L{͊KOL{Mv;2SlN((Gٯ7&R$+(wxw~GkPw_͋OG4;7#`O3KgSjF3 C[Tru IdJcq.yذ bD3H^h#'hS JBA8Ca)lrJ)a\rP/w\B 2 xmCL Wȴ̌)T%ןD(ŲY&.ٟ7T GR ٨=8 *l]0ZTpl|ڷ=l# ;Ғcx9!*OԵ%NصGN\Bg;<{*m=#v! vA 9a6y6jeNIU=܊PѰ>T̀.F3%Zՙm 1mcNj_,Y%>t-zjr-D `R^w) ƺMߘnzifR!9wȞ d[wndYv=ޡ ɢLM; {Ј v>^/K's}6Hmkm1Ä́́91ya ~zϮ{d6kHtP:u3JrZnxaTbxȴ~v8qNZ?{֞ zvU]iS=gtw#|!];)GX-9@l6A7s탁KѬK+ljV(~4>ğɓz \Jr 3h(&\&愜&W 7kES 46]BH̎ШqB)LUzl31 v!V0'51t]&ŬtZQlx *mOYC9ޣyرVѬۄ^)VW3x >pc1Z(/=9`l om1Ƥ>jfR4cfѥ|JtGrkIZIb`n`|a|si&@6,~ptC"LW4qa76pC'0_2 9Q>HO3{CYO-RsKI4n]#l4/:g L-w7}x澏&ky]fpx.PW;sjQU;b zG.J3}<#>`B)E d#!Jb 9`ID[Tˮ>Ճtf]l[cS 3Z4Wl;r _$=V<#4䴀^xHF;p&7X(f7o'u_# M9yDJ-a?Kt8Z(HHxTxVNIFI^B7igGw"p^^ ]Ai^8(B-U:؁_0.#K$:D _j9Hs-'h=> :DmX p{ex;|2snem @ A+d.-_]A"_jj*bߧzPq!5e> x 2OBV#Q䄭Wk N\u{K ygh ̙0ȇ%p^Wo K{8x3p%W - uP ." @{w-R?OF{@?"HV-]тљ8!G3vÓ6.Hvl3j9¥N& b~SPm BA\vuTugbG>K,@p2>W^jJJ5lY[#p4;. zJB:Y.)B$l( tNX*kGOA"x"-T*kT,{KR*ݨEy% 35СGey|ξ1pǹ^gTXqדWCS)pm7L\ x>KO3Y4 +s&Kk7v' omVa;nPS|oA-{Vj 9'Z g̯eSׁ=+&P}Wua9@ ƃ:RB.|:X|Ux"+W󨭸  Ū%YxedFkaoӉ=4ƶhx'X+b3)8 )M8+v3x)?1Gm'|]S1Gp %(/<(ƙhKީp-o tE!NBT+.՛_.ѽ!!:8ՄF+ˮR~t59ɡ&d%VfuPU9y?gyJ#:A3Y Gc[}'`[jv5z|q1S/>7O SltyΎfxiܕs›~u~H#Ч Yb:9pLSKSu6Nao:4gvm*ϟ?y^NѾⶦN^,bAMrOZ咲#@vci0 LӀFkEq*#;H3 y3M+PCPx0j[gBs0 -.m_Uˆƥg^Q[) -L\ri5IRn)h3xDb Jt#4N>v+gy~8.eh,!ѓA`,y\=T.9t3qrQqtr2и*wfpI(:%f "mF@08v&ǣg찅_M]&ˬ}VG,9 -c!crC!wo^$CP{8+! ^|uvK=FbCf$lsOWd9|_Q5 ؒ[P|6繼A-M5>M_Kr/8#$Jq 1~2lNܧ'{CRYސc$vyxEbT_MU܁I}DRF,,'u?v3n.+AU-OsE[h]7'`RIÍ!84J ]G^1|XHѩtf9#hL^nw tH4lgF|<YVF 9 ?P&n+u1G8pc[IE; $fp2R|?\Ar"JE1"!s;\flvbڀky6LgF1 aւ( :^рѣnqgڂjFL砋/9.;X f5 $yvM4} ;ݲY+~E4d%pw^0C5(;|[i03n#8H=  3YU=E.$.J.IzbgGav~! YN%iێ l%W)+(p\Q`9b" } Uz\F%Vgy`'+%ިǔvݚhV܍mNDeN`8XS{MΛVA4@/  @K(# 4ZpbSPVV괽 &J-ɰmk.۹<Mey?dtz4+O 15͍/D)K5KD@ZAЈVNtsKY\8Dַ yQ 0PG}`.岋mޕrbX9=^]lU՝;{6̱Yچ syncAccoun~}NocCLaIQdXJ5-CZ R-y|AԵDPWGkeeQe ީ?wTU@ZP7zW˕ LrSHino斢R&Pdx@h羏M<"QVdS{皆aD zڗcJɋc&GxXW`I% jӉ:M IfIE=7TB ,ݬL;={=GUwjRa¹U4޺:PDAwn .1kBA@ge `! oԶ[#="!]A[hb=ϐW} )҅#D|nlg)Ͽp&; Ze-a6s^_o$U[(d,kGM_;z7jG#Y /,#H.]Ϛ2!ozI ʙxRX'ÐR gQިhO 8DmPQ٫LRAa~)_uGR;մsep n=/sl6ʝM9u˙W$8waQ{i~ֺ~jbzÖNK5+m}?$8_ML՟K&.,r2HU]5!}0UOjJp]28(7u+d1Lq"ҺkuGC ˃΀&=+^`-UXS*L7GopJUvaۓn̛;E/L|w_D1M_FYӛի^OqTo[YJ \P lH)e ~v"Pn%u1Ygs{>a&p3gvg5¤~IUi_Rsyt | ש |YϠG~M t= \ZcLynE R+O,MM-uOރ3_㎴\Z΄]͢t՝{he1EZuz sWgJn*V 0QTm n:܀RT%.@䊬s;g>JaC=oS-[b=JFJ:e go"^?mG3e~Ng.DY|Y+no^Ӧ,t)k|S[Ӌ-5a?4at*(L|gԾLo 2Vh_CA $=+nGfkJh=3md*["wOw[>ӱc(W*v~рeΩ ]Z-bb ke\7 T =B:h2z8P*WQ#gД rQAw\[t uX>*(s5gbKeO x;7,*ochJ 7̙a4|6w `syT.4DdDMFw-3;5}JD8n>r$^cz/zko=[oڳYAA)|K6_Ư5$Bj6>EGwD2SETïy|EJa1C?S';0ZE7VJ73vů7W~ۧFR>U}c؜*a seqYr^8l ̰nN Xb bŢ .g+;kjL':lQ}ظz-r&=ūJ8C4́\ k@0-ksbbklwA}Ecef%*2Fs0.V€ :ci|g4D55/̑\ JG1$ƲL%L)4BF4O!1| M*YmseL1|~@NMru\"fG |ລba# 6|_k>C^-lVT Wܜq/ЍKA;g8 ~+ kI[{AJʜދ8)[Ɔ&=qFM]z=ZשMJI蟫iA=fA'CQu1|c粽rQơ\ 5I3;',ۤN}Ӽc!ٰv_#Aep$A)uq<1o .lVls^foBjy!_/Blڽ?A5}<("IQ.:&_Z؟Y]mژYIlخ,$ [>5ޖX.ۺenW[^r=x{ۨB.welcκ@|ٕϧSJ`Z`|-SRiI,ذDCޫ/C9@ʌM.$'llfqr;!5YdQ(v7XRըLiy.eGEͥGقg~),oULwH3pL8pp>xl=`hL2G?l}GKQ(N"USwgwl>2ly.ߣqnqli!eD1 ڣMb(NaH B͂h}[(9iǞ;e O' $(e~E_ĩӷ rr_s9ٔ-t|YHʾ(=̑TttD62 -`s%%WDiv1ߓ ,~l콢QEħ(w! %OꝽ惥eS|hQ(P蓉m3OjWIń]LxOcmKH1DdԴV LeHK3 v\(ܚ^ΈVֲaGM/)']Wl0٤cRmpo{EQk,|ox[~ ٕvYJau=|3r%WjÒl\6< p΄mUn/V2zB=P.,{.\F+PoL"RtV'!wlWpe_8̩{ŵv'>5Bʯ)Qrm)(l6j :񮴧ۦ-=t)Sh DSWV.2C)Ti"uҰLJJw wZ%lm\Gx.zů}R2 N@/XLy'Xz |8֎ `rI>Yhv5.6|'ׅlF,B=׮YtOc{t;Bd*+X )l]KG$=f0F~lRĒ` K2elmLCpʿ-rBeC֛H b`s- [OG~f(ĦU:!VXبj_z=]5N&Q˥IɽIES!IF % SBz,/wsq'ʗr4hsYXM]Ƭl!/Gb*V єN4D4lZXo u"N^jdPUImT$Hb"(:1[ZAj"ZULTl{2}1&gRUӠj.9\sĀ2NȧqSatiIע{-@ѺSM@t"Z꒸^vk檟ڵ۵wwB i-ʼn0{/L2hgw7feyR*.&S.zڝ>[/㷏`GwbubmcEiTG;pAٸHy`\uxn|^їBt̄i`fBdEl4xb-.SO6c|n_qrpU>y$VYD?^po9ENL.ϯx4&E ԯī/{l1 ǶF=E݀n%S%V% 1՛ɖi3 =iLa@ o"4mϥ I5 ks'8 /lB 0')/,SGFݰ} z.>B_)C$jߍWN?tNFB~uGcugҍ+KQxwpԞ},jFQ{$@Q7]jT"B;GHS{1܊l[Qt~uG mN84_^  }CUոGU%Rk 2Gwd&';kQ蕟/է༞ʕ_nidV<:!Q}*^,!yF*`N B({.^Qs%ϋSPhx>c;k>@`I|ȱ/?:,\'!. #JPՕl:"@zu> s__2ʛe,_S1Ō~č%DZo#c6Ɵ09 63ntA;zBQzЍbI\g-6,lQ##bȆo]œ`CZ줥qGQ";\SԽ䁧ђaye<ʽ+x29P^~r7{LiX8/3X|ʘ*\'uα~}iN>d&¤q6-ە A@ Rj<׆$?QL6-II%R8RK$-g"qPn8o A{t:Ji"]:QkoYOH;GC{'$]1;PȬ*GΨr hX/5AFFK}% dzx52c{ulqh4' *mZGEwædz饉'ܙS(\Z\;`SvnO /ss,J1DX\r;6)FfIq[We]*"b/ 9"s7o+⻻zWX3W@'6uG#;EnnI\bI+ble;4_̤NND]_^?\O ܄;Ǒ!Rv.+qHlgfV㶍+OrkvO7eaeР]Gݬ"X}1-1Cf}FY1A $oN]qf~$Aأӗ!q|É@ 6QNlNl^kX۬*[]#W;@}t^Z^ZŔ<LXY8)ϮvDC2@VXI䕬l<ߧA^d+gޑyy3c*; ʠ~e~Ԯ6̖Z@EN@-흾;VU ZUHGv]Fja:vo>BnҜAl~g*/;ʗ8^88РKx 3Sp9g,Q7_ ;TIFsJ~%ҾM5VoDf^4*72\)oS8SI*۞oiX;VwV\ZEeI!46Mޗ&?:(SMiotN\W9k Bװ3r%{JV<4G;HٵF0Vz@b?nXU)Ëpn,?9AF(+6j70@DTlx6or$5CP}S"iVE^wMl񑸎=U0?Q*;{:G88@fpcnBoȫbtJ(Lab6]O@}_1/]㣉O Q#Q^|mghӴS.~QA4(BmY i 1̶w{gz < WE蛌#_' ufJ"6#ZrIC`XuY:B.r;NFdD %v ^$4 y5"\fqS\!1KDUR.#T[JTR+?\,V)J4E\:&^jZhT{Ae?n)Ũ|JfXTRE nJe?:|d#>Mϡ.\84u|c΋j:[z[lkIU`,VKgޠh%n1;Iwt@k#Gt;a!oD=ϨҀ0kCϠdv셚Դ +ނRr*wZ%]pxu?BԴ~PKZ|Vf،Zzipx4^NmZ) h tg:n<OP P҂Ztqޣx5GxIe]uG:!l]p 5FA>fWw_ө𷙭Ј/{FWO(.a|nї3et0rykC14%b\!J%h5PCT5 J@Q ~r1C0 PCJV.sQdUʥ(<` ]ύj3 @a%QA 12p'GD ϢRSy<N-}&Ad'&q| k8Žf3ΏzB⹊ItN7d )|SAGk:Ѻwua.~iᦠFjӔ6tc[KEv "S -H5ћdo42'Q6:~~wjxߏEf6 =gN6bRyNO6M s$h' \:ZM##18F';i$4_Mdn^sCrDc)T&}0׌@^o9Ef)˩mb|+o<DǙ&fIF G^`2i;$f kQ ߞ?ڟ.,PGfv.[Ju*3EYЗyx_4; b0)CsD8>;U;l3dx(Tڴ!(w2O}'w˰Ћ6򻥍du:7@ӿ⠜93-2I i3 E>oe'Ptm)jbex* (p:V!{<}tz}H]w_Mq%-7Y@6=8rx*q~ٌB@6:tbL&r oޞ= ;Kp sd S˰ѼE=T^ƻ,kSj~&9XD\ ]6oZy}.~&5oP<Lؘa4#,qlw_" J!((5)/ *T={n{y!^B"P@@҆%ή.؉'p333BAKP/Ƃx8 D Ajx< 0:=X]:d/*/ _б}hq\CA\4LE&PJy/ L# T]M,_n0],Wľp&ȈFA МpHJN(+\YqH'0߲ P?Y@!(+-xf^gH.gkC\$^OJ.hF1Tq(ji*\˻J)9;(an6][kgV!#5.,B?5'H)}"'`/L+DU 7Yo7l! AFf|hdBE7GYoRpXP6~3zoBk.\:ұulBH"v%L / d‘щCOރwf8 ?._~~W2{ء\+'S=koͮbi!WRa0s<(ķ腤AH: XxX2H"O'BPw(D!)s@ tID0e0Mjō} *&ff&@FڔvX'c\s!;or,}xې7Bq̭k5-ʚwS*TC3iYOÄ, FT TrVn|cz2>}L%&~ԯ]tozǶW``H|(/խ/Dȶᆡ 1n/;HL-S2?I SP݌pWgcVǴtP*]4Gvu! >Wf nZ=AڅR2Z a Y:,)]4mLڒ龤zSEv ͭwY>oFcK Nwfg&o^0*H5H2)g*UE76cyF|J}/6ۀ.}&L7OYU`D;.|P1P}a4NWk8 "75yrx#KJ82@'"G|ᑜ۞|.lD}z 65ecuXFؿ߾=Ifݢ|2epT\Nx|ShYfP?(CodALrX44yOm`]oE}y^>VM%(BEݱwxƚIRv ZЂ16TU$EL';8Vjz9wa1fDˈk:}NCF)d,o0 \Ij2\b!NpBZlr D"b`Y#g25Cb 6uZmUX5(e*ȭK&՚4h%#+EE&ooAu%a7 w.{˷XE[|A_CÝZ~8J&-} illf{;3iv*|a(gK.c6pܛEl:<|"F*xuPQ*@ ѮG6v3'%~``YD wO ‰BD'Ν9[usENlA" b΃9G7!{տwgNRH'nt_{{Ŧ=>iUy$lntͦ7mMWmvMob,fItcZf?ư6x嚇˿64ׯ$U2JS*yM?k<\<ڝ%gf&O wPK!<3zE7'localization/ja/messenger/messenger.ftl[yoG>E X)C`W]$r@ZES㉃,yf8|Hp`{&qa3c_a{w6}]UN6;aT,#FcUf̮9s9sU1@7o&㕂*MU_dCyv R1dp0*L7VTmR YUuU:3 /3acܷ,(  }\.{7*\m%nIUz%U]-q H;^1w CsT:ֺ1\؜/ -n;%ֻb46rk[a/Wigۣnmucikۘw m qFzHZtl JPQ ]?ͤ%E4,G2`>3ߚxn[J?1[[pku>6קW6֕5y616ι[0}n}̭#vŭO[;̺֞u2#`vX"$LPrQK,k(ۘPMgO'q,lT,Aeh͕ENn8>1V=ݡeSi5c{h z ;Ň lYzȷf,r;cTKmN`u\vNG J\w|{(FQx~d! 'j0RmVwNd FYM 㮂zf=.vloѴǞCY*Lq1FR=VEsFPHwi{M~<]cW&^]^|Վ_9: DVQ_IQ-ԟ)nK`B oفA1N[[Ęqf o_Wۗ΅| 2^DWma!J6 JnlŢ>&xYZJe$u G}<)㟸Ibͥ)1B3"$Oert[B g{F%-<('2hHُ5!HK<CP* N#qìJ|Nbvwb{puGtzHU5Ml"$^([Iʑ=$@+@)}0oM[%[lMrAyZ]|>;͎U' ̑\mdG0i F +:e7t^KQ1ГB T * z=|]rkV&NJLT̔AUtgڇG;;,ERW_EzUI&[ر2zdδ [Q #i#G.h%~JR {?yhLi \4EWEbJ͕Twt? 7)P'}"3?BVuk u'+/NM|M+a~oQB w˪&/(|I%vgFM+ְ yIi>׼c'wJiW"o>^1w!RqfRAH`sӹۣR ѨNAeknBFe"i#", m;䌣50S"J Q\Φ83 d/r|`$NXmܩkzHB }4[7|lCQh}HfmSf` Q`[_A  oxڍN"'$GcIPdmJU<;\65~ o\<+FyW[~mz5 th[>ѰУ$|?F4zrU&E:qM.:'t (#$_.TiQj R(rҴGS`d"aZذF-k"ؠCU: %4 dc>O7sg;7rѥ Q8ՙa;X!zg} fcR_9_ {ع"\fõBR1)KAUz{bueζy1oqoVzX>M&G؎]z]۞9=gu$kՃ(1;Ƚ"ܟ<eb9? fZ!bggc VWl} kJ0p:A~ThCHZu& `|mq. |8Rh~D+5Ь7qe<syncAccounts.ftlT]kA}ﯸ & >PdwnflC!EQ)DmhR?f}/xg7icl=3'{f+LG) =it@xȂtX 7qGW`.Wp׋&_mi6yg~\CH1jK3!}srbȀs5QAEi֏,PmO86޳qEӈ#v`w6/H" U<٬Y۳x i)kJPQЖۄCBZ_83zm"V3|TLdhzN$5B]ω7ĵ*aZF<2JM:qyͩޫ#tZ\B!rdqby7@dR7-zH&9ak5;Rw50VS+JZE;fJ- HqfYt vJE <+ ho<29S kIgZIZq{VQV(  \IkPl:4 -$ dTJ:%ʯNR ԐYp%gF$!.7c&mCs@Lۄ1W5 L>+s1IMtm+~tuR.Ggw:e -KM͸w/C~¼~0ܵ7HQ “9#_r*c w/;~kG%Bo[+ǿ<WYa|"Jo,/I@waZ&LS4L„PhKaRUZ]=~NH4`bΝy c- aڱe]&?)є 9:wf=GI-eE GL/$V縲Y(/GRrdޗ5qU2Nei>JJ@KՁ?dwusneZ0Ijuk}FK'?n< ^ IJK,g+AQS+ Q#.,"K"D#9 DY>;g90aa5mPe$5F܊REI,dHƦM/Ir'1&P}0"jyWf"D9=|z0Dwarēa[|<]D=TTҰ, W-WZ.):5Lz4 e&^;OE- B;:<))k%S@n&2G-K"cݺ}A8j9Aϋ(?0 hsœ8Ƕ;s+R6WɥjSƠ49@{6F- 3s\cC_ ;GQY6g4zk镓{6tp+^$2 {ۯ??sHAp͏\{ SS<͕U8@ as1 8b?aU\֚ٛx8~=x8 W\׶Emk1e2^dgk)sel_,`K]aȌc m U |:;JlV>* `:Қf$@i>3RƝW/F.NCP65"Xw1:I'-< w=ܞUًqO@I#a4YΖv) 4ڻ܄kE;ְ%l|XχTΎ Ń?uO֌kHΗHCre1 bÞK$|5Kt|:)BwP@&CQv};6ٮ"UW%4`B;FڵDX|uEVHv9^ww׬!U.O"i$(cv#6Ѷq>_eO':%;"8fr,>OACdg&W/".יmۨ$a KH\p ! ]LQ̶ׄ뚆ȧd$pEBZAb3m-5 9syncAccounNGS^k\BJUJUԋ1޲$Br D)! и !ҢL.;h|saU8)\cxƫ 2A+&X!p,s1r"|^,*0O8Lp8fUPQF#Jq[VLA)e!*##^dȂAc#B0447| 4cIPF%UC(66K(i5im?=_l _:'VܿcYWL$Q0?pBp@Z6Q!ixQ)Ϛ'#)ZtEl;@gMfUhȻkf~8".Q&Z8O_>Qt!WwOt+ws" jtmjtũhft Pæ%R>nA|Fp| RB[ժ) .\j$=. |`3säܱ14jUTSĭ

8%Sy;5GM e6}G<$]t> Z~.$Vm8 H6‡+Ě 힥PZ/Ncϒ撝FUw l8ggIfn0<).bVS K'h+T&0SL)>@tlw(%JNz0ly I[!.1k"UtJB,`#dEI$RgR;.A[20L)1_9e vJDE%x屿ׄƦG^mlK҈"jt? <%2R]ګF/60u05Zձ.epX.u#o:C"$DB-ATbFj:_P@ '$4sB;T$֋(<5QPКm9M,T0z0Jd2ǂF11sFJhiA\' @MR^?z6u$l((cSb4wi7X[) ψvil^˶.G'3靎 AJc|YRshmvr>ToioB0i'IrN*-s/Mn09URƫ"h HҠ-('HaHFCϐAIO%9[aj4|Dޔy*~zy$ fX)ЀV@ze&! Tlx$X [҅½Jwi>y"`4HHcީEm_wc6q;W<yXL٭F`zl$;JUu鬨E$LYLc'{a_}>&h0FqA2QſU+sͩ }Q'GataEhk%7t)R)3YPאUDO\<"3VTS:CFDS$Sr2ȆE$VkQ݊:͜4*Q,ua}"맒[j:j>ug1$M=E砲7P-j ֪!:֬Xw1Nnh 2i0BU24D)7f1J~Mh6{]X(TL[.SFLS&y1{6qߞpɥ>1nr;3a@ck^gb) 2:z4Li0}ez;aHs>-ڥP ">K+phP!؍FBoS#\AGpaȓg:V}(15&UzA/F[b609]j@&@I\ "k9T)aZXWI%( `U tI[a| ر`ד<@lLH_u$&8%8=˚cSZ3B^r*^c~Q@.wvoz m7WiBu] 8зsIQ`\ >5ŝMarK*MCBK0'1W5[mEȰ9KiO"l۶%InYE1 *iX) YvJ`:8-fr/%엂]މnOdnۍP?fav2Zy'5:$NPLϠY/TݥN])NRC8)P+XRYIUc +Wĉ{D1G@*GfEXdppEG,|5ܞVpyɀA{{WFۑ:X`4{_}x!{+ yWlp #2J!\\cHi AXdzTbfP4*Bפ}goS?DS_|xiBaeFYY Zh*m]H_L\mk^uEa lxqD{PLߴTrY o7kBe&7W0\A.3dW?ݾxu2f Ǡ2oS_].!:?ǟ~~|a>LN?ȳ00r"ӆէF|\Z/ 1-Aʱ3jpG39x=6ƒhBrZ#mm Vu!`Z2⤅kbsƢ!}G7C8`m#uFƳY!0݆5oKo]陂 좂M NVS[(ddG'hŒ&m ɯH|9KO`z~8"=7 `2g0=!0AhlP0@#8xj^APNumܼVlzCa;;o-2a6E p2>m/ v;Pl?}b&gZSI~ aY ֍ T1)f㡘]XD׹μ fD㿕qVTP)ѷ3F$NP@Cf)\5jL I3Ҟh|-]{m2, s2ڥ;iþ~Z`2 z/D40 = .i _62]#|иRQe嶁wC^D8Xap'83'rv;i?T",Iu{id]SL))-2>tSx: SQu\ΌYcGh;DdYZΜjnU/g4WƏWqۣ5-taTv{E# t# V{J$\#| ,dył!LH5y4L,38?P J铈~W0~_~M!f)3wǸ9fLvpTD\#U9KL.*삘 =q+ fs sQNwqݝP3ehx}L#> P5}wMɼi%l5sD(uEQ* Ȇ!+\>^wȍ(=] ۜ*u1*yF-p 1M`_\Yv+3ޘ1Qvn xh>]FfïFȢ{9eܟк.6H8ip:)DY균YM8EΒԃ;ofSx*E'>B&W|̟QD*lwmǘ-'Sǟa=_g3]IN6ƒJt*PԆ!R),PA(CUkyF3䜍gd:¥meӅ6%:5CD+灭=*tvLL:Ѳ 3[Fc2+*z4*̌[\hVTA᭯ %/Q8kٻ1g#`xw]&5~_ '=|֡kBҶ@|HAe"+B2 پ:haעX mq p%j'6mvͩbo8,SpC"1 XDNLܞjKRǍ zD#mrhV"=8Ȫ,EZcCIp-Ţm9crCC5Ɔ13_U!mCm#n+5š{.vh@p]/VZ4XHZ;\7H̤"FOh)@c;VbBؑ4 fj/顫T'{g{ϛ\NJ[@&6%lƼdR7[vVDskiB?2wzT.r{B)<^n uv9^ @GeGӻ>80ev6~$^qB^jWeoԖwi㴶n-o!Dh9=-1fYZ$̈;BO$"I4QRp8ԉgc+nf(Kn]ٗ\`LNA7Q[nhv]sD^aWA,~P`u{h3r=~/aG?mtvk>\bq'G/uwk㷵|%i[JN|;c(ɏ BV 7 {~r N:B+KcGXVoF8ZꌾaYAѩ0tz._)xܒC (l^;w东o焌R4ΨsyncAccounts.ftlTMo@WT X U(RV<ۛ;f?b%U;Nl% '{޼yP"̚ 䛏ŚTj@{4whZ\Qd=]6M%wУ"ЛP Jiqha 0@Bw\]ȥ-B$ʃ%5hC-M6{A8 E`\?#{84M.ueJXYYW$/}j)ܒ E]bNw2;di#J{tBgh_MI~28|@E4cI>띈q)DpQ#\.O<w]F_`ih/G? 6ZAhV(K 0S\B \MRv YC!_= Vl&;A̞| 7a}Z2;M|*[jYS>[q+ڱ5^S]QE[9MCO SPbD*Iٛz'$R?m9yEr𛏜Mc9…V@so{|V2ޚ{&W'3x#9j:wZn lm<鼕yQF #Ti3 &LҏF` j#gƮ9`,Il\J\rf!+W|wJFY1 ~5X[IUoXj:Պq,h(&3jQXJXj'dQ YFx hfK:X_nFAeD @@м~iM7.*hu!6nTQF& [¿-4:,1I @Q" ӑ6,ͽD71]:#w;zឳ ~zXJyfMhRl:ԧtV|)1X AL($e0ht@)"e?F:x(aOx nz;o,wq )C_ ,~ >񠋴s&P:WNiUx cn5|{{dD"FΦyGݴ۴ kMm O"Ş wz)=C7t G˾}x9@۬-Vf ZG[.Of !:9[+'-qߙዮ(Hj6R׭z 9FIV{=i"?y>c̑㜇/"g΢8A0orNkƆD J a[ۙ(?ؤt tԓ+ZVl6$8&s*ΑղgP_ia˾-varQ<je;)=0Ay*k˕o6zyfSdc+!=^z6Gy)EhB= -ҕ*FάV w"u0T jIY %sPp;+ lHVYVU8q{-^vR4 jQTs,s-5h6y<׉]b^XYN}8UMT^s}Z^Aq3006Ӳesb L UI˜17Gi7cb2Q=*B=<}x,OHJx &&8ܘQ>e(vpD.r4ѱ O CuL *{;HT ?6)hpwI}bSrPv!lʟ/$sd ]{[fٕVwD>)er ԒD!{Ȁ.)JHUD(x@Ӎr[tUofIH]8gdzsyncAccoun"Wk,I ӗ_.ę巼>2T(pˆ`X"%ރm)lbY} jrQ6Pм;<6K q>c 6 ?5K)Aٴ8 hC]ElZzE,zv}~E9s߲ YFgHj+fo"vp̞%ͲySVSFD=5yy5&2m#}BHڒВvw8ijcP?‹Nm_iaIf'we(9(C=9~OH(Z5 uD[ݛtON=2(.8THSˎ_Ѱ D@$3!6|!{fzd3dsG @"!$ї$k`/ɮzWr rOy51r] wE9?f$RbD<)X[qLrC9Of,%ȪMI$/ddp, 4%b.)PIVRfL#@y.\ XQ%Z IhrG:CJ+$1#WݼfgOO5h֤@d.64tS9= Y*:,X)=i5Bǝ,) !ͣbÆו|jSXV:IJgOM\W:E)D,ynǘ ٬X|HYڕ8a9x"zYH@TmOb{xpDHW9hNs!a'WsgY+U ؎&OY-XGۜe+@"#L֧&A'( D8 :qfɽ4\%]5a2'=le,|@0.[?>p؃~`'PC'"/&t-HfG39ɸ vEOpFq1].1` GE ߛ`^$HV*[CQ(Q7>A=@"Cz"g9L+pt9C5Rƌԯ_ ~5"a|'`гQcFZAfc%vW7&O]8 C/${ԣz'Jbߍ`[,W=`e M (DŽШWdE\ 2pihv* =ƬPZp!M&2Ɯ#K8ehrqX859}If  0%bNxnX:{Vѣd>k#-u׭w*췬`Us%*)V"!hi ͙UXXƑJ?JA2rJͶVfwo^Η.:rKh(o%oh9.ߒk2? э;K2W,B$h lkNZE Umx4Q",;,z%䚩R= (dC/?hFon+71g~l?ǟ kZL^)[\J#W>]ϣ@>=?wwo臞֩zfGCUïFW5ӜBG! b̷O~$(R>6tx7\ kqɵ>)I%2,c1j㌹eKu` E}CTsUNʐz58Hp&ΐ饁ZH]Y(d "oޟSJ˽.~|cM5)ߦ$hMs",L%V@}iQW)OZESBĬj!,>8(g!8&kGfXs4Q"1Xw#Wؾ\LjwO*U;蝵z}\s,u,\Q)xxh@L>*$rt[jðAxDR )gQƎO( y֌\sE1@ct*o%E 8\4g٤Tr4#득Mi` ݄禩Dq~v\!Wx!%g&]!?7M`"HA5؜\ӳ9NۦkbUe@E7̔;X`zj WsZdaaD2HhPSVi G܄/3QBBZ)i})/W*K{JXd=~Uϗ[@N*0 j-fTF^^&o'&XT?(HO)f8(sg ,,;-bY^;%"A+\l &ŬWh*Qu䀷/[rmUlM3^Ը.DL>9SWS{jpMO14(A1?Rs͈/LOV6-:ҥLH8~^ͫhLA>MA'C4C45cџ^"@8F#=6~{ӝ{ پr!wfȔ46N[ H}@!?x]Qv5֌=X6EQ.`-A,B%5;``#}f%ʘ$P$I&q5qZMW>D0=o a7F`Aͫ`o mn}@nxܱz pϧ1h K l6wkrscM߰1!^?(>BIjMO7"2 =1oAޭi_kпB{(DT1,y#0Es!zɜ @čRr2.vƤ- 7n{PۖΞK3gxﰝ{mc~#ai xvGgXHüQQ lU00png4فu( 7*Բu N54g#+1x9ʣb|\!Q;|Af0^,qɌaPL/^G MxZ7;={ߧwW;qHoMMInuAr`w010VdĠf7Dl ~j3ʖ˛08Wټ.6$*U͢ sib>ᕄ+sԛm$qЈ)p݅S9m` ̄E5^=MIw&⹾9zlL}91#VС="<ڲ%W 9nߴ(_0%`<>}R$(.Fbg <]Bgm[ޥ}ȝe (S8YWKȸ߫+(cR4`/*ohoAgu-{$$N3󯴚Lx 3Ftf9DRS8B?A{w"F`xdDЈX,,17:B_!xȇ)MXs㲾̕;|Dwp3O'u\#xQ9jyRʡa]ZGc)4+<*,UgjWy*a13ʙM'tNט)kIp+B-nR y)+ߺ$.7娘UV.S?vc״6#TQYojQng&`)k[: GOZ?;5!F:C"n(X%֡$N.䀋{`lvϚ84{t)kj&Q{Fn .Ԫal,=SSj&RcWo"V~Dyv&i[+A쒪 u6άC C& <9tKRoZg2Xc3vmp 퉶T4,y+S8_헼= XѾLB7_Rp_74`mN%cCptUO\eAί~!WKnF) "Sdi'"d Y3ai2r#rbxe /Bz^u 3`DJ'"<%[?sa !L6< p*%Y0 UZv}(`ba^ghʦ Xx Kђ&G,.I:1@gXT`g(//KKS+ ЕM*HMhby8n{d^yY6] On 5 :v:3>x!gcU¨p,z=d]JF}nE9&y~fWB/ ^)#B(to Oqs%SU~#NlY6M*ys;\hSi2_{ms4\2&x_s"Q%"_m:_?W 3 WrU|c*zt\}K*e4ۤD7Ĝ;?P HkWόog=U&8랆Y{KŧЈRt,_Vg+8FŒ ,3全8_F4zi@[q2b6G9Dgn0v[8$]gojgry{X3$τL6 .py>Ӝ<9EaKOc"VYWE)~f>Dd!4ZMbeT ^v)OS/syncAccounts.ftlTj@)C \z BC &hwm- B!wȭ~ഗ^$wG: mpsL9c OCӌ<>Y2Ӎk k´2v3.bRX621F#e[=Iȝ. f/rȷrl|g:&ܲ(ӔwOXb?M Ab1euyeqaZ wW6jSeW+Zݓ}Q[l \CA4j4?'|ƒrQ!5]+KxRyUσ?Iە$@"E`;5j'@0K$zw-ɵ0-z ScWʩ%9GnL982F<56sE|Bƒ7glLŁT"qh K8ÃWcx6arrst*.h#06ݐ77@ <|1 jJP q2 8LvC8Z@k y rGKwCLZRC|GPwH  kκ^Lx;]&!:^hPݠś]K9]+ViEzO[sb g) ]i]VUѭ"LZ@'EQҫ) i+îOH{G$!ДȂ- VMsE%ܺȍ%Q[!5$Vs9r@h@K^z+2&z!hL"`.@NFl6w_}XߧvؒV? [S\/v-3]ed @re-nȟ_I-sf8^7% $1?/J*nITRkz_E$S1N1%s(蘁2Íp(2Ѡϡ:/ܬ QL<38GA.Y֖Ո6(JzEj͔}7^yx3 q$ J5 F4Y%Eo6Oa˂{h8VTëlH^T 2诔1b+.mCKDdT_@yȾZqfZ*wbYL'ˏŖРοS9 hW:ӢP.PU)'ףe2Qv#PjAn`N%";PΐOR])c|]"_ܓVI>=5ӿ:SIvtn_syncAccoun ,ٍճ`Gb赖1N7gQ7&3;6薋A`# \藤f7gVچaL_=YE.V\Q9#dC*f7b$1+F S&ra?<伙˛PET)J@H$QWoj^sVRR!`ʂ@캤꫟4n|$%%dTcPB;\6M5gd`VFj4}Bhte~mX:߅g+0׻'*W Rk@\0hV")Kxx}a,%tJβ R]̠ٚM0~p;Nqʩ*`AZ=.!r|-WcFq݌5fdb¦Fڕ\3Ikm`r3g r%uWYɌ|,inrGKNa3my~E0X.Q e|* XDXzF- .)CC IA>T1R+Y%T8gfÀ&KpO(x[PJ0!q"sY+g/%ʵXUڦw^rr#wx}~Qr qRc@{OV19N / 5^La6Ȇ03 CUR v)aI$\1 Y~ ̸uqœch;iyd'/8K =,튮$r.x%būSS۴}1K}r^|~)?~C#as!:_zaUïޫ1[lrM8?OmJ{lmA;*5HȪX6XP,4XwKi FΙ#`-%:TՎG}&\ee!Ux*ȔJ|Kdv]+{] \\nh=dTlECK`bijUprտӡDkVƥkwt@{@/1ʋ`EW A|%x7Ǟ U x+S?8b KyN  b%˜ɖv^eWXs7k_+mdq'al8X/Ǭ[4")B ?5TK9Q3rlԢ$u0)vU@J1O'alm#m]Gӧ~r,Vmn'0s6os3lKa~nT;$O.\]~w=z"h eQو$K9Ӊw\A |Gio@R `Qd<;Խ4kjHvex>ޝ``Ԇj~ +W0ޜ ԍdT3 4ܢ:DOP,X86)޾6}OBId. 9/K+;OziO 0#S,gx ݹ 0A, l 9pŕI!jI5/Y#κ.J*f9z Ks>;~!VdbOs1}tE"]L~&P O; qY'fڢNCvjG*t܁_S o!7`68ȫCǼ rES'X{aczi-) Њ 7⤘Y)s*xG44Bp-׽,X!ZSȋ *8ET>ܢki|huVؼ#tQmrNߵ{v~6BvO6*vŃZtI䁯p;@ _EF@>Xp,Jhpw󞅗7s:{1~Z eyKH_5OO ;@,&I&OWyk\;\3k@xu,)$#wU1=9q{$?BI=";)1(kLޤ/d"tH֡<¶Քl;.C5P6/ lt&=o~zE)d4jQ,Sl%M˞`#yYEkW\2og:RmSe<:6RD.pl'8"Z6ø}G֓dzno+t彅cwq.(dm ~6.gR`^MY9ttP  JCŝ4|:qVqvޔf x/bQy'z' Z@g})|_ۡKx \8\]Ǜ^$h,&/EoMokxuXwvGLJܿ5ʏb"$[6xeXTh֐7[ί]k +#/ x ]Ѝw3Fl\pUഔˣ^g[e?nL|(hڡ63~a&+DX*on-a^y~t`wjFWFsޏPjmJCJN%F + (lXd5@Ԉ ǻۿ)zzدЏ##%K7+i.%`OT@;'vzy+\{v'p͎Bḅg[jp[LDᤑ-kgNҲ7$R+TT]?gJ4fz~#z?)r0~GZ𘵫zNCSi@8Bh싛{l=SEW{qt(4Ց6{~ E=WajLl:ȓK)xu:r*>))zض@M|#l8\k8'7nl=ALJ="6t/fzI(ٮSHyfH A%wRL՚ST.}#0nf}Tf?臘yJ;:D/imD9 {bi9݃Rr{ n7Ǩ=#q?@_(Р@z>IgIQ)ɱ6fvfoקpWjSN]c+!\gG~ h5:kzc~|6 (6.װDh/(3m ~5Tm1D 'l2FpGC{eӆ%95B h rvE ea4Z[em,Y~.((3Zvq?0lm!@׾D lp~"7$78A%>*}K0܂#C)~!я{.>5 Ә`!p)B(x:hI{s'Dj5_36'm"e|7{e;5TtZ!_ؘaLGE,g?Փ97ɢτ<2HUb8P9/+wagDRezV8uJn2F(}xJ: vլVS'rTeT&'$ %,Wp2}DQK))GRKh>BA)7rQR!7QoDdfk[aZO~NʑTa^Ziۺ<*"!S];it[M;z<+2,JҪzxVtq%:`M8H1l -u"vzKڠ/{S&Cʵwkv,^*qbVd6iW ¸j`,ŕs) %Kb/`Ƒ\1kd&, ds2b~^蛕C:6fj,|Xܧv3 voE2YKB Z=/YA^9]ݔ* \<ڣZnM2n¦1j@1a6Qvy9 yXf?ovvf${M"m' .M1tڏD3^-aݑ]!YN`;ANJX݁@)]>d5zdWŲ% Me p>Ԣ/CiZs3 -u{HNViҎ\{D>ƍ7OqyO,햆o%ܾ(wژ6\.ݳ`KOv)#syncAccounts.ftlTKo@WT XꁇTRJq<1HHQ _?Ƭ')$pd==汧pSs$o^%x#Q |@NiӬasr Wl:E /%Hڦ\_8`9Dϳ’cF!VEd}8P؝O&\OrdDo$úyMː= xj0Èx*`ō>b&v">аS[JxICu_!\cGNBX\P3@\<ڡ:p "g:NgM3DOE?ckò& S y(uSz,mil`qVt/S +oh)F(h^:[Fz7(F{:.Ŏ%+f-:/6iF_*ϴz;4tjIi,e|hq䅔G*/ +9qMvkn"a$V\rKrځ{ @&y쏼Vv\T0`.9p~>.:+Pp䤂W@{~T"Bt y7?Nܵ6̌P6a9/+V*p u^geT.u2Ն w%ಈYac? ANd$h4ﬞjpd聍YO\s$ :uJNDg D8S~*u ɞ* fAH2~+}: ShudxbMmk%SLјmݙ*RF'!15,Ap ݶBFڸ'dnhEn;PP ҈Yf_ƗA)=9 #;fq{UݺKh^! F)9ZXB#FSiWF]A Q:. MuL-+ ]D$0ztݏ[:Ǐq\;.q{ T&ԕ zWz%rm|"qIb6`)X)Q+#hΫ\1&hRS>hX=^*կFmZD8(>[u"k/u(/ bí0tBt%aVRf:s=S3̊#mz41 fNneSx6PjA~1١(W4_pV6<<֋]VsҘ{^nyD[ݮdX iv&{xw=1j5FƦ 2'#8n[^ũ0"(> ^I#5E$e =E{$')E="Y!cO 8 YG, .I&8"aRb-ud&,cIdZ&qĽB1Yѽd3KN煼c\j{%6*-"X./!Cί\@U[G /ɵԶCNnꝧh͔m=-JrA2039hL42~X_3fu^ Z4ǸvST}DBWۑk-Y>[&^a9zVh/'Þ PH51Xc61f5>֏qHށR? y jRXAhG"lN :=phffQ)(M͌ej&e83m7 ^V3Wx8syncAccoun?p_peFsT/Dž\Ýɓ4B{O.SB)fV(wJq9ϱ nR13TF hi#jYGPA 老$tZnubgE3򺽺QI:(klkХ8oҏcl{;w [jh^)譞anmtZ4,Ca_O:8:WȹР9Zϴ{u堺+UIh$Z}$W2{+LU]7Iݖxz"x_SXm6U >:%xI,p2ߴWeQēXk1s%xz,B_***x.|(-HàL#)8koP{OމP,qqALyL0:qODhȁ[w⚾ WKppz"83o)/o_)te=ӝwc( l3aH+ք_naq(g旞Z8MT},8[m&c| 493e`acG|RVxNfi"ʽ$4 l=O?Hx/?Ǻ cThWpw?K,z Y?s sB<>),|COpUD$*獘V!Wm|xRxH:e߳q!^ܗ"y崐 ,5{yB[ji%GCCD.8H(H٩}Pc~Tq=PPU~cu̫ow s\i3j6ߑrS{nne+VJCSj?i(|K"0Vt=DP6;2,]|RCmX/E{0q|B9wX\W.:?_WﻭwP}kCR/TL*Ӳ(:.VŻL1NQ%0jnڈS9kҎGFq/4e| ӷcƈރ?vK5 *Jf>m;7>Fg4|8T|?M2A![H:WÎx !XPFz[u#tؒ7%L:HK{[.2D5ÌD@KuRHIW[n7XEix]s)4)5 D ͐D"kV$jl?TZ^$Ԝ%X5H '<h~!r`Sj6|dI~›򜷆@>!\4]>3K*@sj }"-^~Hݕ6s50#{5c{ƓdmN]*jIVJc.ؒʸU)/n'W Wˑ] Y) uz:dbs>rKU um {L3APèkn\4قf㲙Ltʰ#[O?\>z5½fﷳh+r,2+[ou[sG;~E$$xmSB$eGYa6PV]YE~ 3c_d~ɞ.-U'Ose3GNlFШ6(z&TfU66*3);/(q>S$l˶oPirZ]i0rY ̄* re[@'2?Q:S,LdMG;ri(@[d}$ ulGe#n(;:-R>i)j|7jF KNF}բ~=zxˌuV`?5q.*%bDjĝB&:Re}ӯP] p~3J4k]ɇ$|aAG=2#ԙV$hn~RD&F)_EAd o,tfZf7?)45 ыH-/ρMLS{$V"dvb}39Y}5x]Zu05 R>bf2frпdac r#J93QYۊ.YTޗ m2҉ NP jI@y}Ό ]7lIrڀ&dMҩFOrhyuV0%/΍VgVOOenXJ̯vmY1Ռf5znWcjq*Y>=6dfؘՆ$&KDoVΘ@ggBij죊&0~ GUi۰u+ 1bJՇ,(߹|o[+qފIܺXwɊx|j#aBig5! TQڜ(=*2}V%>o= +{Yb'AM6uV٘| n5dI(CHs#G:#6fG?! Dža&CddVd݂ 6?IWDn.ෂlbⲤ)Ԑ08VCF\O^C89meT&MI>DSv|e'I1WxDlZsa%o{j\ ]# 1בe &J-6nJ88za?L0{iژ<,8#y-ՃCAA ,8(ۿ#,*w<(޵D^O_sxf+Dl~82^+MgHѨncb6rZ&Èᶡj D38x:+ xߎ~Aj`9NZ)y0'[nl_czS0Bư NK@F.޲=ׯ BǴt ni9: #s4C#2+q>$k0S9XU;4Zj震ۀP|X#&,LFd@rUJޅ"ZkPkG$4՝NRod}[ (@~{zK$}j!Bkڜ$M1 Hɹ\K)}&e#vRO`L.83̵sH.BI'6\Çρ:w ŕ`\cN9$]z7fv7l2k j  V;9a:$F4,ÔB7,\TݭVx1TG[ |Z>Ok@!D TWi5 S("6 hѕL@D+-UD[R"5lϨԓ`E¿R=0SD7h{n[cZSmh%]#ݞ6 9]St$&"eɦ''QsZjaR( ϼ,ȯ3˥*\1w|3D͈HUuL25S`$ߞ} }xyM*1kU f-gs9=-R=jL:p{(~ģ$0ۻ϶{Ovvi_o-Z/ПPbNlqgHglu` @PD.9lQ$&.@}I+&F/ӈ7!gFyh\ltDb+݌Vr%N/s,K @T+bg7qK7n3Szo-8Sw"}sP<}mEj: xiR[2Db@/oZR*{{Usj^-xy*oGz3) U"˖UebÔWX΋(N6qNBE洩.ouo:Yٴ_ϒG鼌&2%HLΤֿ|AbZR+Ҍ^EkI:A-(i|4b9nc΀u}" Meaَ8;z!oSx8_̾`2CpH-n"5iy{MlI:Q _杋GDL 4>,f?ԵHdLym9%-Tk\xH<SuX/a4b}cD!N5ؽs CD+OmhgQ1In8-TA[devmamT.CEMb y@;_@Dm,[ /(d Q[Y67%tRl]J^E T*  U뾂68BRQ}$9F$o+ln~bFIͦUyyvlWQMǦ~%WjCSWaHjUQWv} bWYi$:V7~m5Ih.b8RlőA|%,qԵ* ܦE_nV3Dk}˧pVR?O80byG{ :C=)^%Wz wwuiz6xGgDzξr\ bפbdU#RG׳6d%&d0cZ> #bt}L-"Bڿ^u/ idثY/mUcȶ0$"&VݲQ :Qt#]amxV$q|dd!Lci撋 @)D\$ cYoױ){r4?Mw*9VQ^?b`QkdOϭm)QE@';1*@&2wmsλgh"%{:0 0ٕUdxȦAv!͑FteA6t'Ђz\}֦9R<۔p%rD鯔ɊRofE6ij2l?(.9ns#Мj$꧲/,pMj8Ailߡ3x: !"jkpV%oXO_7 3D WMp OD r b;,sCd-%HxRej[mo4)g[Ƚ&MEs3%Qh&=XH2dLMN{MjRH+ }  R FNuXˡ!7iڥ5w^WHI7d$Q.4:Xt1Z=j 9'|MgjF"EE7 dd2 gfU8|-@PbB/ЬϘ5q-/ wgt/#G|<..1ˢ}ڽD2)PA[9{NX}S^joNT׋6ݡm"F> J:%33$MLtd +-Rfݣ'rHJP WcdVGO<\ `7lMvZkL O^[(eb؋!a*J-7J_z1fl\_9xbIWgDN_WZȹ)ps:P:FkgVTZS^릡Jĺ$Ch%MR`β$ %Ϭ֓F>3V2c%6藾ta"5Oag9o'\RƥXVD`VY-;`w3Q59Rmn>}t?a3",h>7J~|1;~oqLxyv%zU_MH !3E'wVsJ#"0@ hMbr戮nm"$Z)wNasY![ĕ>D}G9AM&Q,CH)* ǑeץdGS'o~$םWaT$عr5TA6T,ϪY俌rrۭzL <$}\r0\6٭Hz:oRF'aX?e>=>1 ׊mJL-9 Iܡ)ffC)굞%}GrxfrP^]" ArdQg]əCYA-/}rlM1Mg_KKl_hoL&&,8jOi,{[-B͚ZxxA&Ĝ啡+ΐq e rBFPR3u!KKݚ(LD¢'FK~JIlj:]?fl)ޟ5-4R1zGţx\.^VZD5+ :l {P-5$\"ȇI':[g#p!;9ł@DB~JN%X^83HqYWŬ9λ,;<1BuݯvnӉhNBYvϺ$F\ c穎%>qmjB*/~V&٩+D mȝTl&x^x4CJ\j3| Z|z$ɧr_?]tƅwIYn,6/WBߣËw¯:B=o ~ũuYD6Gi:8GM$BC63o#Pⷰz wPcKb)Ћz&UrBܐr{qIG5ԥ-4W\quyHޯ';-;uYwbu4sҕU娶޳@.W&plB$4ℬw#)lG@lŁy|F⎌sG] w͟X{V{re%-x%کˎ_ܗ exL"hB6z8=g`Kŷ_"ېM[~:)¾Ap'$Y]ɔpi[A%yN=Wkd&,J.G(f{#'~]%JDd5J'2!Vf۵VNzs\\raqN! K'?Z%F! e^5}}O$;F <ƽw1wTwis<Zsqly :^K?Jd_T6PP_ߗ|xkI] l_vTj/K%9(מ0K8 $. =)al4}p U.Rp"Eth s6ƻ%)YAQ]']FYql$Z7V,!"jgB6?|/cJ49%aB\P1jd8;ߌX:xC'ˤ/L ƭ G:KN {6%0LV9_Ԇ7X'C,09,#M]M(Ÿפ|hC)DlP|,ϪSigbf~נK!D1pmcvUPevu(&|{u_iyuzw2CMdJFq1WUïsCy?<"1pՒյL\hėkp!4Wn4S|FOm8ZDF Xmls ogqNb&č5++alb]@ak]zx6c޳x\e0q݊_CHPz^A5Mg%q!1ݶ u37Q[d0BHƟ riCE[ҩ}V2xɽdنVL靫j2fYx}r^eR2)AWPcRvXZJ BAY ^Gc˵;V0<_'RFK7tkQQ T!+/%al ɼ=};{;x!7Cq\f=3ͼ%ŗgJTEw+-g%NiM00q3}FW9߬',*$`:^ *n5>d[o| 7u)WHH&mDZDx~jꯘpDY9ES CJqO7QuЭD,8=,^4X=ƫeg<z"蟗VgQ RW>9mnppb~EjL.b Eт.vۙbuZu; -$qܰw{ PcsA,)oYr\T1.zL񥿦z溾CpV@DOsi_;Ls dQL$<:<445D:<7NolW`P:= ۘ[?FiT%dHcg_.>JLҢW?MO@+8 $@RT"Uǻ{[{poiV'%p$(μfݜ0+[ Ipel̅ ހ/<ʁ7_̓*KJ&Jvt )Oߥ00u3:ƃT[O\\K4W%ܙ5̣M aCf04u. CsYXkQLYN/Ÿ+_ў'QfQX?ŊNVyM9ʬZ}MmC%J۩xLa؊l~Q4k¦RWWS#l7ch j_4޾'j&IGUie$Me@f/* 7F+xIf{"4E+mv.ShlH].en&cn)-O$zQI* -`ԧ[2ɡ"Ǯ*Ǿr20qjVPl^WHm2CO]ТAWyF]CD)ԭWJ*h}N;[5l=bUQ JТK|5.AbUD =ОLͳP\Q-BݍKA8hxO7jF'؂Z0n1x4?LRk&ORHt9)oy陏*4\-T;QǟK꤀"C72+J{rrr> C 0xXRW~)HlhO.?_/.Z>me MtJG>gقzÇq݀=\dtl I>~(4ɁO/Ls3%>'cP/^Sˁ֔is5lwkWi8f&H"{,a:8D~'w1PuӔlR5FwR|y0I#+ed+&oZ^* ^רMY^or]y05bUiˮj(81:AZ:JꦷL-fԬTM -1wx|e||,WjXQ'!Rm]\"laFӥ</B%j@[\n/e&Srעf)}0Hm ]{[>x{Zٿ\ܽ|[`"f&aҽtOWbPkPg[Fu^Z*Y“Mo"GW!*e-AmnEOf{r/53gl`\_UWU=z4_kO3[8%tmS|KT`)ܓ]>'eLw"ꂈz4J.m>ĤpnB[dlTV5/:G[bCvXqu`֭@ ޠO/bQ#tii])e Oi4ڤv;!~ ( B`CY'GǩGJ^ւ. _ވW5\99Wnp>BodKQZq68hg=E(ON,Q`| ?8o4,p.)^Ґ 316j焠\2mJEF=&8OL8}+;Q;RF.14.LjZXXg\ZmMsEhןe^o 38ObhPY8ծ rLCrqVtAl34C|'G &h pxdxڗ?#%&i䬳ȤdF-ƉteLܽCVtλq: Xw4=CEА-NL72Iy#t:KIx 839#Jc;1%u60TMԭ(j4#X3=Вvei劍mCh,9˩9 @V+Vtl76iB;ٞvojR޲qvq9YYZv0hklJJgIv|\x{wq(@f\T %;^EYB8 ŵZ Ï ]R?8?N-ދ>FNY*+tiiUWVl,,5N<<᭤6VHsi/A_Y"@!e2dò.ڮM3 r(޴TgGYE#wڛc\jŸVkj/0"[[{¼/ Sq>SI~j>Ŋ:$D\a%I Z|R:hI1(qyZ=IH~E,;Ύ&EzsO%{8+1WE 8!/ϴyS,+Sg&OMh1kl{8g$pL[Fbٶy/!% SࢪT}`0'!b͋~qFyܤ%[ca~D>s!c9.!)\yYK@0RpHI 5o-9,IY 'n׬}}urbO0Bk(eP-'y@֔ڀWAe9 l 5<&SUn3>Hg:pީʹS͝`-GcT*L0 Gct)ٮ.b"ؚh"7:^@qIt&2FfX X}x1/w:Ws$yY 1?kUOcn~@C]L EϬ韨qŜ|FP 6߭᝾ #K6x8Gӭbg *X̦uLt?9Ux`CV=Wy.X8[c*O&Nt8Hf18$j~o <:Ni$t=Amwh_r6豥/Fejý:JmlD: WN@]Z VW8"CL h&rSp|SѐUWT ߸m{7]EȢ~`IR9yd;4"2&]#_XoToTG[] XyusNf]? Z .p/KrczNY0V5OOnJg6nD!k3۩^.T/y(_ A|qeN-2Ep>W}?k?)6l v\-7Q9^0cW>Ur*zU/٥%) -Q3|;;?zTLҊ1yR3맿b#( 7,qJfZf-TIMp&@dT-Zw D.3rI9 H[ͤbEZԁ81w:?;+k)QY*NOw䃘l$uNON:)*y%AH!G4 h@ v$H-Ejd@r=NTؗ%G9՛&r3LF,?)|$3Q#of082/h[@w+퉠MdP!NK;& P&'' _rƔYaE)Z2 8Γ5G'sp%7>?ic?1`:>T!OwLESPc[T'Q6nePQ^93jD!u4EʦV@:X85(.7EH[SbLIWQ=͂~礑9E3#޼u L.-[S+Z< y| ݖ*.uDjp3|ny )%>"R횿\Ao<.:f:o #\Qz ˿ I6M=ߵoKk9FҸwJ&@rJ;*hx 4wa cespɺ2!1~`Ϲ*Q1*7y؁}$lX~k_rVͦ,+mvz`2݊ݹy:n쵅 6_91 {iI+W~wz]x"o=gC',[MOz%8q)Ṛ`hgKi=9̪G?/ب 5<9nn7+;ـr h$;Ԋ[FfٰjUdda`,&9dmDRyyv> uiu* mrg(ǜfn"&L'2Q&{رLb]nig.n-g[cQDʮ`2H],?`ܱsGhpN燏R?Hs09;^4gwzM?{#z,I!$ѥrL\0;e2^޽S]& n[ᏇCp͆^ B(Ȥx2PdP/^p^񑑆= zl>=PJ&?!\5T̂5HX Հi?()Oyn`RU"m$E[|0C-嘐-oC;8a:P^w/N \%M^S!lY Y8uR,I5 Y!øK; y%BmYHa/Upw; W##ڐͳO1Dd\@ N&tO? b0ooKi$Ӷ9[!ZE2YJEOBE.uT9Q: @XnQ%R8zW+X@Naz3e,/S5j s91Gpy+&NJ慻98PPd> 4ѥTl"spξE@>[Em? ZjHX} ,`p9h\3%Akru\8R`O:zL^۩N9NL) e+v>i,x F³43:wy^d8_ز$\Tӧ$~<% ;`[eQ3 #1ȳ&Ulf^7^0f{`cX/G]]=:f𷥆 il2-ϋUъmrhw<%p[۵r[a,tف0;~L"I~|1]HɚҹcbIB9;a{$j3%WLAsԘJ(M(&un_Ggi"i)'K:TB;3hj'Ex~ߕhͻoYazlzTҽ# x/ F֊Ǿ2ІᏯVINsݽ7VJfʼYPs?;6ʸzF+( 拏 ["֪-Ju}rBZQ)jg$,~4 (q=춗>I,TY1W*E-Zc NiXKVhk?_ 8ne Ѭhe;oDRZya^yhw}[lˑǬ^[?׋iq_&T8JZXeQhOHo-hP%- m6 7&>;QSHؠ½#o4Eo,Q%0LJ|0ЈL^`XnQQkBqf#Bjq,^Bj AF#M[Z3-uGHjK."kk=NIv6\ 0GwK$O|JL“hJ+eL'Q{T} 9-X]&MoQ$ cX!S"Ddžޖ@VؠiH!~ /'`+tFZ-ޖ_W1Gnۼʉ bXɵl׃> Eդ nY}<\6+<\jG=>NZQ"3#r2l?v@_Fy{K1j#uJ2~cXKH Z EWY^s^_W6YzD }#\K7L5+`>#xl>wEoicJV,cJbv[08Bꉰ>7NVja_hlx~QOy'읃Ql AW2h>zՀ {wO7I WE.GQP8mE|^} mY܇`>í[Ηj\ߔiuLޟKO2!TB*175]𘊍ԈxLPPsEA x6+Wl6P?Qyk6xGm|㚗ieYg(Z[| ԙ:sӧOay@ xMwGCRgD+oZW?Iĉz ݥ%iM`,bbRIݱefv)Qj z>II+hhkw-}G|gt Ub/TJ95SN.(*f,05V"8;+'H;D$$ }#pt^Mg*"g'l ʲTŤsȠUK& |Hbܲ -@(ɔ {^ Սjf)2% M6^HJw[}F3YUp:E,3>=~F ×b}|\x1䴦 c_99B'gXZ[p ܍6gԠy.(]6uꛍYD ;ǫcwM*ۮ,D<`C R?AtRהv36u@Ǫ*Q? pz}K'0@"vtϫ>rmgc%vV%2tB+};rՆ/n-?yS#Jݦ3 9}4! CcCd Si`V8/ $4캲20ɮ7Q{蜘bYsaN JPN0[iyU=}h#2[xu>wvڍ*`V[}hg[kNJcUE_AG4*VKwplI󯻚{Q/$_Q)0k+K k-"3":=|Ek4Cږ0HԠzXvFnkv@D svoҡF.)9ST Ǘ"Bwx|(ع~Gh+ɥS `,՛uVjW2XW Gړ=0ͧaףu5Ъ% ⃑枊0Ƹ'ӓB΅x1.;Wbb`icj1U@yUޯ8|-NWM1^eau0UaN]3<21?ELr3ms\s1g7L#*JkFiv5dY9(֐LKGi F*`OKs$)%E/pn~~YfTaY "O[!3=n :-6෇MFpf \۾UsbkqKl6דoW{nvmiӀ(P}c`J̺HGa4KF6R<:pm!OL.Jn[ #R /\ XlkSSqǎw}m4kܡX.Kah-:[mY4N;ULyWC3F0q zP@>.~ kvB; 8Wڨ޽$= qh\*]RAʲݝf]02Ӵ G>Ca`AwWf}[ugFc /L /(ʷ o*8q2S_:jz5Bp -T"xNañlQ5왑?<ĆtIul@C-4Jc{ML"nkAZmtƶņؑ.Wp {cH6(V;f4ρ  o: P Q(Tsۍ WB29%{C<{NM7Pf,bLmu[4~2 ca=H`>~NjG=0a;p`U4hi R_bUö=buHczk f5.E+Z(F YfA.N((Xhz}ߥ1"Z(YAsw!{Yv|̠k|Wtܼy~'72sNnKMɋ_ [;HV V {xS ;j}zt2c 3sɴ%FiňAz2IED)Ɂgj7 yP&e<`iӐ}# P-XĿ<`i}=cXH.a)!tiIY2jNM˖rz42>;t/ggOI[s62M[\8?x[|)d.O K6`HIJpa6ц>vl ^s417bGhy =fτvnT2"p:B;fvoMzbd"WkAY8x؀×\mu,qtBBSM '/[~.֊U29é5Շ:.#?.tp𰽉\F{+RJJ#>;Â~듴2hG7,9[ǡYxg{[xaWṕHǦ#{zrʨG,XrHmpݢ1+usJdqڠ\ # s?⓺9{:]"1fH^QN~Ahˬ?LB s9#s ˳JGUy5;v V% v:W{A6%e"H vA+X?G7t x8]q@p]څ^Ş{ $GBgVs[i9)QsੵղY?NR"zss{lkTj=*j԰gхQT#(FT?cw;7?6T)*wm^N?eކ sς:ާ-Oe"F 6yS}inȋv<רYLVީiP#@Yb^O3~%4u FWv_D(Ere)mmE'm$ ezw(AV3E49;&Kx 8QU 0]C- IH Z98 !qos#dFв0c8 ?׾ 9w9 ZkզGgtumY +^f] vA (3 HOP%VB-xLVi;K`~d1!r7t.<#-g?@۲ m&20;"`?6bdY(+J[-_|T,}ƥ+pӔm[wm\io?V[lR(AvQIGFߏ0׳JtO xVDQІ_h TBd@po,Tk  wϬȧpauq* 7Q'h!]W:rDL%wOF AE6,DD8ŬGm~yK"Mi?V[w{Y_[fS;mh&U[ɶ)[9.O" -,,F {WoXjjE)uL\Mޖ).ٝ -xIXY)C9"wf-Z1R6jnq툮̮@^h2}ĺM9=00 ܰ.DKʚWғ')cQо89Е*~QLƌ{jG F-Et}2|@% b*ai^]*phJ`4@Z霨aE= `wMddR5 FC= X,u=kخЍ׀t1] w 6.3iG4.BzMs7tZaΘ˘An0Hgfh?x[*t֛"G]5#ٲy}e:lJY>6]E}^RZF#g [Xq_'#D.DBԞUI뺋(r&_Kk)M$dgܺ&GGK)0"a Se-&蚗v2{I[6>$mQV6)[zXRgl;.U3jpAGlId=}#"@VJ  1y\bǚYЕ1IwkRa0S)1ҋ1qÅ6WiIk,$gj,dh2o W,@N4V?_}%qb/7CẞYɀ8+Xcoܯ-g}o_p[BVˬ>(z#WUk{SsǏ8LMo` m,FG+9{*ap-/K o0ȼD3VW@.ÈJ?*E|?F ߷kYCG]-6;H9VɞA9hO4?Y# )$PK!\lO8N(rRqj @|l[o9 ikSH(aďK[خA;Pi-ݻ0"oܵ225$}S[5-0x)M+.x Z]OHanS|G1@ q\}7}{~XͿcqbEcO4~KZN/w lq m#sء8#cxM⻷|DUk"}ء1O򬍞c8Oܖ zdu`]zӔzN.|H<t9 4 n%Ap&$y(eZqySg]bTESkBBLpPtPZ.5 )8W8qx9/&ȃ'CB^ d5{@go2DPBkUgQːN?gxܳp_ABV9[jSӓn6{6UY-͐P[5T_t79Z 1ޱ,G(ׂbO!9k)J~?Ա+kj.y᠑w U#4;Uux3DpOnakVcnjȓ`k~QI  zɿ?[E_G 27&ix^#QgƓ#k=s4ø g DQ"[|xa!r:J E 4Xe<o@SdHfiZo^yiM޹f=ag ǡHhϷr/X [zˬFvbwSSUlU=32 `~2'%!YnVM_UsxN\J<1όvNhhJ4VN%xi범]::WSb;?x./u]._DmQhXhUݬ@;%7ӊ\,Z وul?scW1cLxeyiaL\Z-g\R|"|-mF !o6VMSՏ^ǡcFou7"1ķ~T9ݟw2UzQtcVwݠ[窄SzgOz'WMO>~ Ư .KUCZM6w+5u1 :W20x^hSI,Hnε:;լ컼scځBٮ 15ו3|5ȕ^4V5oH!1R_(4xV9)=&8oZYU?Kc,n#F+<Ufa%*<ϽѦu' =A~sU4w׶1++8(^*g+{Ip./_- 줣Sj5 _o4F:}-+Z]][_Uf%T/58<]KDO-OFftnml3A4`BBx4)IjF6^j \g3L'ڡo4pT 0UCcTA`趁5VNTfd92n,, GAt5YC6DgJU TxZlcy#x[h"cǫĚwys>; 2멚j(5#vݪPL/Z^?| qnsW_c-Wv&{Ge2.ZN~zˉm V9q I4zCg G(fDwPR80,tڭ* X,Z]46mZ@ ojGdM Tf?l;zF.v =60jnƅ̯KZs(8iU)Hť$ )pi=5?1F1v*onjDb\VPoM&x҉v!bzնu]s<ǣY:g[! D0[e]<jj3Ezg Z Og!c6QlϨ!G|ꕲ= IhB.Z"jrhㆴ7^NBavgUq{@=S5qc EQ|~R$J-;Uȹ 6}b1.JQ 7a10s݀l u2PE kĥ (eO0@|N ;!f#^5PWއ WV8Sui.5@O B~iLz%^pJ: ^T^͏HTޞC^Oj'""PyX I;o 쎑,J.&Mũ&޹\C.XaP$ \|n_DB, cc8S0Ɠ*rELgoۍE$ ژ{:"^D?ܥј 3{ϰ] =Bc{8zcgR=C"uQJ9b38ߦ0׽S T.بesϬN>_)Bc&`{X-ƱB|MA -Df9Y f)( j4Yyk 8u"sYx}%[PiQ!## ,ȯ/ ,Y)[SI(ғι8j' 05;`7`(߻?! g7)k+4*mb:O_v-#ac bUqTM`vʬdvga*w@wGIM;Oޮ[r*CwIbcJy!\zq@ޞ0ein86?!*)x0[QJpJ(hb!3O?sq8{O$=5Gv3`d`;l2 [Ȳ6_{哷W2h1nxGd5݇|2|9CXoاv܈{i6{⯻VCtщ2:vhIe찿ɠZʶl+yCe:I>R9M [TE4d7v_ "i jc'fd+̰weIE2+;v<:1џ! 9`'$|#._}ˇ}ӟ/X8Žاp6w_h%vrYHÎV]C7gR$+O =i6nɯg:`V`>ˆ"qfb|`כJ:`F izd@%Jp ګ1GF'}l̛+?8 @oXxښB,lPu#m,.ΠfKT|`}. m\4|nIpeM d0lȴ+@؍}7jʯ6[B~`B~t~FOဟHӲsia+ɥJSȨiӆt+jX@Q8@e]Ȭ;Z)As}71of4AqocjN{nhX߀ _g6woǐX{U˃}:`YJU s;%w?^.chmzH}1aCGDnpw!ma |vͧU`6 U)nK cЏPZL7Z~Oʲ M;*/5LkJalDNƍH2$- 9P𛽰x;*~]F(EtN3;TI cT\kӖYZ6b)g#7ʯc ?Dp1MWs=/a*le|#NN~6R1 ߈!)`<W3UhaS!Ea7g$aܞX+$KCy,:?ZQ>_;y~$obЄpV'i0IwZp ^>j_ iY8M?{Vi:</IlﺳU10] pePG)`8~ַ} wÊ?)H) [ Y"VtϔX7᪲[0P@EX`No{.-60K1y4w8H Huv*/4GBs4~<`-WL#VHc~|(P?QȆbn?~w> K]fK?^)sHi7' c'Iy2192q"y[x'=k0iG. =g#ӗc?8Z$n kHr U1[(t1\6ДW%kRPtn!]ZչLRGZg+cPYv0;_ oK'9NG@)E| o0P_cK?V"Ÿ$8Gx- eIutF\&ҥsq6{M4a}h,|kGn/EL/.y> q2di#b-@ 㑆ϛ0~{qwng2UJiRjcIf65cOpYKiı/8"W`|b"`Lo li'Ӑ[SRAuF .n7%ea<9`)zol(wk̬w2e;|=)ÜX(Qv2b 铺wt: 1\_mڅ{{'9쩓BV#7rr-٫8_c9]Pl.W*^r yߧJ;<wV/RWf#/3 Ln//qh\SÞ"&3)궢gG,k?I(ȃLB%*J+WYJ*c&}G|RL*Mu;kҬ.Mg*wKE%fNj!:'*˯L{\ pFh"涫{FM]D!U5oRbjV \~#J롐u=tԄ:AF.ȠE1dO:T6+|CFa_ sF4W02c'F%uc/{߿%k?e#Jd) R萉(Q)p6v;)9\D`n=F奌g!8JJPh%WMWW RQǘ.=R]^m̦ݤeb%dymUt4gi2B;xڧO Ͽ\i/^UxJ徿BFFQc%c=Nق“$mO|%;=ghbuow%dݗ]F tdl[''b$3αNj(nQ[ IS8HP!CaF&F-eĤ{&U[_ `P qM^W Jtc0VmeYʃ{'v0o:~q)Ϣ Wo1ӡw gRx82P$.O;Z}YqF2!C;Kz+]~k~>] JAn*E ,CQSz@n[tW150p, {zO gQ&µ[, pMd$Q8dPwtɄ7X%RUATD|) 1X7y_tV>9HxKE֐e(lfl (x<F{A#:@)pO@op_7%5BݨEr?<7uiO}4M/Q$RVjzӕ|zRih$"gIqv,H&h,uW9um pF k.w#[Q3%!X!dasߒV)Bކ2[p2,ߏj*\;8TtX3ey&X`)*LqWP5T1T{nF]`MʍG{ w0Цcu{x0C(pO8"|rX1層=v;1rla+7릸-f(=P2[[g/t}Pudi0m,C R(^ e{+ʸ\} f~j9vG \|=cUK!(?N!ʇLi8UgM"PDC!a޸'Pj[KҔODqMUVw`r*w֬&Z" >#BJ%WLL-E+(TOLכXOYu 5% E-)'-C"+4FVwČ 8SA d+ ]ztё>mGf/r-&ACe4*/QKQ EFq')Tt(BȮ4ļɜVNV7g Ar.qE oQdJ_f9WK"3z2 ?~l43\Gq P5]w&whtQu+;qO.M^D=]?FT.!-rp8N&ub(eMfrQ=}Tg5G5avָXn*lF wKRt/ p(G- uKsZV'B%<|$:*I߳qjyNeśYsȒ;F/,}wR6 ȃ_N0\|QJ{U5a!/I9zB;*c,L_o*ZԽϘ6Nj\'PbH?^Ԇ迴/\p'Z^M_e8Ԃ*y6.^O;p\hSH{. 6rs@{=GUx]NS Y_p zvWJ+RpmsJ#[Bpކ؄}44 ۣ?-L]~_Խ6ԫs+( .~xA*{}ar/w9@Oc7\9+Wػ} WgOp5-;OA rܼmaW1bSz^'%]nsoY\- $VhUTmA  R HШvyO.9憜[ؼ,b6̱ CHZx W7`BƵ"zj8֔ $ }>&!='/ -(|/mؒ~ gUF(,0-沴*+(;3ݤR{fu}l&\IZ071ISP%?҉n")h 5[$,WPn0Y!b=`QX(ɇ)n:Jַݏt̹O}xhV LJ3\aNǿ:Job7".0Kl( 8M`w-zޤ')EJĖzaXPW%Ra3ܡD!i#5lO …3(йQ@؎܀L)^IJ rt7Oiتt4]qWR>wyhfsZS5}+6ͭ%ܡԶ)? >,W  Lَp\31h ~@BGrO{&[llw9F Ѩ#R}E"5l4|sжR"咸Hw4lmD+g. 改G6"(3Za;cs"`+2“TW3]TX?hޱ-x'4ϗPD<m3|<ђd F㬬8E/J_1 JiAyYc.$x ),/E8 ek] (S_B$_R3h'9j؊"D&KMrF@w']f4A3G6ksqNl^3nɐN26+l6SO7'M2w(L}%7/?Erun]_1jUG7Iu[ع A(5ܒ\ɛe7qQ6EYl|%9 9CKrG̙s`obQsQ<`p/{)K#9Ky V hM4۟k Q~FΑ WrğFQCt8FF ۏy I LX09Yhˆ pFmP<6K葄DŽLS?\KUbwCP]t09 A( N~B@Z`\ywp)qcΆq4t\<Elen(1=btpel4Yw${BAD>@rG/?1IIHTY* GOʃ7J(y2 R Fತ0T h)\D(ǘ*@maR'9 (1?޴spUfwm `?%5pR 1f4ud.8 ܒрaRQ,dP #8B':X tꐎ"[- W.XxdзmN?nE:܅Ɂ(X0ƑD5hpY 2*L@ั`0r ,%VekA  I5{n"E7Rt,w*,IL8vʙ pTgoDPlLRСW=laGҝRS 7O st U?0 {A1WZ{د0f8 zzbL<0 q> ޣF^HW\f*}$hi} eG2&U"S`/i؁ z>+oe5e7*-ed]􎱹|S2hA,E?Os_I,pF]2?i%hѥeu]J$:,˖a*p1v!ia7W(I|H;<a  2$^>XGmuM Gw`:K$8-uThᓣٔxq!?@#[ҥ0 y$4-_=&Z펧b$)y:z[x+7Vyގr oGy'詡E 'Z!Iz~ ECImlpYayUqXL(C)g(ER/v]g48OIĔ,J?;)2_ȡ?S:Z~:9΄ZݣZ-9IT'$`<$fXx_@#a bG[>{r/CX?!FeΠl[8% t4zNȉ%yMGnd0IM*W Ѧf~u;u"<&٦F E'O)!DLOiD1'jZ wS(sʳ4 :Bv^ =M:]q@S=l˓GHL_40p )&'`C+mE)2~- 5tdRBHYV5h03uo n KI5 Li:G۱t~\VHI ${v,J {z &9 N"8yDAT4&xN7VD4~9*-:kn[9ַK[nY"DhWͩ>ֵmz-,>W𑬽࢈4ҦMز*NqE;j2%DATOZv'w@ [?|.9;} cwj0 7S-lH !FN]P+- !)qPCfrCjB55T qX4m*E\ܜ][nֲD"2!sɗ;.kMхzOyZ8!gG*R.}KL Eܟ[yfRKuiÆɔ2ѥ&՟Xc\#,<2νDzetG%-iWӃ AMwIWa~:@,Q*zߢ%f>ĺ+-ALAj|N[l fVU&Qi$P80wݚǕǵih31KiIh}{p/c #Z:Qqajz7E2UQ[P*s ]7ocHɐmAb[EMl<G| 5%-w.ݦlClWL]L$˶l_DWC - D/VBD$ǺaKe*XkzP_ͻL-SM7P-0[eG4z[̢5Smڶi*j&El}ɏuH[na -Sʬrb0Orr@4jpF9%p& 1X3(ӱHd@M[U ŎܾL{ya_mIji a';}HP4/6'FޘM|fiѷk0; j$5ʝ| ܒN /cX<4P!_a#_LkP"`A5FX) 3B18݇Ez[f kNj)VRW1O+E׀WD^55∱ROuTh^\M8GN࿵~)R9k8`_ZZ[ŔឥyvĎJ׏gsQ;c’;Un8UgjCnm!ijR/9:\ɐiX'YBY6PCBqLDV!dҿ9J Uy.0p@ERp[ʃ:S;!!@'WVpŏfON-/H%|¡= bcoJAԃ VG@S<# $Squ}7֖2w:4<*'ԟ|x>xZ|d\L!tJ|Tiz qOxO φEx "5ٛݚ+AxIFIlAlwF9B$ H.7^pn)')F $8!ą) &i?:4)M'̛73oݎUAt.Hew gEپ+CCF%w qC?PI"hl'*l*i!Or64j:[=pYN+TTar.hEJG%K EJm_*IεZ:rSK-@l4D25E`I$'=u/ݺO5; vݽ =5XF ղ02A<#~ewm@[w#mEnc= :W I~35a|#%?#Z3^`<<:ZDeV R&ƸY9Ϥ0”}im\.mm(`p9:(RvpQz|̀7I L,CbO@'.TH?HIߚ+"tTD2ɲ;3u9/Tͅi0[ ^fM>32u/<`3;ABZ}Jڴ*H᥏ݱecҪRH )JJԪ* &&_ %=wvmz$D$w3{xvd:KW v Eq(RTGa7"2ozoӝ{Nmn{"q:jMm̶ܹMvDTz fK`Zɦ= ي:J.54r] ֨jU82݌ZPPGB= :麈n'\6Ma馰Af5C;p }GK]A ߑ]aNqDlҧxNl%{t9ꁜk+?++i~r*oZ<因oPd'yln!Q+ޛސR-6#a!u"bW8Hac}O'(df?Cc/,te`+1]W`ay+gY{v[yj̔ @'?Ik_} x d*v <5Ea)hǩ`Jgے=Ψ~OHDAseO%<-uCEVS{%jL1']E'GU%G?~Z&cɿ>>.o; P-!RO{*$msH! @#p2:qEP"_m ~{Ƚ"'e<9^b;g'ZPCBOt5vO媶b\38HQ̮ĶoX Z^;Vfؤf1iT!#\z^bq~4PWX̅Ŧ+}ߐ:X LG[ʔ0ghb1VhyuLl]VBE#pB_*9e Σ2QL#?N]fl;"/h""|Fu={fʏ ~-fY]X`\炃O(Hg:TpN ;2R|`X簕Vz0іQz&Gg6 N;vz\͊+i"rB<}z2 1XI92;b1vVtf .BkOhk_;-afn)_l3eC~T"9[j:u\SaZ;Y,}'|HIK̖~2s%En]_1`T+y2 nE׀<$rV˚Y\ׅ]줆;M 4(&AZ_ _sΐ\^l@{9Q-9pۂ} M~%gޠ{/ncC>w-e[ '[Yuq֖Qr:r9gdC,t,P䀵d}垢$ݵe@ ĖxK|+<%m÷|[YenV2Yp σ… #)w(+/ ~l6xL=|\N<35M^M z4I>̐ wG p}]my՛5lKVZm tnנ*p-xp\[up p@_x)Qgr'~P=jk1)iv}]l]?qxO K̀E B i,–-.ZMBFv`Bы 9xla"7?FA9ӫ+aAEW_q7 ׷Wfpn {̑E%LG!H[Yiw]Xw (>bJF)4b곜"o2+6zNh_`81!8~_NJ䊞\?/?G>Cs2p? NPq~H Ulo'`Nr{NVe5tyڍTFK8'-}s*ww(>9'!(eYb=3qCxW+xR6ޚ17J,2tm"" ?Ltb= uCmw¨wqlm]ipP R<ΜPXR#9ʀjٗJ U ]vS:q"JgX{F*@Q!u-x 1m_Nq RpϷOٛq*I%G5h#֠aZ̐*S3!t3&أ349;TE5(uh<0/UR3!cDRr-%> e~EpD1W? D1pUǀ ˢ|Ypo3J(C}&i L{sXWpnC (+aT]B.q?n"CL<:)Lчn'%.P?Si ׄ MM\kj[T!&Q/=?êmn948%RIX+5سF NSNQi4hm]K?~T]6ɵ=0+?Pj1[ujE .^fW!ylP\9RCa`_4-ERNy^PF.k>ϧphL?|#ߍP=}}hEfubrP&_nzǿRc"giH 1l(uu{/ۍq,'R "_ʡÆ]AW \8HFT|uS.C(:=- 0jOGS5CCuQҘtm)\*nQgKcJGkӤ/j(N'RvF+2^C(yj[sDf@e45&|nٚu^M'Ly"X ^t~tZ#V%hd|0ns;b'z=GZƙmgJ',/6[r\7cST"WSk=MAH;](JhWW] gx~s]tOg ;RޜwYiK<{?p+iήf- =7ihp(jl/'.AŅ<\rd}XfK-f9Qbΰ_ SmqƁsBM(~hӵCsvJUlu~Jy71ڟ-hsmb5V@:@Y؆xTY~? "1IVUwkco(Ze+{fF_r:2V|%ΩRkhsZ}xwG? c(] jrT ҕ*=!?޽Iu;-8w>-TCBE.'JZ)2TkVT{bY CWmZwM>Rb F UVjW] r jQOZJ){B~Hj8W*T>o ^ EER[*7J7O*/{@V@z {y4PHЭAי<្DRNS'L_?4$DjҳWwb m~T%"nRgZܖkڮ+5ϮbNc<[T#GAR6Q@4 -`P,`aDR.?=Yfז܌zin;+% p]T)ʸ3ͩվ_+j4H>]]-pPS;xf. (UU_aok*p߈QK"{^W~{{ 5msyncAccounts.ftlT]OA}ﯸ >hB[#hb mwpg @D5T _G/ȋ/ܙ{]28L^I3I ,YM.ʸiHW~ AI@FF.fezckB-a(ҖBel*!2@ tBHWP$ Kuk7f\q 2ʥB aبfi R,q*q-"tY$Vd"nE!(\ U%XKpHܔ4A6jY'EܶE,xJ ܩsܙ;u]w=%7)y"&_,I;*Y]-[}+JHī5)KxjiفFtEiJKG0>KFF\(\NHBɮ }Lgn m :05I|ZaeOƾ͙6V]SITH9" Cuw[-Z6Q2^I7~{s"0_\+gȹhHxJ9Qڢk΃K/%̛lOY6IX5e,S L~ixo6* nHN)_Av+nog;,46bUj*nRe!@aւ⻇:xz߿fEY{8 3~+*oiO/azKd_/قlMr:@n[Zio:-|?GRk,c!%X'3G6D>68z3ۙoB4Bi,x'Nw KRAf{l锖06erڂ1"nT"_vD?g{H->` cDF 3%C b록EYҧy0{\cٷ6Sx9L8y?9lҩ1,BND=\vԎ+u#dKGڌ "A%z }nǛ֏tD*7khXmDc=$7f>ؔz8U6ďjĺcmTѠeM_@QܘՑ';45QʀQ^OM`vnJuO̰â&lLf}&̶~Đb\rF/ 1NIF$|4~diidݒSe[at$}66b 9|p p[hmꮀQyvAEOASGL%T~ zA%SUM.v8"S_Ur j7 xA Җ}o>7lf{ >E;/^_yG;S߷hz*p8]m Q XX[MT%tMq1@JJ~€ng S,rqAC zZD9bǤ~^6G97+?m/4;،ꑕ*f߫/^ciG+cu}W)/-J??W ﴻ^M3]}Z=Aqs5)qQGs$ښ0dc&ҧMZHRXD^=jB\ ) y@R oBiRPDZoJ~{4Y/>No %QKH*vߢc< hw:vHJ1$d 3b"[M@z1ĈҐ̟˻򦼅@^ޗ?W^ ?syncAccounm0ObG`ӋBÊ ߸ ~>m:jb2!ܵvs!d&n{`=0JVomnpacHu9$?ȬbX[^> CcAxQVvR'r1 ux$B`Y1~@`u^"W'v^$'- BYBL7^fD\$ .-\dXSjj' \t 9x0MvYazVϱA3/XHxF{}1߁_+s|k~,C. ~X4z::$$|59$.<sHpztHf&ly鍻ͻ^n}=;B` SiϯD~UDxlwogUƧ ?O 0MRPVQR:>|?#)uDwǕ0kW` eqW;@U vWhVeO댳L(.=-\Zp8GG Cli8F”Y6EW\Ҙ05ys%ےh Mz BiC+BRΪ2y@=A=>&(8HUX?`a.m˰T6#K}e=8yN}d.`>eYh%XI2w+U[Qeq]+~U=`c+;L5d+ RHd~Y}7a;5=s`2~E^˺/[uY50ةb_?-,G v9^Wɾt".1:p* .bOf`XPՕ)pn6׼}騨PFGGx'4OB*v+0T:n’% E3rK>goҩ/v$]*V6<3ƙ-)oW,Ir&cW2YL(e.Y4MBxI C9ņbpr>=a'ئǥj%d^y2ap8!|%C/bO-.yĆ! {4|Wa;ת+-x|!|a Wo2-cqPƘ{#=m6}:]`#hW+:͒ܶS$WEe$[JZIɪJ|xHY]!U|my$̮uFcnW+^3YG2cTgU=hITQ0_N<)yYs&xD͌|:ˌ]#Nr:g9PuÏJȤ%+#<5˜nDJp( ,vo)X  UsV݃/y^sISȈ0؅5CEvhW9yčM,K FBI{$L%̰7%bB[ReQ}ͨS-։F g4 uJUVEJiWPT_? ܬ"+6KlnR暗sf] S&hK &wt @TURrq<#"KŠhRVWCk\TpΈbB0x(Uq`p"`ejF\4@ լ khe4򡊑Rɒ.)9 X1\VP&O[vyLqb [G7eBiqrI *:DjGI f\z6Dܾ0%Pn ZG"]'-Àtw֓0YRkLhT_iW}ajMU@R?98sCm޽Wsm3.ҼpmXT&2 sx*&ܔЮ"o_bCT+L:}#؄LqN:+ dr lPʲ1 PpMG$Ml4`PdbJ^cvxN5P3sK0]f |_]3x۪I#l!ԧl;Pwj5V nx6&*@ v5dDRAJɸze|Ul=>?~xylG}{:z_vN7 =LpKkgxf8hg&NeHXGXPkYks\cͿ{&*͞2&rq |Ub( 2fF\!,.,%sNbyrO؆kr ҍ/ HjC0j jçyIv)6Sm '《%8k8e^r<r+fS(cvu'smCLvq̤!M8[<[RpLh$Xvm-j ֟K< ;n!r`ca{7C;tpk`"rN1ۤ#֘۔[)C4#w^X!&9[bNU$L.&|7s \{] )wci jc\.sf3YeWsT\4ЅD`f'vFg ]@) sBpy02PO,ofQ}w!~wLf^ ZF#`,wGؑMUS:,ϫnS>gXR㏩D7\5؅̱Jf4K@| H[ xHNb 0{_;gƺX}Q3 D cS-l~WP*K8LJb՘ A{=:r4NiV#}̯wEpdrKw\iO[lFxLkO9ngm3Iok{; a}΅T QAؼw#ۆ3bOƌ42X0۾nP5{Ԣ7)}L״p! NI{..x1fzccp^a9NOȭܺi7Vq#ݚ9qfa:A@V ?A`ƠrƩg#*8s4tŀzTlア\H]#k`ev, ^Нû&0C΅0ʃ?b̭1~o4 ,=J4]_ y5{>qmb=yt*.+(áGo{E$2y]m:rhϷGh{ִx618@6@1{s; MEvPoi ?mVH]CvH&- L !`LTvr;WקV)avR!H|ukfIi ]PQp Ǫ5wK<\?ND`B<%߁}mq'أg[Y*.wPy?3BzC o<2ac 0eڝvP, a 0$ gTj Qb@p:!ͯbU)qS14O ϟh +1m9US{z> gB9(Ą5|],ׁ=C ?5)0r Bp~9"[ opOtN^nE0= zdA!P) Sў= ݦ lOdkJfIv(Huz1{ccB<\>jZJSx[G5a!jBL%"-zBf_ 8RqEKMl!8_F)~H9!KzwDe‰Q&RСhOQojs(p<$+*u2X ~5v6K>˜ɐYctP2׈ *"USݐݯZ1"<[/T&NA :(cIǤ%a2LѾ8!qUIOaOq-'"k =S+᏿ &c*@Iv`ظ+{nJ,`_%DŽ.:327˧9فr 5LW4E?i_qh''P`ov{?v-.UәVBIdk8)w~!?3%%Flƾi>]i-I3x#6FJRU5lb,~ Xpaό\.t=Q0SJ.Na_|$h={QӖ@M]"8k=#͇f6sMf© OuhKY A$趡} zCcJIG$8"!-hA8kOǎ_1NvE]@g7#jmː&x I=H,w ['s~X.Y]= ^̞`Q)\cM23 &ao!Fah e^< \泪BC[vBb-j]N!usUjõ]!2ȨzSL7, ߹l("LpݠG'C`l9kʱ[Qol-V>W8.jH>:7*Q\Q }?N=8dnOځ#>@Oò:x/d2{NisQlhܪ `C ՘]뒥u5])_TVVrC8 A-1Y-;@D.g[Qr֛ TUN2ܮ¸tZBSLFI72lbg46Mbil h~u{J:I.(/MujADs" MIxIbٔZc(eph |  [4y GKb(6~%s?XumE7rN?ZPOM[8\ߏA)fg[ tq=j/VnF)r{ n#]7=.!rQ}ЛI-%KD5vgfҁ;3];B~LHI$@~(إFgs_}{qyA7)\ܩ|':\:szRA@WQ,TI U"Xprclv~~NWY:+KG.=U왺,]KHmCٜ}}p0m%W67;m>3&ac$&s 'F#7zej4lI-<ɕ|si{7g}vyT{;2$ZLp8B99޳a8A)8Dl(T-j$u^ |nsgDߣF^n6*ylM&hq3¿hj@d)6W?GSx$f(>W/ CtCHRC WUmB4FTJLN"*Ld`q~Z,¬s>ǐPzeł+4)`@MC؛4tw֫}Į]qSq~Egsts?s>Syn 4V3J(aڂA_cGw,UbAOY;A/?}lC0B?zxz^JzcFNL+ 'J\oŔ&sflSLAeժ Te^ (~%OyYh7JMN$hO"D9 T۽"vQt}k^ԫ-%f?O #Ըsnl X LtSj?KOha5IJ@c<1# mWN 8נRcu\]nzr;N!"\cxp2آ%9͎\5hP nѸ^8 KĴ }ا ЉCaAەmiI"{fG/fmDtԭK'Pn, f"JF gIZ“ {<҇/[藠n{1tROfѺ/dగd}jBHH8Ge׫8tYVdUq1?mC?L+#| tcJJy2fsyncAccounts.ftlTn0ST uc% QJzwI& xWKշi_//؛p|3 ܴ.5G_!|bby0H \wU,{WNUHOaY}_k0Pޗ\] .wervB9BeAFa\o PE1i$XjhỲ7;S8$nTG-baMU͸labծڂZd1dpPq%񗹞8Q6$BX}k3eLoEY;vXN~F{ %۵JIyV#u?Qa@5}FF14WI o8[-u,z@ku$Hg.Po}<+{ }.zQ? QL}N0$ydcyj]Ƙ҃RT*bܤ9KN[REF 0bİ\zrWԆ]vw(W }ЛI:KEQr"7;Lfõ\* g{J˔,LIWxz~PZ#\UV.U*<1O!bru X<9T$*2U!~h&$'q[rh4:::!'#&)\Kt x4w_#_9\/]Eh%4&R72']Rc*gV 㯟uBWv{ʡF Q:J+vUc BiIxe)glj 9"P0t:%~TntZc\Hɤx[Qs:O`|˗?9~ыz/Z+<_?bha}gaSrn~[ԔFqSFiꃌ:Z/IiJCbG:IM]mi$#P먕U}Az,aC54[M:J8srZd~ԑ%G<"LUԫV[foH p|,tS ]4=@ sy5%Q :78{{g$Y'#!XՌ﷒fV QKrFX(hҀP!4f7 <-b0 I}GJ\ב-CY$Ty⤘+*gvQ0>yvfƧQы+̯L̥!uJ5CKvg2@4=g3(&3nQpwq<74n  zURBz9<6QN.Pِj^Lm5LxdgL ֌6!P ;"S& N8٧C>6j[.z\N-ZMj}3&G@=jaZzd-&7?UJ+T"=C 'Z^|Tu8w l_iqJ ʓ7X߳,|@r_-n#՝=Mcz߫gukK^DLϴ`K0Ts_'}h=Pv _wx0;&~fWᐞU))jVS;tk.PYbMIA}a'RRD5ԃ;|冐DRU6r Ia5Fj` ÙF-6V܂sB/(@I lG|}OU{etM{uF0Bտ"4}H'rEkhp{Z†<@%GVwa,3qBI%wuGM:\MuV٧:[-lZJvQï1*122܀{F4kuԧHf&m4j+렋셡c3Fr^[+fl-J0\Ƒ2Bp88Lu{Uʤ$,lE +AAJ */ ۢacQit u@h\;!X hs} 4@8'EY9uͻ^kA0|m󢦍g0  ݩu ,Ϡl-~ ɋc~M3DS䴙5ȨQx%u9#a ϳAqEh)MLmNP$ ki2Χ'fA- uU{*5/(^- inȫ%G%$֋m m=L /eb˫5b 3 ]D&Pʶ2]Cӆ!a*c9 FFF 0(p BgjOd## Af =5BBh%oh=wyN|gy6Kp"uP"1v$0Q3]jTXsF|s3s󽕻fѡU˫!9~Z!bJQ_h*6 `"4){[Pgkpȷ)~tp.?{~  CK˘D4Iiot2LjynHOF$qNHEkvzwFWBLd"D3+S*6&8כ;S;-0+z9Ƽ;fЮa g!h0Sb!5(97x3IT*OҴB{B+ 2ax{٥hrQwыug,=l oH- \*E;3?ڛCMry!3 MREC{Z; uO'fS0cUk&; O77" Ir/>Y,5lFˎ96;HF*6%4 s.,HoK}Jpۂ˪,D\çU21.HFp;n4{qwx)kZtKjdw -ji0PZ LrKYrKF< ɤMqo8/DYA 28Ed\AfcY)"XUbo73t?tw[t/1n0&&yF Y23Jɩ)a \UM,h7A}b|c3 ٷb](zp!AC VN:#0L MNIPHho*Prd2OC} fOSw|O=\w^b _A}h6VUd3&aӆ`.K;a;XA$F,b*^xNipyƨYaIR$„2鰳E`b'9~NSy(WO[Sqԛ'???RN^' GI_3[gK 4p;2U$eD{g&"iO UsQ^1u L2xE0*F3-u}Mލo"D<6 -E2:ik8=&xkƃnNjoeo;BԥU&}aq#fe<|")o@@BrARߍnc?|_L\^m~޼Fv.rrN YkQ8b(Jd+i.>f']R{_/VS.G&x%`Y Kw FWHUϧ[^P:J|gy+n-)C L/pOGYd˔uuqEO.@<}-KdɄ;4W] 8m@FY2IG,0UNHL7f=HUD32 B u;ѹ6v !wfpMa3 y'Z͂ dz@y6hi-bDc{ ;"rAW2+T |IN4Tz9Ʈzrl߸нlDwRQQr29BnQR[9fάiIKメ_~^iyNJǶ1bAlrq H8< JS-=]Q̞+( r%#Hf.t ].ѽiɧ+x,0}^t/~m3;~:gMFu픈E+%:2 ]E)e jjbGKOQ/ۖ#1TQ(9]R UK#+/-LBzݕbP]8)=~SYa&;)~Z#X)Ҫ8.s:La,@҃#S`r B.(S!h:`2 ,iPi.ioCuɖS|ܖw! CW?CE/ZY6Z@lVgFu!d92OgJzǍt.̯?J/wAQOg8"*||GD^Uf$͸N2찒8)v?xՌKM UsazZR)wi:0U&IBvSxX$QCj$u" ߚo{ѱMnI'4f>bd.&Lwzdoow٫U?I]狯4NՕ<*l b/49ɱ*w:o*AND=^M {\uBo.;+*{s/sm(21ޡ!MwrhWElDӛ2X\"y!¿a$r+"_IT[]ӯH(4Nl̎CL\2d(qgj&Z]&1* _m߇?.9@\Q`e2֠99]̙+3))1bjNCi5nR1vk) m^^ۛyni7'I%:"n5 b;%x^&ףs;+OWWs%")-~gm:؈NbLGKO~ںW]JvI|$Z6OA5`qSw['_ٌI4781lYۭ[WsܪϺwLI3̳n7/&YWt['\ZJJ*,(e3aZ'S3=\%H ! XHcLw&+~;$"a*{=̹ЀA]yFC9)5K G!nĉrKFЧCC^adD(1E*bql0PoL/(L#+d+UϗC\`\.788&wBwB-DJ""xI[A#I.(PaŰ."XffGQt`L)q☼L BEp|qvMY4,|2"[1^trBKo݁>1}s՛ 0"I,ͷ޳唡t+.TZ[LZamG1(v:IG&eL#:5`3oO5q9?Cjgya^ɂjotЛk~}cĖ%F>M}?lSXz,$"!V/ccl: *q+ K\o'7ۛ-$ DZ ~+~f/ZgA ~@c@T`0$\PLF E"PI(X# Z=2 ~W[-Ek_.zW_FtqmK{$.R.`y;2+>̎J*_B5nɹT鿨^EsAgזjwn|sh86#@!KL*s=r`~fx&|lNW*wʁ_[=mOi*-TwS_7v]<ư\֘j`diP~b@Kݓ 4'_,Sp;v1'9 sU占)-xUW6{k[Ac<×XjyGaW5 oT8R'h: UBtP&. >-J?ڂFZ )eݠY/~+e䊿{'[Dnb9'&K:CcQ61Gqx Nl!Z_чa`4(J94b]4G7чEJ+1db`,ʑ3nÉft^KQ7 [*g9*q^U(< @Yg$I\}fE(')5l#ĚbWt`[-!X$?,&8ШG۬%tN 1b.vD رɛ?4/B1(YJ!G#`ͅHX7rw5{`b/{FyhvA</(ݾfF0ӜQED7IRƩ?$xw_٪(4:EJpǛ6͟}`\BĤCuzi5ُڗ?< ż[?Fgbڟ/Kn09U\Ԗ" d[RK@Rv@v=@ޢ]wA{P#[ir<aQ(LRG()ucA`lm.@րNBה0NqNR{лds-+Ψ\PB§.c5%6T VgsD^s;r9n.y׏߿Ks[]TYS TicOnch-:Cs|C-l,wU\$rZ5*&eZF0T.Rj!`dɀ棘V1EڇFVYIXb{]3wTGDጝ*N؜"H+A r*@ rX)Du;ULa_$M5Gq*0;o4/aO "1;0ETTr_(asT qv1ZVh` &ls݃5űNhOc`zpڜǐ8_,jXhG&Jb_nE7.RT 3QF3+:isp3ټF~<ẛpbf@-Lm<*cpMAnGf6 tYbYVxNsyncAccoun_1e\ďv2H+joNao'qvQu2B @ "|` ab"K /ݻ{ٽ; ,̃!T퀼5|^C_#]'Bz$RR>}b;Ik:5-t/WK+TI,LI;L&̀^Hvh#e2aUX`b;^XKд.%fHaX?2RK?6,G@Hihhh6 s $f䏦?4m19`sCB;t(yD篶ZOGGnj7ɵ䅧tL RgUduӥF0@ߺc6 dw0^;ͯto`m:4^4j&}B+׸AIs@zIBĿ3Z>M$oy;޳c$Z٢cόj>uCI@ѲipP}V@ XңƸM'%,-wwn`~9r,gsڐ m΅xxy4ˢK{CsB+LTrڪ7N}h/2Q&{{ [!MRoUn%!4qLG9^C (%>lǂ тŁ0C!.X\^v 93IB""ӧ{us:4J \D.1]eܞa$\y.wL эx᳭3 PjxՈ 󣫊*w( a O'-" Xi~&)eo…s</Q;K{P& xy}F"3 MZi1m{PFxӠb`fӀ OeNw ^FHC4%[ RYH1p$9SBtFl_M>6v߫Ԡ&8Q;Ai̓ I SY8D;eJu |ѝj @tojkSȗ"k΁ܡ&Ԩ L˜ҚljL孵Sʾ(<! S'{.;|zlCSH,IzGfz57z?.^X *6l=}5\HĽNSKW0g=`^`3 CBmDɬ#3O#eq!>v✠}Dx|Qng 3az:Kg{&Ԟhsԃ Z$){)1=,l8e!U B*Kd\Tlr||g䣚iymd"y+w<+WJ[7ԇakWEJ^~|{'¿a' ( C uhbQu#0 6${PU>_>!tJȬ 9(,F Nmǹht<ӂ-}th?n*#o 8j8UәzIh\S їRhN%0ݦ[uZڙ~;i{+:w/C!I5T=3*p|QF-".O-ncg3"f#^g^B6 )Tv&NŎz |b-%S[)bY;ai݁8zF|aRvGxx~Z>dcf8wر.Q z< `Žx'u=g$puG[XX6F@}M-K./p:LU!c,EG2O[x:ЉVt"Z4>r,+-^{_j8`p]2, N5n܎VtPxKj/~s5V%4瀴a.ҮPjWRj^]й s0ϻS(u}{`y.1S`@tM I+*%:l2-C{;GKU`H{ '/<&/YӨI #{D; =`p"_'7fpE, hHqI+F_/ܝZLK ,*Vy5>݊O.+ smh\&c"Z+^6I"BA "Ы˯#(\gjj(ʑe(dE{>iX7kz+ǣM؄,T{)|ddWrHhX$BRRF;s>mz''3÷- ftj+5;*'3+HF /( L2R\BI%@0T6B"IJXӠa1/h>UTNG-B E 2(F H^-֐=^Ȃ.܌jc=sQbTf1_F=q#ٛag/ qUgEh_"*Q4Zlo hzDї>vPÏzDt=Vs`,sX3KҘ_/7]t{Hטk%3KHȯ*KM~ʞ ꫬ=rJ^-7O"A!(>ӹ5nkup?RU*\dÂZ.{ϯu5A ȋَtg/w/Q#s` Z̩>~ĝRж\Ҷo3T!}HkӶ{s }?vYk *vܧ(s4]1` f]Z,N2J YO|ƺ2OVٳ;| έu҇7|˶_RY_a_ϟ0sL1gphf>杓}EU[kv R}-ڞ UV̾~ښP?ȬםHJ5%1L'[  V!tJ4s}nWtrYPbLVv8&:0\ +7)ߊ>PMJ+eD&6o__V.Ac쬜/7pHw]FӻPJ&xaRᏒwm/ Sq..Mq/q{Qثcs *VìvG%zx{NNB;r`JgV(HtI M]OA}_1 nk|4I!Hgwvg;ˇO(_.RJ)cn#h|vs=N֩3V z41;qD3u8bΟ'55 \ŠԇJLA t/q7R#YݒA4d24p*.'\u%E x\b1c ?&A#s~2IeĒ Iª\;2 jMksYxNnq^ɖMG1'9 !s2ΡF,̊*2nĜn]1' p/yVܮ?3q6Fgr{&NGDTY#CQb_>_Z^\>zP'b܌!46QO8ȉY|u9MδVr~L4 =FR5ZKWFQFL/a}y~&9Q QpBkmk\TBk"[e v s'/vx 8:](e-HlPB7c N G6o@?0X8T9X 7痾(İ[},7k( Ӫ&1w5 3| MBfuq]INA`$|؀;Gj|WbE̡C?2StlR%NJl&KJqgWo5XØh*QDcRy*CeeܾkwĶ·p2/vD~[T߈|#V[sF~IRŴ 0tL2 /}\Kkk]Ng1I!C\HIsM +GH<w.;nT1 /E5.֤[ )M",/F?P[pF$LOѝȅt02yegrscWȢR Zp8U6"u;"3 Saal*ryR(,?冇U.S[HBиMA$"D81N"vvED +E \2(,tG:pRq☼L B|x>/6%Y0,|vE旇byJ|hv%EQu4Vۭ]^5U8KbF F~8X;P * {-{ gXE*n}+DISLj w݅ν7q9̂[@%MfaOyOgqz+;֪`S[?&e "QЫAs37?ϰm\՛[YX4ߎ`ρ2MdIps- j$gr(~R=Ok]E=hd| M0s R}"a/3%n0$Gm:D6h2递SvgQ0H_r(bL6婏g 5b 2f.v HK }MBF0 M$?yճ'7nd ؼ}kfۭjgFJLrZ;֋ x2*D{sރ `FE~dp18S ݱ8 -RQN 7zZ ?e%PCN=Sn4SFU%i@ފ1\ No.b6*B)&*0>Ƣg׀S{Nkp S{[zSVpt "yRzf$vtoJ39g`rZ_)syncAccounts.ftlTMOA+x$d41};mG3ufR @J AQ=|g_hՋݙQ1•¦PwB(8Me@9(gTONh1=N>{FxպOd$P5Fa[x6F؉k,`!-Rj,^_Vy<V03>\…5]5D~;FڪW^7zqup}_£NcqD9ӴrB(qR,'ə5.11< gh;moP@+~]96zKo]nkuoЯ~:m3`őnEn|?cH.' 0$N]|I,`ܖxWn],N^}7ýVuZkqƆhwK;E}_1yHQTH!" U<;fg6!E6! ZR'K4MSy~ec~9޹str4\G'h``WDH0$* XrrݦѤTW h]4[DWчej eral&Ap b9**T/tl# L& T6Z*Ya"sfJ Y`(B}f2iL ;HgxMƒgUHB0)~El 4wFQAcb j4 X'fIPQL B֢J0G.LZH2Hŕ"MCE%a]3 YG @Z/;B_T[FA*mΉ=C!bT QAEOӛ#Wz=[Th]j[CQ˼}AΛeƅcF: *-=7D֌|#`ⶫ(mw5y_ayG2(9CDPG]xNb$jW[뽵~whBrU#0)hZdH~}k;KІ^?.56ۯ5!zگ=Cb6S2C<́@Zzl/yqז_hm6[9n;O퓖8 I XjfK#uAqu<9:L$kpHʢOβ )p.8TO,tйG yF uE]+@h%씝 $W'!"2D!4`L&0lr`cuʝ+#~љ>WPw粭4Qxy+긑^1H|A/ #\ -my+O\ȡYcaS_7W#w?pÎ1ޫ3o Iz5}!!{?硇 }Eɓ%/2WYs9+?bÛF~瑔.-h\xV-W(q€Hq'pyt %Ni$t:#"}2Vch)Rctz2+w]+Ь9Gc8cOӷl0Jc}yQas+N