From fa85182be8fcf6b62b19cf836087d63baac59c71 Mon Sep 17 00:00:00 2001 From: TrueCharts-Bot Date: Fri, 3 Dec 2021 19:54:49 +0000 Subject: [PATCH] Commit new App releases for TrueCharts Signed-off-by: TrueCharts-Bot --- dependency/mariadb/1.0.19/Chart.lock | 6 - .../mariadb/1.0.19/charts/common-8.9.7.tgz | Bin 37337 -> 0 bytes .../mariadb/{1.0.19 => 1.0.20}/CHANGELOG.md | 18 +- .../mariadb/{1.0.19 => 1.0.20}/CONFIG.md | 0 dependency/mariadb/1.0.20/Chart.lock | 6 + .../mariadb/{1.0.19 => 1.0.20}/Chart.yaml | 4 +- .../mariadb/{1.0.19 => 1.0.20}/README.md | 2 +- .../mariadb/{1.0.19 => 1.0.20}/app-readme.md | 0 .../mariadb/1.0.20/charts/common-8.9.10.tgz | Bin 0 -> 37602 bytes .../mariadb/{1.0.19 => 1.0.20}/helm-values.md | 0 .../mariadb/{1.0.19 => 1.0.20}/ix_values.yaml | 0 .../mariadb/{1.0.19 => 1.0.20}/questions.yaml | 0 dependency/mariadb/1.0.20/sec-scan.md | 909 ++++++++++++++ .../{1.0.19 => 1.0.20}/templates/common.yaml | 0 .../{1.0.19 => 1.0.20}/templates/secret.yaml | 0 .../mariadb/{1.0.19 => 1.0.20}/values.yaml | 0 dependency/memcached/1.0.19/Chart.lock | 6 - .../memcached/1.0.19/charts/common-8.9.7.tgz | Bin 37337 -> 0 bytes .../memcached/{1.0.19 => 1.0.20}/CHANGELOG.md | 18 +- .../memcached/{1.0.19 => 1.0.20}/CONFIG.md | 0 dependency/memcached/1.0.20/Chart.lock | 6 + .../memcached/{1.0.19 => 1.0.20}/Chart.yaml | 4 +- .../memcached/{1.0.19 => 1.0.20}/README.md | 2 +- .../{1.0.19 => 1.0.20}/app-readme.md | 0 .../memcached/1.0.20/charts/common-8.9.10.tgz | Bin 0 -> 37602 bytes .../{1.0.19 => 1.0.20}/helm-values.md | 0 .../{1.0.19 => 1.0.20}/ix_values.yaml | 0 .../{1.0.19 => 1.0.20}/questions.yaml | 0 dependency/memcached/1.0.20/sec-scan.md | 878 +++++++++++++ .../{1.0.19 => 1.0.20}/templates/common.yaml | 0 .../memcached/{1.0.19 => 1.0.20}/values.yaml | 0 dependency/postgresql/6.0.17/Chart.lock | 6 - .../postgresql/6.0.17/charts/common-8.9.7.tgz | Bin 37337 -> 0 bytes .../{6.0.17 => 6.0.18}/CHANGELOG.md | 18 +- .../postgresql/{6.0.17 => 6.0.18}/CONFIG.md | 0 dependency/postgresql/6.0.18/Chart.lock | 6 + .../postgresql/{6.0.17 => 6.0.18}/Chart.yaml | 4 +- .../postgresql/{6.0.17 => 6.0.18}/README.md | 2 +- .../{6.0.17 => 6.0.18}/app-readme.md | 0 .../6.0.18/charts/common-8.9.10.tgz | Bin 0 -> 37602 bytes .../{6.0.17 => 6.0.18}/helm-values.md | 0 .../{6.0.17 => 6.0.18}/ix_values.yaml | 0 .../{6.0.17 => 6.0.18}/questions.yaml | 0 dependency/postgresql/6.0.18/sec-scan.md | 1112 +++++++++++++++++ .../templates/backup-postgres-config.yaml | 0 .../{6.0.17 => 6.0.18}/templates/common.yaml | 0 .../{6.0.17 => 6.0.18}/templates/secret.yaml | 0 .../upgrade-backup-postgres-hook.yaml | 0 .../postgresql/{6.0.17 => 6.0.18}/values.yaml | 0 dependency/promtail/1.0.5/Chart.lock | 6 - .../promtail/1.0.5/charts/common-8.9.7.tgz | Bin 37337 -> 0 bytes .../promtail/{1.0.5 => 1.0.6}/CHANGELOG.md | 9 + .../promtail/{1.0.5 => 1.0.6}/CONFIG.md | 0 dependency/promtail/1.0.6/Chart.lock | 6 + .../promtail/{1.0.5 => 1.0.6}/Chart.yaml | 4 +- .../promtail/{1.0.5 => 1.0.6}/README.md | 2 +- .../promtail/{1.0.5 => 1.0.6}/app-readme.md | 0 .../promtail/1.0.6/charts/common-8.9.10.tgz | Bin 0 -> 37602 bytes .../promtail/{1.0.5 => 1.0.6}/helm-values.md | 0 .../promtail/{1.0.5 => 1.0.6}/ix_values.yaml | 0 .../promtail/{1.0.5 => 1.0.6}/questions.yaml | 0 dependency/promtail/1.0.6/sec-scan.md | 545 ++++++++ .../{1.0.5 => 1.0.6}/templates/common.yaml | 0 .../{1.0.5 => 1.0.6}/templates/secret.yaml | 0 .../templates/servicemonitor.yaml | 0 .../promtail/{1.0.5 => 1.0.6}/values.yaml | 0 dependency/redis/1.0.21/Chart.lock | 6 - .../redis/1.0.21/charts/common-8.9.7.tgz | Bin 37337 -> 0 bytes .../redis/{1.0.21 => 1.0.22}/CHANGELOG.md | 18 +- dependency/redis/{1.0.21 => 1.0.22}/CONFIG.md | 0 dependency/redis/1.0.22/Chart.lock | 6 + .../redis/{1.0.21 => 1.0.22}/Chart.yaml | 4 +- dependency/redis/{1.0.21 => 1.0.22}/README.md | 2 +- .../redis/{1.0.21 => 1.0.22}/app-readme.md | 0 .../redis/1.0.22/charts/common-8.9.10.tgz | Bin 0 -> 37602 bytes .../redis/{1.0.21 => 1.0.22}/helm-values.md | 0 .../redis/{1.0.21 => 1.0.22}/ix_values.yaml | 0 .../redis/{1.0.21 => 1.0.22}/questions.yaml | 0 dependency/redis/1.0.22/sec-scan.md | 892 +++++++++++++ .../{1.0.21 => 1.0.22}/templates/common.yaml | 0 .../templates/health-configmap.yaml | 0 .../{1.0.21 => 1.0.22}/templates/secret.yaml | 0 .../redis/{1.0.21 => 1.0.22}/values.yaml | 0 83 files changed, 4426 insertions(+), 81 deletions(-) delete mode 100644 dependency/mariadb/1.0.19/Chart.lock delete mode 100644 dependency/mariadb/1.0.19/charts/common-8.9.7.tgz rename dependency/mariadb/{1.0.19 => 1.0.20}/CHANGELOG.md (90%) rename dependency/mariadb/{1.0.19 => 1.0.20}/CONFIG.md (100%) create mode 100644 dependency/mariadb/1.0.20/Chart.lock rename dependency/mariadb/{1.0.19 => 1.0.20}/Chart.yaml (96%) rename dependency/mariadb/{1.0.19 => 1.0.20}/README.md (96%) rename dependency/mariadb/{1.0.19 => 1.0.20}/app-readme.md (100%) create mode 100644 dependency/mariadb/1.0.20/charts/common-8.9.10.tgz rename dependency/mariadb/{1.0.19 => 1.0.20}/helm-values.md (100%) rename dependency/mariadb/{1.0.19 => 1.0.20}/ix_values.yaml (100%) rename dependency/mariadb/{1.0.19 => 1.0.20}/questions.yaml (100%) create mode 100644 dependency/mariadb/1.0.20/sec-scan.md rename dependency/mariadb/{1.0.19 => 1.0.20}/templates/common.yaml (100%) rename dependency/mariadb/{1.0.19 => 1.0.20}/templates/secret.yaml (100%) rename dependency/mariadb/{1.0.19 => 1.0.20}/values.yaml (100%) delete mode 100644 dependency/memcached/1.0.19/Chart.lock delete mode 100644 dependency/memcached/1.0.19/charts/common-8.9.7.tgz rename dependency/memcached/{1.0.19 => 1.0.20}/CHANGELOG.md (90%) rename dependency/memcached/{1.0.19 => 1.0.20}/CONFIG.md (100%) create mode 100644 dependency/memcached/1.0.20/Chart.lock rename dependency/memcached/{1.0.19 => 1.0.20}/Chart.yaml (95%) rename dependency/memcached/{1.0.19 => 1.0.20}/README.md (96%) rename dependency/memcached/{1.0.19 => 1.0.20}/app-readme.md (100%) create mode 100644 dependency/memcached/1.0.20/charts/common-8.9.10.tgz rename dependency/memcached/{1.0.19 => 1.0.20}/helm-values.md (100%) rename dependency/memcached/{1.0.19 => 1.0.20}/ix_values.yaml (100%) rename dependency/memcached/{1.0.19 => 1.0.20}/questions.yaml (100%) create mode 100644 dependency/memcached/1.0.20/sec-scan.md rename dependency/memcached/{1.0.19 => 1.0.20}/templates/common.yaml (100%) rename dependency/memcached/{1.0.19 => 1.0.20}/values.yaml (100%) delete mode 100644 dependency/postgresql/6.0.17/Chart.lock delete mode 100644 dependency/postgresql/6.0.17/charts/common-8.9.7.tgz rename dependency/postgresql/{6.0.17 => 6.0.18}/CHANGELOG.md (90%) rename dependency/postgresql/{6.0.17 => 6.0.18}/CONFIG.md (100%) create mode 100644 dependency/postgresql/6.0.18/Chart.lock rename dependency/postgresql/{6.0.17 => 6.0.18}/Chart.yaml (95%) rename dependency/postgresql/{6.0.17 => 6.0.18}/README.md (96%) rename dependency/postgresql/{6.0.17 => 6.0.18}/app-readme.md (100%) create mode 100644 dependency/postgresql/6.0.18/charts/common-8.9.10.tgz rename dependency/postgresql/{6.0.17 => 6.0.18}/helm-values.md (100%) rename dependency/postgresql/{6.0.17 => 6.0.18}/ix_values.yaml (100%) rename dependency/postgresql/{6.0.17 => 6.0.18}/questions.yaml (100%) create mode 100644 dependency/postgresql/6.0.18/sec-scan.md rename dependency/postgresql/{6.0.17 => 6.0.18}/templates/backup-postgres-config.yaml (100%) rename dependency/postgresql/{6.0.17 => 6.0.18}/templates/common.yaml (100%) rename dependency/postgresql/{6.0.17 => 6.0.18}/templates/secret.yaml (100%) rename dependency/postgresql/{6.0.17 => 6.0.18}/templates/upgrade-backup-postgres-hook.yaml (100%) rename dependency/postgresql/{6.0.17 => 6.0.18}/values.yaml (100%) delete mode 100644 dependency/promtail/1.0.5/Chart.lock delete mode 100644 dependency/promtail/1.0.5/charts/common-8.9.7.tgz rename dependency/promtail/{1.0.5 => 1.0.6}/CHANGELOG.md (88%) rename dependency/promtail/{1.0.5 => 1.0.6}/CONFIG.md (100%) create mode 100644 dependency/promtail/1.0.6/Chart.lock rename dependency/promtail/{1.0.5 => 1.0.6}/Chart.yaml (96%) rename dependency/promtail/{1.0.5 => 1.0.6}/README.md (96%) rename dependency/promtail/{1.0.5 => 1.0.6}/app-readme.md (100%) create mode 100644 dependency/promtail/1.0.6/charts/common-8.9.10.tgz rename dependency/promtail/{1.0.5 => 1.0.6}/helm-values.md (100%) rename dependency/promtail/{1.0.5 => 1.0.6}/ix_values.yaml (100%) rename dependency/promtail/{1.0.5 => 1.0.6}/questions.yaml (100%) create mode 100644 dependency/promtail/1.0.6/sec-scan.md rename dependency/promtail/{1.0.5 => 1.0.6}/templates/common.yaml (100%) rename dependency/promtail/{1.0.5 => 1.0.6}/templates/secret.yaml (100%) rename dependency/promtail/{1.0.5 => 1.0.6}/templates/servicemonitor.yaml (100%) rename dependency/promtail/{1.0.5 => 1.0.6}/values.yaml (100%) delete mode 100644 dependency/redis/1.0.21/Chart.lock delete mode 100644 dependency/redis/1.0.21/charts/common-8.9.7.tgz rename dependency/redis/{1.0.21 => 1.0.22}/CHANGELOG.md (90%) rename dependency/redis/{1.0.21 => 1.0.22}/CONFIG.md (100%) create mode 100644 dependency/redis/1.0.22/Chart.lock rename dependency/redis/{1.0.21 => 1.0.22}/Chart.yaml (95%) rename dependency/redis/{1.0.21 => 1.0.22}/README.md (96%) rename dependency/redis/{1.0.21 => 1.0.22}/app-readme.md (100%) create mode 100644 dependency/redis/1.0.22/charts/common-8.9.10.tgz rename dependency/redis/{1.0.21 => 1.0.22}/helm-values.md (100%) rename dependency/redis/{1.0.21 => 1.0.22}/ix_values.yaml (100%) rename dependency/redis/{1.0.21 => 1.0.22}/questions.yaml (100%) create mode 100644 dependency/redis/1.0.22/sec-scan.md rename dependency/redis/{1.0.21 => 1.0.22}/templates/common.yaml (100%) rename dependency/redis/{1.0.21 => 1.0.22}/templates/health-configmap.yaml (100%) rename dependency/redis/{1.0.21 => 1.0.22}/templates/secret.yaml (100%) rename dependency/redis/{1.0.21 => 1.0.22}/values.yaml (100%) diff --git a/dependency/mariadb/1.0.19/Chart.lock b/dependency/mariadb/1.0.19/Chart.lock deleted file mode 100644 index 2c52e07b1f..0000000000 --- a/dependency/mariadb/1.0.19/Chart.lock +++ /dev/null @@ -1,6 +0,0 @@ -dependencies: -- name: common - repository: https://truecharts.org - version: 8.9.7 -digest: sha256:fcde72accd942e87af2e3e43b8743053fca3f604d214556f2357bd39ca43d3dd -generated: "2021-12-03T14:11:56.150356505Z" diff --git a/dependency/mariadb/1.0.19/charts/common-8.9.7.tgz b/dependency/mariadb/1.0.19/charts/common-8.9.7.tgz deleted file mode 100644 index d624e7df28b2e6a9f2fbdbe515f1463795197ed7..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 37337 zcmV)kK%l=LiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0POw!ciT3yFplrf`YZ4->9=;D=+&|v>u&bBu9LPon>aqP(|+&W zdrtz9kc2fwvH&SZ>*jy|9J~?$L5lKQ)2(@S8;b-617I+i84PB^bh%8E{>cK8ytjtS z_%C<=3dAz#`8xI_dZ4IA0XgUYIWXIVn)c%k*KE(SA-4>MtS95$VhKf)qPAWDO}0 za0PQnXitDDC?a8+8^hJw->|S@Sr#74!-RyAx?6L6GS*Lw1haG0G!Oy|11IbQZnxVkU-X7V*mgsNL-@t zR1n1_2KhQe6NO%9rEq!PJL(;F9%}yO`d`7gK=hs%K;!x!4o0Jck-Pp6_x2vw|3f@a zK(`CtWhnXi>=e)pg?NTT5T?lt&kF+CTJJmo{~4hfEaIFMK1T>lQJh|N(hMc5EP1_z zb2RAyz+s(p7;BI(5Re5x7-N*=0JDM}00_!biu07LCm_lYp=r{WMZ2PCTVNoEY!&8k zuGrOo(ghstA55a*;dn4UobDe+`@_S%@o>DiH`<5M;oi~yXgD|+?+r%#=wN?%Fog#L zc(iwjj`oH}(R4aK7>$nhT4RtEaSXCF#^JgH_^&hmV**~!PSgC1Aj&$_;n04;1pQb* z5^X!wSD2tVt5`qSC2Zd~&le%-;k1AGoOWT}Wqi7?fwll=j`V8S8}vql(Qt4y9IFA} zJ3Knt8y~@=>EI|lcz!gSg=oAF$03SP7#{BJ!`XN?4UYyxv^R{7!e|l@E zXb_G^aBpxpJ&K0m6rv#<4aTFx19UWgK069gyY{ytUKnRMLE8?ss8v7A#{z205f;!k z!EwiR+#9KJ9S@H7_m0MJI)&(HaEOk^)8TA1i$-V^p@VQd8x4kVe|mH{81EnMjmCQ+ ze2%8WgJ}9ZjHZWPhHEvw9k)$sJ|~F&x;?+uH5)i?3EelmQ=BJoiTh=-HbBg=9gcg$ zl4PgR3{8il>Hh3FM9(7>&BD>_Fq{sb!@(4epC9cXh2sc@;qYj9crZE|!O?6siw1BC z!w5~ivs!7r?eKQyaXN)@IW8y%FahZb5rQMcH88==(F}hE>5TuH6>-e84XLBNlcg;v ztQ<;mOb{;vA~eGZ=92|90JA2h=O@Q+UQNIZ#uRlrOcf((93!IPq6AK3Bp0dr+Uo%M zA)0XI%*CQC3Yb>Zzur+c~#Cr&10Fxxmp@5zy9FMY2-vHUyZFPWI>kX#)1pMQF1$?Os(sYUBz&`;1 zaK%cz<$s#E+#Z7oxc*YpyBJPUybV}U;kJFcVY6mOPK)If5k|-nqL`ovWNAdjl8!ZL2&l;B1V#wZoWLB-*SzQtDFH7vGV~ei1CB&b1Z}-XAwe)lU`KMPT>z5^yiem8 zC-VRgCc<|h-0?&crD}iHehH$<^ll!%c*Kity4FHBv%Xtl)p5$crRv@0U>CG zDNYlxz?5-y5aT7z`K*f%KZ*Bm*y{<{>vXWST?nRH?h5u6VV5cyzx}?JCCg1t@j^** z%Oy;r9lEPou-e}kHF5(|M;78MstN*+;tmCX6|3?xh|<>VVlqyVN|?05#C0E8)+qXaPq8-ar2WNryfAV5AII8wBPrTWx3QmkVyv7GAWHZ*gEX|5o@Bzx?#vEMXe8D>{ zrNDJsNJV(frssPE;1%T39pn-#MW(#SSQbh`vd$QFOxH>ncqW(_XSR$LqZyMBnLNY< zx+k2YChKV$tpx%w3|T+q_#1~hV1{GV>j-4EuzhxXe*Vk5_b(@4x$b6=(yNq2vb%2~ zP5??)n4}4p3RjR|PAffdA=#s%5Z1%=ptMO0E_@vKag~(e*@6#^*Sh7@g6*3Dx$87a3_L4f>Io>;LjY}kUIYuwjtKZ_H{}&1x5Y&QglH zSsHb5GE2!)lx4mAnW4rfLiP3Z-OE=WPmkZenn;y!hEW{7M>F+XzBz;WV#3!!FG(ZB zMxoPDv#R7jVJ3PDGhScRRtKf*OLqygt`rTsa=lfGir2bW7o2cL1u}wDg7Y;9V@QRt z9pTvw5k}HEW5=Ahr@}}>!v%^8CLpSMC#>2jZvs34bWL-#?6SUeLxOW0!dOY1ahzUJ zwdR>b0VT66p>kY1`lkj9uP)i-b|aX~5lIW$EfJ}Mjy|&q#W`4{lnbDY>~ppOsuxOY z`DK9;DdezEr-I9aCA>sTokN0GF%>YOis7cz}y=Imp_n2EthXjc~OKN0&5PUhWwfz<2Wj@TZ~#m_f5xuiD1oWO+X z5CuhCD_}H8QCRSGmnJ#-ocBVQ!6}Y$&J>cg$SKpEr5^C(hu3UoE=Yk+kIwo;KV<#){5Vy;n?GhQc{W17IU?nsUT-wa}RnYfg+=@pUl9 zGZe1F7}fPm7ci|6()bROHNXkZPgH5jg=PRLh%k3%f@BSFj+V3sUcqo-msYy&0i-=AtezaJ@6BX4Y34-P2=^oi|yY)8Jr zbiuizoc(oL5I#u?_?d<+cwV^xC2Wdvst)?6h-*>ciU|Wu-4FtSmQhMX?LG$=CuaeF zFHTi1PR_~(Ue5poKV4j$$rdmbyj*F5e7UmkefFPoy&>(2E@v=bs5-u;`++nYGa*v_ z(iR~$E<(ywL`_Wv%r&c8qt=t4UeBcP!_-g|flq2A`Aj?$Xo@x#X&g}nQ67`2jmQhT zj&cCUd?Ez`4hhCDQ4H7TC`^-xPQY*=zh;PFzUw&ebG$@pk?Rlp^8F0rxFG0aK@epK zvoEEsJ%ac~w62$#pV;;1d!cp>{gK?aA$NP&?wH>Fz`r(vKNow#*5oet5j_jF-idVYUC=-r&V> zf56lvR+p0z!x9u3m3W=kVA z-q^zVw-gv)!4gpl=h~tMt_aR^l=M_{LQZTF6A9wxn-CcvyD-CjrmMy&jJiyXFGz@J zpNWvGVgHF%5W2%%rf^6sxP3}9jMquTR9gfV=~erVlxJbeDje1MuY6+a)F*EA`1Ave z<0%X;FVZ*ZoW4t55t5Qmztb?NQ*PP#OUWhyPD)A>)_#y6BO@w zbKH5WXO;cJ)gKMrN3p4`j!>wwUdR(`pMJUl@UaI4sZ+ry5(a;UCgpN*T1m}2} z#c1bE3Zp5EVG<&;`wXz3-^-uRl)dxy*)wpOM(8Xhxv`P!ufnY2^;WC#?W*56r_#tB7i086-LgiX+|1tx+OdQbK}4rez+>qc&8^<9#n8hR63C)1T}(tssRpCC&~ z4vb?J$r?6^6s%e~K)$ww`L9JI1`py;Z_I!gPd6A)t1c+9sANSO*-@sbx`rQZ;7NQe zHZUXu&JB5z81Y($RKt`kX_tdYxW{8zCnfpBDa%$l>qnl3Y1}iuofjF0VVov^Vp931 zXX4*;_Q%D^nG`!dygd74Ru=+1`y@sA3|=JwGJT-*vq>T_M|sI7agrm#Na@4-H~cH- zs^zhS(R+dLghO|_q|KToN968KysM6`B+l$C_Q`uKj(Had80QlFOV6I&PbKJ2Y{sOI zI*Oz+U`&JF5pbeiONGVM&=7D!a|9!h&Wv_g=}#GNg3m^e&9FSPXCoBJrKe8(shB!* z^WjQKiF=8)OApqa6S)h>vuY)Tn7am_CAC{vI}kNT>b9pu`ap<5=EtP0gXKz7m`*BU zl=Qb?%x<$3#ckX5987#R7?%X@NK60t-;U90t#BvHw2|)0qPG+8B%FHjPI;%a7w^;% zSnO2$^)&KQS@pK^odi?IOI0iPF5l_FZ4&VGacipFvSFgVa=;QtQG5jnGRN}={24`W z*%!n=Rq*7roz6sUQAY8YoIo_gm*$tt=TsaJXD~#{brKeN$~N~93T2BQe{-KQ3SeT0 zS*1Uc36n7am}Q9Ra|}NFEt@Xe((XfLP4Q8-cgCjy$Ln%jtrJ*{Yq>6VD9X6A<*tPe z!!a##z+F$|nfy|@#MyUuKX}WXL}Z z&P43DUFi?ki_;LsrOe_YmBD;bBE>K`R$XE0y%Ks%Ixwp{nEcfx|m_lk%~ zuS~!*VvK;ly#T}BaNHeKAYE|1{fuAVvpyO|oJvb-)3S^=V)xUgwUQKAGY%BtA=Vl) z7m(XQHq;kKoVs{(?vhIne4pkE>AuIkBpG`Yl*MKsBPn-jh4$=-`N(5xa0BfeD9G2M znr{mnApL6uee%Dq zEpA*m*L3Wv)@@C&>57kC*C#1(0J<26U=D!_@Z|7g?Q72Jv4WPkF-y}4m_pJ-X}6}b zmUAe*sA?RLN__MYn{=G5;A)*&^Mf|pYdpGcO%P^FtkZRLai>Bizm#Va%h}H-lH~sl z?Zmp%v0hkCf9piN>LeM51(kEf38Ta;MrS{tJd=O^boLBntMC~>%Pe2N#N?UW>zftI=vep3!h}6f0Cdc5M z>N|BB{x95Qkf&mw5(oZiTr81N*6g!bHNd9J`KSJ089E=+*~ff=K8osp`}9l}m2Tjy zm!cIBt;r)MBqCvb^FCXtB?*=#T| zRU;O8s&VO~``78-~#nn}U z3Vsm+pwF0c3Jqh3m(R*cm+mO~J6m{`c4D0Ls6rmbxhJ8DEVWJ$l?ztc#<^cH5mB1>9Y?)%*i?3DG3DxmL`y6# zl4fu&9m*}Xc+Bq@yiLuJCyGJl4(YxvO^m4&>A9RNuE#CY24fgx3wCAtg?Doo>0cWnaRBN+WcaE{(F(Y5UU#R35+m}5HAII3Q- zjR(>4D4}+2DE=3kfTN?MAF&25j0!1NVgyApCM)he{Con6EKR_t1rx@KgiS7t<4=-t zv4ZaH;}flysLe-F2AhlpBurk(uMkQAj7>N8jxoyH46+_s-d=>sZnJ+MLm`^jB9B(! z#O9|kce#FFRQ4ETmMFpnw_XO~zJ5^dW)S4dY(~M(`{TFWDGV>!Jn5SiyK2QqpxXOP zOtAvYW}4Nd`pie}N&GusRia^=)$l{9bNnwPK7P+z|5=RKCon@WXUk+RZ^_H?c*Z$Y z2otq;mPd8?Ut;|&IXEDDBd4IGF&U-B9dGpv@!%+ zb-c)xkqnU~rj+aU!k0f>q*sXu1hH7Af*dHy&&q-o#nGcpOS!$JF0CEz*|dC8n16EV zJ_wi^yj;ID`*Utyfmc;8))}{+Ff}4vpzu<;tLJ1bwQ?I*g%z79I%TSQM;a!y z5)EO5XB1LS6R$5moXT#M5orFv^n2gr>z#3Vw7z+|W#pcAb1e#Qo@m*6%UO1zKF)9* zgNjN9rJW)97%fe^tTCPz>o`0-^zu46TjKP!I$8XE=}mNr))P=rMD*bk&^|fKb$3qE zBI_^LU0tNJ!Q^cOs+Lq%9tM6gJS}h%;T4Vw7_*tV6lMn`B8Jc$CL!u|#0Ycaxr&lT zWuz;9X3c|EnVKVe%U_yC;J~s12mHIR+;Y|F$rJF70Df!$VoY-*j4D&UimcL#@mibV z^94E=e{a$L=tnGmS!W#K0>P{+-*vf@pB(j5Mi;^Y&jvh96PgoAn3Y2~UO~E?@0-*spWzDwaWa6u=qx=3g5)iGYt=hf8XMnrf{J zlc)=m9Cy{5-H!UpgJhm&X`Ig2=NVg)C%42@-L2$TD#g7@)j*f>7P{qNFhQZNd8&iA zE#c?$OLR2>f5l0T=7{`_lZUGKceYmlN^^pfx%hImK*@)M!W`2Xk5%P-=SSk@wEb0Z z>c2UmaB@Bfc^bRM3-vcA8LKz7|))bD{DTonV$!iY$emx`k5T^xY zki$ia4NoDqhxEj)d>GRd;Dqf3{D#MZF?=d~i6|gN!c=G@7@Lgi7~?#T5d*Cec?M_^ zE?DDlae~?O_SB(pls5|z*upm*?bSY&RaAMWI_Ob(*-B9^qI5>q(u(?krsq0`BW_CNuRIY zo{@u#XE96*(k)}jFAo zbzQitVK6~f+Mra7TVdBui@EY$R}%lBB|yw02QyoGOTvQ5wALaO0|en_*Ac9p{Ot1scgK0j%ROBscoyfgPC?raAhv{39lmIp8NIf8V1sB z_KY&2Tr~g|DUzf*5+%>VWl|20702dyFj+T*t~KFnv*&%V2{ZHFO}K?o|6ZAfHFid$ zGQkX&{{SR&j-kHu#WXg|NKe_Dy4)%vLV`z_yRJjiRV+^B9r`>484-qR z7|&Cq%`@FDEHr=Vf+S50F5n_ydDq_;clbC#S&(j3fL-^g}R8z*iHr)I-?pUG&g9$3 zAx7(>H5Z3h%F$KY1?7TdZ~VOxk$8nnk3MHSIR{o|-%KRZ(>xe~PdNHWDEy>&v4zsP zOp&03KIami$qviF6{R1wyFv6e?#On)9?ozKYS&K2PH-0`q?+MXs?57AGy%iW-e_pN z^nu6pv1O}MPamK6nOIFUZPTPzy!@EO$iTf5S7Ae!2D50sQ`Ni!@;4T10&=@ zg$@!Oy`Md$O#y@6Ib{sM}t7t-bWB zZgXxYlj$VJr9f87WN|tdW*@r1nGP=yr<*Jj2Bm z&KF$fI7_2DTN?_8rnRB*ybm=(1Ha3~QKmk>$>MMlgx{Bq;mMPZj3!IVqc;&um*2f% zLYZiiVKCz++$2{)T_TjBgo$hzQ3guJ_AgTy>jLYovpjp#DymyYTKbBnAwdxh6wQZr zst_JS2qpkQx|YnI(^Zn@NM6bO@czxYObux42y6;oe$R-vAhB`a_8vu;Zr?4!sL(D>RB3Uq!C){r z7?1hCgTcW4ceHn~|Cix-xIf%G*c%-l{$(&4jP?hA0fRg4tM@5r4#{5zw{FYr+#lq* zzV3h5;roORw7}ICc{VzY3zQL@hzK2vGM{diinv&UIHW(7j6?)UnHRQ9u4+pxz0P<2 zFJC&>*V?Bj5CwXR3BL7E1rSg&qAs&a`W~iTapDu(Wi?H@;kee7b^LthAK|i zRf5+5^z52Kxouzh%a=~K+wH&%OJ!#Q4D9-=(G=xy*tx_>Gyyd$s;y+oYIPb>7c=plVe}hFFyrw#7_+J>8a;37g7;3Q=L5jPI?HH(HI(OD4BPALn*Nt= zQcQW1qX2+`yKkbz$b#RrCBqzR4!}yATm!`@V}Ke;0A`NmIsj!E1HhgHfO3LEbC~@^ z*POOl4M$fRcHYb5bS28mpQU0glN@G+ej^$>Xt1G?A$oO^KO7DBob|uIcd+-k{vYDu>;FAp$xf&^y%w#=@U*_j-s*(~bmbDP|ChR|h<{8Y-ElK?zzl*<`E~|1F*>|JTv)9*X~u zMhC9^w?7_?9{K-6JdO4r#?)*J5I4ti0y)>$>pWH;d78A1*+-LI;5DvDGleiwXbk)& zlvd`OTi8}q1@38VY((l3nGE-6@ya~?FSv~BVQJoIx&qV)phl6Ny3*rCvk6Hv5T}7h zJ)Q=Z%D6<32z>Vwrg=)%GQfwS!W-@R$_l_bT^2`zr#XLPOik0|^i@;1yj< z@CLyEP#NyJ=6plmW5ZxK`P`m#YwWW$Ird_Z&!^K20&5!gwP z0j~tITltd4F;3e`}ezi_l=Xtu>A~F`x&Np;7D4W== zj5E;n1(k|Zm+NZ-trp}+OvHg}mf&N6er@XMPD((J7G#bhb~UsNgSRmBZD&(d>SdNj=Y}bvv9m_m z8l&BY@}dUAT`I%1mOFzD##CERDrSz`89B^7yG3W%KNsr^NwLp(G10sFn8ao{0W)b& z3371?Bblo&cY^5EvV6l$)-ndj8^E4eN_bXd4KOb&@Q{AJG603SRn)OAu{o7>^!blx zQI{B&u>cz}V_jB}@B$alRhICW!nP>wMQ@cQ?eKCV9&9mes%rZ|Q#IP5=3YAA0yR~& zJ!-1P2GqVUa2%EXnM;_NsQB!^%6ZY;+6JHoXzB0X>@>a#Z3pzKk2()havX+fk>pO< zneR}?H&8Qxe)W~*G#EHXto3@lS+Ft+Kzf%l0b)~wmQzFa@-MPksb4C7R? zKu`0+WK@ObS=IGRwwI+OhjA@dRT17+ODdiJ_qPam>y8p31a`pf5-rghse~@RZ_#ZHi zjs4;0GS$tUI)Vxz*JC2)l<8Q8O)D_}4vUSr`5(&EU2ou&0GUL7yXpHLClOBOkF&U4GbD|X3i#cu@w=1&Hthd{{egS_J3br^ANT)k5P6!F&h*U8U@ z?MA`5NxTnLw zO+?w`?Rl<9a+9-X11-AFo*Rg<;_Rt$xF=sv1NBOiO|G7*p6Tl84C(LZ>ZyD1=;?Wr zr*{8`LeaVlF<_JYe^@#HIT(*0?|(nYW61xee!aCGU^_2VZFhEwp3JD-tT$LD0o7@fA8XfROmG^h*lfJEo>mvH?^prxtpCz8;*NBH4eNirHyXO~|KY*G zpy?($z403}$-Ez4%$8V@CySgw7obyiFryrRM9h zx;vujvWSu5Ab5{p^b5f`ddEF{cENAp*CI8;z?5P8EzovafAuh~4d*4!J&ONjwRd!M z^dk;@t@s>21vFtE3cwEV`6RK44CZke9$R(xmwT}<)6%Ttm6g*$%VxSrAfXxz5A ziAJzV{vQpU_#dO;Xngo6|3AbdvMWq$LCj39o zx4b#_f90Nz#|x2M#{GD^6t;mHf+ z;@i`u#qKpD>5^}e*2NbCre)vM_F$u@RpbKRXxAL13c!kCwf`M>EpZoz8dkDnWpzc% zEMHr_mnWocy6(U%Gc1+XaOW043BT$z>g$0qr?Q^d($!pwU-tCL5?ggZ__dwucv>~H zC_y(*q3NhBuispvwLVOdlpBB`Cj|;Xz>|)j!F&;bpvzwKOiMvn&^%oRAXpi=Nep(I zhAgVC0cFiMhN*FN)tzGa57aiosTr{5!>hpM2_679J+EqcT2*beNWATCHyi4raNF6a z3m|gs4R5p&PTgQOh8wEPhJ?`n4!lG;B1^{8`Q12?`^!2f{r`zn=K8o)kkKksb{r#& zj@e8b3vbr}$+L>Lp-Fyk$ojx>G~r3z;^Q;$bdl2Bj2$JR^L*R2XM8(Cqu`Z$BAf7F z*Pu>Gt)ee_JOYMCpgXf$bCA|{Eo=<$)U+0i;7+$#3w3}0-g3~N^=T>pOZnnv2LhY? ze+~~1T={=Ec$EJiLQfK?DorZEtsez-Gku*=kG@gKqld}#ab86B_J!n>vA6|(l#{MpKLD21T$$xMfvRcy4Wmfz+u?Y3LGEeolu)&76WD*+q!|Kad(&&~fm9z5p%e2_=)|L-!C{Csu_ zLV_6CU>H+rW}$lb7a`xa*!?R;q3#2${&JpcVCgxKy+h>a_Bd1!H+86SN62x|6-%QKmNbx>VJdr=<)u?gFKr5OLO)PK{G^9 z65?bI<~T2fn_Wi<1USi4;{ZjN&9^w+@mt&iEA3u6JwW zUz_;Pe;vBc+0QQ4#^`6)uuXnj+x!3s zVFsr-#yM6FQ!t8@msA&=zPk8${POMV)6N$5K_mR-AJICfspqb2gXVbLzh#gSFiav5 zp`t&%?(x~o|8=Ksd>Lc|{~sLgd+a}t_dg!w zsq_CbBl$k0^H&+vx8C)u5-Qm5_@%pWFJ521ZSJ0ZzRIy_^!VCJ7_VFZD(*9v|73L4 z`;!00<6&j}A3Vl?e~?GZe>$qTnC~rZzB;hD5k9+q0sF#`*P3ikIK;OwyZJq>u4>S- z*=}XARqblj*Kiq6z;EJ2hb!(%0$k*I_A%yOe;+e`ns_vLK9C>hBn$12;tQ8`&HErT z93#=me!k55`a5sfe|yXw-8j9(N*)ShjFMadFGy_XNp-Jkgal?tF8#_4i~9EFw7l!^ z&vg1x&r;91+K|H>hcvc*7aZa=gz+M!xqji=6P^~OH;M^x%HN!*oEZ;r?PEA<<^ZZtBjeQv~d)nhyJi$2Q3l1W-pK~QmQQJqo6 zB&3SFNIgv3aisc*AQ-(%;`IdN#0+(JL(iNRzBrBZ`^T|={Mnz)`@f#l`?CKG5BCn; z{eSN<{@=qqb@m@K$<#yIf69DQTd0qI`;V#7-o5?DC+6I<{iht8t#ABkwY>hWUsy05E#&Q5>t7yfRny>90Jw{-q#VgKJ7RrJ5X z=<)u?gFKD?KZ1Dg$nnR!=(_yyO&a)aVb^<<7jO8~t^ZY)^gr_KmG>V1aX1(a-1v{9 z!_njVe~70}{*%d1A5!$=2~Z8GZ=1xb*E;!SkY*?mxm0hQinRm*`~r$@>AuiDQ)|O4jgTB0l|qV;SlC&uZ>|e4M9=|I202|0u}x-t_E4Z^jCiL9sbHs8_s^MQf-cYtqQjb_OONHw|aB_U*{j+zI*xM&8sa=joIk^ zF%OIx{oK`Au^ff_KPIj@WMJ)I;y6CP!g;u`Tl?Yl`&Yjlzj)y@%7niY-1*xy}st+mW*OM@{LQ) zlg^zl17*Cp2TnHTRrR-0PGk6!~Wx&Rp2ex1G{b??_}@~ zJcEDWjQ;Q@qhC*@DFHh^^c34IC?b5h?>3jqAf;C+iNwgDWc33{m%>*;$Z;}BDA=5t z)3M1a9&aFD^@lLL9!x)-(xB0!3rJAZ(*@Nq3S`9B`ir8D&BK}|Z7HevUoc@u)okPM zz{a6v;|4pB zQ?89A$f>f8EolGXxnm6yZ*FZ5DwUG+S7*oXk1yW6w=4$#5j>iVswSg9q|NB>uiv~m z|K;_?$xqe{b2q?R^U0W-Pi(upY)pG0(oUv;?Dw~P9T{}npfUtz4A@ZZAhPIJGiBoj{f0LgM^MI5XAAe(K_ zUH4AITbQZZB`Bj*CC6;fzQj<nnTBrf0N%|1hl8vNgwYw`lj z4I8LR0ah`%>I4;{x?^U2D&x|gm)V-@=F%M@2cODF+20#R%!5L8;5>y|wBXKqr8Sko zj18p=kEitTT=2J3*U8KudU)kM#FZpq2k7puHK&-K=WrT(*Pdzn(pl+L1$mJ{!C6Mp z6=8!yGbm^yko^pRebLfdHz%wsr9e;vs?@yk=k7PGPjyhLDb+QT!Jkp|7DrKxt{@Q{ zA@JiSZgBqKR#5BK@hEWsi!9LsP^C?aNw5~JB-9*w710-#<>49N1o@wwCM#v#!K+{w zTozMA5|kqvk|+SXHcq8=uO&JfmD@I4%3-!l=1k+VZU)_HS$bz=x#eUm+s(tWX$qFN z82$S8YX^Rd=Bi`va9Ypw@3OZ`>xE{eo5sseu~k@lEZD3xEuw}7sjso!N`GB-#^aOV zWrJlM$q0oKBt@qh70BFszd8k|qTU2KfoO&=b)QRW>fy9c(jw<+y>hb7Qk>*8FkIiL z@xe?hb%mzZUUEo2M;$&urez+_%=~)bD>5_cL~- zTup5rSHksau9wF~YS?O30J?xDF`XD0`!x_rxeWehvOpF_lRsQMav+Ix@q@l@|UT4AAyacMP{GqCauznHPIb)K8nGYN}4&&p}#`De}WiN=wL z$W3d^p1$3q1$&>g+pX5fr10vIY3=;F7Ex64M0>G#p_zt$r6t~^ijRqrQI-F;BxMgy z7UhaD&(z5XA9Eg2(o6Uzt!uvEd}p;Ucsi)->yi_m5j4Y}0|A_U_JOTn2EY`CmnexQ z*2~RE0F|TJt!QpgYM?810Z-{%tqMR=ET@Qw>Sc1oNg#=+=xbNjR;tc^{%Lsqv0 zx3i-Cai4noU$zSGBKSj_{J#Sy{?~B-VE-}x`-41N+yBngA#g6@zMRAmFYm<~n5~R- zP##mA8UDZs8_{g5tFhF%ut2S?&OQjX&V-+4Wg7c-rpmi9?MWy}nu8tmtG{H>4V(n| z3fZbLOMPi<(jA1dH`>6F5=%I6TJ;wzp)uu4=uKXdbI+OlN|kEP9H*4%wh781PPRPN zF}f)0D`jPY;$@F6`s&=jn{fxTU;-`?%6x&gZ?BFtNs%{AMs5V0)h3cw@LAVYbfc}lo@p`lk%{4cA4qoboA zao{S5m4T9=1Y-)o4iGj}gJ%TgvYp526vhE~YT7Fdk`c}}B~g~YEmVzSzI$SK<|$IY z|0}WhzR&*#hr>g6|9?FHd#GpY{a+oZ+{cbDNv?6%H`T-2?D(#lxz%ppF_qEZYsFhW)5P(dONH-Y zGFQhzbzdiS>$VPBEs1ySsoFFdb={zdGTwGP6L|(j8Rw-f(E2Jg0~MZlUeMxG-KhBC zv>B3Gj)F9?Q=33upKa?!SLt?EOk+$Jr)kdAi1l$4F@C5>qVB6Ty3HW0#`!+x*z4II z^vp1WTRWqLGJ9p_!s0e&%bM9UO`0N0l5Otnl`oAQ;;DI!$7)S)C-z4kUV^b1yAa=G z0)D((^YOg)>&3~Lak#ABPr${=S;uDqE=!c1_aN&Yqj(`$ZIl&C>A*8SJ6trgSnX*V zaqBYMoP?D{>`)xJM1I`e)tywYj4r5G#?I;2*?lxEj@uJdyDRP1eP-Lpu3YOe3iFgq zd>lf2s#&G>XSpWp{ZZ@Ira43Pa+hxHO|uwQXS3h1pVkVIuaZcdQ{S~1Ss5ByOesD{0E$W!n2h>!n4u- z^HHd1x3L0ky8p9R@&7(N+<(0P{U8sw|GYOHY*B7YCSPK**8)~?C+_~qvv zWt2Hh1>5G9GKC-;US)>*pWqw%Kf(VAv^xUZY3dzT38IW83n#}-V`g{Q88h2yn$-x@ zWbJD4OVETfpc01{atOB>Kqf?~`j!Ds!@NXm>LC6bm|;Tmdf#aS;GNjU{|rx+|Es%d zw9i>TyhY+K`E20-j|{6z;Xhc==PNCVs?OQ1(%FZam&I`YqLA zR)yPcjq)&G@b~@loov_vrH|`*A1r$Wd*kW{*QP(|oVZ?~iU`>2i!3%Z1*RkL9=-rO zrI#Wr^t9I7l9%_xaK5>!rBm7-(i%rFg?z>Lu^iGDU`OmeqR_7J`m2T6q@tQJMEKU} zzZGLmhR-9oTEBV~#$S2YqmVt7CkJBrF4FXpL5$P%vdBQN8U`THmv{rS-Jq-yl>IUs zyjjO=&u)j#bV*Y-)GuFn%eeztWk9mmoI4nh&BgGdsg7zyT{WnVkGW=cBnzk(6E}Iy z9$9jtgU}7&G?16HhVZrEt_0(|!!&c-=w)Fm(X@`HY}=O4fK}Uw=MbZzq0HZiubDHS z{nD0S^;gM7gF35)71T&0X3krcd*-&cOrvMzUf?} zkZ=spmhD-4+l#TaTyt#ene$C~jEljuz7-^{+;Eum``@f4->if`o@BM_eYq}DQqw6x>qy7Dwx`i{qZ@DpMJLMMRIXp`di|=T`%6V^};{cPC(?;`xq#`wR(iv924G5_BKJ?i|2V6;MjvD5wxN|l!p0G{Cx<_KUaBfk{{ zMfHb24v#h*UR&&C9m5piVXtSpuGlD2e^3waiYpRUuhZs+nPg(~f9eWxCa|f4b4N_|wng`z46TZ5k z1c8AaBQw4C`!=I;L^q9;*tE7EDr2+z>c;AZL$k$F)=L!N1mMpnS)qjtZVGqh8{hYC~@MrIpU>~(>yl1 zIjeow$G&A<(?z<1v0jym=6LmVihl+)81;>3lrQ6lW@j#X%%ywH~G&LCm?tRf*ZiD zv7@#fgDt!NJFv;7^>4+tx&;H+=>InwRQ&&jkNMvo<KM;4tv9+z+;WuIHEl} zl!L@zigIW*=~Xoa!(X8AQV#~rMSJV*hNBGj*>%o(+jYr`lDFGDg7Ve@DSV+*A0^D2 zKTZ5!-pIJM1#lDpA5`ss`+JZ6e-HAQ@}In~yq)N$&N$fOQ}ItY{WPTT949{&?B&x_d%e+EG} z@Jr#H6CN=KK#jqyh~qW*wSY06VYX3Z8K00|=NBZP^YS@sgG~+vQxw92B0$q6;tHJL z>S7va7{!seaunkw&QT=N%MoGKVLX)WF|i znG1M|KtUOv6hMx=#I~7aN+%(MY?4O5B2Rh`F$F)!L=bmGYZY)+daD$1XioKRGu_#l z@!Wc~?OA9i!X?M0)-8cq=6%DTR?oe>Bxi{R&TTM>iN8#x0lQKemz{g9+c4VRF4HQa zSc9TkyOjv!N;F8E@k1#)GV2kHau6lAN&w#zC5ULajQd&gwPHwsygu2nuG+o}$%?k)Yy2xLXG` zv4cuhNLL3)()TG^0;)BbST|(T43T&ZLdb|h5sBI}(B= zJ~~-W`priui_`T|AH_PRpqG`;*LE18dcY7Z(}bcLxcuum+8Qj)VUA`+%mMo#pUVP1 z*xiO}wK;%b1!Eimx6Pez=x$Jlk&i3aZqRIA13{Dj7X&^2Uw!{20JC4CWYd=SYm}6$ zwB!Ok#syj}1d}C-dpEb^5K8`QlK&~ni`!@a+hXQW8;qe;lC*MNP0Hl%XU-Nr?Fk6$Pe;lYeq+N>i%@MVQ{IK@Oo+TT4hV zjHb70O~P>7Yh}1;TK_5l=_{rldk5`)zc5+x{0 zlaUb11T~R#y=$yhP((accG4xzON~#|bOWF-S+AqA_OhTk9|@)%T@jok7b~+l3zYT= z?17-XTA{G9TJlLA9S*1e9pD8)mPW^=Gr=27a}kiselLc;ye?^edx^tbhg2y`*;(&B z%@_bnH%AX>AvlXkHY$}jG8IlRNm4$xykq{By)F1K(er7Sw}x7_xmz=?!ia7Ssd!Zx zP4T+bKpL`TT*9v#O9OE0VT|FlI*OHMUGNQKXjBG)I>NDsF@{s`D3&$7MC$!)kFK}K zwj&MOkZyfT?S{Ur?_EOXropH}s?JS`mtGcW( zc>x%U2m1%l4O}@v%TD(0JhiQIS$hJ(Xe+`@D@#ffm`5awJM$2Ekl_Gy!pX_1xW7N$uEbDO@c88^nx zz_ekBRtW~7|C`L8w+#!Lr_0*UocGm!jn)ZV z;;{C+YWgKfv!=FdzN^M-K9{Zg3p9ve)=f1SMKwKsaRUHuP}EisBG!SLj<-a@22qEF z9`d^GTlDavb-gXxbNXr%L1T;FF6#A3@Jhu97XeWmUgvU9mleu%3PxOzY7Q?EIaTM( zER%8Vf*o*)ljt=!0+iuf>@p^(oytYg7hpITjTyJpJkkrr3eu{2{X)q5HC#k$7dHA? zBjWPw&2i3djO|8lSne1aVjWYGOd)VtWHm5vvp{LCwK`F<9J`C{>-+w~QLMHK`&_sfy%mPn zx4WL{_y5!9-u;hEuFOh;>aF2&TX(<>{=a*Bhfe(G(eUu#G5*JcJdOF^^96D;z_T~Y zv`9=I1OAy#MH+Za0V$Hs6wOki?#b}W#c|B7=M7oI3`ZK9;Ecd*+|pv5Bvx%}GsZ{BnOAc*qx z%{ntLH>@b+^;gqG&@$ODBU_k6qRB1@`cs_r=^{|SyP^IQg^Lt?du*xaVM+)Jb2j59 zZ|(KI{g3PGY9a<0MeOq`Q^}crz%kNv$CJONxyT3MsUk1-V9JXJfaj?V7wJ_3y6?gM z!Sl)f!E?}GWl3MP@E;&tEYpa6pa0)0`y2S}Hz4{X%FG~E$?R5HBBR7UT#GwN7fh~$I01UP)s>?N;KaSzYFtdJm*W_?69r93aRy`9oIivw z-%>6qFHKJP)oJDR;0h=^PB;f6+K*i)hx1)K01$tFR>bjH8sl(ni9@1JrazW4fhAK& zxxgbNNT#MNYLv@+x}S_`veqo7Wo5OyzHX3BHtC8Mj*!eHt7d=Q1$K9bo9nkwFHmkF ztW{cx@eGCQP}wi^&)Y-JnKYLOWoL;fWdx-+C*$MW^4r81+UYO%qlHR3xzTgOBfD9l!ke?)1%neSH7!-G$wcU>Nv)kfh{wiPq{2 z!c{2a+z^VZch3YTC6KoLpv{`a4>`N3*gT zU;X-hS=Y$aQ})P$AyjC$kMdEeaO&zZ)V)>BLlapsRH^J7#Lf4c5I4(ii?~&HGvdxW zIjz4bmRB;o=auR{-#Cjve4Mfh}8QJC!0I(wLG0~A5O7MP$21itQ35zvVrkEJuPgc(&e05n2NsUty;UxuN7 z8B-`GN>;ub~l>^!k4fMKE%jICx zY7=jb)Y77X`UO~p=q4?$ypXx|cRZuH>q7I$drz&!=NU|E_h`bdT$Xau9mw@cy7L1i zE46D>Ph#Xp+cXO#D>vA27wA_dC${)-S;xzMOTO zMr%yfRks?Vuwk?F#WU>Hm|Z-M`n`pNiBBtc3A%I~YppSARFwHt(qRAC}?ADq;(3HN7z4oWupq5%~cV zn*W0H#ZRK7Ba78ksBU|9RM#kxiG_NpNVw+t!YLAw6(YW`6hRU$#2&2Qde5_~ZSm2N zKW=Z^^kdA+8ZRc`AOCxYO_|*XK>gaj5#vvBsCurhwj?r5RH;+ApIew?=LCl63=zzE zMVdssl2PKvN`V^sXY5xWn`nWoNqVg~%+#=+En?*1ycUX?qRT?n6cV30pDYi2%L1Zq zvs}vDikE0j>l*kC6bb$n{03-Ba-KzN*RhV2r&lUfVht$UHfdt%sI-dp$z+wDT=rl z0pl79@fN736X|$hO>pn-XRy(d)r5IDk>1bSPp1#erb*pOyLJ_8`L^6A%63}s@y9WS zR4{Af=j~;qB#n?xrt;-W$NYVJ=y1k`UcPqK-?xXFr&$`O^YwW~5R6XJgysZd=_XVA z@h;kp5h(*A7(cg!{iwwM37!`EKgn+y19pS{KRg^)@;~m69`*kRdAMQoj9+Kd3ct#8 zU@819)O~LGHBxlwi?OkNTiAb_!pS|MeIMzQw zxCZi_sNLQ6@Is^xK%ZIdK4GG^aG+NQYsL-lYjtZ)_rvHc@5NJn=g=J>+p)?xjJqz+ zTFrZcI~6aV@}pr%wj=GoD~NFDryxqXoJEU_4-0EAl6~P<1T?T7*wH1xH}skD35ekQ zB1DY0dBfFOia)G?=%N9qw1kUmg_fR@ku*=kG`8MyuMhOA@iqAA;^Hjet{v6)=e`dY zC%n8k8If-%;Ns-0a)MKSWr$Z1s@}$|2WoB0ca(8`GymsjBlnsAd+*?IRLTFn|Cs;r zK_0>X`5Xh0X%MFgh|@U^+i`t)bf)jyWCSlES*yH=QV(~TeMLQyA9}L7&T(tPRF}Ae zvN?Iv*KE<;fQ)+59$*)i`$kn+iXo*Xx}sQ#+m1M(lV64PxK)n=6&BsWV|UlPh@bM& zy;x@=uNCJyIxU0T9C(paxgD~S$nMG5L{lpBjWz1St>aGaPcmv z6!wgq*?P(GeXTetv1%al&A%C4%SZt#!ONVUsU6U0!`bTGFYJRK&tQ?~*^eln1io2w zODkz2<9@H-tOC`uOx&TVxDM9=py2{Bfu{t)k*$SLJKDStd6=E2;bn6#8i&-Hb3;7w zw5G>^i!-tV-pU($vpw`|Gh81jDX9Ex5XLW24AZA>Fu#yw9V&^)XPJQFz!f-V*W z(M1|ZRoHHcmVk4-L}`)NqHKR}2{f~<`7TWBvmathJ;MLz-R%Dx2KjHa zH`sUYe-93akMiF`JX}TnS(ttsEC986UTU4TTy?*FIB3(BFJir=9H=F6l-C9)FG?-7 z&le$YY1cID;g^9jZkzJ_{uSYwKR6dF!&b;ef<|p)OGX>1HN=Z3{(ofTS6m zb3?W$=)Tg zJ2=>T-2Wfq;r5@+`+qB2kUm#-?AMARnmc{H0H8Ih@^y`=+vJiZ+je($6OP#6jUZ4; z*|g`2vwEOc4-h@TBkvoc(+vO!ZE)ZVwY*Hgacw+2KZnx=LJBsoG_X z{_QxKvfIo`ZF{@bYd?v5u2eA&+yz38AX?Y9JHWG)2&-ZfLK|!NgwpalhpL?aT#6;a zXcw|SwTq~3(LSV5_AzH|fdDPDeEkv=dwr?5R`?}b(lbFVQG|<%rLa8A)8GP8GVn;x z%`H&;FZ2d4v3siLZA2ILwZng^vJ~9l4q4}P6$m zh3SNvR6j*)nUc}Vi=kS{mGt54r22DX?^LM^9UKwxwD=7JwYewa9Km8R%4yClEToZh zaj@X?a`IgU_GXr^pdeDqdnAi?mb*JQ;@#r$%KxTgaQ~xBFa26(m)>3z*dYJ!4~NzG zkHg3O?+@~L;yxJe*mkBRu~qk*RRDVL5x>CSRIAy4?=UunZA2 z0jpu>5+~6Fh)YPFCCXt0bIACl$RcDMZ8{>L$};4+i6AyD*?ve+L`AQnX-3crr-ks7 zO4G|C1Hoz-fIuMN^p9pREIY{o1&XCSjizUiQh7qIUXnD;?bo6^O7Ju=C=bphq!(ZZ z2p!8P)?@WG3SC7S0oVnFjlw;qT49nN4CS!f@8JU5?BRC#nG)> z+vO0lCB!c)oEA&4KkyHYw~)8D3NRlTl!W&6@%oOHt@&zNTW~>QITrf3_1AdP?|-wJ ze6#w`Z&qE|%4BbEaKKIO?gEqlexQhmOYRbBd#%>gdI@tlg%klb|CL@ABu-LFx5M)P zQ5rAP2)&SD5+5AvEQUDAQj#-9=Ah1b8OOAqp*6y-gSkDpe@4^Lfy7_YUt@8_i;uB~ z2JT{%gmCySgTEH2bM1{6FCpokoav>wV=N8;7X{QCb-mtNnj@@~KVYlq0*X-;vpEhdx`DHtP4aPz}6%ip=8~ z%pdk?q5r9yp|2C1-{=@<)BTUpLB;=LZ}@os<3S#e{-^Z2ERCp2MW^lt15Fxhuz)KB zAc#;5*C+yP99yb+mAl4UYk4Jvz&JB1BQ|LGo|B{UYnQcNMwtz)Sdyxc8v@^sfbW(Q zQSgJhsHI#u|CAOa0LjNaA@XcD_&IgSwT4bzb$uHqsD!R@{-2yMv89))i;5Kgw8`_?F?HHpc%y7**o` zjUVGbJ5@AAPIngrn4L*X@rhd9cMp-SJM6_S#POxi`~i43Ut8F-33)$d0Dd``P!P0FdAVdNA%x zW;XgGu|%*?C=}|2LScnPxP18`&4?t{90vs(2Q zT^Uh5E^OT_yOI zWaem1_g`r)x6IxrOk6%^aM#_kvX^qecA`Y_LCZ(1<*PuWR5uj zzZ?Qpy-|YNP)D&z0;Vi7^zX^P6G0E3kCa6fc^I-)$`X=@d@jfbk>NLzX<^B1o?-f79P0Z z<(lBR*j8Pt!RweRkDjr+@eBh(niRJvX^C}e^i)hEyrnzN~)6~0P&q$UK zLAXa*FMsJwowh6pT~!)iWUA5j$%$o~hPw&WfX|btj&1T^TWPD!_5I_eRjJ0hgRtbJ?=$2H8|GU7HJF>d>k^?tY`8&-|X( z4;M?E3G1Tn--}xHzV+y9H<>lHY9_=EQfzzm*M_=>=B|%sFcnfAyBl)gM^r0~{xlSI zRC#W?5GOCuU{OHT^aFQHS%l;qxldAq7jK13c zpXGCq{+BK&S7i~`L{%!*xAPTFwRiN6;{`cuvIYu={c|Mgd7M~`(K5LNKw_ynb3+Q`1OXr!u+yU19wh&L!B5`8I@A|x2X4~#~2Dsn_& z`z>S9THVD+k_VcxWJMC;9sMUw<_s-`NcmZ>7qO6gGb$3iqF%^Wz2a8?-jY3b1?#Or zW(%A|UENDp_R_Ul+PS}9hEV$Y`D`C8|Gg!NR}?n-pT3XX@!x9vr$6z(*8lx1pJ(U_ z3qi63qN|Dn(BqOMXtt(tB&AY{!+Y3+IC_TQq?o?>nIpa=ag3yIr*b}MvN%B*iLsy$ z1d57VzvCo2dWI6B?{IpaW@Ju3kVq9a`u~qT1UE&o1m2V=p_F7OrU~(mycairy%8)U zN6*j&uq^uN;s!-D<44|tiXQx{&_D8K|HyjqulZrQ=*fS~SN@Rn3P3X)-mg>8ef;PT z9)C=a{@~5<{m~yhv66qYj4qD;@PCe;p`UODN2xAfyyQn-nz6r;P#k$QBDklTXY6lB z-UAO=M0)=U0#vX6i&y7we|Y)&#~-{^^yGbPU;o2?zjps~e=z=9|LwDUo}r5+P8K9) zi$Bh?Z;y_S{)k~m|4-W5>YjR2Z_@epk3IbD(X(gI(0lv$U!EIVWI@GpJp(I5WNV`C zitphx<&biPGt#qO9DAN;!#PIJ`+h&@20?e=A0Nq%BxZ889{oWdD@6%Qx-0xQmZ9hG zp9RDIe!Wx9*M#?E`{Uyy#{fr;0gl=Za9AGT$QodOY6kc{{UC>j)uljii3`FgBXGtL zCy}%nGa`r1<|rhY=yJW$&k{ovMT-7`r0BazF?5h(*p?K7GAV{ODNZY-NTs^aX%42C zwNwH3By-_AaNs*=i*LV-@4&`)upe&@PWPjhnUKNh&^;l2#{l=6^M(Nis~F5}}Y~83{$a(WBpQ*%YH6xkn#3Mjx~tysDXsZcsV^;-= zfdcxPcUUox1mBYk@eLPb#a-iQHipJ+jiGVb7#f$1q2P2+?K3)1`;460XY8<^#%-;q zaoKtrm#n8?yypOihncg3q0^ilJFKU1TkC0DmeAvp^%RWu9N=Jl*Z>D(_W+xv@VKoM z9+#!?xFm&(0hXn3yn*clear}48KmxCgWDwY-6dFs=|lL97CD0hwb8(-jm8d1JZ>wA zN8Y4N2fvvPmbf+kijI$=7;ju|%gEtUkJ`G_qq0jqD!J6bu*R2ROtADJ5#)e)8@!6u zlpN?v4#1Uk@%e!+`arqpIi{kf;+knWcF=OaRn|buQJI!wo0c^bT28$xgL9syYTW*T z7KZP%Fh&klI%=y*M`cwyDyh<7&)CbrKaflOEnL!{9wrU@)A4ad49)2WlHXCr(Rc5ocEzkwK14v4jtqewk5~F3#K+bhCAqS9z|yQb=U#U%3_W%dd+b3 z9gcAlk_??oy6E8_W&-xzky43ms+ws4t6Lfy zQNmfOLZmbSm7qv)m|4^xI~`YvuZsjN&Dwz%j4C833|qh3cY5bK!>DJKZVsfR^iiZv zU`BL7xR4YYPX?3uaIB~?Jdh!V1KUVcoTYn!%&6z^)3E|RIB-b~wk@e<8(ThTP3mEV z)T6yfU0G6t1NmvNjh~vWT=}5QAO+!~JMac&jVYno1NAG*N*!WWkz1)POGg>NT2~oy zmh}tT!@72iB}g4d015>MQYhF)p=KLeK4{Gb{R(vk7IlJYjSa3;N=f%+7}Jy!l;TXF z{t3bnPGN6C3Lx;^<(JTG-2*Lx$zkg)m<-%bS#aP+L7+AYnj-XSwp1P^WeIFb2rS5a z9mkvq=WH|^{PIET*$67L(YI%#x)*)H(hVvflJRQ$pn{=rN#jUWxpu^nWzVj`w6xd< zUQk_lLGxg=Z6+03eyq$aDy83QgOb*&nl)IG2@^}$M&W2dA4sCMl7a)bQ3CfiiX4oK zKCMmHX@xw#O`b_*uK(AX3zTN;fkp)B{9-luaJga;nq#WA)9_lblw>QaDhDb`j1Kc? zf|1js8F(%ewzUOYF<_@Q8S3$B>DfKtOv)6^7RsX$8NsWVCIm$@w9aCV@B&juL~h`@ zY}D2!YQ;i5t&XA@4VM+!+K8;!kdsDY=1b0m3@mN7&SFzw-$>fwVGdw0bUJ_oMhqn7(Wl(saOL? zTyoGhE;%U2B?q2us`*nV8ZNV_wN+FxiU#|k;j#zXn*(Ju`um~b)Z}f^sOs_k&~Pct zmin?^ofLl`H2RK7>9?JfetA;*s>MOpTx|HGD4^l=1NQ!NYg?b$)BV&ae1&zU9~XQmFDU3TbtZ|+2r;ulY2WR%_gtk&g9i`iJ)w`_=VjoaXEG3(rmc; zZ4FnyY`FS`;VRJ>JJD!1T>Z9&t6w%;{lakFjz+UN>9;i}{pzHQ_d}!E4)WXDL4Mf| z@(VjiqT%u;e1{$6x3hzCJ{^{E8SICPOOCV`BV{!D`=QaSY5caD#xH9cztA+>(Qt{f zR+22AnF^QqyK$LFl$*F!J!pf?q@wo}Bny=yxktw`R`{ME$l9+4D>xAx$~P@CwoVay zOh{JF-Jebm^3SGIhkG`0sohCywL7V(-APsLHe@+9xoFeF_MfM&?dOS0oljb;^GQXW zPpaxXa2(Hgq#0SPaTXzxJfH`hakL-;sWjNelo8dH3;R~f7vA(M*xL)(N}W>JC+mBH za2%tbuHNc=L9WiuKN1wNtxMIl#dSL_xXxb*Ab#pi#f|AJzOJfGL|N7jipK1K$%qRq}uTGm{{z{ zEzfVw$%moa^>~=kv^hRLao9VPw)W1XZ0}4e_D;j3sf~(KgUPK7%lw>?e4PXr2Ua(d^Q~t(9;^2M-%bvt9EXmL4!w*#V`Ha!L~rn0fgQd&vo= zcj6T>56j1xs&owK?Q)f7>;W>I;4gxrL`|$*BD%g3qzv;-BJc;QXYZhFzo{$PZ{jeu zCv8n_`C`RzDA^751Q(EUE0z%*z+SFr1<8TXKfJoQMk|_SdTK`p9iEwvPOH16TC_&% zG^U|s9V3ZM0Vz0&SFz|^_HMqUpOoc15P6n%0a04I4C`2I&x%(OdLMWq^*xL zDf>8+ijPw#<`O>;P^8il!jM*Zg~d{xSzHpWU*|L?rusV^7SFXa5aTdOFd9^u6Ie4_ zC+GYvOQ1ZHV3rK3rn?Gruo5ztD-&~=gE89TV7P3(R;J$A3x?I1u}wWcPu8&6^qO#y ztwSLdp=NfPP?gGUCCC<}Dp)z9M(Z7Ro@?ql&ZS1sKoj+#B~i**6ADx#S#lM{G9kyF zA0NIyXYO+hVViupDQA82pM5%Fot4{<9H*P zghYxYhZ#n2-tV7XIpyEuqvpAH{qp?9o0q>w@t-~FKaTpf`agbu__hAe=lDEBm--L` z+~;-l{W?)udNG}4INN}oaht8lh0br=)!>H0As7@h2-ipxrFe?Y(^NSU`um)Loq!Ri zD;nd>l>RzFVo7=4$0O!Yj|>!NM&QWB3e!Z81k3J1#s!)Y@kofeAx23J6-$zalUB(h z+aMe+DS416E*Op_jx!=f)Qju?@}y)#*XkZTDa!bfb?e0$y8HG|fftNDzw6&Y(-)R( zKRWt|u8Z=JAK?ZX^b!3;GHI)$k4GQ7*5_mCKlv9xyvz@)!8m|SM@LY0jdFz1D-y5J zYfTn)cC)BkdHd?}23@>5zrID6H|Xt;x9H8w^S8I?_DA&HOLY16=Jx#c>z6Oki_7bm z7q_qf3wpd!r&W)Ry68%kund4yLkJA>{m=BCx*#7Pbj% z8hj*sAQ9@K+cInG)ZKqEy`<&;lEka7cI=;A32c}DlVK2yEAoFZ=zp#M_*p(uhN&!I zDOtLzB=6CY#n+UhG@~n=(RibZLP{YF=H3SQ|LysW&K8!-+dF#29?1jAPS7LKXIoWU z9LHMzTNemHuc{{xT_#HGM=V@JO(F?_uE1L|KS^<65|{OrUNiy8pvyUGp$H-q*0vl0 zMA&DWLNCb|02#sZykCwJQq(YjI3`=rP-z82nUCntL`wJDO)90kp`QFp#kg%*Ul;P- zk`6ffXnBbjMU>>Dj*6m>=>n zmpEKDd!u~G)^Vg_3{-Fk%iNQVr_@YQwjsm`nyGyX4{5BWe`nz-Mfr?KW&RN)qY3@M z3=|bZC1>DRzTagD_heJ4aTI(NwOD5)LQuC@aRVS!bn1mHQbIVZ_HRcfOIR2?BF95g zBUvDfB(ScArjUZ@MHmv!RY_0}U5Y&r{GMehVn~xYJIQsZK<_21MJ&{s)0AztykbyA zY@KyM3Tu6&9Wae~R}-xF%tH9MnJS(Nl11nvnlUCRaW}^?Cz6d`>iF3@N$TS-_=4(t z_E_ZX;-QI2;Sl@AE?JEpa7JaHYDdWK4j9%6{x#(ia;*Nld;g2lJy#9znW=QO`huz3IrDqM@>$5bst zB@w0ZtC$U=AE-c9f$`Y}4*lx_R#-}5hf|3p`W3aFcV8_;&4U~C*lO?oN0t4BC3d2nvsx1a68jJ zsObwI>!`i_Ksg+m(z}y-;^i+@3fvl>0g(?WY)4V>HD*L&!zCk|1y9f&jsBW(e78k1 zc{EvMg!4VtB2JKQY{hh|Ldn&QK4#s}jWliTUhWczW5dr05t0mf2@)!nuzasrw5KX*!22MXo@2O6 zpj*(}iSxXtsw}r5KanKQ`#MmL=kM()#nX(f1g7y5uu2ZfVwK#uh}lA4Q@Nz6#1!n@ znBCLE*~D~o5S!%K?P3!PdOJ4Bd#bXD4f%=KB=74$Hp$;RkWD<8$12{EJyI-|T+QhM z&JN0Mlzegkx~C0VOoDoM{aONg4K0dSAJSxRF0B~iIgkEy^)?s(UzDMn=d^Vn(&V@@ zY)>KhJ&j43BRhHpbk3v#Jn5MI(#~0@_mCz%^KPejBt5y#Sx3U^oOBWf%EP=b)WaMM zaQu~a7_qLqO8-GrYJ?%1;w;#dRYrvIKP3zNboJJA568=Qc+0xBguF!J=Oqo7>XHS` zTk=ig(#^E0EIVwjzO*xI^#|0j)VpGqQhOXl(rQ%w!kfb6crWP)59dx`^%=@SXD-yc_LkTr;p!bu^Cgs71XE1ca7 z%v*DkB`WG&m0}l}wCDxJ>Kf;eC5h}+k5_heqwUk@uvXwwkS;z}mxAb`5V`~!q8yQg ztryEGBGp8Mt-?|2Ez`Lb5-}sL!76tpYD>mswAHL)*@0~Cp`UO}Bg5(72AP*mkeLyd zS?Rpc>3mKTDmD$P;00Wa#fv5(OSs4|O$5r;5WIN*J|pvAis<)!z6L$YKtlIImV_h~ zyvM^OiPmsQ6nRi#q@MIZ7fCl|Q8!@`={+-jb#W4PaUy8f{Gx?)oYI7-OZgq#rJ8JI zt^$acuH*QM#WbwAvzPO?Ok64NtVZ*5)rDFS5&}v!hzj(~-mOkm=5u5hRM{Qkm+z1%=`1GPx=uVhr@Z_5AbL_eo@0IJj<<2Vn=S=j8XyCj#+Gvw3%b7-5kI* z7VtefZtAR&hx(pxc&L9m8sO7e6rB0?pBlpELy2V zJ;`@gblbGl#;j7UvrS?2S~2o_vdK4}wKn=jf%rz_l^)&-^bYH6nJ4P-t7RMyp zLCP(y8_g~7N3G(N7I1AS7o|IUrV?Jfdgs=u_F6&gUBJ0&{J@9q5 zATHu%vyETj8q5mY%hX;lkh&u7*(| zv2-VuCBhY{^-Olo-m8b5vkuhf?40OJ#LqfG=eJ)@I-KAvToRtoi`jTXFW%nBS&_rx zC%H{&Qm$0BPt^@t;SI_NXYm6;36B}OU#BLr&k}XW!HQ~dBG#$q-YDS>hNxbvFHDw! zV5oBuuel)E_cY_8gXkQ>EN}B|1O!?dmQktc&r~d5sg_M|Nfo6qQA$et*RN@E&)p_K zPpf}*Ojs4F(oqI?e7Cq`=pb)Xztz<{CNx>}bX=f|Q*{hRPIXr|>^)PFbGXBJNzBj3 zdW=m`qBoc(&3Jq0wq`Wlz+omME6&jQF}nTlGxYBE0s+VnH}8FSjIPdaZhn4ohQ9gr zSL9vmV)KyW_uFsZpo^jbd`R-}ea2R2=7xCBGjjpI*VMatc$>y9JAot*kc6V&Z)~%O z*$l_td>zMfapY$C7Ii@qK{EomU zjH9TlyYC7HkrN`qE@04oq+$twcCo^{cbt#ZEZzn>|6HWf+bxTu{u{PdHH&kpBN)1K zh>N?t%UZNf&((PxvquxFgpe-zAXg+6#cNuG0xY`C`PML-J!`tnpDw*=x5;0u`o^U< zjMr-R*LQlEk^yyNveVHl8n*Q_SC}T>7&xAdswW?5zvFxQfkba;6vgBbXM{JnA-T}b zuW-i6CU?45@?HIEa~B8sggG^pp=P44rlKr&N}AS=@^NuutW>sU#N z(jZIT`@g^+WxE)dwM#zWRT>j7W+9HjK$c72h`egpK=W^kd7j|c+#PIbnm?M7L9Sr0 z=SjfV_oS{sQ9wVJz~zxNdlDv)6wxNn{@XvHzzc?5f1i#_{)|fw8hxfX-=xq$>-^xg zmJ^h#&A0=4g`;wN_X@4|?p1#&iu!Ib0qnLaZ^xv}=AGn1N}rD4w%H5EBBpg5R?V_N zZHg6Z<6l@3)P}sv2r30il^R{orTMdi?6rr3hQyK^ zD%%3)9zBP-W*%F20@U|~bR%z_HThFvIYa{-jT1yL-{|x#FsJ0wK#!1T@$UNdjcmH+ z#LD5419=ycd8)5+*`x(gv=`D?c4h-3VraYQ0eb zbGRX18C(ry;r1Mi8jHw{xl7s+YS8%#TiJb&G!h$3yWLxpI1$Da!j_GUU+Tui_fbkR z&XS&P+*J_w>#)|zt`!hWhW>Ce8%?57Fc}Pk;b71o;b=0Lj{1Q=9uEBeh>Su$#oI}Xw5hwagGn98pka-co#knVinW)2K`SYuvF3OIT zC7>D*nzJk3CCDX44db- zfSAE#(Qd&y>GRYdEIeH3hNSv*Rx)g`RoG4&$dZm1$mHp;Af#^Dk&~vNn zV^~QFXtIuD>5tVfT$3&Hip(0z>oK2JcyM8|R7s z^VQV}N*}@#L{_QTyr9{Mb|g=Vq?D7QwwBZ*Y8#;$&lOHhgw3U&Uh2ne4u>pFp3^En zn6wq@zmN2^2c-yAS3;|eYTI4mv~Jj2%CDfKrnyS4H)3x$2EVs(1*YlhN#2Js6qh-; z!h-g1!4UR%KI2Sy3V?*_OrcinrDo$N-Jfg^ggt0OP>JrIuI8(E_iWT)^DiO~dof5Z zlGMyjQ_Bq9$jPMmD*p&s1-CmuFw#I$+Abvlmqrq$ri)dmcW<2B6h zof+bt8;^#CVgkLDbpj|Hv`X?$I1yJ?o%n_|d2RyiV650h<<+iqxMYuss%{Mz<~4Su zl=0roe^cBf{(06wfnUz38i(IyK{RytWv>eh;V)r%Sm^xjtHkQ7yjXGudGaNrEYyPx zOh)ld2P%t4$Y5NA^~mZvOPQUn*)^cdOuTw*V`s{2Lfil@Ym3YSnP7Ijsq~mn~iC z_jfkm_!4Ijm}`zy=9#O;oim+C&s@Hm*8(inO6Q-XJD{(KW_8`6u=Q3XqU*+BpV?>E zEd)cIH)O@KO{d^DjKnIPbM*ZB{7rX;!+R2`@a2XJvO2cCXqY=4Dls6JSRnb9-Wgy~ zLlj2i$>~3cN!o9UOG*HDH}oGw;rJckqKsmGhvo!Bwc~}H0yv1N&o6G+8Um8s>|Y`X zGC}e%0780Hnxb|51X;OH0=1rVkXB@sGF7BO)2*rRrWrI7^#x5Mp!&s5qPjfToon}n ztzC`om%n%oqF?gFXKUwy@-J}Svvu+>vf?$eU+UC<@{yD$JV%nU=zRBS!g8yYrwC1z zoRmecT?hOml=4x%+FOU8_On3TxCDKHB>st6N2@(}x?Q$fnuA1{Bs=c^UBxY13ctv|f``vvt z!LMaU1Vb+$!SEQdDx#%!dY;N{TUvfPDj&l7~wDsrom*~pZ0No zKA%TEp5ZVev-*+t8d7;?L`E5`plyk=x+R+tr(ts?pH`-?+ubL2EHJ+ZC8m}R92m*< zpY?l8A4ozt?@Gss!e3B6Z=H4(Y9`nWUp&*?h45?hJZ-?d0gh+3#2P$4P?J=7!Yb}U zb$$coOVIFoDmLcw9|Kj9t*N`6B@I1;3FLK>4hEX*zvkuCyujWIS00+AxSG=SQdzx!st| z>t1d#C2c@04astu%$gZl>fwMYN#?~}9o9RkS4Zl5gTj)W`hGACM`RdGPoqJ9Gzj|R zc^LZP)Q@ICFq@8pD4P3t5ca43crqT(hvOiaO#B(avuNJmg^;l$vl({stqFc0eIECk z#p?Kq_5C}VMCLTDgyn_Bv+W*j-N&@MX@aNw`UJ4su+`7D`o!mTcY06gp8&Ri*CO-x zkg0>xdkz$@;n_Ci_*&nH+fY?1ictPoZ0QZtbx%r>b|u{f<+ zPxMvh>o`JiUJz0b9w?{!AUaMqGZt-B=VlhI9e!Phb53KeL$?&~y!*8ScO_h9^nu1? zL0<9@$H0M|Gg!JO9lNHEoY{JDo|8^$-jDLv%uePtW8(WfY-`H@+IOC+-wug$HJoiT zhk5rZMPN*)T|v{l-KP~IFvpT@L|s(^%JyVkT;}7ff_ma?dS^eX%=KPmzOfHj(`3%F zl@e|>LMxzcsk{^--9}}A-j?9%Ecq6Y35&>;iTeLW{&9P8bqCXZ_wL2jorjc9 zCx6i1U5XzQgwgHARn7?V>4J!2rP4%@Os=1I*RSCztZS>f)V4thoGpmh#ks}(CRY23 z8y(U4oMa{O1O$LviiNs##8jPvC*UyN6#(zx42G%St=&bNzl?a&8AFBWw|vOTe&AgS zfMF8gY_`^ixF-183F673Hm^W&vpJGVPFq^*#<j3FTpgyloXq{m6xL>OKU$XL$*T<6mk6T1kI!L0l=CWwQ+;iCAd25hg-kxKaF4w!pvP zc5g`cmS4f}m{B1};(dm(cY`gXcUDllOd_eC2wJko{fAeqALAKDO=VHzi6S3p1GC5^+ubk84T@!WQuMEe3t|KZgKa6*$Gw&J8*LIHm}~&P)E^m^s`cb z_slMkduNr9rAb5|Xtc($bV=@&>>{cn4Hr1S$1lIuVrwA#XPS{8;PQ(tk?b<4cA@N| zqvlw4rH@^~Z0nw*UjFLNP8&L^2ebpv_xgT6@TbAh#I*;L>2xrh;_1wvhU3%ed>)eF z2oFONkuaPLMtDA)&%&u6kU + +### [mariadb-1.0.20](https://github.com/truecharts/apps/compare/mariadb-1.0.19...mariadb-1.0.20) (2021-12-03) + +#### Chore + +* bump common on dependency train ([#1452](https://github.com/truecharts/apps/issues/1452)) + + + ### [mariadb-1.0.19](https://github.com/truecharts/apps/compare/mariadb-1.0.18...mariadb-1.0.19) (2021-12-03) @@ -88,12 +97,3 @@ ### [mariadb-1.0.8](https://github.com/truecharts/apps/compare/mariadb-1.0.7...mariadb-1.0.8) (2021-11-22) -#### Chore - -* update non-major ([#1380](https://github.com/truecharts/apps/issues/1380)) - - - - -### [mariadb-1.0.6](https://github.com/truecharts/apps/compare/mariadb-1.0.5...mariadb-1.0.6) (2021-11-21) - diff --git a/dependency/mariadb/1.0.19/CONFIG.md b/dependency/mariadb/1.0.20/CONFIG.md similarity index 100% rename from dependency/mariadb/1.0.19/CONFIG.md rename to dependency/mariadb/1.0.20/CONFIG.md diff --git a/dependency/mariadb/1.0.20/Chart.lock b/dependency/mariadb/1.0.20/Chart.lock new file mode 100644 index 0000000000..cf75aa4b2c --- /dev/null +++ b/dependency/mariadb/1.0.20/Chart.lock @@ -0,0 +1,6 @@ +dependencies: +- name: common + repository: https://truecharts.org + version: 8.9.10 +digest: sha256:76ef16a78cbfe53b0be5d9fac03039063f57b2b43f927e4cbfed13be1c939fcc +generated: "2021-12-03T19:46:58.41944868Z" diff --git a/dependency/mariadb/1.0.19/Chart.yaml b/dependency/mariadb/1.0.20/Chart.yaml similarity index 96% rename from dependency/mariadb/1.0.19/Chart.yaml rename to dependency/mariadb/1.0.20/Chart.yaml index 687db70fc7..05e5b05cf0 100644 --- a/dependency/mariadb/1.0.19/Chart.yaml +++ b/dependency/mariadb/1.0.20/Chart.yaml @@ -3,7 +3,7 @@ appVersion: "10.6.5" dependencies: - name: common repository: https://truecharts.org - version: 8.9.7 + version: 8.9.10 deprecated: false description: Fast, reliable, scalable, and easy to use open-source relational database system. home: https://github.com/truecharts/apps/tree/master/stable/mariadb @@ -24,7 +24,7 @@ sources: - https://github.com/prometheus/mysqld_exporter - https://mariadb.org type: application -version: 1.0.19 +version: 1.0.20 annotations: truecharts.org/catagories: | - database diff --git a/dependency/mariadb/1.0.19/README.md b/dependency/mariadb/1.0.20/README.md similarity index 96% rename from dependency/mariadb/1.0.19/README.md rename to dependency/mariadb/1.0.20/README.md index 03e48ce395..d73b5145f2 100644 --- a/dependency/mariadb/1.0.19/README.md +++ b/dependency/mariadb/1.0.20/README.md @@ -19,7 +19,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://truecharts.org | common | 8.9.7 | +| https://truecharts.org | common | 8.9.10 | ## Installing the Chart diff --git a/dependency/mariadb/1.0.19/app-readme.md b/dependency/mariadb/1.0.20/app-readme.md similarity index 100% rename from dependency/mariadb/1.0.19/app-readme.md rename to dependency/mariadb/1.0.20/app-readme.md diff --git a/dependency/mariadb/1.0.20/charts/common-8.9.10.tgz b/dependency/mariadb/1.0.20/charts/common-8.9.10.tgz new file mode 100644 index 0000000000000000000000000000000000000000..635c25c8f45a30bba38761caeb6173c2890bb31d GIT binary patch literal 37602 zcmV)!K#;#5iwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0POw!ciT3yFplrf`YZ4->9=;D=+&~E=x+A8u9LPon>aqP(|+&W zdyfN=kcBlxummYb>*jy|9J~?$L5lKQ)2(@S8;b-617I+i84PAZvRsm+f3$#E-dn?E z{Fl3b27|$1G9L4P2ZMq8?_jbw{L64W+#ii6lY{-qUk1a`{$ThQFt`U?Do;UknEhpN z>$cp^{Xrg>;-67QF-fLiHR`}L)jwmHBbs+2M8gcHIe+&J z;siuH3$jF0u*mb2PW$}}oG*%5FC@!;o)swMW%@8pX+O^p>MtS9QP!951u1rL$Qn{0 z;0oq2qdfttpePGTlA|Q&P>cS-WIPxg?C*Cj(fW#H5uJ9rplqzuRhV}9i%u8FW-f~v z(p~-bZ!d?v;iNa{4!-RyAx?6L6O?gaXbEvV1vr_L|11IbNOsWyAc3sE#sC0NWO0eU zQ$ZA$806~|O%-~bmBQtD??rDo=seK;%k{s4ae?SPF@VPPKOBtqMk9CqAM71GuK$O4 zo`7x_yiZZ`^T{!wDGKo%hae=$9A6X}WNW?i1pH@&=CFu!R`?VlFheo9>W~yAt2BAD zgcoSq0f56gT~VtoT#!Sy zAai)3IM;vD1sv^9rn7Jl?oVc;aQI>$j%VW#?T3?t`D_r51~2A&&j)*x{m~H3qP^iH znvdW?G!GX%WXDB{2@y9l(E`@E=p~W`0calMGSTp$>=k3(nAw z1+OANLY=%OTe=TR<}hdNu3~dZWQ;ICwD}tMQ(Pql4!tI)G@rKi(hB zN6+`3kHdWwJs-~ZUrhF*K{SfsY&Lo^*?ayXoV=LrhtX`fhxUe}$pD6JaM)_7(~K;0 zh~sTXTGgu`XbrjLIIHrTVOgU*>WzCtHN4OFW+6h+XaXmD&u63IFq-VoCg}Mf8pFN4 zXfTYz=cC#4A)4$BqWuH({Q2H&{9*vZLAZZ_=HnJ^Z#B9J%ISiTeB04g_3B4gLvA^` zs{CeH^~_>_upjM>_Xa3B2#3*lZ;qnj^Jo?ghX)6}lXzUA;5Ra!x`NO-R| z9Q6ijlt<6^_u%tc6g@{MdJzs@%))3q8x97u7twfzMuTuXf_sC5*^6ix&LA4X(O^6} zn4lNq=kpgKYS;c&WDMgJCurND7Pab!`A|S@Il=smH(n3}YMt!ZlM0 zV8#$kW3pbNB!31Xh?XRwC18w7coU_a}bJGS=bu6DB?YYF@Q-zawwpagyT`x z=^G&Xx~&c{YrVxZpMrni(78#Zfp0rvfDg4>e%1jXKh0*z30PptI6R2)66bu@#fP87`?u`% z6zp|6*xEV-Q!RH0d%Lhpm7L#xU(1r^hNpO;B)R1hCeaSv)ht-;b&MLhfvF=4@fB4C z0kaF*P?>$^H9IZYS4yHzN}@v#i}EaH?^5nOF&b;r0$;ga1Z`FzYreI)OnbEa490?L zpmG>R0D_-LhX2KeGX^Il0*6ITXb5AJIfBVwBTV`3^tTR_WpKiYL+@H*$74j3U7&o* z$fjH|k~c1K@`)YQWH5{1^fzmn!Dm*b@3V?*nE}0%;i(Nm)F*=FoV`usE*k1x>v}EHYyUYZ7R!3~jXY7~Q7rm7bQ?sZjjCnor zW~(YVG3xLdAE}VdSnpDj7O~(1l*x@bxWf5@cUnq;Yf?z1c+IBgdj#MW(@{36~02FvFZydf-g5M@1p5 zho|c#ho6qHao}E>7koTZ*!*mp?Pq_(Z6_9>0I} z`uzCt-Rr4T3FjEa(FZhFzvY_~m@lS$9rO|sAvOw~j+#{^{|S@PJDBqNqP99nWna2W zn0BRT*p=(8QdGRw#k$~#Gb)f~m}EF#gD{3v2-^{!&r!xmI%n*d6ZcFQX=u1WQNaX6 zRqu#ZJLXM*CxEVLj+R~4mu{Hh9EUJg5@#HfE2`E!lPI8MmL*h$ zlM9rQf_6(p>Y$^~Y(jAk7KCyEl#zYTHbC`4X)V7jP$GpK_UTw~d9Z|+h^cc(@G7PP zCR8z80zS!Y?FXFEoGqE3MBPsv1Bl)lctfuY{vVjt1AymN+n9=qoV^7#E%|CODX!Pi zi1N`ht1Cq2TT_M zf7eTmK`m0saS=N;BYn;N7-1^ShPToY{7Wh}!7z}br7&nyX>y?mX5j*v+m6_*`*Ne^ zXiL$RAx-9f9?c0|N*R=~=YRYoL-YUr-<<}g5t1ZCX-@m9URMePIJsaS6UIyoK0>>) zVE>8OcW`pi%@;_$-tCC(;Z*#5i<3)g6U-4zm<~};#I*uOgA|1YUw0(Q(dWDu!W7PM zjB}=tkRqo{cb0m^|SuB(O4j97DG%!;prF`lDv9mc4xXS#rCjgZE7n5+R#aDJpp zQ!X?ENI`_TvlGnL0Ox2)d*C$;7j|i->n`950nFINRRS&%m+F{e>cC*1gtQQ$9A!(K zh%S&ULRk;|gknQ10b#iSdL0|dnw}W;m9TY(e3hE|)r4gU%ZuwtMrNpT3e@ekVL(D^ zQFVnZqVYA}$9RPjL}`~%D&~LD9AK0D_;+&Q4?tmJqWti_e&ifoM5h-&0VPC$VLmU?wI$LCjGKATe($*e9d?Q-d%gj&g`t!X|yN3Qq z?%R;NJ#2SO?|$H48^NE7Jz;BdmwSny*r^Hhj!9j@ekAm52;CgCJ0^1<=(`|tmzYQL z{SzipVhWZBCKNE$9#R0o5`MikzeF?H$_H+p>f0mktRhL>mLExDlYlh;{BvQNL$FsM^* z+4w8TCIL=LN)y(8kRT-JPK^Zu7a0uEyolrV17Xi`=dGSp_6t{kG;|-urnWjlp~`w8 zPpp0V=?1`u9u%Zb1*1q9{27{@ZyPEcQza>0;uvPir2j1=$!`^yjaX0l2{cYBds+4H zN7nFcX=UAa@KT+D@ZAS58Jg-ic8Bi~I1!r$ea5yUZhFtdUaz-nFlT<0!FGtHaCm_U z7%DK&48tTpEFnp}E5!P;`U5SG$nKF6O0c(u2Qsl(J72-^Y9 z15)oo@*qp>1nN{vo*X*9N~$MpUB#mh8CJ8ub$W-x|Hh_c;hfc^Yl{(PqF zoo`N_fnyS(6O!e|My|gKvx?VSt;V;j*1Jn~;3Oj}*6A826tMv;;hGV4hJGz@CRm~O zWZ&a(c0;soo@}fzr<=iNFQQOFoH{9A%7@K7M%1zjCfx9!nU#7YI)|bf-(&tXXnI?(W39 z>gY=1%+6w;yw~EGcY%O$F2TR_?AiTPg8sy2O!}*%NGb!yH0T`xC)%}CSWFEK0Vgy^ zFal(5w8Kh&N_i7}HhOG^<(WMjp-3)0b>dIO)R~(PS4v9UORQabu|s5w%%JtfiyLJTrLCS@HgSDM0fS`nk9zXfAkV)Qfk@JEgsNr-r~{r`oTlk(bJC#P*P7qvwh#bfdeqB*`a zzg#}2;($1XAyTfBu*eD9+(RgoEq?sXeaa|+i6Lf{{zxWF#spxRBBswV`0TfAx@=3k z50y2=N7>#9p9UPS%W<_%U^TAgy4ay8<<6G77CH<^QsjWUp2#!#rD`1|QMaISSDd?J zD>+J+two%4XOQC17;0lp{#%Ut(j+T&V)}K8_G&A!w+^-FxEIb8Bo{dOTvIfUX%~jv z>6R^^;18}W+_9RWlt?+C+&!rcqk95A2;kIoV&P#iUho1YK<$_m@QIRB@Z^cJGcE|t z%U#jjVfdGFkqXp*B9z|`;7HkL%xb?(A*INWe;Ayp*l)YiAFdaZ5XPm<;v$v8d{H9B z0F=@w`&8;5C1xiuU-Upblz_He_pNurg2?xZh)J(Zz%ycyfWN&2!`^V*9aJElalQS7 zU*EGn8b+K-OKQ`yj5lKU)26kO6j(D36yYJ(8ZsA<+d($e7e|~rdwc4VOAmZc@`ZHY z<6e@CJqpTVGmvJ4yR<@kcEo(-F*Ue>b`BKeYf()%kEwx?a^jcHyIhNa+@DCF8Q6PT zh_W2dxpi1G8Nlz79HA_?&VFq2f1)VON5rnUnKD|TIUC^yLHMI|my&lI*bY>(71jqN zyo=a2C$ML5mZV5>w#j}x{T@V!i|)6Rsts(blC@}|R6gU7~ z3`8)8Km~wu__6jiXZ2V?OWc?fG6gf3HBs8FsjTH3N-wG!2c!}oeZ(dmXDhf`XV(0n zjrJOku3Hm?*%Iq?9bMe1kjXFQ*~D`4^N}R^e?vR5?sTjdmeb!l5wAK)#$iF_Tye@M zF^$p5&qvSXpFf>E1L-P!2GBCi*ROE)Ozw5h%GLIa?^8_nVdNo>$c=-9bY*H(bCQMn z-fPP5HnYAML;nkoV=nb@l_^>4fCQP;$Au=x;2i5absGLJ++>gwu}_Hue-al2m(5|5t|2Ihmj53v@23|LxN=SyZ}#vy$I-zm>ZuHCvh$xxGrn`*#c@(I7`o zTxtMMfOJVTW=DxVla5)Yf@xg4${Ekqcr7(B>ATb`N)kIpDX~Mdd78N2xu|u3g@1LDzel% zK~yeSWgF*y#hHlM#P2xjrNgGOON$v-A0%30ab+Zh7t*2JVvC3Tj=?)(hCERWGIvP# zU1?$@Ql#f{vbY|%BoWd}s5HXQq$`%3J~6Km%Knc8x|MNU!04A4b_Ir1U6$xFET}Mz zL*2D0_<&&aONMjwo{6qy_s%}0INNRZ?_(%LQ(NTG3Y^&d6y`41?~BSFgUk{|xZu{yK-||4 z%H0fte3{NE*!ghyt~-O_C7UOGvtn1R7ztE+pNT0}fZ0s5x>TR}$UTXF=c`IIY_l4E zD0Pbeg~Z42dFwxm5&Hz@2Si_P*B<*f;3hzi^&DOA#JQ+)@RipspEmELohwGObL%!EXSsCrdjD5PIJCYzrqQY zv-|HixevGWvm%++DZ(w5epV!pbkUwJbTkTi*`CY+EH%=l42*HRsb}Drh}k^#tW-Bb zs|}N{a5I%wru%b=SXvZVnX1Cq(}yCGTq3kG1Y32y$d!>4WlKyc*X@Nbf4Cr5i3kL- zSQ0@F6y+yn!HVMO(Wa%`-cpy=4)<(YJ}JyUxpW@{ObuSHUzz;$*8oDh3iyq%S87sJt#QeJvv%ED_(r~S%nHTIXRp_t=vNJ4;e_&Ie z(ck+s_`Tw0Dq)fnGx4(onWB(ed2V5gP`pLh9Ks?*X<^ktngRlOq(6IzLeFv2qmDW{3o7axvgx5@}Ke_;B( zZ}RodxI9|lJl!&KPrJDmg*Q*MY`x_yyHFozxQ;nTA|plGU#`2lNN0n|+Xz%GsjNH<{A74q z;3UE;92GETGjl1-4oE}{p*c)K)a!^5=EidsC5_5RSNzPH2dy$SNA{M#G>yQ4Wd#oS zcVW5Zs?(Dv;C%-8u>puN&5basO!+F(N-M@|ZHCVm=v4f@Mf;;4vG`@3afAy5)2@8i zL_jQ@Ty)V&9K-h^rT8M@VM3VR+kcYq#0cW@ z)ozFVI<>B18FWVhoO5sfwSkie__%erq&BFj*19l>x-iLcSH0QosJ}c&<|HLCxmcg3 zY)Ky75>s`zl3%G5_bOEbUCLYNmV?0rg}Uac4&JtepHDB*)fD^{Cpo%6+21&MsEU7Q zYxS=*&v0@fzFaL(@-d+>$8^qPRXN}Jk$5?6e-)hiZ%!zjoDV`yVtM0)-oc!4n0$Up zxO@zBBTh6(CZ8Y17*eDiU!>HAl03uWZ6D=fU-+}J(MnUs_TQW+M@Ugfg>1W%P+c&J zx)OnIPB;ysJnV8Dx{TxTKf6$1-rwyQ{m}D@(MFv2R7kuYRU;do6zjNnRMbKv*u8Oev36qG>@7X%xgLTnG|iCg(FrUc-G?FIaX z$AU3@Dtw73$clui&_*ye8P_q!c^)GMS|jod&>~#0#^2!tv+3=rL*a<%b79pFqgs)O zzKT(tlQY5Hoi148Z8011;O; zv0=ptECm#;PzGbRG`dU)W<{xX#MSYiB7UAPeI6QptzZ<%XnY%5)*fCzpB&5Pd*Dsp zqG=!#0`QwIIGK}Y(jq{L9Q=b68B_A9Sj^KtU%kD{=d=s+?t(1&>gbaq>z1){RiebM zN^B^HqyI!_@#?P9#BUffLcVqYSf%FGAX8Rm{p6W8d|5W6L&r0n1&w6D%pj&SY{-J< zU7Y4jbD~`RZBf}^se6ipg9s%#hQfnN1|n2;9oE>Xbpf5Px-Q(+Fqj}KZBQ!4t*~p8 z;zIc@D_K#SS%5BEIx1b_I6l3?dAKkRi_m8tXKGSPhXltVM4>;Bi{nax~?;*yGtiaYm#wtzN|9cDt`86S2N446%b5rW} z#?*>Am5o=>@$3yM^=)-`FjJ5TuFT~=;Z-EubHBb_!$7*to>3;3s|LWziX^FyM9H&o znUuq0#j!aaOx6vdYfbpt?0Fw-!py>V6K-MDzgMPVjh)e`OfbXcKLE1}j-kHu#WXg| zNKe_Dy4)%vLV`z_yRJjiRV*g*4t-8Qnu$iN$xwho9;8-ujOVG*=9z967Mj0wK|&IP z3%CdvUjpe)+wZL?YteL>G({Jw<^YcV0_J*Nnef2&{{>2HlyjN68I<`!xZ9|3v4m-= z0=9}}p)O)Fwv)nz&Zvennj17_*yA{CiPtNfiJ)etP$XQ&#p^0K3I>p#?_4|A0uQh9J)~$d?xKW^ zVC2^BiD2S0!UNW;b;g87?jFl^JK5$XVp{qoqKuA0Cc>$3Ax7(>H5Z51%F$KY1?7Td zZ~VOxk$8nnk3Oe7IR{o|-&7>h(>xe~PdGZyDEy>&v4zs9Op&03KIami$qviF6{R1w zyFv6e?#On)9?ozKYS&K2PH-0`q?+MXs?57AGzG)a-e_pN^nu6pv1O}MPamK z6nOIFUZPTPz!{oPn-U(}AS#8`fcc}0QUUfR!@+@|10&=@g$@!Oyh_y$#iPtQXng3vY1>5 zvkzV1REHOc$tB)GP-~W#RQpZRlE$&Es07+eN*cCTOuC^|RA$t^iA>~Vn|=t1$QWUt zJXDG)#tkw-U>`rcWxak&E;0YWh{JZaIMcVvIqh8N>tjL!khN^svKKK?w}bShaVg}m z3jObTtbkWvmmN2<3kNuXtK0CdK1BP`P~~Pl!+!826Jx0O>z~~B|<4m zn8=0^WuRni|1yQKF0kG@k*OJ+Dx=Kin z|{=r|s;Ewz1eF~=j|7CFNw%pGBL7waD{&yX|59mM&TrH7jpR>3? zX@(OKfn!nT%T0-hdnJfN`b)`3LrmXSd0)%qskTJY>wMS$@}+Zqt$l_9QJ}X-VF0>c z*cQyb;yLL3ETje__ij(J9a&HmeY!{?zmq$Csgi4IsN(coC2$Qu&#ozy*Y=gaeCc$% z-40B#RA#2Yz^=a<%}@@9olBfVQ&6*_I!ly8;q;^YB(JZ_PH^<3)}|44F%#bzM!$gs zGajCUF{`Sg&GV+tc<*HTJpe4M)0FmCLwSD1u)V&n>3``4#gsES3IG_m`zA_^Eci`Z zD$KFw0IamgHBgK)2B@I~VCGP+15lPR0PINsD9>{dWhQoMz=ug> zDl9Ut^>=+!W^nc|o{Lj%SRS|;TFT=CCB`&DW2)+@3Gt82TB_?`-+{O@F0f(!4@bj2 zXZ`Q*9gH5=|3f@{{eR#q*$D-w7lR5~rTj_+8>n5tnttk*u?Tf;#KeO}8`jFpU~+-L zQ&!;_cv@c0nZDFQLiy4bZpzXXRY8jUx`2ShfErD7zkKQF(*5s593bPo&5WN^31=s+ zn(zTC8(2=PwIH#f#5x#U;!=wI}r|ZHj8@t z+$MLOA#@odKXo$aBmhqvy&Nt*eHVk%? z&+SRK#y%y{VRg(K#@zvC7;tRby~PkcchPV$e(R8O8)Pf!nwc-XazjZaDTzFj_$VaY z+vC~)bf zi8yf05_}BMuT4GOAsOh=BD+AKS0r!+aSUfM(nDZ1F!hKOMy0a-CH(xcd@m-yL5{E? z3T#YRr|eA&D4yf6aL` zv5c?HN|U_RCWsp`a^#-M43=Z)BZel-Hy;6^EdPnb5y}Fi9q+KYgn+WVCvN2#XFuL9 zH3?z<^P!I9Re6ymm4I$;GFlngZ3CYwmtVFMsq2qVX%R@0ek9h$DhinsURWN zxb3#6)_7&bb6^>wOevba1VPXS_iCFC_MGW0ApJX9mlXpwgu7+$)MPlllL);pYxlrtD$8WyoI4}JDZ|XFH;ho8m5HC&KhNFjCLE!iy91fsSMXz?hG~< zQ*Aw|m^p4|RMKdv{>2 z@_+5#_)z{Id*l64#s6dc$p0VY;r#y;g(QiX#AY}FGigr=axsCC%*B^GLGo%@zTqZo z83W`EUr($gJg>0^n3olJ$i7|~V8Yxg>R6Z9oXR@-{KvDXOAO0ce~p;2E~`j)fs5xV zO?b>;Ta@;qw@Qud(YI=ZYB<`*ejmX*}ky1cgZ^+3%cF=$qXX)0Nur+HyAszURu>iQ+yOG%c) zxE8Cb2yd$;mCpbBTLe7v-zt3A`(MM+;K05AH5xtM|9Ft6a{uF`4E85;%kX3cH@ywQ z_dWk%P`U~?9ssEmgOi_+O!KOl`MheQWTo})xPyKLJK8~nqr<-oHq2k_%A*`!%}j6X zo_jns+BMFQ7;;_rgos0|ly808quP>d<`+i?{zIQ_to=qyfv4TJXFp_)H&t#0d-2gV-|JWb7`u})u{K)?w3z2aIE5fB3mfWpk&FphC#?n20%L zI+kJ63e3O5BIjXBxM!1L4HhP38BFs7iP2Z&ILZ;XT}Ep>n_4-H*0r#;zh{M8S7Guz zGwd_}Lz%kk4V)4nlgMv3ec$6G!pX(sEN<6KMq(rb!N3&%n2{oF82OG03S+LDt&cK&`s9=BTm;3{0pGM;fA)k-pd zJUy|x{|jCGE+v2s`~P5n;GX}E4@QH>{r@2zx&I?@>dA;GH}U$dTG?$po3ZBE0`Tv{ zr-irt`xO3Kpy~!D?NW?I@dRV9BzjHD{@+b~@vVQ(Xdll1cQhVU&i@7nkL&+Io{IfP zB}=-Yy+<38n;d{u5canIzbf*(VF6OF9RE5+yfyxH^0Q&PQE+Y&??ctCiS|+Y2wTmz z_Yqc|Y3n0w_wJtJgXjsin`>((Dywhn`Pnf%Kh?Q3wTN{SQ8sydo+^^u|Zh z24bu@dukl+$=B0Bz0zcptEZ}Gx_UZ8`un+h>K;6Ldfw!z-T$FbwC+L-*d+fSRL*}U zND$^yY7q*e;LV+G5fGwXbcan5BYG*!a?G>DNZ8(Z54u$C3^oJ3e!xHsa)UnJ za=AChZ>TK0x-bi#Ko7Oc?lJO0Icux($oWi3EG5r!e1=wGZffbix+dkZ@`>C`q;rj< z&#yvLT=dlP6)*;%TOk-T?}GxQ2hbcZAoJb4BN4Jv?{!(-9no}I#7J=vd_XYzCBr#- z&pmv0!EfN#f|y}o%CP+wXgh7cdKlM+7bVU;ivMM`_u|EiA93Jo#pn1bpb7I(0Cs@S zCy7mDa1oOkj05nr;ye5AVv7G=o{Ic0-0}Oy^^E?xaogf18o?&{e>8OBe~gBs{mG;J z{}7Lm|CQ*U6BX6pxt>Fkjtcv)mT({7L|zL;r4_#>{6Ej9ygBxN<(`hm3#k4Ekh1ml zzXOM9%J_ksYPHNEC{6ewz(+vYyz|)m(~S_VmdTTXjJAwVmpCS~asMK{rpK>8LEP-&~@#K1`96 z8-O6s3KW2VClx<|`62*8m%ZkhmV&ULIavlESQ)rU40fA_EUK;nWz9E+sd07HonrV8 z)HcGY8L;NVtH9+69soBzuWET(Rc*CMyzOo`8|tEP+u5iKAad;uZ?q9k-C#C`8>-BP zgwX#Eyh1t3mW-$KyKy4-mvv71{}ZXo^>L{nqgANvI7S#9vzay)-mU|ZXAN&dll<^KnH^!cA9 zBDjgGU>OY6*Ej5AFGDGzI49W}eEBkMD44?w z@a0P&V4f6lEP`=3)=0Zfs*7=hb~Veom0?}}ly1|54oX(jjvW9J_Aozd?2fRzw~r?Wp>hU8sfYBw4)#yR0v8^XZx(3hH^`(fuojY zBqt$>r{L`9qyw`HYSKwPXjYORUWq8i{w{Sv(Cu=`fc<$ZR0G*kEdUu-=@rgQ8(%-L zZiG~XGsBcCl$3W&uaQ>gJi|+F#4|q$zgxrCw&$5gJO?CeK=uOXr5e|^-1m^8$+&Il zQ|&WclBCw_#G!yv;ijOU5t8?NlrH)>I?pH+cJN{*KFfF44R>s+*l1HNzs+IVZMSq= z7E)KM{r{F%0ygab!{Nc6oBw+}c+CI#AdlYv-=`?~`Q#Xc8DeCEVN9i&h3eg3gnZj# z_pca*x(~3DZ+aO)J3us@0d~#Bes}j08g+hqFe=v-1RL3~XW1~^eML$G(TyR>q2IU# zKdO9R+0%;ui;epJ`2U`({|&}_kM}_6JZ~%dVjR1j{mFRdbc+IwTb^cuE_uUdyoGA5AtaK zuR}N9*7&CbIeJZh>Z{N2r@n14``N|X82#)Tw#jd6n;!rnOyLa2ILFFi3PzFglInuv z*JtO4uim{m?rdQnG{Rs05v_xodhW_LXpYDITLu{c!z2CNwHbyb6w&2}q`t!h`JzJ|+q3VstO zI$UvA65t}w)AN{n{hg=$H1WmY`9OZW$kNdMD86u6*Srrh$1xI}?B~n0ufOw#{kO;5 z(T&L^R`O67W0d3yc#*|+o>cd$Mwr1A$)#VpVNu`S1ugG7{FBVi^(^(As|`8KacIM5 zb%ev1bHO1dA&eJ<=K8IB?FF#LeC@F3{5*yE;{06d8teyG7;3H%{K-rht@!`_>i?sW zNB@7!|MW0VmH*#X|2MaSs{XGzu}A+`-!|y~cCj}4zg^>&`u`S6y|K^z5tVvP5_hH4 zo8xi+O8o|}8;wkBpBu4V_1Mn*vXAnxWRjLt5L6snRA*E%38~^PQV-L19I1ZF5RBd@ z@p=mK%nWsRL(iNRzBrBZ`^T|={Mnz)`@f#l`?CKG5B3h+{eSN<{@=qqb@m@K$<#yI zf69DQTd0qI`;V#7-o5?DC+6I<{iht8t#ABkwY>hWUsy05E#&Q5>t7yfRny>90Jw{-q#VgKJ7RrJ5X-sAm`2YDL(e+2Q~k>ihd z(RKOZn>6s7VoLmG>V1aX1(aD*3+$!^idi5Ko=_CzGE(r0B;J zpc+!&Hi=cQb@I!Aq$m-&RBxP$wFCkD0*Y?z3TNn|fZ44wznVZi4R%^d9IG@@vW5o} z@#zN~%ShLMR&)2`<2+6LUoM0GxggVf)BlGDV^{tgO&;@qJ;+nX|J8LMG4()g0#Jvr za8&9T(;SewSGDfIB;qxp=XMd}q{99@$D0oqG-vj!{6t-1x(|(Cw*7z#zwYhU`aZp7 zU?0_2de^~x9`~BB>uJUR?>GL#-oeD>|HI+rQU8CCr*i-Ew#UC7E?J)b%8$OoU-@an z*{@Zq&C#z_;da3uws8DbZ%+T~^!(lXS0CTL-s04ljou&gz?jj`U7Z!nQMmtO;+jJS z*8U}q`{TeU^5Ol*v)AWCtHkhN)EiEEgWjM&90mSF z*J3bhh~l$w#yb{S>*@KMlhxS9Of-9a&BZMl#dhQymzpWpQ{o>G9|n`M`cw5?=GCXG ziAYJKOL$M>H}tI@_DcYEjDTVP@y#mmmg|9Cw~u!+_!H0IPn^*o-emOasgz`3$A_L` zy9GrVU+%lj+R5|R|No=6A78zGb^QA5m-iq3etQ1q(^HZEWVrvkxc9G~P5vJTuKYJV7>pnFzXy35 z^S?qT`zwr<6aG7x-f8Yvm1M#RA0S!oyoh6!A7rx)y6fI)cn4Eey98yFs^pmM*_Rkf zc}ix)@A>mwm{;=6@4f1s2)pH%4Y~e3j)zuqehI=((Xy-F_srM68yRYBti&sP|FXX~ zz%!WFO@lZ%jd8GdlUY~c?WWVMW5*lv=_+t{m_%0$Mx_Pzx-6TgG1yVyb}b`j-3HQb z|ETBxD$~&I9l)FU|8OvN@Ba@c`{T#>e-H9(&HvxX#8LOb{dJ0=yWss2*p{5%%!_qv zzV9a4`U<$dIVx42Z+>mT@eKr@rWszsY<((oeNA723&RGgQh-$qt~x=5sP33qpUSwj zr)9S0y18^m$ib&FQug9XL;+7A?55UTIBbFk?gM!s97DJQw`!)O9lRhaO&e z4{;?4*a5n`Yt1R9r#YO(-nD1izI0YPRY6{4P;iz}bd|9|p(zx!5y*Z9z`kf{t(zm( zl~N$60aa?=_;dFg)~7ls)s*U*$>7f@dWWMZMprNs93k-ICT?*4;8sxU*6}ED0E;Zq z0#Kz*i%GB+tt8YOdKJ-^mgV6Y-~{=foF*$}-NCD17hD!IlqD!fG|Zv^?Akb$*1eYK zXjE?7a4Cn`GMO`t%eonKr)BA#k>!??v1~UF%cdz<-eUCY+pit?Et;#2xx;Ba)4$8! zF0B`um2Mg@KgCvI>9Jt5(zJ*g8l=9)b}RjL)ftaZf|m`JbtEGcN{|$tYE&R|@BQi& zpo)4EwNdRRQP% zp2T!&WbD^KbY+?7v?L_J11B*JwZ|1xPu_nkxL}EV36q8}Mn_1cPXnNm-@svS=KmbQ zHOOO;;*>G$0Dle<&!OsT>}l@<;>T0H4`_wig7tD;JO{lJomv$65E$k3VE7rUXGZmp ztcXjiv7CXGXZXd8m96vKw4O;=@jCra~M);WXh>~8yH)&n- z1?M}fea6#4U0;`+@FYWX{5cT7*=HZv3T6PzV0ej=XllLOj08|Qn%#=#2BikNQWx-) z&ef^_B*k)uGEu!uj#%l3CD}L_9dB-*mV~vjDR;=~mf&_)v_I}sZ~seI;avoOXp{eU z;KctL?oTF<@!uch+1mbhq7H#`5%=XNhIn}|*1&XSq=WL9>df#5M%ajETV0K%&V>bP zZFTlRuyrQXvrS2qqd|WSvsUT6c3gCH~mmZS*aX6j>tyn8R>ev#P_&-Az&LiO%Ipu`r5n>u8e&aYOg=% zC`%weZw^dUICaTV{53L4+SYF4L-i2D+uECxU_;5b1V-P(7$zagn(=bU)~Kk)!G32U z?>14=}k<$3b;pr*-SL4q7dVckQX# zG#Pc>polWwb~qP#21Oa?r7h6}G_g~gK;E2e>qS@T zc3RA0Oc%!_XKKXyFp3yIR3uUN)f(Mq5LV-SA9L*WY!7;7n8B@`(L$NMGIL>Z8?$B2 z?3pG_ktNACclOGc#t!k+yvAd-rneLOBM&dZ*o<9>Z!!Tt-mUp~TKo0v=)^c&R_~|a z?C7N9vjCSR%FcU`b&pZJ5Ue)J3Z-=58J`_4npv#&m_*#V%r+-sWf40RM=p^ccXxFs z)hnY5>Xor``gL|6O^f691l8_JyLF%0HnJ<%dW^!HWK$o95T9yRsr^~5$$Ed(y0vM} zP`%uxTYK9qhSk~ZH|(diLgect66e%+Ek;&`h88o5)I}Sp8IQgrh*R&5sJ32%*KEmc zn)r=q+Q)NBX7YSs9-Y*$A^!liKuW&>=b!Lw<&W@ewEvt7740@wpiTFG_A3702M7C) z_rD+H;r5>oC@-=^CfndDCuar1<|AWx+jgJUwj5W(H_R830iAFTHGL_ps^xb-U+YQ2!Hr zL;olEKY?~fU^`8{!)k^oW68qFanqRD9d^ddcA9220ySB?TKp0;;S8w6;iVkHZ3d7D zQL4UWfYUH9(V9Al{|4qbqj|mWv;pu=Y~z21r^^4;T{YV0tRLPY@t1ry@c%L6`R@JC zgU9p#2YGxPTwnYZ^B(Fss6Cw?=uGFZla@`A#J@U`Vwzowi}c+g0f$RgE#A#?b+?nnJ#I{hWh18Z#j1$ zs|-l?nsWyOvbh*uHq}v$sH+Cm@iEuTj${GVV&W#R*&|C%bP&1$oCfle))2lH+?8N_ zcbH~w8@()SC7RaJlx^Gc8L(;_@f>0_G?e-q@ilYevtQcstNtpvXi#Uhu!0(C#LRiC za?jlMmZ>yGYXcksou5Zr{v0ah)2Xbj?%Wzgp*g0fx}R9Q&2dg=f|U%>SIhz1?RGoc z2LuoR9si|m&S@)dTN#OCX|Bp(5*^0r0v;Djux~ooC?p&Mv}JqN-u7Z_E!P~|dggpn z9^+#0tZzjYS8g~=`~7cL({EP7A5Wnm8WrH5%4yjc-ltg=s>uH_p7leN<^6N^-_zSg z{uR$A|KH(g=*s`2y~q6j5Ayirf0X4`@LuKZqA#|zc6QNQvmFivW%*Aej;u(Rh96H| zVcS2(mwZOL!g%ir1y-TDMjWqMb$h6`czKs-*Lw=w4m}&Uo3(2BDcM_AY5HTSd9aijr zlgIpj5A>+>pA4fF0*syZ=TNG=i~#T)hcHI~QyKZK$WT;&_~YHny zvb%BJn7y25WT~S`bFr?mXB&F-RHDR*20G=;o~UT_5|FbxjxP3dVX>Dw^Zf zd*(=1d73OF7ZF=~4b1IPIQ*I)zx=m=OaL^@X!q&=GnkAj@qZ`d$Nc{f^6(rhN8+BA zdBHPh#pA^l()pA zTCs|k&uMQp?1c&Lg-JMPy0nV9&YS!v!3hYSf#3$PYwW0P$6(9u{|;=jY5iNVt!}{p zHv0dK1{MFm(PRF%2YEz}r8p*6;P1r@NgJ8W_(FsoG(t(QcIkTqpk0=rO!qY9N!&X! zD;e$fRQqbB8i1U8i;mz63?D|ArWr{y%!HTH?#JEj+~~Di^~wzER(48Uj}0Wt!O2CB zF(gd-t6^ZzGkfad zgyt{_k=--X&Fqo8{<}U+{9lmHy~lqU9~`*y|71LT^#6E}hx4h|pHnDvtn#ZIWG=$D zFfyoRPbOnATm?k@qhr&H!o8(pxO)8TL`|}MIy|6Wf*pOg+4EVc4dRpK%duN~Z=}>p z`1Zj0o^C}!wA?~GP4n~etVlvI+2eoWzZNjY zbIdl1H02Z0>->TQbY4DZZLrCqV1`0iPy{GhBCfy*t}do=j!_(mD@QS2;v7XHT`s0z zXSU{3{Ob6WmBq;gPtdsA>%5tROzZ#xh|J+hB{lGOSmpwrAy80;Ck2orFR^VVnbJwf zAe*GougH_$LrlRBG7-cb(OLyumEI~v9GX+T+e~+MW<0lEZF?5liEznrsdYj#%1ST>o$zGx68DODAu5;)@~&Nxe^T$XZ%pgj*PrH znaedJN^$9I19Oyeu45}OI%;qn`FAOqW+;uhfBpXrKyV&x&tFupT(&Mn*26F)MUpd? zz&J>APpDPr*jc@X+14)D6G6eO*;BMyF%nc<2zTqCCU#KC3hC+qN%}rTOF*>-6YGX7 zNl_NBK?oU9C?ZjNCQ0&)#4*Zv0GLe#qD!BxQ;#9V$VVs3Nx%6Br7>AA^--*23VK!f zd~Jsjss{|wk|Y$>z~x_0(biyT4s$dwVh-2``BWD0!R|I(tIYufD;VPlxNYuyLwAEZ zjC@?Vc7tZ~8VH*FzaZ%G|LXfM0hs?9C7ZUqU!$a4r6m{WF)q+*A($*t+`G9Qhfwlg zll)InUfe$W=jQXjgK;JP<9Pq^{O>^?56SXrH$1=l-+^~1yAbOjCLxUF7APGhl{e>;a>x!y+daC_x!pc`2d!MTY3FF-Re$S0sxlzdw#pgrX+c z5lT@Kp(MoohKd5y!^uCnHKnQ53`LmUszDB+Ra;A#VHnMB)tZFiw%5vV)3p9o0Lc5b z|BglnL-+iDG8sI^|9FsxOEPISZ8b3G9KOyjr2Kv0Cy;9vu#+{~h23 zK}w>-(wX2brnv~nWxp3gUtX6qzrDg?u0yJnrR=Qto@NYyrJJJ%v=E%dBpa2=8<`3x zm?VUcE$^7WWp4{UO!R!(<*lKXZSK~Lt1zNlLn>ZXMpL|QHIRmE8JFf67#fv9ppJ0tVT|F-JBnpZFOhmb+oS6(vh7I2Hl$nMQoErq>-!1Wk55y( zZRZ5m(6^1zh6!@1-ThKGE%!tFUijP2L)(?$ZLE>0cvgYctQ>0*#i-;dWfFjLoO!|u zkxWF6uvo|_tB&b)HBTGP(XuAd32&on0kmR2#F*yXytJc|pcz-WcJ1f`{JwgQmc7JE zY-Sqgs^71xm+ws$CwnRCi_W;`tM(X1XoWWq--balfNU5aQSvJvp^{`g+ozGNMg#NQ z_AK{HGgF1hUlQ?tx7bO0nl_fD9&9`Kj2a40n~h9Lz-qNqG(d01qVi?R zW39PO)^x$%Pk8Mn9K1O5F|FMxoW`{9Tg6=mov0;(irD0Sda$W)u{8-W8znI>%p1(L zl?A{>*V?Wsv%Fzzk`wF`&#V?&OszGs(gClWP8FHT+^leNaih)31pakzRH}z9*f2w= z!iLqTX+TXZSQfTsQC|&mSDq~FWxdsJ+pIl>bGvm{ZR@VsZ4KnRW3{pYADgXd`vxr5 zXk>f#suqgFTCLajKDBqoPOI?lgq2FL9yVHSa61-SLT=AKU-NO~mrikvE>Hw`P&1sb znWlg~=iq9A5>uYV^61#$tkz+vsC^`A_YA<5(>0HrThDJ?$ULU21ReO?s3m>!UQ)P1 zfEH;Qqa{jm82^}&BBdZFfS)%lL^Kw4x6OxP22gr8BR~Gb*zM48P8h}wX?*7g36gfj$6z=(sKqTL z%Nb6DD~B-W!Z@xWY_(6Dq)dynB)5|+66n{5+~6cZUiX9x7cM& zP&<{2qA$U4Fd8#%sd=OqiWQ_)_4=id_iMO_)GloF(?-PQ*PG*<-Wc1B+_2m+G{icl zB$-0svdC&+-e!T)Tx)frWXT6DIa0p1IE#a&1w(N&7YKiE^9Gj(T3dDHn$kZ)a+NXDZ3k6wgjUn&`_#6t8W=s?8}Pt6vfa_*lS zq^qz>AGPp)I@thjL1=yg^MxIfyGK!eg0dy%2^Z-phgAc}E*fmATj9nEgT_WmG;7P> zXr0>gwknhRpDA~=hn&FHh*tKA4Y-N1+JKlR5_&5PuWxrf)9?SM&%OKSOs-5zg6gf| za$9%64gSA-dk0SZ=h5)s;4%KkgFKD--}41>GQhJpOHw2zj{*NAGm!=!Q;-!&XNKk^ zQ}<-}<>ENz*7Js}VTL1(O>jnFHg0LLP7#sF@`O@ji@W##%cL2akcp>k9 z%bvqH#R+=D-uE(;5{h$@t-+Ts)0#p#)LDhCDUlKQi{y}gq$rz$0e?{%q^CkE=Wk&g zldBW;=`{_Zpd7P|DIln{nM@#2e*@43hi~6@0LT#K>6>+CUT#=X$m_4BiJ)b&VMewv ziA0lK5cFp_>C;7^es@FtCkht?e0ylA=OM{56y|KkP2Sq;efuBR*VRM}FpAjcRjQIR z{eWYn>5eCVCAr84;i)1o_F&432Y~0P4Hx7p0o@N^fAV~~KY0%Nt2F7W7XAZ-izSKJ z_ly5~Wq$*|{RTvzM436nDw*9XO=OhVXZ+UbniOo}6V}h;A5K?eaCr2V{y*MHF_a=C z7F&Vm&%o0~$}L(hfg9K|;*)&f%NLP{Azk(aM-qt@sEX*|^r0T>DwHo@n(^PzuP%0;3vpW3rqXF9X_WbH&*ZMw-}tyX=b-m%g#@z1oF z*&pSL5+1&DWRtFF;Rv$}$*S33cY)pA;pX}+)C-hb2y2yAVmwFTI#l)x{qy#ab0*Ct zLfKg&N*O`v&B^%quKYGNhIV`41~GcT8+7b5ZJ=Z|wRY^2AK$!^^v11;))HvYwyb4T zg8T8q`;RB*cMI|^pk3?e8#}dT$PB^geG;!f5Rx-ljIL>pmRu66t-^GiW0J5cpdx{t zPR>8PK74il{`l>Goqu@${><)2Fbw=YNK*2;L~C^hVJfI7SsCdzP034!<#q=vPh$n< zsb^TWY@7e}Lq?YEFkmH1HSO9APA)S}{T;18pm|x1uYUc$tZQWIDSKqW5Gu6WNBO8! zICXUy>fWm6p^2;*s#JCk;^zBJh?`}%Mck^p8FA;GoYvnI%PSe)^GbD}Z=6LaC|PmO z0Gmh*uR+UvB0tIgs$ZtVphZqraSvrX5S%fn?pZRJL~tUa9nlnpc)sQh_5}#09in7~ zGmvht`?muy*yOaqqsqFpAQUOFH2B7C~4C`|Tgojpvp0V+ek z7C1u@2z=e6BA^pL9wT$Ggeg@u05n2NsUty;UxuN78B-`GN>;ub~l>^!k4fMKE%Vn}@wTZVzYH86x{Q|5)bdwfWUdY_~ zJD$u*cl%W9l^Jg7;igm*5rKIzlc zlM!hA@-yd*)gaL&6w_!{0+ST%v#1%Z)QQqfNM~e*{8($3u>N-)AOa|~_?ahn_bb#d{P<~V=6akOf$9?1~PO-n~BLrU5^rR>O zX@|7(RgLM}Zzq3xa|8LKq3w_IY_$KSB)V+`m<{K@lR+i^)4_26G5+g=Ji`9hIa~1X z7{Z)~b4-#3`(Llq$^e*>$c+DDiNo5|CQ`6+4&%OSw8m6jb*mu?8#X&%Ji}g%*~R0i z&zoy+l&bS9wwuW?;Q(VusS3VbdD-4tM8gG&iWp@Imi3}NoCTrzu}ICpN*F)4gQ28; z^><@!^PWmVODmWDVHtj`BDSzr(+dO6QC!d*Wk2AI=D*;4@slX&$YM1Ws@t9&)ip|F zVxb-p3D-PdI7Omtg)-k)ieMHl#2&2Qde5_~ZSm2NKW=Z^^kdA+8ZV~cAOCxYO_|*X zK>gaj5#vvBsCufdwj?r5RH;+ApIew?FESXS6O>`jD@YRYN=AtvD+OxkpRr$kY@!9S zCh4`}FjK>Nwuq63^I9loiY^OPQ%HR3e6l?7EenXc&2lMoD_){Ct!v;nP$c+Q@Ef2c z%Xt>9UB^07o?fX`i8Y{X+oYj6mmq8x98h(`DI1f)L90M3`nfwWF98%c=-dwmbf1bW zDL;+Djn-Fn(?c`%#Ji6Fe>S z|17^{4A>3&|L|a3$^W>&_o)9r$ioerC;U2_R`^w(154p=q3(0buaTldUyP0I+rs|a z6i)65?fYn_jIhOlR9@?o7xEgmdS24nSporTD`Nh%Op%N=vx7 zR%q!dX-0AqlGu97y*|*d#@FDdv$KX`5Xh0X%LeH#N+~p?YO=? zI@9-U(hM(QwpMu&r5^4w`-*xZKlEgEo#WPosV;E`WpnbTui2ux0U7nAJ-{w3_l>Hu z6hlf&bVacew;gdnC%+2oajPB$DlEE#$L_9o5kKXld$vwRUMtRZbXo?vIq)LKayw*y zTi2Jw#G33+6sqj5PIG2!>T?hn>cRk2DoQ&uCnn3QR5mH@?Yk+U#5bCv(B}d%vi4ZV zA-41+a!A0M_-@6Up+t$_o9KGHN5uV2vs7^S@$7w2DeM_Jv-OhW`&w~QV%0$8n}0L9 zmXQKff|ofxQ#+v1hO^bVU)Tpfp1~r|(;rbj4SciamR8b4%KcuySp}+RsklQ^aUHG$ zK*I%M0#6BoBU=lhcC>jP@-RIm;bn6#8i&-Hb3;7ww5G>^i!-tV-pU($vpw{5Gh81j zDX9Ex5XP@i4AZA>Fu#yw9V&^)XPJQF#K44o}9L>DBEs<7P>Edl3viAa&xqHKR} z2{g5>`7TWBvmathJ;MLz-R%Dx2KjHaH`sUYe-8(PNBQp|9vB0`9U z%*=3}mQ(;R1*Ik_rD2m5f?$Vdt=xFK5%*H!YFLH2cKf!bM#&hfFt0?ovugPYR4IusEMBx+R~4dR-)jj+wdu;@ zyjCsURKISTriO`nJe|0kr{(^CD+ADm{eQfFaNyqm9UP1v_y31@xcz7I{@=d|hMeHo0WUw%wiGgd;Y1BM6jIwpZb?3R1esJN{`!vanJ8jA@RO z3(n|mHrM|S9L860O+lKWIm!S`fL$EVbs!yzavlBMMe}7-lN)kw_rC-0^99PTFhxM1 z!IQ!xaPsq!Fx5NFx;;#M*~p#!WrrIP>MC(jrD~Tk`nTg`%5F0&we9Uzul*$Mxl+YA za2E(Uf@oda?f}n8Caj802yLw46H3eL9IA5ub19Yxqg}}U)GngBMf;FK*~gr<1p>58 z^Yts7+3QQawZbpilAZ}_i6UH7EQRG^o(30)l7UBhZf=3%f1$T{iQQ8@ZzH;}uO0qV zm7O}>^;k5=)sZAwb-jqu)YpZA-MS*;qEBE&Onypc|3qP~S(?7?r>WQ|z|ZoK2=8UG zVy>q#QdeYbHC_U!ZCTzHGu}J}6_u>9)A|5V{1)_CvVQ}z*GepgM${62A8)E_OP*D_ zk$cNK66t!zt7$b#!X|)hl(ibbe@qQ>^!Vva>P6$mh3SNvR6j*)sglvli=kS{mGt54 zr22DX?^LNX9UKwxwD=7JwYewa9Km8R%4yClEToZBaj@X?a`IgU_GXr^pdeDqdnAi? zmb*JQ;@#r$%KxTgaQ|GUmwqF&OK-0UY>@x=hr??8$I)Z{_Xl}A@gLP)MhYO4;3Kls z*~z&T3MI72n6{9sl|cavGeRjS(uflgif~SqT*=)=YW0T=nasRIAy4?;;u?!J31*>7_5+~6Vh)YPFCCXt0bIACl z$RcDMZ8{>L$};4+i6AyD*?yRzh>BiCvou31ObX#AMaX55f?zcaKp+rs`bSe3mYw8) z0>x6EMza%0sXQT9FEc`N`?ctf5? zC^TY&m+iL!#tJtm-gn^jk~GTqx7Ot{J2U10Lx zj}&F%lDkCOUaK{=UcnsBAVomUf2Eg27AJ(#?XdiRl*UUEp_ejD;)7$I#tsK@iF$$z+H@z5Dwp`@Ye!$uD$W%B_!RG z6TK97jKv`!>czPk%m=wVG$>=ev<22HvKRz>J{X9trs4)|usMH-b{Nfi+G#%PS!S z#+gwWu|dQ4oE(*3yR7vx%4}f8l2nD<5cqZke7Bs4f*;gHE&Uo}*ZafP7fFs|kY1c) znjsjiLH8r@_S^VVZ-HOFfbK#ZABYM4^5s83L;#HuO2G)Q9|;P4F?Zk0k4b)#A&Qdx zaj&`eXDj}HLj&L@``_N!wf~KV2aoqZ9_0DD?0?qAaAOmovpKZf9UjsUco#OncILnI z;y#Rj#umEC{wEP=3r+sn1lH5|2Gd;)x)o?{<6D6B;eBJnpdK@Ck-GjjTLw4wQ?+^n z^I!?vRGf{s`{TWlr8_r^56v31x9*LNhHY`LHy{2Eec5PAY~+b|V@PZRvCfw047#6G z?ry+ZSQQNw$LQG&ZHqo&sR>FiwJktxX3^KmZln5f z0A8(6fd0J{KHmE6b-ofzz1nv-8Xj+{NeiVSHwUC>6eF^4<(y|z??W9`+?XBUrm1%F&##WN-Z5!H3 ze)Tu@C_Vj2AFupZK0_%Z&|!#w={{|Yas;tmLo5o7u< zmuy(V1)7S>U_6pt=L5=%ECCQuGS5LmB6O%CreIPA=YDBt*Y{ z{TYP?zee5xperxvp(I4=WOfPjaPj(cnjsNp+dQ#VN!fZ<0BH7*l!?+Ln}Roq@mh3q z`v0-_w%u*q$b#_m_3AI&FL>y?CswZ5>}K;-XC`MA*@?B+cC?b5oI9SJ5!elq7&RL` z4Nx*C&i?j2C;;8)7f>Xvcrvrrhs06?g+ifFZzvQR)mwCBMD@7}sd$64^;x*aZIcH= z7fW%9f{Hk=t>Y5s@h7dL1n}FgqZ&bWF;`P|Uq-u1@D0h$)tc@<(^_s>y-!%UV$I}c z@1Ty_Ex*YMcB=1Hk-s5xaSg__FNEzTH9QNTby3J%a{_+Z2de5(f!b0>u}uPIEH?D- z$$zJU?!O)xi)->QVyld$Bo)P4kPjlqZzR*cHjbuwtf2Mw*2|PM~xfH#ck(RCN>t)j_XYe%N%E!cekFAJSBo~kFs9T=~UgeED78guC+E- z`x~vzMX6(?Un|h1Ioh7gbPSxDctk~RN_nQK))KjBKsE)?|4WM7DnZNxF?;H0@kbx*hF8c)#fwBbH|yR~e#1Gn1F8?82EbCd14#dg_XTej4b z?WWITYN(N(z|ydE;nNu!)|P(E&iLH^-!}grax*{C_y7NPssA5@HUED!^2cBN|IhKW zoBwai2C*b4%cV18Yp0s9q2nsPyKe7t2jva)$? zQ3?s{T$kX){jGmou9|72e&1yYD_A`t1&P!xSjaWhjyNt)I{6kdHE8?f#IjAp#|hMe z&y%Q*ZSr4RX}`7n_lIG<{{Lv?f2sfWS$_7A|Nm7Ok%$YN#?t9hEaGHd%|WKQRkz=H zfZn?IwOuV3NI{mOm}Cjts6xwJyC1eY0f`FyKB~5O49|)`vK`d|=4%(`|LB$7?PuHm z=Yr*Mr|A;~z$5#=9}b4~^B+I>Qvdn0{OoW4*&6s-aR`FviQBZPVIg=>qg0_*<)n5q z&@Mz)8iQ!7rmT%sJe2Vt`U4=TUW>9T!Py@Ri;%5FwzeM|DH3WL?F)zVIr$svbUW21 z)nbtb?jKR-&z(PaIxQY1K)F6Yd;PNer|+(7&`_<|nt@iH{L>Fz-JuI~fMSJ6TVmBz zfaCh;t)N{Kt~jsev1K(3vZ-Q*HV?owq18uxyhqEJ#XGMb&X+hB))AJ6 zGHYwqPKZZHv90SbEp-pgTOaLUYNR@LH{`&Ns8JgIX(;Nb^4#_yPEn%4qJXOD2kw~0 zr)wv){PU>df5^`^{V%fQUcV{&Nfy9k_W#Hq*Y$rm`eOfomY==!zjQ&lDvP)#s#39j zov(DNy`y&=FUV<|HBd5?a%W3}0RG%=3c#Osc9)w&)C8iOUghyaHJMr@USx^+VnXhy zwZ>?*%X81f_tjne`u-0_qc8jabNuYF|9?{K zfbfj11zL0Y@0=xx{J+49Z5zMfB;Ec7FSdk#uNV{C_IN8a+en8a!g>t%Bg)BweE5#0 zG3s>lKmR%Y&;R(ym$*M1ovQN5Kb>8@y?FcmDY`0Wg<>K|BuI>&|MCm6qsO`qh${GT ze1bACZRFTmG*VT^UF0lXBpZ|yiM|v{F%k^ndq(3X6*;1C{FbwLt=?iJ={?O^x+1CY zj{cLTbB2~eWc;+(i&@0I85JpBQ7>YvUiqqjZ^<6Ig7wxQvjtA$t{$Z;N9kHE?cCqr zhfwVkN?)=KmBp=rT*_{`FVyeu@EFrA-bwK06i>8ie_t? z#8N6{IJ$!~h@)o+Zi?xbpE=@7k|ap_b}HwCri&AllLQNTPoSu{^>>`cN6%17^czmk zvz*N72NJ8oM*sh@hv20smO@X763R%95}Fe4$a``9mutata`X(H1IwZx&#zHTbAIG4 zsOZ6e75Ycs?C*IG{%iiQT=e9B%&+`D?UjILIJ#SBp!@jI*B*b!j=uJ0`0nUyPpss> zSxy&6U;m$@XXr$xt@U?BJwp+uf_LpmT^eB!a3>bo`P`E z4ZY9{JkP5@J4Vm@en032{jMJ#A34yOILnk<>PH<>Vus<~u{EmK*)5GfJD|o30VU!cN zNQ={0Iz~B>Q)hD&kz91S&Sqh$A&MeJe@{~M-J}>eNHI8+6k(MV1Dh0+8Ywbq6X{$Y zQ?XszId>#?;Tt;e-HrWQ@anzu}_rds-~ z6VwZ$1$zBd0WBmKsyHHvQN;3`L?YSf+3&V(%GnRyvkzSA_0ZY-HN|SrzQ618?xx$z z3Ht5{y6lI8%!i3LsV}eJI>GM<7IJTR z?Ta@#bn(X3#hX+YFQ_kGiM@LGsX$jJA4xT#XTm+be0vI}u~RUO9m_X9bos{B4_$O^OxHRL+;m{>r_rI-)2M1ajVjhtFxqi~gZ<3eaNsm&M-J<0bg1<-s!Hfl#d->cJ5Deh?Ki=2 zJgP|Ha)MPUoNVBXOy8vgR|cs^2I0xn;s_OXVRj#VrA1D-r#1?m z+GymE#G^wc@v!QIk1CSbqJt%FjlZIUz$n2Rm)kOQxYWZ#UFu=gr5;vX>R`~|%P1jO z`j7|`oxBZRC2C3bbR|P@C0%^Jr;8pc7rnq#G*nzWEk_Po?zYQXXgRFXa%9u8VM5EL zSGAtbvP{j}-_yeIofgK>p-P8`s?uRql@2SaG}tlr68d{`iNA$Q`qTZSVShS0u8E;J z{eW_vKnKAS)mEL>(3A@d=esTvw`=*~p;~@e)$+rNmiH%3E1okDpDN5uobRQhA5r80CV^5LP1d{|ZF!-^vJo0iJ8 z@{Bj=`*#k$SC>`7*n|+9jBrhkJ*D5oX$uY<XXYBr$SL@<97I^ny`slH=A%YKy{h zXHXh5RkAmL-7SrcIOQx;AyS%xN>C)&&n)VXoQ|u+*F}N@&DzilhBXqDhOOW2JH2zA zM%T0IlLt~#`Y2Y{jAObWTu2Iy#^HEA7%6J(c>>vo6Ubsz#aVg;NdJ2de>zsc!#%fD zxNS?d+t~8M!K5D4NIl$%)U_=Y?#WN#HhyZia^;6lN>uP`6CKzS^=sQo-PBi+Td6H8 z_jSNpS81P?^$Xg=dRvdBNZq*s3I%&oDA-1!b{krLIG7FkHR^;Gb%JSw4K7vQRQF|+ z(2Nt5;as5p3BobX;A}z)An@JgFOkVl0a^s({q|ch4&6>!u;)QRpbiS!BJ^stRI)H- zDI7`&EXaJFB%BE6YP1{t^25Qa5!6f8&tgs<~7bi1w+x2Cb25z?uaAH zkzJEH&|(k0puX{f_Q`15Oe(bE?xfjNO20KGC9PGpYOp0!CYErF!qI}>lT;lg1$!Q& z1ny&$(3M3M9+*WXdroWQ@on;qYis?#)?A=0XZJKFNGH*&$w$i-i_siYb)1IRf@LIM zQB@vOQDV5CM-vR49!=;-;0g~-;0nE(0XwzH(2Q40&+Z=QQl@COP#%rQ30@^MB`BVu zb)Im97nnLCa-kz5Dm*kJD)ed=>ZCr4b~Id8={1~+^JZhBQ6;p8kY>KammoLO*Mb&M8jnk9c&fVjG}NiG+g$;;pRXUjs9+E zI5qj9Xw>!iZfLj^=7IXMUtbh|7c}~gMd=^9DE;c9^s9?9aH7$^DE&hhrC(i?esxjY zXtXa%|IkGV>eTReK_hTbBRG^AL6sUol^U*G^uR%l;81G#UJzFC@OQz(clmYx!G4`z z^Xq)euk)uW!PkLG`+o5cc53{ZQ{!7s%_FF^FOPq)$?aE7Zr?Jww`0<7^7@CFygDus zR4o_3w0k8k6DKb1hO2+5;p$fnSHCn|B^o0q8tsOwf2iT=R}ELcG+ei%(QZ!qhnkaq zeNjfcq0w#!`G?v;e$@{0OFKxS;qoSYhaKb}W(O5~I;i3j?uLs?jvOvVs%Z3gL!({O z_=jp5zp82cQqycl!zIc-d`A#u z?bm}9oCppz$`(0WXNWzdB(LV~Pp5nNXVa;}JsZ2!?)YG}JFcnSab4}UWI46DXw&`9 zpQoPkrI;F5r*LUjf-;bAXb-o~11tJ~@idp)VfCGc)8zPPoTMNYI`ew3oN^O#0 ze6Ue7t{OGtx>3`Zk$J%widw+c#&x>pBrawL@%v)OsW&%KrNx}(k{+%Zwi!#~Lye_z z)j%27?4-u@^qg4Y$St>SZt7|1c0C^DG;5EKj~({T_)vRiT(x(`HG8LJ(bPf3eU{cU zcU<_k8Ajtn4Wn_@FdEkkBfz&EjkX9F{QXcg230hM+sLM64^C4i;JVOj_1tx1}VdQlM4KS>ebsT z+i&Vh_8U7)?eU?ew(M9l94dB0GrzZ86WE7jH^D*xaQ+DiMho01Qe;XgfOI4UShFScNUjK>(@C=hgle+T&#r5<=VpR=U@!CI2bNl?;uleR9O-+ivB>pGX3K?_aPhXaXH&6-f4 zTFFwVD3%L3_u~5S-Gq0s=q{N~mr!Jq6W_0($8_MhaHz3tpZTFF7OJaXnR;0DXZ&XV zj#m46j)HK3>{tBNtoO>Bn7Rs&Xat?JK77Ha^+`Jxyjme(o#~t8IDzm&C7&xMa0wY| zz~D%%aguB#laN@EWIw|Q?)&}b^?wuzdRH&cUc7nvTNHoVq5kKvUw{9j?}y=+`cI$Z z=NY=t`Tg*o+tGLHR3)$_be7|M11k6?Uz2m4`t?|YYYO*6P{JURA+>k;6`f_7va$8= za|S9DBTiQ|!MQ2@c7nu`@?wk!%%L6~=#-qmZG;u3sURtq!$ph>G$Z1H5cNWk+E6OY zB5ew-twg>-I9gJ2FHu}DoJbsJMDE@fSO4wFO^>eBJBV_Z^CRoklT&p2%^w3V7#KBXi1_wuwdW+ZB3)QuG}I5E!H$9yp&<3;PP0$ z=&f+N#!2sgLyv3OOlt(O&%hs{_gSS}p#E<;)=G9L(BA1=ykO-sqAW`>`y(xL!kyGLh9 zg0ARdDY&$SNPbUZ)I~Q{*4A0A{|rU{tRF4^mn2zrwa@$HN?^PE9}j}zs3!lzF#PiV z|7ZD;GE61NO3BhyC7F+oEWV~3WjS5poF*Gp6jTafu!J_i|8LK(bt0|Y-rmtG_CW4Q zeu5r|zV@lw;v~`X-+Dj_MpYwu=pt2OKW5Py%JoPHbOnxt`I8hECZ|_F=|)qK47!}B z7K$J;VQ8|uk_ zsqn8Y>zhKpThReWA1w#!ybK_G)B!{E5#9ds>n-|-t}_zR`3B*1)9Q0^v?Mv)LX$3+ z{FrYL6=cOd^b$wQc1Mjb**b}p`%MLhh{YY*cuLKb6%8VsqL~Wedq`s~T^|ciDavO= zD)WyZ8BJ6KR-mjHD>(xvvVWJQ+>=eE#!>Kd?|U zO`G#C`GV?q7Fp~Z;=YYZ;ePkVE?JK5aZcr!>afHf4j9%6{x#(ia-#ls`~GJ+fKBv#REILGEP1BekM!2ZT#M)}Lda3}O#9xP{=d^fFvV8&z zDqNf6hfHllB@w0ZtC$U=@2Nmmf%(}6?!)WaPFPA|2nSwYzmhEH9@$g3ww0XXruzMD zrz1&tg&zQdfwm*0Z!ssMK?^+fp-WQPGp>X7&`(fHnu(>gaMD5MM4SMfbB&NhMAf&- zauSgkUgz2cHT~dc6SbEgD2Mw*`ruA4y!=a@0yoBIK;%OPCp8p&jTuyP<&u%jh9~Hj z#(&8Ks%oVf$XPct=&z zg7;oBy}fo?%ROq>@Z)n&O2`H3WXG1i`Pyy&;16wh+D5|}1Wz$yhOi&YBaB4G>t zOzDzl5>v2q6Lv@UXA?8fUTjie_ZXX4&<|siVx&5o*pQ!yO^UJhWRs%bo^0a5I@a-) z?2%!yd~jViMH5tJf0HYiLn+z0cB}xwK}87d-mo<=aC1|E>(( zBHgQdpQXpOX?qI6?`T4*9NE!3pmQn};7P|EC3a3bz56WfnZBL!ll0^|ryU8abJ9r} zC=b(LsE-90;P^}JFk)Sjl>VKltN}wd#aVD(sf-BYe@Yhk@$#+bo{m=>epYpD1$l|Y zPfHpt)gv34w`5P_(#^E0tU7G2v9vR5jR(}Q)VpGqN_!l~(rQ%KX5drKucM&sPq0t?kq2uvg&egf2c-kHYAB z3A#EMq8yQwtryEWBK0%+t-?|2Ei5*n=Kr zAfbB^OCypA-s91d#A|pYjNGd*QcrrIi?o}uxSO(=^q!fqx;TxyI2E*O{-T9+lF^i0 z04qAUOEuZbTqO`MTPMjSOK4PcXD{Y&nYdKmS%cBm|Uc5H;wzePm-n7g3Z; z3fV^l&~5urb@1vDIt%VSluhaXPyO=Tz@HAo=>X4Wm`wdKnGR;byg!foq#u(}G?@4O z01s!=u|F7&!~P(Q@Py2QQ9PSO@oXGz#|B21809TC$`AJ>&!rjze@nJ7uA%X{%3T3K z)`IZ}Cu%0e!v4Xq@HbM_#WBL@70c=0W#2@4J?Kn#)No4Aax0VAksCLo)PNnvEVf75 z&N202_TU-|_znZN4c5v-ea|;M)SnDPJekGugpha|`O{ex4`zYy&!+KUM*4m<=;P2I z&!%w@%`gdY-yihHBQhOK=F_Oj(M_}rBS~XT`Yc;{NjG}Vk00TvGJ(s%1LwvJEeoDo zQ4+9dr4scd-&xUZ(^4C=O0~{5rO|7}$nVIeIDFRH=qm-{D~*#^#Z}u+UYQcy7Oy|E zzDl1jwjz?IbbBk<7z^A2uj~a4AYU>SwLrbj9E=?pKk6KEROT%6U69ok_?zgyRv#Xj zxyV_Pko*x+ZfV_WZh=2))orwZYeTuLYS}YIdN>ii7?TxCIT7^{-O)9js;OsZ+SmI# z$<*F(msyo>9~?5FoInDuL`j+oAJJ_f$9TJjs;q2|V#29({xTNxX6Jj#DNA2bE(PFg zx`JT01{6Y&S;4=C+Y+iZTB_zKQSECm)!U@+AhXQNa4x74@s`+2X<`UrP0~Eps=6Yp z>$Va2I$sbM^pcu2;4AzA>7LtwuTy-FX#$*a$PktO)q$jOC&*&sf?H)ow9XbejtMHd zN$34VF*ZMuCNYhTk01@wEAtxDb1k!vAxKrhQUw97^&(u8RzN?bFGxZJX?8C`d*}tQ zs03jipA<{V8#}1Q+Ae0%aZKK6a$7ZR%N@e<3Rl7S;M||%49{pn1tqmD+`)0&Ieq{0 zNhi)(CjSMS`n)_Wg_Cm0uT@{di)@%|Eu^n!9J%k`UC3=+Jz1CNsPw|BaCrZ7MN3-M zSD{^-s(h#M(#wofTdc^ziGC}Gni_O-i1@5iI7@kV{cVxxXlY$IYIZAJ_1V(1cAZ$5 zT*}onY9yBKq_RY~BDG%0&gpygv2)si(v_VP{fPW&C+Ph8^GSyjoJUK-i*+#vZ|KF_ zYq=_NI{c)tDNV|iDuk(qK`XpLIpHk1Cn)6!V|VM!MD|&#^8c-<1}9>jY3_|v-eQRA zz52pr83=|t=gFE2l7B~YE;@+LABbkWmsfiBL}4H3E2UEQ$v zOhwM&4eKQ_e?Hc8Y>N`T!8C2h+e0@Eqv;y%`50Moiq4MF&7V%uyPI?L?J>GMyT1PE z#VPvgmtT-~rR%Umj^D4peud7<2Jl1D`|onL(!U|(d1fu(?+x{CKHg-B%T6HaJtU#% z{;h2m37g@>o3E2ZZjQn%-=Z!^Drin1?OHvwUaC(GjdCr7noMIi+hstUB4(Nx;iR6+ zEDrQE>Ht}?G?Y;$P51R3CzbEo*3^$gkyPYV{k2C#)RQea>Y^3SGKtp3rEHxOuDi4^%ASpIxl*?j091HJi7E&Oen|=61{S7W{^-RXN{6 z>IjBz9pd7)7_t$q(`$8>B<#V&Dj}pxKFA$OMcGY@P=H0ZIo}#)yJt42S#S`8*-4ssuO7_)V+lSc8CoHI0hc#~^T5Q=)w8S*+&M>D@2lg)*C~U5<(;f8r zqsTFt(>wdi-GqaP;u(&J+3R>M*a{08K{m}f7&II#n!@K(fn>-Wu%N-sr7R<9tRSo0 za2T{4g%>#oMNjn+T^9L}Yje}LYOWdlN@jV^NhWnEIj$fgv14nN}AS*L2N#pLC z>sU#J(jZIT`#-}!s&+9jYnOb$t1Ka2!Xli2fh@Pa5qb5nf#%-~^CH2oeK`9qGQbe0P`)~e;0xuYJ{apq!`70 zt&2O!T24@|4&(M16>gF3JSw!_c~t#NS?_j>31GKXc{?U$wiu)kQu=lTx6NL-7BOw& zuxghD>QJoQ8~?D_o)KJkLA!&;{6GIg!Y$ltYeF6c_*}meBz?vozV1pP?7d??{ZWNgUs_ zpf8dpOO$%}=Jj=GJZ=WYH}R1MJpN8=O`%r`nc3(P6GHP8d(S-iV? zeJz`=Ik9rM^)AgOvlFt zY!1>my#gi@=J0Ch594qU`XnAlK|BcOBn~F=EDnP4cs3r9Xf~Qh;dm4T;Vc>iaX5%^ zKlG!4-^YW=aQGNP#s|<2T0zQ3Jb`NSHhIth>Jj5*RK=RqPb@dJFLWbV6RI^x4b1)~ zd2MnHkfj5(H)<><*XF@xN6NB?kN0hOirdntI&v@U_TswMN$GjxKD?Wvn``&9pr30)5Etvxft1 z>H@9rBb+CguG);li#fz`9&oBJIzu^>6q$|)9-2KVZATq5E52X;cwY6kELqip(46HF zX*dTeVGF*Q<9sOh2GC*HpQNRbsuXyzQ%ndiH`c6UKsZHcBsc2W{{-euC3R3|%W7w! zYASe@Ao^|Z4-&P%u=!ualKe$={O0zgh*AlLzUqFZPd&H|eYO_W^|bB~I7#=!cD@?Y zIa*F|42f_pTxqsDo!gUYq=6y{qbrSd=O~>1y~YXC>GXSAWFcdOTjh16HYZh&r5aQ#0u`_?<`DgqjL^M3LGdQVD;lYrot&~%zwBaCl`0*I z2V-teD!D2}XOg#sc=Qt5kT_cr^@t2fI8nghN=x+xD7)u6g^)Xm(Q|9)W7tUwXu3`k z>7+Fuu#u`%0)v}Wa9!OTVYSS_P5$-FwISbWPcdTYUrp5qaH4N3lI+&gJSc4jjQD!i zg^&bIx!C|k)FLjobWz4hIww#=$$??>>^HlQ%%N{n0z>o0sqbm|dgY1!=c~&Tl-)-s zh^#WPc|r3N?OmRfnJOn`Eh?!;)Y(Eio-3T0u$xOiz0{xC9By8k>oTZ^Yi?82r}46_}>07kL-PP+aEV3Jco51Vh;K z`HU;!DF70xGp|~)ms*V<^?0&95O%LqLM6I;y85j?^0QHc6Tz6=@5CU5NKz}SF*yX0 zXXXK8H%6}eC^5M|;2O%-5ty){$3b>q>p zQB3r=wod?sy>>}42q)sws;l0zC(lgO9gG#b2)jC}j+X2pRn?&3fw|V9lrr9#`LD~D zw?EGwDDf*8RpaoRY>1ZOe&74TLiqQvJuGy7^Ic+%RoyHFgFN|`Q5Nc6hNiB5&~8su z;d$C~c*DS})hWH>@feZ}N~Kt2768l@v$A>gXpfAeLPSp}j<_cNoq?4&@ zo2yM1N-g$Qn{M&-*Pm-@S`Vw>ZnpqysQe2UQMDPlO={I}t2wO+xsxqj8}~Oh-}n;e z5SVL^R2J#1#+@^RNY7k$EeZryYK!wv(j72XO!KDhP}q7a64P~Su+JR6>lT8c&Kt5~ z`KD9y8%AQ4%{h90b@rw^!_ggyRrqql1z8>2UNo$o4wV>?ODvG=r4I>M+!BS+cyju8 zVlw&L;*t`;?KS;7Q8<1JxG1BT-=aCeP#t(7mjG^O>Pw9qwuXQtH;0-Cf=rN641kcH zm8NJDKS5UR>p=&vIY=wA%9yI$py}2&cH0V?h58*WBcS@bT}1WRt~&wmceZymy1)O; zYY_cCFMPgs-ZK9ku6w>t|4DYdM)vo*^q+iBsN`<+Jjo8T5&{(x%jt@njWf%OswhAEAWgcEhqLjJd_Ev;iGxR95R~ zHcZOO2>Te6y5nO5HV0{%l6`OB1;&z`gtLf{xIe<9a5C!$K|C7HMr7j010062AH>n5 zKbr((6#DUSOeT|XHkkT2@}uFH%v&tUDniDN%xBoiwXM5jcX^i0oA`wSDEgwJV1hY)ZIJmLCxs1>v22|v zd86AGS0lBO1RbbG^w75iVYu=LVMzfGc35?Oq-G*%ly5Sj;&NKEp6F-5*GY`vLLsCf z+*3~VO?8}ZW-Q*Q!ObdKr~SH6=bR>5hi<9vdHYKT9#go?={-%zg1qDrPJjbDr?7QT zI(E?=xw6gbJtv*a^pA^f=2Y{FG4Wjy!Zr1Q?e{{}-}Z@lwOoEPw|#f2RbWh~#{#HD zyHBfBVD2s3h`P!MRPD*8xGd&b2ld36_0Dlr9qgURd~M&rrsXT_nP7OTb$rDA~|gRx2Bz00%^@YL4B2? z9FT+uMQP|yDKsp<_9s%hhymjP{Ie=FPGo~Zv{%YWRQU*5uU-@bcsdFvtN)5$+*?=Hg+DZ=RH z{IXyK`E@}=xl?H>NG|u!yQ|mm7524NernsK1kM*kJjS`@11MJenj0O{`JChx@dN~b z7k-6$mBf^#f-m4O-j)Dw;XZ~b@U7iNo4<^B(%D0$=(l{x+S%Z327qA^;PSTCq>@Cj z7C1%^>+=4#`~zpz#TC_Krgi~noj5%r2b*K;xnp>x1o#0p3Le=t2L6s4hr92+7D}iH zBNT1xP@30Qv_XDxSvgL&rKGM^$4_;->vJhwXIi)(pHyV+2`b>7lrq;su`;*Ynl}$aV!M)+=E+9J_%OUZ-ABX7CDZ{CCMoq3bQn} zE57=WLTUUono9c`nwaC{l#p1NCuWe8Xj^g z1WCQmF!ye-W%kYzYZqxO)e}KW_OSc(%Kc+J!?>+(>aFyCw66aSC&>&)cQ@=cTks#! zmwC?e+s{iFmT2psS=XR2SK%cDyXB`ohX4@a>4OrgK2{YhV+mVqt~2Q}o)<4MG|@B9 zHn@5m@^*uv9gs}X&4BN6fZr`2hcG9>DtQNPao!Z=U0Mn)I!jFFco0F)^Bb+|{M*VewT7&wx)^bO6N}38QK-r z3-*vo4QH(C1|ZM#T404N&;Jbo0RR7+>`S%)fCB&^kYNh| literal 0 HcmV?d00001 diff --git a/dependency/mariadb/1.0.19/helm-values.md b/dependency/mariadb/1.0.20/helm-values.md similarity index 100% rename from dependency/mariadb/1.0.19/helm-values.md rename to dependency/mariadb/1.0.20/helm-values.md diff --git a/dependency/mariadb/1.0.19/ix_values.yaml b/dependency/mariadb/1.0.20/ix_values.yaml similarity index 100% rename from dependency/mariadb/1.0.19/ix_values.yaml rename to dependency/mariadb/1.0.20/ix_values.yaml diff --git a/dependency/mariadb/1.0.19/questions.yaml b/dependency/mariadb/1.0.20/questions.yaml similarity index 100% rename from dependency/mariadb/1.0.19/questions.yaml rename to dependency/mariadb/1.0.20/questions.yaml diff --git a/dependency/mariadb/1.0.20/sec-scan.md b/dependency/mariadb/1.0.20/sec-scan.md new file mode 100644 index 0000000000..a6360a0cfd --- /dev/null +++ b/dependency/mariadb/1.0.20/sec-scan.md @@ -0,0 +1,909 @@ +# Security Scan + +## Helm-Chart + +##### Scan Results + +``` +2021-12-03T19:47:19.916Z INFO Need to update the built-in policies +2021-12-03T19:47:19.916Z INFO Downloading the built-in policies... +2021-12-03T19:47:20.611Z INFO Detected config files: 1 + +mariadb/templates/common.yaml (kubernetes) +========================================== +Tests: 41 (SUCCESSES: 28, FAILURES: 13, EXCEPTIONS: 0) +Failures: 13 (UNKNOWN: 0, LOW: 6, MEDIUM: 7, HIGH: 0, CRITICAL: 0) + ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +| TYPE | MISCONF ID | CHECK | SEVERITY | MESSAGE | ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +| Kubernetes Security Check | KSV003 | Default capabilities not dropped | LOW | Container 'RELEASE-NAME-mariadb' of | +| | | | | StatefulSet 'RELEASE-NAME-mariadb' | +| | | | | should add 'ALL' to | +| | | | | 'securityContext.capabilities.drop' | +| | | | | -->avd.aquasec.com/appshield/ksv003 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV012 | Runs as root user | MEDIUM | Container 'autopermissions' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-mariadb' should set | +| | | | | 'securityContext.runAsNonRoot' to true | +| | | | | -->avd.aquasec.com/appshield/ksv012 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV013 | Image tag ':latest' used | LOW | Container 'RELEASE-NAME-mariadb' of | +| | | | | StatefulSet 'RELEASE-NAME-mariadb' | +| | | | | should specify an image tag | +| | | | | -->avd.aquasec.com/appshield/ksv013 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | StatefulSet 'RELEASE-NAME-mariadb' | +| | | | | should specify an image tag | +| | | | | -->avd.aquasec.com/appshield/ksv013 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV014 | Root file system is not read-only | | Container 'RELEASE-NAME-mariadb' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-mariadb' should set | +| | | | | 'securityContext.readOnlyRootFilesystem' | +| | | | | to true | +| | | | | -->avd.aquasec.com/appshield/ksv014 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-mariadb' should set | +| | | | | 'securityContext.readOnlyRootFilesystem' | +| | | | | to true | +| | | | | -->avd.aquasec.com/appshield/ksv014 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV019 | Seccomp policies disabled | MEDIUM | Container 'RELEASE-NAME-mariadb' of | +| | | | | StatefulSet 'RELEASE-NAME-mariadb' | +| | | | | should specify a seccomp profile | +| | | | | -->avd.aquasec.com/appshield/ksv019 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | StatefulSet 'RELEASE-NAME-mariadb' | +| | | | | should specify a seccomp profile | +| | | | | -->avd.aquasec.com/appshield/ksv019 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV020 | Runs with low user ID | | Container 'RELEASE-NAME-mariadb' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-mariadb' should set | +| | | | | 'securityContext.runAsUser' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv020 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-mariadb' should set | +| | | | | 'securityContext.runAsUser' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv020 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV021 | Runs with low group ID | | Container 'RELEASE-NAME-mariadb' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-mariadb' should set | +| | | | | 'securityContext.runAsGroup' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv021 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-mariadb' should set | +| | | | | 'securityContext.runAsGroup' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv021 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV029 | A root primary or supplementary GID set | LOW | StatefulSet 'RELEASE-NAME-mariadb' should | +| | | | | set 'spec.securityContext.runAsGroup', | +| | | | | 'spec.securityContext.supplementalGroups[*]' | +| | | | | and 'spec.securityContext.fsGroup' | +| | | | | to integer greater than 0 | +| | | | | -->avd.aquasec.com/appshield/ksv029 | ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +``` + +## Containers + +##### Detected Containers + + tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c + tccr.io/truecharts/mariadb:v10.6.5@sha256:ca5dcc0667f4ee5accc91f159f13a2bf764678d4dfeab3d1421fce1d2095f2a0 + +##### Scan Results + +**Container: tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c** + +``` +2021-12-03T19:47:20.698Z INFO Need to update DB +2021-12-03T19:47:20.698Z INFO Downloading DB... +2021-12-03T19:47:24.464Z INFO Detected OS: alpine +2021-12-03T19:47:24.464Z INFO Detecting Alpine vulnerabilities... +2021-12-03T19:47:24.466Z INFO Number of language-specific files: 0 + +tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c (alpine 3.14.2) +========================================================================================================================= +Total: 22 (UNKNOWN: 0, LOW: 0, MEDIUM: 4, HIGH: 18, CRITICAL: 0) + ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +| busybox | CVE-2021-42378 | HIGH | 1.33.1-r3 | 1.33.1-r6 | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42378 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42379 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42379 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42380 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42380 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42381 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42381 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42382 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42382 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42383 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42383 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42384 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42384 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42385 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42385 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42386 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42386 | ++ +------------------+----------+ +---------------+---------------------------------------+ +| | CVE-2021-42374 | MEDIUM | | 1.33.1-r4 | busybox: out-of-bounds read | +| | | | | | in unlzma applet leads to | +| | | | | | information leak and denial... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42374 | ++ +------------------+ + +---------------+---------------------------------------+ +| | CVE-2021-42375 | | | 1.33.1-r5 | busybox: incorrect handling | +| | | | | | of a special element in | +| | | | | | ash applet leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42375 | ++------------+------------------+----------+ +---------------+---------------------------------------+ +| ssl_client | CVE-2021-42378 | HIGH | | 1.33.1-r6 | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42378 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42379 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42379 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42380 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42380 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42381 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42381 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42382 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42382 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42383 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42383 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42384 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42384 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42385 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42385 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42386 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42386 | ++ +------------------+----------+ +---------------+---------------------------------------+ +| | CVE-2021-42374 | MEDIUM | | 1.33.1-r4 | busybox: out-of-bounds read | +| | | | | | in unlzma applet leads to | +| | | | | | information leak and denial... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42374 | ++ +------------------+ + +---------------+---------------------------------------+ +| | CVE-2021-42375 | | | 1.33.1-r5 | busybox: incorrect handling | +| | | | | | of a special element in | +| | | | | | ash applet leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42375 | ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +``` + +**Container: tccr.io/truecharts/mariadb:v10.6.5@sha256:ca5dcc0667f4ee5accc91f159f13a2bf764678d4dfeab3d1421fce1d2095f2a0** + +``` +2021-12-03T19:47:29.346Z INFO Detected OS: debian +2021-12-03T19:47:29.346Z INFO Detecting Debian vulnerabilities... +2021-12-03T19:47:29.362Z INFO Number of language-specific files: 2 +2021-12-03T19:47:29.362Z INFO Detecting gobinary vulnerabilities... + +tccr.io/truecharts/mariadb:v10.6.5@sha256:ca5dcc0667f4ee5accc91f159f13a2bf764678d4dfeab3d1421fce1d2095f2a0 (debian 10.11) +========================================================================================================================= +Total: 144 (UNKNOWN: 0, LOW: 104, MEDIUM: 12, HIGH: 24, CRITICAL: 4) + ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| apt | CVE-2011-3374 | LOW | 1.8.2.3 | | It was found that apt-key in apt, | +| | | | | | all versions, do not correctly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| bash | CVE-2019-18276 | | 5.0-4 | | bash: when effective UID is not | +| | | | | | equal to its real UID the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-18276 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| bsdutils | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| coreutils | CVE-2016-2781 | | 8.30-3 | | coreutils: Non-privileged | +| | | | | | session can escape to the | +| | | | | | parent session in chroot | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-2781 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-18018 | | | | coreutils: race condition | +| | | | | | vulnerability in chown and chgrp | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-18018 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| curl | CVE-2021-22946 | HIGH | 7.64.0-4+deb10u2 | | curl: Requirement to use | +| | | | | | TLS not properly enforced | +| | | | | | for IMAP, POP3, and... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22946 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22947 | MEDIUM | | | curl: Server responses | +| | | | | | received before STARTTLS | +| | | | | | processed after TLS handshake | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22947 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22898 | LOW | | | curl: TELNET stack | +| | | | | | contents disclosure | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22898 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22922 | | | | curl: Content not matching hash | +| | | | | | in Metalink is not being discarded | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22923 | | | | curl: Metalink download | +| | | | | | sends credentials | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22924 | | | | curl: Bad connection reuse | +| | | | | | due to flawed path name checks | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22924 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| fdisk | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| gcc-8-base | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| gpgv | CVE-2019-14855 | LOW | 2.2.12-1+deb10u1 | | gnupg2: OpenPGP Key Certification | +| | | | | | Forgeries with SHA-1 | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-14855 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libapt-pkg5.0 | CVE-2011-3374 | | 1.8.2.3 | | It was found that apt-key in apt, | +| | | | | | all versions, do not correctly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libblkid1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libc-bin | CVE-2021-33574 | CRITICAL | 2.28-10 | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-35942 | | | | glibc: Arbitrary read in wordexp() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-35942 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2020-1751 | HIGH | | | glibc: array overflow in | +| | | | | | backtrace functions for powerpc | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1751 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-1752 | | | | glibc: use-after-free in glob() | +| | | | | | function when expanding ~user | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1752 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-3326 | | | | glibc: Assertion failure in | +| | | | | | ISO-2022-JP-3 gconv module | +| | | | | | related to combining characters | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-3326 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-25013 | MEDIUM | | | glibc: buffer over-read in | +| | | | | | iconv when processing invalid | +| | | | | | multi-byte input sequences in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-25013 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-10029 | | | | glibc: stack corruption | +| | | | | | from crafted input in cosl, | +| | | | | | sinl, sincosl, and tanl... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-10029 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-27618 | | | | glibc: iconv when processing | +| | | | | | invalid multi-byte input | +| | | | | | sequences fails to advance the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-27618 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2016-10228 | | | | glibc: iconv program can hang | +| | | | | | when invoked with the -c option | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-10228 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19126 | | | | glibc: LD_PREFER_MAP_32BIT_EXEC | +| | | | | | not ignored in setuid binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19126 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-6096 | | | | glibc: signed comparison | +| | | | | | vulnerability in the | +| | | | | | ARMv7 memcpy function | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-6096 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-27645 | | | | glibc: Use-after-free in | +| | | | | | addgetnetgrentX function | +| | | | | | in netgroupcache.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-27645 | ++------------------+------------------+----------+ +---------------+--------------------------------------------------------------+ +| libc6 | CVE-2021-33574 | CRITICAL | | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-35942 | | | | glibc: Arbitrary read in wordexp() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-35942 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2020-1751 | HIGH | | | glibc: array overflow in | +| | | | | | backtrace functions for powerpc | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1751 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-1752 | | | | glibc: use-after-free in glob() | +| | | | | | function when expanding ~user | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1752 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-3326 | | | | glibc: Assertion failure in | +| | | | | | ISO-2022-JP-3 gconv module | +| | | | | | related to combining characters | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-3326 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-25013 | MEDIUM | | | glibc: buffer over-read in | +| | | | | | iconv when processing invalid | +| | | | | | multi-byte input sequences in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-25013 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-10029 | | | | glibc: stack corruption | +| | | | | | from crafted input in cosl, | +| | | | | | sinl, sincosl, and tanl... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-10029 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-27618 | | | | glibc: iconv when processing | +| | | | | | invalid multi-byte input | +| | | | | | sequences fails to advance the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-27618 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2016-10228 | | | | glibc: iconv program can hang | +| | | | | | when invoked with the -c option | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-10228 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19126 | | | | glibc: LD_PREFER_MAP_32BIT_EXEC | +| | | | | | not ignored in setuid binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19126 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-6096 | | | | glibc: signed comparison | +| | | | | | vulnerability in the | +| | | | | | ARMv7 memcpy function | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-6096 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-27645 | | | | glibc: Use-after-free in | +| | | | | | addgetnetgrentX function | +| | | | | | in netgroupcache.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-27645 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libcurl4 | CVE-2021-22946 | HIGH | 7.64.0-4+deb10u2 | | curl: Requirement to use | +| | | | | | TLS not properly enforced | +| | | | | | for IMAP, POP3, and... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22946 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22947 | MEDIUM | | | curl: Server responses | +| | | | | | received before STARTTLS | +| | | | | | processed after TLS handshake | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22947 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22898 | LOW | | | curl: TELNET stack | +| | | | | | contents disclosure | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22898 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22922 | | | | curl: Content not matching hash | +| | | | | | in Metalink is not being discarded | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22923 | | | | curl: Metalink download | +| | | | | | sends credentials | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22924 | | | | curl: Bad connection reuse | +| | | | | | due to flawed path name checks | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22924 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libfdisk1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgcc1 | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libgcrypt20 | CVE-2021-33560 | | 1.8.4-5+deb10u1 | | libgcrypt: mishandles ElGamal | +| | | | | | encryption because it lacks | +| | | | | | exponent blinding to address a... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33560 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-13627 | MEDIUM | | | libgcrypt: ECDSA timing attack | +| | | | | | allowing private key leak | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-13627 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2018-6829 | LOW | | | libgcrypt: ElGamal implementation | +| | | | | | doesn't have semantic security due | +| | | | | | to incorrectly encoded plaintexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-6829 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgmp10 | CVE-2021-43618 | HIGH | 2:6.1.2+dfsg-4 | | gmp: Integer overflow and resultant | +| | | | | | buffer overflow via crafted input | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-43618 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgnutls30 | CVE-2011-3389 | LOW | 3.6.7-4+deb10u7 | | HTTPS: block-wise chosen-plaintext | +| | | | | | attack against SSL/TLS (BEAST) | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3389 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libgssapi-krb5-2 | CVE-2004-0971 | | 1.17-3+deb10u3 | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libidn2-0 | CVE-2019-12290 | HIGH | 2.0.5-1+deb10u1 | | GNU libidn2 before 2.2.0 | +| | | | | | fails to perform the roundtrip | +| | | | | | checks specified in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-12290 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libk5crypto3 | CVE-2004-0971 | LOW | 1.17-3+deb10u3 | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libkrb5-3 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libkrb5support0 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libldap-2.4-2 | CVE-2015-3276 | | 2.4.47+dfsg-3+deb10u6 | | openldap: incorrect multi-keyword | +| | | | | | mode cipherstring parsing | +| | | | | | -->avd.aquasec.com/nvd/cve-2015-3276 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-14159 | | | | openldap: Privilege escalation | +| | | | | | via PID file manipulation | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-14159 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-17740 | | | | openldap: | +| | | | | | contrib/slapd-modules/nops/nops.c | +| | | | | | attempts to free stack buffer | +| | | | | | allowing remote attackers to cause... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-17740 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-15719 | | | | openldap: Certificate | +| | | | | | validation incorrectly | +| | | | | | matches name against CN-ID | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-15719 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libldap-common | CVE-2015-3276 | | | | openldap: incorrect multi-keyword | +| | | | | | mode cipherstring parsing | +| | | | | | -->avd.aquasec.com/nvd/cve-2015-3276 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-14159 | | | | openldap: Privilege escalation | +| | | | | | via PID file manipulation | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-14159 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-17740 | | | | openldap: | +| | | | | | contrib/slapd-modules/nops/nops.c | +| | | | | | attempts to free stack buffer | +| | | | | | allowing remote attackers to cause... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-17740 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-15719 | | | | openldap: Certificate | +| | | | | | validation incorrectly | +| | | | | | matches name against CN-ID | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-15719 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| liblz4-1 | CVE-2019-17543 | | 1.8.3-1+deb10u1 | | lz4: heap-based buffer | +| | | | | | overflow in LZ4_write32 | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-17543 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libmount1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libncurses6 | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+ + + +---------------+ + +| libncursesw6 | | | | | | +| | | | | | | +| | | | | | | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libnghttp2-14 | CVE-2020-11080 | HIGH | 1.36.0-2+deb10u1 | | nghttp2: overly large SETTINGS | +| | | | | | frames can lead to DoS | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-11080 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libpcre3 | CVE-2020-14155 | MEDIUM | 2:8.39-12 | | pcre: Integer overflow when | +| | | | | | parsing callout numeric arguments | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-14155 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2017-11164 | LOW | | | pcre: OP_KETRMAX feature in the | +| | | | | | match function in pcre_exec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-11164 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-16231 | | | | pcre: self-recursive call | +| | | | | | in match() in pcre_exec.c | +| | | | | | leads to denial of service... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-16231 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-7245 | | | | pcre: stack-based buffer overflow | +| | | | | | write in pcre32_copy_substring | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-7245 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-7246 | | | | pcre: stack-based buffer overflow | +| | | | | | write in pcre32_copy_substring | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-7246 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20838 | | | | pcre: Buffer over-read in JIT | +| | | | | | when UTF is disabled and \X or... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20838 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libseccomp2 | CVE-2019-9893 | | 2.3.3-4 | | libseccomp: incorrect generation | +| | | | | | of syscall filters in libseccomp | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9893 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsepol1 | CVE-2021-36084 | | 2.8-1 | | libsepol: use-after-free in | +| | | | | | __cil_verify_classperms() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36084 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36085 | | | | libsepol: use-after-free in | +| | | | | | __cil_verify_classperms() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36085 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36086 | | | | libsepol: use-after-free in | +| | | | | | cil_reset_classpermission() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36086 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36087 | | | | libsepol: heap-based buffer | +| | | | | | overflow in ebitmap_match_any() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36087 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsmartcols1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libssh2-1 | CVE-2019-13115 | HIGH | 1.8.0-2.1 | | libssh2: integer overflow in | +| | | | | | kex_method_diffie_hellman_group_exchange_sha256_key_exchange | +| | | | | | in kex.c leads to out-of-bounds write | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-13115 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-17498 | LOW | | | libssh2: integer overflow in | +| | | | | | SSH_MSG_DISCONNECT logic in packet.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-17498 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libssl1.1 | CVE-2007-6755 | | 1.1.1d-0+deb10u7 | | Dual_EC_DRBG: weak pseudo | +| | | | | | random number generator | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2010-0928 | | | | openssl: RSA authentication weakness | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libstdc++6 | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsystemd0 | CVE-2019-3843 | | 241-7~deb10u8 | | systemd: services with DynamicUser | +| | | | | | can create SUID/SGID binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3843 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-3844 | | | | systemd: services with DynamicUser | +| | | | | | can get new privileges and | +| | | | | | create SGID binaries... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3844 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2013-4392 | LOW | | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20386 | | | | systemd: memory leak in button_open() | +| | | | | | in login/logind-button.c when | +| | | | | | udev events are received... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20386 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13776 | | | | systemd: Mishandles numerical | +| | | | | | usernames beginning with decimal | +| | | | | | digits or 0x followed by... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13776 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libtasn1-6 | CVE-2018-1000654 | | 4.13-3 | | libtasn1: Infinite loop in | +| | | | | | _asn1_expand_object_id(ptree) | +| | | | | | leads to memory exhaustion | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-1000654 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libtinfo6 | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libudev1 | CVE-2019-3843 | HIGH | 241-7~deb10u8 | | systemd: services with DynamicUser | +| | | | | | can create SUID/SGID binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3843 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-3844 | | | | systemd: services with DynamicUser | +| | | | | | can get new privileges and | +| | | | | | create SGID binaries... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3844 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2013-4392 | LOW | | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20386 | | | | systemd: memory leak in button_open() | +| | | | | | in login/logind-button.c when | +| | | | | | udev events are received... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20386 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13776 | | | | systemd: Mishandles numerical | +| | | | | | usernames beginning with decimal | +| | | | | | digits or 0x followed by... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13776 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libuuid1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libxml2 | CVE-2017-16932 | HIGH | 2.9.4+dfsg1-7+deb10u2 | | libxml2: Infinite recursion | +| | | | | | in parameter entities | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-16932 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2016-9318 | MEDIUM | | | libxml2: XML External | +| | | | | | Entity vulnerability | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-9318 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| login | CVE-2007-5686 | LOW | 1:4.5-1.1 | | initscripts in rPath Linux 1 | +| | | | | | sets insecure permissions for | +| | | | | | the /var/log/btmp file,... | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | +| | | | | | conditions by copying and | +| | | | | | removing directory trees | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-7169 | | | | shadow-utils: newgidmap | +| | | | | | allows unprivileged user to | +| | | | | | drop supplementary groups | +| | | | | | potentially allowing privilege... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-7169 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19882 | | | | shadow-utils: local users can | +| | | | | | obtain root access because setuid | +| | | | | | programs are misconfigured... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| mount | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| ncurses-base | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| openssl | CVE-2007-6755 | | 1.1.1d-0+deb10u7 | | Dual_EC_DRBG: weak pseudo | +| | | | | | random number generator | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2010-0928 | | | | openssl: RSA authentication weakness | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| passwd | CVE-2007-5686 | | 1:4.5-1.1 | | initscripts in rPath Linux 1 | +| | | | | | sets insecure permissions for | +| | | | | | the /var/log/btmp file,... | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | +| | | | | | conditions by copying and | +| | | | | | removing directory trees | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-7169 | | | | shadow-utils: newgidmap | +| | | | | | allows unprivileged user to | +| | | | | | drop supplementary groups | +| | | | | | potentially allowing privilege... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-7169 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19882 | | | | shadow-utils: local users can | +| | | | | | obtain root access because setuid | +| | | | | | programs are misconfigured... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| perl-base | CVE-2020-16156 | MEDIUM | 5.28.1-6+deb10u1 | | [Signature Verification Bypass] | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-16156 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2011-4116 | LOW | | | perl: File::Temp insecure | +| | | | | | temporary file handling | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-4116 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| tar | CVE-2005-2541 | | 1.30+dfsg-6 | | tar: does not properly warn the user | +| | | | | | when extracting setuid or setgid... | +| | | | | | -->avd.aquasec.com/nvd/cve-2005-2541 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9923 | | | | tar: null-pointer dereference | +| | | | | | in pax_decode_header in sparse.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-20193 | | | | tar: Memory leak in | +| | | | | | read_header() in list.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-20193 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| util-linux | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ + +opt/bitnami/common/bin/gosu (gobinary) +====================================== +Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0) + + +opt/bitnami/common/bin/ini-file (gobinary) +========================================== +Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0) + +``` + diff --git a/dependency/mariadb/1.0.19/templates/common.yaml b/dependency/mariadb/1.0.20/templates/common.yaml similarity index 100% rename from dependency/mariadb/1.0.19/templates/common.yaml rename to dependency/mariadb/1.0.20/templates/common.yaml diff --git a/dependency/mariadb/1.0.19/templates/secret.yaml b/dependency/mariadb/1.0.20/templates/secret.yaml similarity index 100% rename from dependency/mariadb/1.0.19/templates/secret.yaml rename to dependency/mariadb/1.0.20/templates/secret.yaml diff --git a/dependency/mariadb/1.0.19/values.yaml b/dependency/mariadb/1.0.20/values.yaml similarity index 100% rename from dependency/mariadb/1.0.19/values.yaml rename to dependency/mariadb/1.0.20/values.yaml diff --git a/dependency/memcached/1.0.19/Chart.lock b/dependency/memcached/1.0.19/Chart.lock deleted file mode 100644 index 0ab138b5ff..0000000000 --- a/dependency/memcached/1.0.19/Chart.lock +++ /dev/null @@ -1,6 +0,0 @@ -dependencies: -- name: common - repository: https://truecharts.org - version: 8.9.7 -digest: sha256:fcde72accd942e87af2e3e43b8743053fca3f604d214556f2357bd39ca43d3dd -generated: "2021-12-03T14:12:28.171429869Z" diff --git a/dependency/memcached/1.0.19/charts/common-8.9.7.tgz b/dependency/memcached/1.0.19/charts/common-8.9.7.tgz deleted file mode 100644 index d624e7df28b2e6a9f2fbdbe515f1463795197ed7..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 37337 zcmV)kK%l=LiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0POw!ciT3yFplrf`YZ4->9=;D=+&|v>u&bBu9LPon>aqP(|+&W zdrtz9kc2fwvH&SZ>*jy|9J~?$L5lKQ)2(@S8;b-617I+i84PB^bh%8E{>cK8ytjtS z_%C<=3dAz#`8xI_dZ4IA0XgUYIWXIVn)c%k*KE(SA-4>MtS95$VhKf)qPAWDO}0 za0PQnXitDDC?a8+8^hJw->|S@Sr#74!-RyAx?6L6GS*Lw1haG0G!Oy|11IbQZnxVkU-X7V*mgsNL-@t zR1n1_2KhQe6NO%9rEq!PJL(;F9%}yO`d`7gK=hs%K;!x!4o0Jck-Pp6_x2vw|3f@a zK(`CtWhnXi>=e)pg?NTT5T?lt&kF+CTJJmo{~4hfEaIFMK1T>lQJh|N(hMc5EP1_z zb2RAyz+s(p7;BI(5Re5x7-N*=0JDM}00_!biu07LCm_lYp=r{WMZ2PCTVNoEY!&8k zuGrOo(ghstA55a*;dn4UobDe+`@_S%@o>DiH`<5M;oi~yXgD|+?+r%#=wN?%Fog#L zc(iwjj`oH}(R4aK7>$nhT4RtEaSXCF#^JgH_^&hmV**~!PSgC1Aj&$_;n04;1pQb* z5^X!wSD2tVt5`qSC2Zd~&le%-;k1AGoOWT}Wqi7?fwll=j`V8S8}vql(Qt4y9IFA} zJ3Knt8y~@=>EI|lcz!gSg=oAF$03SP7#{BJ!`XN?4UYyxv^R{7!e|l@E zXb_G^aBpxpJ&K0m6rv#<4aTFx19UWgK069gyY{ytUKnRMLE8?ss8v7A#{z205f;!k z!EwiR+#9KJ9S@H7_m0MJI)&(HaEOk^)8TA1i$-V^p@VQd8x4kVe|mH{81EnMjmCQ+ ze2%8WgJ}9ZjHZWPhHEvw9k)$sJ|~F&x;?+uH5)i?3EelmQ=BJoiTh=-HbBg=9gcg$ zl4PgR3{8il>Hh3FM9(7>&BD>_Fq{sb!@(4epC9cXh2sc@;qYj9crZE|!O?6siw1BC z!w5~ivs!7r?eKQyaXN)@IW8y%FahZb5rQMcH88==(F}hE>5TuH6>-e84XLBNlcg;v ztQ<;mOb{;vA~eGZ=92|90JA2h=O@Q+UQNIZ#uRlrOcf((93!IPq6AK3Bp0dr+Uo%M zA)0XI%*CQC3Yb>Zzur+c~#Cr&10Fxxmp@5zy9FMY2-vHUyZFPWI>kX#)1pMQF1$?Os(sYUBz&`;1 zaK%cz<$s#E+#Z7oxc*YpyBJPUybV}U;kJFcVY6mOPK)If5k|-nqL`ovWNAdjl8!ZL2&l;B1V#wZoWLB-*SzQtDFH7vGV~ei1CB&b1Z}-XAwe)lU`KMPT>z5^yiem8 zC-VRgCc<|h-0?&crD}iHehH$<^ll!%c*Kity4FHBv%Xtl)p5$crRv@0U>CG zDNYlxz?5-y5aT7z`K*f%KZ*Bm*y{<{>vXWST?nRH?h5u6VV5cyzx}?JCCg1t@j^** z%Oy;r9lEPou-e}kHF5(|M;78MstN*+;tmCX6|3?xh|<>VVlqyVN|?05#C0E8)+qXaPq8-ar2WNryfAV5AII8wBPrTWx3QmkVyv7GAWHZ*gEX|5o@Bzx?#vEMXe8D>{ zrNDJsNJV(frssPE;1%T39pn-#MW(#SSQbh`vd$QFOxH>ncqW(_XSR$LqZyMBnLNY< zx+k2YChKV$tpx%w3|T+q_#1~hV1{GV>j-4EuzhxXe*Vk5_b(@4x$b6=(yNq2vb%2~ zP5??)n4}4p3RjR|PAffdA=#s%5Z1%=ptMO0E_@vKag~(e*@6#^*Sh7@g6*3Dx$87a3_L4f>Io>;LjY}kUIYuwjtKZ_H{}&1x5Y&QglH zSsHb5GE2!)lx4mAnW4rfLiP3Z-OE=WPmkZenn;y!hEW{7M>F+XzBz;WV#3!!FG(ZB zMxoPDv#R7jVJ3PDGhScRRtKf*OLqygt`rTsa=lfGir2bW7o2cL1u}wDg7Y;9V@QRt z9pTvw5k}HEW5=Ahr@}}>!v%^8CLpSMC#>2jZvs34bWL-#?6SUeLxOW0!dOY1ahzUJ zwdR>b0VT66p>kY1`lkj9uP)i-b|aX~5lIW$EfJ}Mjy|&q#W`4{lnbDY>~ppOsuxOY z`DK9;DdezEr-I9aCA>sTokN0GF%>YOis7cz}y=Imp_n2EthXjc~OKN0&5PUhWwfz<2Wj@TZ~#m_f5xuiD1oWO+X z5CuhCD_}H8QCRSGmnJ#-ocBVQ!6}Y$&J>cg$SKpEr5^C(hu3UoE=Yk+kIwo;KV<#){5Vy;n?GhQc{W17IU?nsUT-wa}RnYfg+=@pUl9 zGZe1F7}fPm7ci|6()bROHNXkZPgH5jg=PRLh%k3%f@BSFj+V3sUcqo-msYy&0i-=AtezaJ@6BX4Y34-P2=^oi|yY)8Jr zbiuizoc(oL5I#u?_?d<+cwV^xC2Wdvst)?6h-*>ciU|Wu-4FtSmQhMX?LG$=CuaeF zFHTi1PR_~(Ue5poKV4j$$rdmbyj*F5e7UmkefFPoy&>(2E@v=bs5-u;`++nYGa*v_ z(iR~$E<(ywL`_Wv%r&c8qt=t4UeBcP!_-g|flq2A`Aj?$Xo@x#X&g}nQ67`2jmQhT zj&cCUd?Ez`4hhCDQ4H7TC`^-xPQY*=zh;PFzUw&ebG$@pk?Rlp^8F0rxFG0aK@epK zvoEEsJ%ac~w62$#pV;;1d!cp>{gK?aA$NP&?wH>Fz`r(vKNow#*5oet5j_jF-idVYUC=-r&V> zf56lvR+p0z!x9u3m3W=kVA z-q^zVw-gv)!4gpl=h~tMt_aR^l=M_{LQZTF6A9wxn-CcvyD-CjrmMy&jJiyXFGz@J zpNWvGVgHF%5W2%%rf^6sxP3}9jMquTR9gfV=~erVlxJbeDje1MuY6+a)F*EA`1Ave z<0%X;FVZ*ZoW4t55t5Qmztb?NQ*PP#OUWhyPD)A>)_#y6BO@w zbKH5WXO;cJ)gKMrN3p4`j!>wwUdR(`pMJUl@UaI4sZ+ry5(a;UCgpN*T1m}2} z#c1bE3Zp5EVG<&;`wXz3-^-uRl)dxy*)wpOM(8Xhxv`P!ufnY2^;WC#?W*56r_#tB7i086-LgiX+|1tx+OdQbK}4rez+>qc&8^<9#n8hR63C)1T}(tssRpCC&~ z4vb?J$r?6^6s%e~K)$ww`L9JI1`py;Z_I!gPd6A)t1c+9sANSO*-@sbx`rQZ;7NQe zHZUXu&JB5z81Y($RKt`kX_tdYxW{8zCnfpBDa%$l>qnl3Y1}iuofjF0VVov^Vp931 zXX4*;_Q%D^nG`!dygd74Ru=+1`y@sA3|=JwGJT-*vq>T_M|sI7agrm#Na@4-H~cH- zs^zhS(R+dLghO|_q|KToN968KysM6`B+l$C_Q`uKj(Had80QlFOV6I&PbKJ2Y{sOI zI*Oz+U`&JF5pbeiONGVM&=7D!a|9!h&Wv_g=}#GNg3m^e&9FSPXCoBJrKe8(shB!* z^WjQKiF=8)OApqa6S)h>vuY)Tn7am_CAC{vI}kNT>b9pu`ap<5=EtP0gXKz7m`*BU zl=Qb?%x<$3#ckX5987#R7?%X@NK60t-;U90t#BvHw2|)0qPG+8B%FHjPI;%a7w^;% zSnO2$^)&KQS@pK^odi?IOI0iPF5l_FZ4&VGacipFvSFgVa=;QtQG5jnGRN}={24`W z*%!n=Rq*7roz6sUQAY8YoIo_gm*$tt=TsaJXD~#{brKeN$~N~93T2BQe{-KQ3SeT0 zS*1Uc36n7am}Q9Ra|}NFEt@Xe((XfLP4Q8-cgCjy$Ln%jtrJ*{Yq>6VD9X6A<*tPe z!!a##z+F$|nfy|@#MyUuKX}WXL}Z z&P43DUFi?ki_;LsrOe_YmBD;bBE>K`R$XE0y%Ks%Ixwp{nEcfx|m_lk%~ zuS~!*VvK;ly#T}BaNHeKAYE|1{fuAVvpyO|oJvb-)3S^=V)xUgwUQKAGY%BtA=Vl) z7m(XQHq;kKoVs{(?vhIne4pkE>AuIkBpG`Yl*MKsBPn-jh4$=-`N(5xa0BfeD9G2M znr{mnApL6uee%Dq zEpA*m*L3Wv)@@C&>57kC*C#1(0J<26U=D!_@Z|7g?Q72Jv4WPkF-y}4m_pJ-X}6}b zmUAe*sA?RLN__MYn{=G5;A)*&^Mf|pYdpGcO%P^FtkZRLai>Bizm#Va%h}H-lH~sl z?Zmp%v0hkCf9piN>LeM51(kEf38Ta;MrS{tJd=O^boLBntMC~>%Pe2N#N?UW>zftI=vep3!h}6f0Cdc5M z>N|BB{x95Qkf&mw5(oZiTr81N*6g!bHNd9J`KSJ089E=+*~ff=K8osp`}9l}m2Tjy zm!cIBt;r)MBqCvb^FCXtB?*=#T| zRU;O8s&VO~``78-~#nn}U z3Vsm+pwF0c3Jqh3m(R*cm+mO~J6m{`c4D0Ls6rmbxhJ8DEVWJ$l?ztc#<^cH5mB1>9Y?)%*i?3DG3DxmL`y6# zl4fu&9m*}Xc+Bq@yiLuJCyGJl4(YxvO^m4&>A9RNuE#CY24fgx3wCAtg?Doo>0cWnaRBN+WcaE{(F(Y5UU#R35+m}5HAII3Q- zjR(>4D4}+2DE=3kfTN?MAF&25j0!1NVgyApCM)he{Con6EKR_t1rx@KgiS7t<4=-t zv4ZaH;}flysLe-F2AhlpBurk(uMkQAj7>N8jxoyH46+_s-d=>sZnJ+MLm`^jB9B(! z#O9|kce#FFRQ4ETmMFpnw_XO~zJ5^dW)S4dY(~M(`{TFWDGV>!Jn5SiyK2QqpxXOP zOtAvYW}4Nd`pie}N&GusRia^=)$l{9bNnwPK7P+z|5=RKCon@WXUk+RZ^_H?c*Z$Y z2otq;mPd8?Ut;|&IXEDDBd4IGF&U-B9dGpv@!%+ zb-c)xkqnU~rj+aU!k0f>q*sXu1hH7Af*dHy&&q-o#nGcpOS!$JF0CEz*|dC8n16EV zJ_wi^yj;ID`*Utyfmc;8))}{+Ff}4vpzu<;tLJ1bwQ?I*g%z79I%TSQM;a!y z5)EO5XB1LS6R$5moXT#M5orFv^n2gr>z#3Vw7z+|W#pcAb1e#Qo@m*6%UO1zKF)9* zgNjN9rJW)97%fe^tTCPz>o`0-^zu46TjKP!I$8XE=}mNr))P=rMD*bk&^|fKb$3qE zBI_^LU0tNJ!Q^cOs+Lq%9tM6gJS}h%;T4Vw7_*tV6lMn`B8Jc$CL!u|#0Ycaxr&lT zWuz;9X3c|EnVKVe%U_yC;J~s12mHIR+;Y|F$rJF70Df!$VoY-*j4D&UimcL#@mibV z^94E=e{a$L=tnGmS!W#K0>P{+-*vf@pB(j5Mi;^Y&jvh96PgoAn3Y2~UO~E?@0-*spWzDwaWa6u=qx=3g5)iGYt=hf8XMnrf{J zlc)=m9Cy{5-H!UpgJhm&X`Ig2=NVg)C%42@-L2$TD#g7@)j*f>7P{qNFhQZNd8&iA zE#c?$OLR2>f5l0T=7{`_lZUGKceYmlN^^pfx%hImK*@)M!W`2Xk5%P-=SSk@wEb0Z z>c2UmaB@Bfc^bRM3-vcA8LKz7|))bD{DTonV$!iY$emx`k5T^xY zki$ia4NoDqhxEj)d>GRd;Dqf3{D#MZF?=d~i6|gN!c=G@7@Lgi7~?#T5d*Cec?M_^ zE?DDlae~?O_SB(pls5|z*upm*?bSY&RaAMWI_Ob(*-B9^qI5>q(u(?krsq0`BW_CNuRIY zo{@u#XE96*(k)}jFAo zbzQitVK6~f+Mra7TVdBui@EY$R}%lBB|yw02QyoGOTvQ5wALaO0|en_*Ac9p{Ot1scgK0j%ROBscoyfgPC?raAhv{39lmIp8NIf8V1sB z_KY&2Tr~g|DUzf*5+%>VWl|20702dyFj+T*t~KFnv*&%V2{ZHFO}K?o|6ZAfHFid$ zGQkX&{{SR&j-kHu#WXg|NKe_Dy4)%vLV`z_yRJjiRV+^B9r`>484-qR z7|&Cq%`@FDEHr=Vf+S50F5n_ydDq_;clbC#S&(j3fL-^g}R8z*iHr)I-?pUG&g9$3 zAx7(>H5Z3h%F$KY1?7TdZ~VOxk$8nnk3MHSIR{o|-%KRZ(>xe~PdNHWDEy>&v4zsP zOp&03KIami$qviF6{R1wyFv6e?#On)9?ozKYS&K2PH-0`q?+MXs?57AGy%iW-e_pN z^nu6pv1O}MPamK6nOIFUZPTPzy!@EO$iTf5S7Ae!2D50sQ`Ni!@;4T10&=@ zg$@!Oy`Md$O#y@6Ib{sM}t7t-bWB zZgXxYlj$VJr9f87WN|tdW*@r1nGP=yr<*Jj2Bm z&KF$fI7_2DTN?_8rnRB*ybm=(1Ha3~QKmk>$>MMlgx{Bq;mMPZj3!IVqc;&um*2f% zLYZiiVKCz++$2{)T_TjBgo$hzQ3guJ_AgTy>jLYovpjp#DymyYTKbBnAwdxh6wQZr zst_JS2qpkQx|YnI(^Zn@NM6bO@czxYObux42y6;oe$R-vAhB`a_8vu;Zr?4!sL(D>RB3Uq!C){r z7?1hCgTcW4ceHn~|Cix-xIf%G*c%-l{$(&4jP?hA0fRg4tM@5r4#{5zw{FYr+#lq* zzV3h5;roORw7}ICc{VzY3zQL@hzK2vGM{diinv&UIHW(7j6?)UnHRQ9u4+pxz0P<2 zFJC&>*V?Bj5CwXR3BL7E1rSg&qAs&a`W~iTapDu(Wi?H@;kee7b^LthAK|i zRf5+5^z52Kxouzh%a=~K+wH&%OJ!#Q4D9-=(G=xy*tx_>Gyyd$s;y+oYIPb>7c=plVe}hFFyrw#7_+J>8a;37g7;3Q=L5jPI?HH(HI(OD4BPALn*Nt= zQcQW1qX2+`yKkbz$b#RrCBqzR4!}yATm!`@V}Ke;0A`NmIsj!E1HhgHfO3LEbC~@^ z*POOl4M$fRcHYb5bS28mpQU0glN@G+ej^$>Xt1G?A$oO^KO7DBob|uIcd+-k{vYDu>;FAp$xf&^y%w#=@U*_j-s*(~bmbDP|ChR|h<{8Y-ElK?zzl*<`E~|1F*>|JTv)9*X~u zMhC9^w?7_?9{K-6JdO4r#?)*J5I4ti0y)>$>pWH;d78A1*+-LI;5DvDGleiwXbk)& zlvd`OTi8}q1@38VY((l3nGE-6@ya~?FSv~BVQJoIx&qV)phl6Ny3*rCvk6Hv5T}7h zJ)Q=Z%D6<32z>Vwrg=)%GQfwS!W-@R$_l_bT^2`zr#XLPOik0|^i@;1yj< z@CLyEP#NyJ=6plmW5ZxK`P`m#YwWW$Ird_Z&!^K20&5!gwP z0j~tITltd4F;3e`}ezi_l=Xtu>A~F`x&Np;7D4W== zj5E;n1(k|Zm+NZ-trp}+OvHg}mf&N6er@XMPD((J7G#bhb~UsNgSRmBZD&(d>SdNj=Y}bvv9m_m z8l&BY@}dUAT`I%1mOFzD##CERDrSz`89B^7yG3W%KNsr^NwLp(G10sFn8ao{0W)b& z3371?Bblo&cY^5EvV6l$)-ndj8^E4eN_bXd4KOb&@Q{AJG603SRn)OAu{o7>^!blx zQI{B&u>cz}V_jB}@B$alRhICW!nP>wMQ@cQ?eKCV9&9mes%rZ|Q#IP5=3YAA0yR~& zJ!-1P2GqVUa2%EXnM;_NsQB!^%6ZY;+6JHoXzB0X>@>a#Z3pzKk2()havX+fk>pO< zneR}?H&8Qxe)W~*G#EHXto3@lS+Ft+Kzf%l0b)~wmQzFa@-MPksb4C7R? zKu`0+WK@ObS=IGRwwI+OhjA@dRT17+ODdiJ_qPam>y8p31a`pf5-rghse~@RZ_#ZHi zjs4;0GS$tUI)Vxz*JC2)l<8Q8O)D_}4vUSr`5(&EU2ou&0GUL7yXpHLClOBOkF&U4GbD|X3i#cu@w=1&Hthd{{egS_J3br^ANT)k5P6!F&h*U8U@ z?MA`5NxTnLw zO+?w`?Rl<9a+9-X11-AFo*Rg<;_Rt$xF=sv1NBOiO|G7*p6Tl84C(LZ>ZyD1=;?Wr zr*{8`LeaVlF<_JYe^@#HIT(*0?|(nYW61xee!aCGU^_2VZFhEwp3JD-tT$LD0o7@fA8XfROmG^h*lfJEo>mvH?^prxtpCz8;*NBH4eNirHyXO~|KY*G zpy?($z403}$-Ez4%$8V@CySgw7obyiFryrRM9h zx;vujvWSu5Ab5{p^b5f`ddEF{cENAp*CI8;z?5P8EzovafAuh~4d*4!J&ONjwRd!M z^dk;@t@s>21vFtE3cwEV`6RK44CZke9$R(xmwT}<)6%Ttm6g*$%VxSrAfXxz5A ziAJzV{vQpU_#dO;Xngo6|3AbdvMWq$LCj39o zx4b#_f90Nz#|x2M#{GD^6t;mHf+ z;@i`u#qKpD>5^}e*2NbCre)vM_F$u@RpbKRXxAL13c!kCwf`M>EpZoz8dkDnWpzc% zEMHr_mnWocy6(U%Gc1+XaOW043BT$z>g$0qr?Q^d($!pwU-tCL5?ggZ__dwucv>~H zC_y(*q3NhBuispvwLVOdlpBB`Cj|;Xz>|)j!F&;bpvzwKOiMvn&^%oRAXpi=Nep(I zhAgVC0cFiMhN*FN)tzGa57aiosTr{5!>hpM2_679J+EqcT2*beNWATCHyi4raNF6a z3m|gs4R5p&PTgQOh8wEPhJ?`n4!lG;B1^{8`Q12?`^!2f{r`zn=K8o)kkKksb{r#& zj@e8b3vbr}$+L>Lp-Fyk$ojx>G~r3z;^Q;$bdl2Bj2$JR^L*R2XM8(Cqu`Z$BAf7F z*Pu>Gt)ee_JOYMCpgXf$bCA|{Eo=<$)U+0i;7+$#3w3}0-g3~N^=T>pOZnnv2LhY? ze+~~1T={=Ec$EJiLQfK?DorZEtsez-Gku*=kG@gKqld}#ab86B_J!n>vA6|(l#{MpKLD21T$$xMfvRcy4Wmfz+u?Y3LGEeolu)&76WD*+q!|Kad(&&~fm9z5p%e2_=)|L-!C{Csu_ zLV_6CU>H+rW}$lb7a`xa*!?R;q3#2${&JpcVCgxKy+h>a_Bd1!H+86SN62x|6-%QKmNbx>VJdr=<)u?gFKr5OLO)PK{G^9 z65?bI<~T2fn_Wi<1USi4;{ZjN&9^w+@mt&iEA3u6JwW zUz_;Pe;vBc+0QQ4#^`6)uuXnj+x!3s zVFsr-#yM6FQ!t8@msA&=zPk8${POMV)6N$5K_mR-AJICfspqb2gXVbLzh#gSFiav5 zp`t&%?(x~o|8=Ksd>Lc|{~sLgd+a}t_dg!w zsq_CbBl$k0^H&+vx8C)u5-Qm5_@%pWFJ521ZSJ0ZzRIy_^!VCJ7_VFZD(*9v|73L4 z`;!00<6&j}A3Vl?e~?GZe>$qTnC~rZzB;hD5k9+q0sF#`*P3ikIK;OwyZJq>u4>S- z*=}XARqblj*Kiq6z;EJ2hb!(%0$k*I_A%yOe;+e`ns_vLK9C>hBn$12;tQ8`&HErT z93#=me!k55`a5sfe|yXw-8j9(N*)ShjFMadFGy_XNp-Jkgal?tF8#_4i~9EFw7l!^ z&vg1x&r;91+K|H>hcvc*7aZa=gz+M!xqji=6P^~OH;M^x%HN!*oEZ;r?PEA<<^ZZtBjeQv~d)nhyJi$2Q3l1W-pK~QmQQJqo6 zB&3SFNIgv3aisc*AQ-(%;`IdN#0+(JL(iNRzBrBZ`^T|={Mnz)`@f#l`?CKG5BCn; z{eSN<{@=qqb@m@K$<#yIf69DQTd0qI`;V#7-o5?DC+6I<{iht8t#ABkwY>hWUsy05E#&Q5>t7yfRny>90Jw{-q#VgKJ7RrJ5X z=<)u?gFKD?KZ1Dg$nnR!=(_yyO&a)aVb^<<7jO8~t^ZY)^gr_KmG>V1aX1(a-1v{9 z!_njVe~70}{*%d1A5!$=2~Z8GZ=1xb*E;!SkY*?mxm0hQinRm*`~r$@>AuiDQ)|O4jgTB0l|qV;SlC&uZ>|e4M9=|I202|0u}x-t_E4Z^jCiL9sbHs8_s^MQf-cYtqQjb_OONHw|aB_U*{j+zI*xM&8sa=joIk^ zF%OIx{oK`Au^ff_KPIj@WMJ)I;y6CP!g;u`Tl?Yl`&Yjlzj)y@%7niY-1*xy}st+mW*OM@{LQ) zlg^zl17*Cp2TnHTRrR-0PGk6!~Wx&Rp2ex1G{b??_}@~ zJcEDWjQ;Q@qhC*@DFHh^^c34IC?b5h?>3jqAf;C+iNwgDWc33{m%>*;$Z;}BDA=5t z)3M1a9&aFD^@lLL9!x)-(xB0!3rJAZ(*@Nq3S`9B`ir8D&BK}|Z7HevUoc@u)okPM zz{a6v;|4pB zQ?89A$f>f8EolGXxnm6yZ*FZ5DwUG+S7*oXk1yW6w=4$#5j>iVswSg9q|NB>uiv~m z|K;_?$xqe{b2q?R^U0W-Pi(upY)pG0(oUv;?Dw~P9T{}npfUtz4A@ZZAhPIJGiBoj{f0LgM^MI5XAAe(K_ zUH4AITbQZZB`Bj*CC6;fzQj<nnTBrf0N%|1hl8vNgwYw`lj z4I8LR0ah`%>I4;{x?^U2D&x|gm)V-@=F%M@2cODF+20#R%!5L8;5>y|wBXKqr8Sko zj18p=kEitTT=2J3*U8KudU)kM#FZpq2k7puHK&-K=WrT(*Pdzn(pl+L1$mJ{!C6Mp z6=8!yGbm^yko^pRebLfdHz%wsr9e;vs?@yk=k7PGPjyhLDb+QT!Jkp|7DrKxt{@Q{ zA@JiSZgBqKR#5BK@hEWsi!9LsP^C?aNw5~JB-9*w710-#<>49N1o@wwCM#v#!K+{w zTozMA5|kqvk|+SXHcq8=uO&JfmD@I4%3-!l=1k+VZU)_HS$bz=x#eUm+s(tWX$qFN z82$S8YX^Rd=Bi`va9Ypw@3OZ`>xE{eo5sseu~k@lEZD3xEuw}7sjso!N`GB-#^aOV zWrJlM$q0oKBt@qh70BFszd8k|qTU2KfoO&=b)QRW>fy9c(jw<+y>hb7Qk>*8FkIiL z@xe?hb%mzZUUEo2M;$&urez+_%=~)bD>5_cL~- zTup5rSHksau9wF~YS?O30J?xDF`XD0`!x_rxeWehvOpF_lRsQMav+Ix@q@l@|UT4AAyacMP{GqCauznHPIb)K8nGYN}4&&p}#`De}WiN=wL z$W3d^p1$3q1$&>g+pX5fr10vIY3=;F7Ex64M0>G#p_zt$r6t~^ijRqrQI-F;BxMgy z7UhaD&(z5XA9Eg2(o6Uzt!uvEd}p;Ucsi)->yi_m5j4Y}0|A_U_JOTn2EY`CmnexQ z*2~RE0F|TJt!QpgYM?810Z-{%tqMR=ET@Qw>Sc1oNg#=+=xbNjR;tc^{%Lsqv0 zx3i-Cai4noU$zSGBKSj_{J#Sy{?~B-VE-}x`-41N+yBngA#g6@zMRAmFYm<~n5~R- zP##mA8UDZs8_{g5tFhF%ut2S?&OQjX&V-+4Wg7c-rpmi9?MWy}nu8tmtG{H>4V(n| z3fZbLOMPi<(jA1dH`>6F5=%I6TJ;wzp)uu4=uKXdbI+OlN|kEP9H*4%wh781PPRPN zF}f)0D`jPY;$@F6`s&=jn{fxTU;-`?%6x&gZ?BFtNs%{AMs5V0)h3cw@LAVYbfc}lo@p`lk%{4cA4qoboA zao{S5m4T9=1Y-)o4iGj}gJ%TgvYp526vhE~YT7Fdk`c}}B~g~YEmVzSzI$SK<|$IY z|0}WhzR&*#hr>g6|9?FHd#GpY{a+oZ+{cbDNv?6%H`T-2?D(#lxz%ppF_qEZYsFhW)5P(dONH-Y zGFQhzbzdiS>$VPBEs1ySsoFFdb={zdGTwGP6L|(j8Rw-f(E2Jg0~MZlUeMxG-KhBC zv>B3Gj)F9?Q=33upKa?!SLt?EOk+$Jr)kdAi1l$4F@C5>qVB6Ty3HW0#`!+x*z4II z^vp1WTRWqLGJ9p_!s0e&%bM9UO`0N0l5Otnl`oAQ;;DI!$7)S)C-z4kUV^b1yAa=G z0)D((^YOg)>&3~Lak#ABPr${=S;uDqE=!c1_aN&Yqj(`$ZIl&C>A*8SJ6trgSnX*V zaqBYMoP?D{>`)xJM1I`e)tywYj4r5G#?I;2*?lxEj@uJdyDRP1eP-Lpu3YOe3iFgq zd>lf2s#&G>XSpWp{ZZ@Ira43Pa+hxHO|uwQXS3h1pVkVIuaZcdQ{S~1Ss5ByOesD{0E$W!n2h>!n4u- z^HHd1x3L0ky8p9R@&7(N+<(0P{U8sw|GYOHY*B7YCSPK**8)~?C+_~qvv zWt2Hh1>5G9GKC-;US)>*pWqw%Kf(VAv^xUZY3dzT38IW83n#}-V`g{Q88h2yn$-x@ zWbJD4OVETfpc01{atOB>Kqf?~`j!Ds!@NXm>LC6bm|;Tmdf#aS;GNjU{|rx+|Es%d zw9i>TyhY+K`E20-j|{6z;Xhc==PNCVs?OQ1(%FZam&I`YqLA zR)yPcjq)&G@b~@loov_vrH|`*A1r$Wd*kW{*QP(|oVZ?~iU`>2i!3%Z1*RkL9=-rO zrI#Wr^t9I7l9%_xaK5>!rBm7-(i%rFg?z>Lu^iGDU`OmeqR_7J`m2T6q@tQJMEKU} zzZGLmhR-9oTEBV~#$S2YqmVt7CkJBrF4FXpL5$P%vdBQN8U`THmv{rS-Jq-yl>IUs zyjjO=&u)j#bV*Y-)GuFn%eeztWk9mmoI4nh&BgGdsg7zyT{WnVkGW=cBnzk(6E}Iy z9$9jtgU}7&G?16HhVZrEt_0(|!!&c-=w)Fm(X@`HY}=O4fK}Uw=MbZzq0HZiubDHS z{nD0S^;gM7gF35)71T&0X3krcd*-&cOrvMzUf?} zkZ=spmhD-4+l#TaTyt#ene$C~jEljuz7-^{+;Eum``@f4->if`o@BM_eYq}DQqw6x>qy7Dwx`i{qZ@DpMJLMMRIXp`di|=T`%6V^};{cPC(?;`xq#`wR(iv924G5_BKJ?i|2V6;MjvD5wxN|l!p0G{Cx<_KUaBfk{{ zMfHb24v#h*UR&&C9m5piVXtSpuGlD2e^3waiYpRUuhZs+nPg(~f9eWxCa|f4b4N_|wng`z46TZ5k z1c8AaBQw4C`!=I;L^q9;*tE7EDr2+z>c;AZL$k$F)=L!N1mMpnS)qjtZVGqh8{hYC~@MrIpU>~(>yl1 zIjeow$G&A<(?z<1v0jym=6LmVihl+)81;>3lrQ6lW@j#X%%ywH~G&LCm?tRf*ZiD zv7@#fgDt!NJFv;7^>4+tx&;H+=>InwRQ&&jkNMvo<KM;4tv9+z+;WuIHEl} zl!L@zigIW*=~Xoa!(X8AQV#~rMSJV*hNBGj*>%o(+jYr`lDFGDg7Ve@DSV+*A0^D2 zKTZ5!-pIJM1#lDpA5`ss`+JZ6e-HAQ@}In~yq)N$&N$fOQ}ItY{WPTT949{&?B&x_d%e+EG} z@Jr#H6CN=KK#jqyh~qW*wSY06VYX3Z8K00|=NBZP^YS@sgG~+vQxw92B0$q6;tHJL z>S7va7{!seaunkw&QT=N%MoGKVLX)WF|i znG1M|KtUOv6hMx=#I~7aN+%(MY?4O5B2Rh`F$F)!L=bmGYZY)+daD$1XioKRGu_#l z@!Wc~?OA9i!X?M0)-8cq=6%DTR?oe>Bxi{R&TTM>iN8#x0lQKemz{g9+c4VRF4HQa zSc9TkyOjv!N;F8E@k1#)GV2kHau6lAN&w#zC5ULajQd&gwPHwsygu2nuG+o}$%?k)Yy2xLXG` zv4cuhNLL3)()TG^0;)BbST|(T43T&ZLdb|h5sBI}(B= zJ~~-W`priui_`T|AH_PRpqG`;*LE18dcY7Z(}bcLxcuum+8Qj)VUA`+%mMo#pUVP1 z*xiO}wK;%b1!Eimx6Pez=x$Jlk&i3aZqRIA13{Dj7X&^2Uw!{20JC4CWYd=SYm}6$ zwB!Ok#syj}1d}C-dpEb^5K8`QlK&~ni`!@a+hXQW8;qe;lC*MNP0Hl%XU-Nr?Fk6$Pe;lYeq+N>i%@MVQ{IK@Oo+TT4hV zjHb70O~P>7Yh}1;TK_5l=_{rldk5`)zc5+x{0 zlaUb11T~R#y=$yhP((accG4xzON~#|bOWF-S+AqA_OhTk9|@)%T@jok7b~+l3zYT= z?17-XTA{G9TJlLA9S*1e9pD8)mPW^=Gr=27a}kiselLc;ye?^edx^tbhg2y`*;(&B z%@_bnH%AX>AvlXkHY$}jG8IlRNm4$xykq{By)F1K(er7Sw}x7_xmz=?!ia7Ssd!Zx zP4T+bKpL`TT*9v#O9OE0VT|FlI*OHMUGNQKXjBG)I>NDsF@{s`D3&$7MC$!)kFK}K zwj&MOkZyfT?S{Ur?_EOXropH}s?JS`mtGcW( zc>x%U2m1%l4O}@v%TD(0JhiQIS$hJ(Xe+`@D@#ffm`5awJM$2Ekl_Gy!pX_1xW7N$uEbDO@c88^nx zz_ekBRtW~7|C`L8w+#!Lr_0*UocGm!jn)ZV z;;{C+YWgKfv!=FdzN^M-K9{Zg3p9ve)=f1SMKwKsaRUHuP}EisBG!SLj<-a@22qEF z9`d^GTlDavb-gXxbNXr%L1T;FF6#A3@Jhu97XeWmUgvU9mleu%3PxOzY7Q?EIaTM( zER%8Vf*o*)ljt=!0+iuf>@p^(oytYg7hpITjTyJpJkkrr3eu{2{X)q5HC#k$7dHA? zBjWPw&2i3djO|8lSne1aVjWYGOd)VtWHm5vvp{LCwK`F<9J`C{>-+w~QLMHK`&_sfy%mPn zx4WL{_y5!9-u;hEuFOh;>aF2&TX(<>{=a*Bhfe(G(eUu#G5*JcJdOF^^96D;z_T~Y zv`9=I1OAy#MH+Za0V$Hs6wOki?#b}W#c|B7=M7oI3`ZK9;Ecd*+|pv5Bvx%}GsZ{BnOAc*qx z%{ntLH>@b+^;gqG&@$ODBU_k6qRB1@`cs_r=^{|SyP^IQg^Lt?du*xaVM+)Jb2j59 zZ|(KI{g3PGY9a<0MeOq`Q^}crz%kNv$CJONxyT3MsUk1-V9JXJfaj?V7wJ_3y6?gM z!Sl)f!E?}GWl3MP@E;&tEYpa6pa0)0`y2S}Hz4{X%FG~E$?R5HBBR7UT#GwN7fh~$I01UP)s>?N;KaSzYFtdJm*W_?69r93aRy`9oIivw z-%>6qFHKJP)oJDR;0h=^PB;f6+K*i)hx1)K01$tFR>bjH8sl(ni9@1JrazW4fhAK& zxxgbNNT#MNYLv@+x}S_`veqo7Wo5OyzHX3BHtC8Mj*!eHt7d=Q1$K9bo9nkwFHmkF ztW{cx@eGCQP}wi^&)Y-JnKYLOWoL;fWdx-+C*$MW^4r81+UYO%qlHR3xzTgOBfD9l!ke?)1%neSH7!-G$wcU>Nv)kfh{wiPq{2 z!c{2a+z^VZch3YTC6KoLpv{`a4>`N3*gT zU;X-hS=Y$aQ})P$AyjC$kMdEeaO&zZ)V)>BLlapsRH^J7#Lf4c5I4(ii?~&HGvdxW zIjz4bmRB;o=auR{-#Cjve4Mfh}8QJC!0I(wLG0~A5O7MP$21itQ35zvVrkEJuPgc(&e05n2NsUty;UxuN7 z8B-`GN>;ub~l>^!k4fMKE%jICx zY7=jb)Y77X`UO~p=q4?$ypXx|cRZuH>q7I$drz&!=NU|E_h`bdT$Xau9mw@cy7L1i zE46D>Ph#Xp+cXO#D>vA27wA_dC${)-S;xzMOTO zMr%yfRks?Vuwk?F#WU>Hm|Z-M`n`pNiBBtc3A%I~YppSARFwHt(qRAC}?ADq;(3HN7z4oWupq5%~cV zn*W0H#ZRK7Ba78ksBU|9RM#kxiG_NpNVw+t!YLAw6(YW`6hRU$#2&2Qde5_~ZSm2N zKW=Z^^kdA+8ZRc`AOCxYO_|*XK>gaj5#vvBsCurhwj?r5RH;+ApIew?=LCl63=zzE zMVdssl2PKvN`V^sXY5xWn`nWoNqVg~%+#=+En?*1ycUX?qRT?n6cV30pDYi2%L1Zq zvs}vDikE0j>l*kC6bb$n{03-Ba-KzN*RhV2r&lUfVht$UHfdt%sI-dp$z+wDT=rl z0pl79@fN736X|$hO>pn-XRy(d)r5IDk>1bSPp1#erb*pOyLJ_8`L^6A%63}s@y9WS zR4{Af=j~;qB#n?xrt;-W$NYVJ=y1k`UcPqK-?xXFr&$`O^YwW~5R6XJgysZd=_XVA z@h;kp5h(*A7(cg!{iwwM37!`EKgn+y19pS{KRg^)@;~m69`*kRdAMQoj9+Kd3ct#8 zU@819)O~LGHBxlwi?OkNTiAb_!pS|MeIMzQw zxCZi_sNLQ6@Is^xK%ZIdK4GG^aG+NQYsL-lYjtZ)_rvHc@5NJn=g=J>+p)?xjJqz+ zTFrZcI~6aV@}pr%wj=GoD~NFDryxqXoJEU_4-0EAl6~P<1T?T7*wH1xH}skD35ekQ zB1DY0dBfFOia)G?=%N9qw1kUmg_fR@ku*=kG`8MyuMhOA@iqAA;^Hjet{v6)=e`dY zC%n8k8If-%;Ns-0a)MKSWr$Z1s@}$|2WoB0ca(8`GymsjBlnsAd+*?IRLTFn|Cs;r zK_0>X`5Xh0X%MFgh|@U^+i`t)bf)jyWCSlES*yH=QV(~TeMLQyA9}L7&T(tPRF}Ae zvN?Iv*KE<;fQ)+59$*)i`$kn+iXo*Xx}sQ#+m1M(lV64PxK)n=6&BsWV|UlPh@bM& zy;x@=uNCJyIxU0T9C(paxgD~S$nMG5L{lpBjWz1St>aGaPcmv z6!wgq*?P(GeXTetv1%al&A%C4%SZt#!ONVUsU6U0!`bTGFYJRK&tQ?~*^eln1io2w zODkz2<9@H-tOC`uOx&TVxDM9=py2{Bfu{t)k*$SLJKDStd6=E2;bn6#8i&-Hb3;7w zw5G>^i!-tV-pU($vpw`|Gh81jDX9Ex5XLW24AZA>Fu#yw9V&^)XPJQFz!f-V*W z(M1|ZRoHHcmVk4-L}`)NqHKR}2{f~<`7TWBvmathJ;MLz-R%Dx2KjHa zH`sUYe-93akMiF`JX}TnS(ttsEC986UTU4TTy?*FIB3(BFJir=9H=F6l-C9)FG?-7 z&le$YY1cID;g^9jZkzJ_{uSYwKR6dF!&b;ef<|p)OGX>1HN=Z3{(ofTS6m zb3?W$=)Tg zJ2=>T-2Wfq;r5@+`+qB2kUm#-?AMARnmc{H0H8Ih@^y`=+vJiZ+je($6OP#6jUZ4; z*|g`2vwEOc4-h@TBkvoc(+vO!ZE)ZVwY*Hgacw+2KZnx=LJBsoG_X z{_QxKvfIo`ZF{@bYd?v5u2eA&+yz38AX?Y9JHWG)2&-ZfLK|!NgwpalhpL?aT#6;a zXcw|SwTq~3(LSV5_AzH|fdDPDeEkv=dwr?5R`?}b(lbFVQG|<%rLa8A)8GP8GVn;x z%`H&;FZ2d4v3siLZA2ILwZng^vJ~9l4q4}P6$m zh3SNvR6j*)nUc}Vi=kS{mGt54r22DX?^LM^9UKwxwD=7JwYewa9Km8R%4yClEToZh zaj@X?a`IgU_GXr^pdeDqdnAi?mb*JQ;@#r$%KxTgaQ~xBFa26(m)>3z*dYJ!4~NzG zkHg3O?+@~L;yxJe*mkBRu~qk*RRDVL5x>CSRIAy4?=UunZA2 z0jpu>5+~6Fh)YPFCCXt0bIACl$RcDMZ8{>L$};4+i6AyD*?ve+L`AQnX-3crr-ks7 zO4G|C1Hoz-fIuMN^p9pREIY{o1&XCSjizUiQh7qIUXnD;?bo6^O7Ju=C=bphq!(ZZ z2p!8P)?@WG3SC7S0oVnFjlw;qT49nN4CS!f@8JU5?BRC#nG)> z+vO0lCB!c)oEA&4KkyHYw~)8D3NRlTl!W&6@%oOHt@&zNTW~>QITrf3_1AdP?|-wJ ze6#w`Z&qE|%4BbEaKKIO?gEqlexQhmOYRbBd#%>gdI@tlg%klb|CL@ABu-LFx5M)P zQ5rAP2)&SD5+5AvEQUDAQj#-9=Ah1b8OOAqp*6y-gSkDpe@4^Lfy7_YUt@8_i;uB~ z2JT{%gmCySgTEH2bM1{6FCpokoav>wV=N8;7X{QCb-mtNnj@@~KVYlq0*X-;vpEhdx`DHtP4aPz}6%ip=8~ z%pdk?q5r9yp|2C1-{=@<)BTUpLB;=LZ}@os<3S#e{-^Z2ERCp2MW^lt15Fxhuz)KB zAc#;5*C+yP99yb+mAl4UYk4Jvz&JB1BQ|LGo|B{UYnQcNMwtz)Sdyxc8v@^sfbW(Q zQSgJhsHI#u|CAOa0LjNaA@XcD_&IgSwT4bzb$uHqsD!R@{-2yMv89))i;5Kgw8`_?F?HHpc%y7**o` zjUVGbJ5@AAPIngrn4L*X@rhd9cMp-SJM6_S#POxi`~i43Ut8F-33)$d0Dd``P!P0FdAVdNA%x zW;XgGu|%*?C=}|2LScnPxP18`&4?t{90vs(2Q zT^Uh5E^OT_yOI zWaem1_g`r)x6IxrOk6%^aM#_kvX^qecA`Y_LCZ(1<*PuWR5uj zzZ?Qpy-|YNP)D&z0;Vi7^zX^P6G0E3kCa6fc^I-)$`X=@d@jfbk>NLzX<^B1o?-f79P0Z z<(lBR*j8Pt!RweRkDjr+@eBh(niRJvX^C}e^i)hEyrnzN~)6~0P&q$UK zLAXa*FMsJwowh6pT~!)iWUA5j$%$o~hPw&WfX|btj&1T^TWPD!_5I_eRjJ0hgRtbJ?=$2H8|GU7HJF>d>k^?tY`8&-|X( z4;M?E3G1Tn--}xHzV+y9H<>lHY9_=EQfzzm*M_=>=B|%sFcnfAyBl)gM^r0~{xlSI zRC#W?5GOCuU{OHT^aFQHS%l;qxldAq7jK13c zpXGCq{+BK&S7i~`L{%!*xAPTFwRiN6;{`cuvIYu={c|Mgd7M~`(K5LNKw_ynb3+Q`1OXr!u+yU19wh&L!B5`8I@A|x2X4~#~2Dsn_& z`z>S9THVD+k_VcxWJMC;9sMUw<_s-`NcmZ>7qO6gGb$3iqF%^Wz2a8?-jY3b1?#Or zW(%A|UENDp_R_Ul+PS}9hEV$Y`D`C8|Gg!NR}?n-pT3XX@!x9vr$6z(*8lx1pJ(U_ z3qi63qN|Dn(BqOMXtt(tB&AY{!+Y3+IC_TQq?o?>nIpa=ag3yIr*b}MvN%B*iLsy$ z1d57VzvCo2dWI6B?{IpaW@Ju3kVq9a`u~qT1UE&o1m2V=p_F7OrU~(mycairy%8)U zN6*j&uq^uN;s!-D<44|tiXQx{&_D8K|HyjqulZrQ=*fS~SN@Rn3P3X)-mg>8ef;PT z9)C=a{@~5<{m~yhv66qYj4qD;@PCe;p`UODN2xAfyyQn-nz6r;P#k$QBDklTXY6lB z-UAO=M0)=U0#vX6i&y7we|Y)&#~-{^^yGbPU;o2?zjps~e=z=9|LwDUo}r5+P8K9) zi$Bh?Z;y_S{)k~m|4-W5>YjR2Z_@epk3IbD(X(gI(0lv$U!EIVWI@GpJp(I5WNV`C zitphx<&biPGt#qO9DAN;!#PIJ`+h&@20?e=A0Nq%BxZ889{oWdD@6%Qx-0xQmZ9hG zp9RDIe!Wx9*M#?E`{Uyy#{fr;0gl=Za9AGT$QodOY6kc{{UC>j)uljii3`FgBXGtL zCy}%nGa`r1<|rhY=yJW$&k{ovMT-7`r0BazF?5h(*p?K7GAV{ODNZY-NTs^aX%42C zwNwH3By-_AaNs*=i*LV-@4&`)upe&@PWPjhnUKNh&^;l2#{l=6^M(Nis~F5}}Y~83{$a(WBpQ*%YH6xkn#3Mjx~tysDXsZcsV^;-= zfdcxPcUUox1mBYk@eLPb#a-iQHipJ+jiGVb7#f$1q2P2+?K3)1`;460XY8<^#%-;q zaoKtrm#n8?yypOihncg3q0^ilJFKU1TkC0DmeAvp^%RWu9N=Jl*Z>D(_W+xv@VKoM z9+#!?xFm&(0hXn3yn*clear}48KmxCgWDwY-6dFs=|lL97CD0hwb8(-jm8d1JZ>wA zN8Y4N2fvvPmbf+kijI$=7;ju|%gEtUkJ`G_qq0jqD!J6bu*R2ROtADJ5#)e)8@!6u zlpN?v4#1Uk@%e!+`arqpIi{kf;+knWcF=OaRn|buQJI!wo0c^bT28$xgL9syYTW*T z7KZP%Fh&klI%=y*M`cwyDyh<7&)CbrKaflOEnL!{9wrU@)A4ad49)2WlHXCr(Rc5ocEzkwK14v4jtqewk5~F3#K+bhCAqS9z|yQb=U#U%3_W%dd+b3 z9gcAlk_??oy6E8_W&-xzky43ms+ws4t6Lfy zQNmfOLZmbSm7qv)m|4^xI~`YvuZsjN&Dwz%j4C833|qh3cY5bK!>DJKZVsfR^iiZv zU`BL7xR4YYPX?3uaIB~?Jdh!V1KUVcoTYn!%&6z^)3E|RIB-b~wk@e<8(ThTP3mEV z)T6yfU0G6t1NmvNjh~vWT=}5QAO+!~JMac&jVYno1NAG*N*!WWkz1)POGg>NT2~oy zmh}tT!@72iB}g4d015>MQYhF)p=KLeK4{Gb{R(vk7IlJYjSa3;N=f%+7}Jy!l;TXF z{t3bnPGN6C3Lx;^<(JTG-2*Lx$zkg)m<-%bS#aP+L7+AYnj-XSwp1P^WeIFb2rS5a z9mkvq=WH|^{PIET*$67L(YI%#x)*)H(hVvflJRQ$pn{=rN#jUWxpu^nWzVj`w6xd< zUQk_lLGxg=Z6+03eyq$aDy83QgOb*&nl)IG2@^}$M&W2dA4sCMl7a)bQ3CfiiX4oK zKCMmHX@xw#O`b_*uK(AX3zTN;fkp)B{9-luaJga;nq#WA)9_lblw>QaDhDb`j1Kc? zf|1js8F(%ewzUOYF<_@Q8S3$B>DfKtOv)6^7RsX$8NsWVCIm$@w9aCV@B&juL~h`@ zY}D2!YQ;i5t&XA@4VM+!+K8;!kdsDY=1b0m3@mN7&SFzw-$>fwVGdw0bUJ_oMhqn7(Wl(saOL? zTyoGhE;%U2B?q2us`*nV8ZNV_wN+FxiU#|k;j#zXn*(Ju`um~b)Z}f^sOs_k&~Pct zmin?^ofLl`H2RK7>9?JfetA;*s>MOpTx|HGD4^l=1NQ!NYg?b$)BV&ae1&zU9~XQmFDU3TbtZ|+2r;ulY2WR%_gtk&g9i`iJ)w`_=VjoaXEG3(rmc; zZ4FnyY`FS`;VRJ>JJD!1T>Z9&t6w%;{lakFjz+UN>9;i}{pzHQ_d}!E4)WXDL4Mf| z@(VjiqT%u;e1{$6x3hzCJ{^{E8SICPOOCV`BV{!D`=QaSY5caD#xH9cztA+>(Qt{f zR+22AnF^QqyK$LFl$*F!J!pf?q@wo}Bny=yxktw`R`{ME$l9+4D>xAx$~P@CwoVay zOh{JF-Jebm^3SGIhkG`0sohCywL7V(-APsLHe@+9xoFeF_MfM&?dOS0oljb;^GQXW zPpaxXa2(Hgq#0SPaTXzxJfH`hakL-;sWjNelo8dH3;R~f7vA(M*xL)(N}W>JC+mBH za2%tbuHNc=L9WiuKN1wNtxMIl#dSL_xXxb*Ab#pi#f|AJzOJfGL|N7jipK1K$%qRq}uTGm{{z{ zEzfVw$%moa^>~=kv^hRLao9VPw)W1XZ0}4e_D;j3sf~(KgUPK7%lw>?e4PXr2Ua(d^Q~t(9;^2M-%bvt9EXmL4!w*#V`Ha!L~rn0fgQd&vo= zcj6T>56j1xs&owK?Q)f7>;W>I;4gxrL`|$*BD%g3qzv;-BJc;QXYZhFzo{$PZ{jeu zCv8n_`C`RzDA^751Q(EUE0z%*z+SFr1<8TXKfJoQMk|_SdTK`p9iEwvPOH16TC_&% zG^U|s9V3ZM0Vz0&SFz|^_HMqUpOoc15P6n%0a04I4C`2I&x%(OdLMWq^*xL zDf>8+ijPw#<`O>;P^8il!jM*Zg~d{xSzHpWU*|L?rusV^7SFXa5aTdOFd9^u6Ie4_ zC+GYvOQ1ZHV3rK3rn?Gruo5ztD-&~=gE89TV7P3(R;J$A3x?I1u}wWcPu8&6^qO#y ztwSLdp=NfPP?gGUCCC<}Dp)z9M(Z7Ro@?ql&ZS1sKoj+#B~i**6ADx#S#lM{G9kyF zA0NIyXYO+hVViupDQA82pM5%Fot4{<9H*P zghYxYhZ#n2-tV7XIpyEuqvpAH{qp?9o0q>w@t-~FKaTpf`agbu__hAe=lDEBm--L` z+~;-l{W?)udNG}4INN}oaht8lh0br=)!>H0As7@h2-ipxrFe?Y(^NSU`um)Loq!Ri zD;nd>l>RzFVo7=4$0O!Yj|>!NM&QWB3e!Z81k3J1#s!)Y@kofeAx23J6-$zalUB(h z+aMe+DS416E*Op_jx!=f)Qju?@}y)#*XkZTDa!bfb?e0$y8HG|fftNDzw6&Y(-)R( zKRWt|u8Z=JAK?ZX^b!3;GHI)$k4GQ7*5_mCKlv9xyvz@)!8m|SM@LY0jdFz1D-y5J zYfTn)cC)BkdHd?}23@>5zrID6H|Xt;x9H8w^S8I?_DA&HOLY16=Jx#c>z6Oki_7bm z7q_qf3wpd!r&W)Ry68%kund4yLkJA>{m=BCx*#7Pbj% z8hj*sAQ9@K+cInG)ZKqEy`<&;lEka7cI=;A32c}DlVK2yEAoFZ=zp#M_*p(uhN&!I zDOtLzB=6CY#n+UhG@~n=(RibZLP{YF=H3SQ|LysW&K8!-+dF#29?1jAPS7LKXIoWU z9LHMzTNemHuc{{xT_#HGM=V@JO(F?_uE1L|KS^<65|{OrUNiy8pvyUGp$H-q*0vl0 zMA&DWLNCb|02#sZykCwJQq(YjI3`=rP-z82nUCntL`wJDO)90kp`QFp#kg%*Ul;P- zk`6ffXnBbjMU>>Dj*6m>=>n zmpEKDd!u~G)^Vg_3{-Fk%iNQVr_@YQwjsm`nyGyX4{5BWe`nz-Mfr?KW&RN)qY3@M z3=|bZC1>DRzTagD_heJ4aTI(NwOD5)LQuC@aRVS!bn1mHQbIVZ_HRcfOIR2?BF95g zBUvDfB(ScArjUZ@MHmv!RY_0}U5Y&r{GMehVn~xYJIQsZK<_21MJ&{s)0AztykbyA zY@KyM3Tu6&9Wae~R}-xF%tH9MnJS(Nl11nvnlUCRaW}^?Cz6d`>iF3@N$TS-_=4(t z_E_ZX;-QI2;Sl@AE?JEpa7JaHYDdWK4j9%6{x#(ia;*Nld;g2lJy#9znW=QO`huz3IrDqM@>$5bst zB@w0ZtC$U=AE-c9f$`Y}4*lx_R#-}5hf|3p`W3aFcV8_;&4U~C*lO?oN0t4BC3d2nvsx1a68jJ zsObwI>!`i_Ksg+m(z}y-;^i+@3fvl>0g(?WY)4V>HD*L&!zCk|1y9f&jsBW(e78k1 zc{EvMg!4VtB2JKQY{hh|Ldn&QK4#s}jWliTUhWczW5dr05t0mf2@)!nuzasrw5KX*!22MXo@2O6 zpj*(}iSxXtsw}r5KanKQ`#MmL=kM()#nX(f1g7y5uu2ZfVwK#uh}lA4Q@Nz6#1!n@ znBCLE*~D~o5S!%K?P3!PdOJ4Bd#bXD4f%=KB=74$Hp$;RkWD<8$12{EJyI-|T+QhM z&JN0Mlzegkx~C0VOoDoM{aONg4K0dSAJSxRF0B~iIgkEy^)?s(UzDMn=d^Vn(&V@@ zY)>KhJ&j43BRhHpbk3v#Jn5MI(#~0@_mCz%^KPejBt5y#Sx3U^oOBWf%EP=b)WaMM zaQu~a7_qLqO8-GrYJ?%1;w;#dRYrvIKP3zNboJJA568=Qc+0xBguF!J=Oqo7>XHS` zTk=ig(#^E0EIVwjzO*xI^#|0j)VpGqQhOXl(rQ%w!kfb6crWP)59dx`^%=@SXD-yc_LkTr;p!bu^Cgs71XE1ca7 z%v*DkB`WG&m0}l}wCDxJ>Kf;eC5h}+k5_heqwUk@uvXwwkS;z}mxAb`5V`~!q8yQg ztryEGBGp8Mt-?|2Ez`Lb5-}sL!76tpYD>mswAHL)*@0~Cp`UO}Bg5(72AP*mkeLyd zS?Rpc>3mKTDmD$P;00Wa#fv5(OSs4|O$5r;5WIN*J|pvAis<)!z6L$YKtlIImV_h~ zyvM^OiPmsQ6nRi#q@MIZ7fCl|Q8!@`={+-jb#W4PaUy8f{Gx?)oYI7-OZgq#rJ8JI zt^$acuH*QM#WbwAvzPO?Ok64NtVZ*5)rDFS5&}v!hzj(~-mOkm=5u5hRM{Qkm+z1%=`1GPx=uVhr@Z_5AbL_eo@0IJj<<2Vn=S=j8XyCj#+Gvw3%b7-5kI* z7VtefZtAR&hx(pxc&L9m8sO7e6rB0?pBlpELy2V zJ;`@gblbGl#;j7UvrS?2S~2o_vdK4}wKn=jf%rz_l^)&-^bYH6nJ4P-t7RMyp zLCP(y8_g~7N3G(N7I1AS7o|IUrV?Jfdgs=u_F6&gUBJ0&{J@9q5 zATHu%vyETj8q5mY%hX;lkh&u7*(| zv2-VuCBhY{^-Olo-m8b5vkuhf?40OJ#LqfG=eJ)@I-KAvToRtoi`jTXFW%nBS&_rx zC%H{&Qm$0BPt^@t;SI_NXYm6;36B}OU#BLr&k}XW!HQ~dBG#$q-YDS>hNxbvFHDw! zV5oBuuel)E_cY_8gXkQ>EN}B|1O!?dmQktc&r~d5sg_M|Nfo6qQA$et*RN@E&)p_K zPpf}*Ojs4F(oqI?e7Cq`=pb)Xztz<{CNx>}bX=f|Q*{hRPIXr|>^)PFbGXBJNzBj3 zdW=m`qBoc(&3Jq0wq`Wlz+omME6&jQF}nTlGxYBE0s+VnH}8FSjIPdaZhn4ohQ9gr zSL9vmV)KyW_uFsZpo^jbd`R-}ea2R2=7xCBGjjpI*VMatc$>y9JAot*kc6V&Z)~%O z*$l_td>zMfapY$C7Ii@qK{EomU zjH9TlyYC7HkrN`qE@04oq+$twcCo^{cbt#ZEZzn>|6HWf+bxTu{u{PdHH&kpBN)1K zh>N?t%UZNf&((PxvquxFgpe-zAXg+6#cNuG0xY`C`PML-J!`tnpDw*=x5;0u`o^U< zjMr-R*LQlEk^yyNveVHl8n*Q_SC}T>7&xAdswW?5zvFxQfkba;6vgBbXM{JnA-T}b zuW-i6CU?45@?HIEa~B8sggG^pp=P44rlKr&N}AS=@^NuutW>sU#N z(jZIT`@g^+WxE)dwM#zWRT>j7W+9HjK$c72h`egpK=W^kd7j|c+#PIbnm?M7L9Sr0 z=SjfV_oS{sQ9wVJz~zxNdlDv)6wxNn{@XvHzzc?5f1i#_{)|fw8hxfX-=xq$>-^xg zmJ^h#&A0=4g`;wN_X@4|?p1#&iu!Ib0qnLaZ^xv}=AGn1N}rD4w%H5EBBpg5R?V_N zZHg6Z<6l@3)P}sv2r30il^R{orTMdi?6rr3hQyK^ zD%%3)9zBP-W*%F20@U|~bR%z_HThFvIYa{-jT1yL-{|x#FsJ0wK#!1T@$UNdjcmH+ z#LD5419=ycd8)5+*`x(gv=`D?c4h-3VraYQ0eb zbGRX18C(ry;r1Mi8jHw{xl7s+YS8%#TiJb&G!h$3yWLxpI1$Da!j_GUU+Tui_fbkR z&XS&P+*J_w>#)|zt`!hWhW>Ce8%?57Fc}Pk;b71o;b=0Lj{1Q=9uEBeh>Su$#oI}Xw5hwagGn98pka-co#knVinW)2K`SYuvF3OIT zC7>D*nzJk3CCDX44db- zfSAE#(Qd&y>GRYdEIeH3hNSv*Rx)g`RoG4&$dZm1$mHp;Af#^Dk&~vNn zV^~QFXtIuD>5tVfT$3&Hip(0z>oK2JcyM8|R7s z^VQV}N*}@#L{_QTyr9{Mb|g=Vq?D7QwwBZ*Y8#;$&lOHhgw3U&Uh2ne4u>pFp3^En zn6wq@zmN2^2c-yAS3;|eYTI4mv~Jj2%CDfKrnyS4H)3x$2EVs(1*YlhN#2Js6qh-; z!h-g1!4UR%KI2Sy3V?*_OrcinrDo$N-Jfg^ggt0OP>JrIuI8(E_iWT)^DiO~dof5Z zlGMyjQ_Bq9$jPMmD*p&s1-CmuFw#I$+Abvlmqrq$ri)dmcW<2B6h zof+bt8;^#CVgkLDbpj|Hv`X?$I1yJ?o%n_|d2RyiV650h<<+iqxMYuss%{Mz<~4Su zl=0roe^cBf{(06wfnUz38i(IyK{RytWv>eh;V)r%Sm^xjtHkQ7yjXGudGaNrEYyPx zOh)ld2P%t4$Y5NA^~mZvOPQUn*)^cdOuTw*V`s{2Lfil@Ym3YSnP7Ijsq~mn~iC z_jfkm_!4Ijm}`zy=9#O;oim+C&s@Hm*8(inO6Q-XJD{(KW_8`6u=Q3XqU*+BpV?>E zEd)cIH)O@KO{d^DjKnIPbM*ZB{7rX;!+R2`@a2XJvO2cCXqY=4Dls6JSRnb9-Wgy~ zLlj2i$>~3cN!o9UOG*HDH}oGw;rJckqKsmGhvo!Bwc~}H0yv1N&o6G+8Um8s>|Y`X zGC}e%0780Hnxb|51X;OH0=1rVkXB@sGF7BO)2*rRrWrI7^#x5Mp!&s5qPjfToon}n ztzC`om%n%oqF?gFXKUwy@-J}Svvu+>vf?$eU+UC<@{yD$JV%nU=zRBS!g8yYrwC1z zoRmecT?hOml=4x%+FOU8_On3TxCDKHB>st6N2@(}x?Q$fnuA1{Bs=c^UBxY13ctv|f``vvt z!LMaU1Vb+$!SEQdDx#%!dY;N{TUvfPDj&l7~wDsrom*~pZ0No zKA%TEp5ZVev-*+t8d7;?L`E5`plyk=x+R+tr(ts?pH`-?+ubL2EHJ+ZC8m}R92m*< zpY?l8A4ozt?@Gss!e3B6Z=H4(Y9`nWUp&*?h45?hJZ-?d0gh+3#2P$4P?J=7!Yb}U zb$$coOVIFoDmLcw9|Kj9t*N`6B@I1;3FLK>4hEX*zvkuCyujWIS00+AxSG=SQdzx!st| z>t1d#C2c@04astu%$gZl>fwMYN#?~}9o9RkS4Zl5gTj)W`hGACM`RdGPoqJ9Gzj|R zc^LZP)Q@ICFq@8pD4P3t5ca43crqT(hvOiaO#B(avuNJmg^;l$vl({stqFc0eIECk z#p?Kq_5C}VMCLTDgyn_Bv+W*j-N&@MX@aNw`UJ4su+`7D`o!mTcY06gp8&Ri*CO-x zkg0>xdkz$@;n_Ci_*&nH+fY?1ictPoZ0QZtbx%r>b|u{f<+ zPxMvh>o`JiUJz0b9w?{!AUaMqGZt-B=VlhI9e!Phb53KeL$?&~y!*8ScO_h9^nu1? zL0<9@$H0M|Gg!JO9lNHEoY{JDo|8^$-jDLv%uePtW8(WfY-`H@+IOC+-wug$HJoiT zhk5rZMPN*)T|v{l-KP~IFvpT@L|s(^%JyVkT;}7ff_ma?dS^eX%=KPmzOfHj(`3%F zl@e|>LMxzcsk{^--9}}A-j?9%Ecq6Y35&>;iTeLW{&9P8bqCXZ_wL2jorjc9 zCx6i1U5XzQgwgHARn7?V>4J!2rP4%@Os=1I*RSCztZS>f)V4thoGpmh#ks}(CRY23 z8y(U4oMa{O1O$LviiNs##8jPvC*UyN6#(zx42G%St=&bNzl?a&8AFBWw|vOTe&AgS zfMF8gY_`^ixF-183F673Hm^W&vpJGVPFq^*#<j3FTpgyloXq{m6xL>OKU$XL$*T<6mk6T1kI!L0l=CWwQ+;iCAd25hg-kxKaF4w!pvP zc5g`cmS4f}m{B1};(dm(cY`gXcUDllOd_eC2wJko{fAeqALAKDO=VHzi6S3p1GC5^+ubk84T@!WQuMEe3t|KZgKa6*$Gw&J8*LIHm}~&P)E^m^s`cb z_slMkduNr9rAb5|Xtc($bV=@&>>{cn4Hr1S$1lIuVrwA#XPS{8;PQ(tk?b<4cA@N| zqvlw4rH@^~Z0nw*UjFLNP8&L^2ebpv_xgT6@TbAh#I*;L>2xrh;_1wvhU3%ed>)eF z2oFONkuaPLMtDA)&%&u6kU + +### [memcached-1.0.20](https://github.com/truecharts/apps/compare/memcached-1.0.19...memcached-1.0.20) (2021-12-03) + +#### Chore + +* bump common on dependency train ([#1452](https://github.com/truecharts/apps/issues/1452)) + + + ### [memcached-1.0.19](https://github.com/truecharts/apps/compare/memcached-1.0.18...memcached-1.0.19) (2021-12-03) @@ -88,12 +97,3 @@ ### [memcached-1.0.7](https://github.com/truecharts/apps/compare/memcached-1.0.6...memcached-1.0.7) (2021-11-18) -#### Chore - -* update non-major ([#1350](https://github.com/truecharts/apps/issues/1350)) - - - - -### [memcached-1.0.6](https://github.com/truecharts/apps/compare/memcached-1.0.5...memcached-1.0.6) (2021-11-16) - diff --git a/dependency/memcached/1.0.19/CONFIG.md b/dependency/memcached/1.0.20/CONFIG.md similarity index 100% rename from dependency/memcached/1.0.19/CONFIG.md rename to dependency/memcached/1.0.20/CONFIG.md diff --git a/dependency/memcached/1.0.20/Chart.lock b/dependency/memcached/1.0.20/Chart.lock new file mode 100644 index 0000000000..89fffda867 --- /dev/null +++ b/dependency/memcached/1.0.20/Chart.lock @@ -0,0 +1,6 @@ +dependencies: +- name: common + repository: https://truecharts.org + version: 8.9.10 +digest: sha256:76ef16a78cbfe53b0be5d9fac03039063f57b2b43f927e4cbfed13be1c939fcc +generated: "2021-12-03T19:48:03.942785444Z" diff --git a/dependency/memcached/1.0.19/Chart.yaml b/dependency/memcached/1.0.20/Chart.yaml similarity index 95% rename from dependency/memcached/1.0.19/Chart.yaml rename to dependency/memcached/1.0.20/Chart.yaml index c53a2871a8..94dbdc79e1 100644 --- a/dependency/memcached/1.0.19/Chart.yaml +++ b/dependency/memcached/1.0.20/Chart.yaml @@ -3,7 +3,7 @@ appVersion: "1.6.12" dependencies: - name: common repository: https://truecharts.org - version: 8.9.7 + version: 8.9.10 deprecated: false description: Memcached is a memory-backed database caching solution home: https://github.com/truecharts/apps/tree/master/stable/memcached @@ -22,7 +22,7 @@ sources: - https://github.com/bitnami/bitnami-docker-memcached - http://memcached.org/ type: application -version: 1.0.19 +version: 1.0.20 annotations: truecharts.org/catagories: | - database diff --git a/dependency/memcached/1.0.19/README.md b/dependency/memcached/1.0.20/README.md similarity index 96% rename from dependency/memcached/1.0.19/README.md rename to dependency/memcached/1.0.20/README.md index 0fde4d800f..5522ea6fc3 100644 --- a/dependency/memcached/1.0.19/README.md +++ b/dependency/memcached/1.0.20/README.md @@ -18,7 +18,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://truecharts.org | common | 8.9.7 | +| https://truecharts.org | common | 8.9.10 | ## Installing the Chart diff --git a/dependency/memcached/1.0.19/app-readme.md b/dependency/memcached/1.0.20/app-readme.md similarity index 100% rename from dependency/memcached/1.0.19/app-readme.md rename to dependency/memcached/1.0.20/app-readme.md diff --git a/dependency/memcached/1.0.20/charts/common-8.9.10.tgz b/dependency/memcached/1.0.20/charts/common-8.9.10.tgz new file mode 100644 index 0000000000000000000000000000000000000000..635c25c8f45a30bba38761caeb6173c2890bb31d GIT binary patch literal 37602 zcmV)!K#;#5iwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0POw!ciT3yFplrf`YZ4->9=;D=+&~E=x+A8u9LPon>aqP(|+&W zdyfN=kcBlxummYb>*jy|9J~?$L5lKQ)2(@S8;b-617I+i84PAZvRsm+f3$#E-dn?E z{Fl3b27|$1G9L4P2ZMq8?_jbw{L64W+#ii6lY{-qUk1a`{$ThQFt`U?Do;UknEhpN z>$cp^{Xrg>;-67QF-fLiHR`}L)jwmHBbs+2M8gcHIe+&J z;siuH3$jF0u*mb2PW$}}oG*%5FC@!;o)swMW%@8pX+O^p>MtS9QP!951u1rL$Qn{0 z;0oq2qdfttpePGTlA|Q&P>cS-WIPxg?C*Cj(fW#H5uJ9rplqzuRhV}9i%u8FW-f~v z(p~-bZ!d?v;iNa{4!-RyAx?6L6O?gaXbEvV1vr_L|11IbNOsWyAc3sE#sC0NWO0eU zQ$ZA$806~|O%-~bmBQtD??rDo=seK;%k{s4ae?SPF@VPPKOBtqMk9CqAM71GuK$O4 zo`7x_yiZZ`^T{!wDGKo%hae=$9A6X}WNW?i1pH@&=CFu!R`?VlFheo9>W~yAt2BAD zgcoSq0f56gT~VtoT#!Sy zAai)3IM;vD1sv^9rn7Jl?oVc;aQI>$j%VW#?T3?t`D_r51~2A&&j)*x{m~H3qP^iH znvdW?G!GX%WXDB{2@y9l(E`@E=p~W`0calMGSTp$>=k3(nAw z1+OANLY=%OTe=TR<}hdNu3~dZWQ;ICwD}tMQ(Pql4!tI)G@rKi(hB zN6+`3kHdWwJs-~ZUrhF*K{SfsY&Lo^*?ayXoV=LrhtX`fhxUe}$pD6JaM)_7(~K;0 zh~sTXTGgu`XbrjLIIHrTVOgU*>WzCtHN4OFW+6h+XaXmD&u63IFq-VoCg}Mf8pFN4 zXfTYz=cC#4A)4$BqWuH({Q2H&{9*vZLAZZ_=HnJ^Z#B9J%ISiTeB04g_3B4gLvA^` zs{CeH^~_>_upjM>_Xa3B2#3*lZ;qnj^Jo?ghX)6}lXzUA;5Ra!x`NO-R| z9Q6ijlt<6^_u%tc6g@{MdJzs@%))3q8x97u7twfzMuTuXf_sC5*^6ix&LA4X(O^6} zn4lNq=kpgKYS;c&WDMgJCurND7Pab!`A|S@Il=smH(n3}YMt!ZlM0 zV8#$kW3pbNB!31Xh?XRwC18w7coU_a}bJGS=bu6DB?YYF@Q-zawwpagyT`x z=^G&Xx~&c{YrVxZpMrni(78#Zfp0rvfDg4>e%1jXKh0*z30PptI6R2)66bu@#fP87`?u`% z6zp|6*xEV-Q!RH0d%Lhpm7L#xU(1r^hNpO;B)R1hCeaSv)ht-;b&MLhfvF=4@fB4C z0kaF*P?>$^H9IZYS4yHzN}@v#i}EaH?^5nOF&b;r0$;ga1Z`FzYreI)OnbEa490?L zpmG>R0D_-LhX2KeGX^Il0*6ITXb5AJIfBVwBTV`3^tTR_WpKiYL+@H*$74j3U7&o* z$fjH|k~c1K@`)YQWH5{1^fzmn!Dm*b@3V?*nE}0%;i(Nm)F*=FoV`usE*k1x>v}EHYyUYZ7R!3~jXY7~Q7rm7bQ?sZjjCnor zW~(YVG3xLdAE}VdSnpDj7O~(1l*x@bxWf5@cUnq;Yf?z1c+IBgdj#MW(@{36~02FvFZydf-g5M@1p5 zho|c#ho6qHao}E>7koTZ*!*mp?Pq_(Z6_9>0I} z`uzCt-Rr4T3FjEa(FZhFzvY_~m@lS$9rO|sAvOw~j+#{^{|S@PJDBqNqP99nWna2W zn0BRT*p=(8QdGRw#k$~#Gb)f~m}EF#gD{3v2-^{!&r!xmI%n*d6ZcFQX=u1WQNaX6 zRqu#ZJLXM*CxEVLj+R~4mu{Hh9EUJg5@#HfE2`E!lPI8MmL*h$ zlM9rQf_6(p>Y$^~Y(jAk7KCyEl#zYTHbC`4X)V7jP$GpK_UTw~d9Z|+h^cc(@G7PP zCR8z80zS!Y?FXFEoGqE3MBPsv1Bl)lctfuY{vVjt1AymN+n9=qoV^7#E%|CODX!Pi zi1N`ht1Cq2TT_M zf7eTmK`m0saS=N;BYn;N7-1^ShPToY{7Wh}!7z}br7&nyX>y?mX5j*v+m6_*`*Ne^ zXiL$RAx-9f9?c0|N*R=~=YRYoL-YUr-<<}g5t1ZCX-@m9URMePIJsaS6UIyoK0>>) zVE>8OcW`pi%@;_$-tCC(;Z*#5i<3)g6U-4zm<~};#I*uOgA|1YUw0(Q(dWDu!W7PM zjB}=tkRqo{cb0m^|SuB(O4j97DG%!;prF`lDv9mc4xXS#rCjgZE7n5+R#aDJpp zQ!X?ENI`_TvlGnL0Ox2)d*C$;7j|i->n`950nFINRRS&%m+F{e>cC*1gtQQ$9A!(K zh%S&ULRk;|gknQ10b#iSdL0|dnw}W;m9TY(e3hE|)r4gU%ZuwtMrNpT3e@ekVL(D^ zQFVnZqVYA}$9RPjL}`~%D&~LD9AK0D_;+&Q4?tmJqWti_e&ifoM5h-&0VPC$VLmU?wI$LCjGKATe($*e9d?Q-d%gj&g`t!X|yN3Qq z?%R;NJ#2SO?|$H48^NE7Jz;BdmwSny*r^Hhj!9j@ekAm52;CgCJ0^1<=(`|tmzYQL z{SzipVhWZBCKNE$9#R0o5`MikzeF?H$_H+p>f0mktRhL>mLExDlYlh;{BvQNL$FsM^* z+4w8TCIL=LN)y(8kRT-JPK^Zu7a0uEyolrV17Xi`=dGSp_6t{kG;|-urnWjlp~`w8 zPpp0V=?1`u9u%Zb1*1q9{27{@ZyPEcQza>0;uvPir2j1=$!`^yjaX0l2{cYBds+4H zN7nFcX=UAa@KT+D@ZAS58Jg-ic8Bi~I1!r$ea5yUZhFtdUaz-nFlT<0!FGtHaCm_U z7%DK&48tTpEFnp}E5!P;`U5SG$nKF6O0c(u2Qsl(J72-^Y9 z15)oo@*qp>1nN{vo*X*9N~$MpUB#mh8CJ8ub$W-x|Hh_c;hfc^Yl{(PqF zoo`N_fnyS(6O!e|My|gKvx?VSt;V;j*1Jn~;3Oj}*6A826tMv;;hGV4hJGz@CRm~O zWZ&a(c0;soo@}fzr<=iNFQQOFoH{9A%7@K7M%1zjCfx9!nU#7YI)|bf-(&tXXnI?(W39 z>gY=1%+6w;yw~EGcY%O$F2TR_?AiTPg8sy2O!}*%NGb!yH0T`xC)%}CSWFEK0Vgy^ zFal(5w8Kh&N_i7}HhOG^<(WMjp-3)0b>dIO)R~(PS4v9UORQabu|s5w%%JtfiyLJTrLCS@HgSDM0fS`nk9zXfAkV)Qfk@JEgsNr-r~{r`oTlk(bJC#P*P7qvwh#bfdeqB*`a zzg#}2;($1XAyTfBu*eD9+(RgoEq?sXeaa|+i6Lf{{zxWF#spxRBBswV`0TfAx@=3k z50y2=N7>#9p9UPS%W<_%U^TAgy4ay8<<6G77CH<^QsjWUp2#!#rD`1|QMaISSDd?J zD>+J+two%4XOQC17;0lp{#%Ut(j+T&V)}K8_G&A!w+^-FxEIb8Bo{dOTvIfUX%~jv z>6R^^;18}W+_9RWlt?+C+&!rcqk95A2;kIoV&P#iUho1YK<$_m@QIRB@Z^cJGcE|t z%U#jjVfdGFkqXp*B9z|`;7HkL%xb?(A*INWe;Ayp*l)YiAFdaZ5XPm<;v$v8d{H9B z0F=@w`&8;5C1xiuU-Upblz_He_pNurg2?xZh)J(Zz%ycyfWN&2!`^V*9aJElalQS7 zU*EGn8b+K-OKQ`yj5lKU)26kO6j(D36yYJ(8ZsA<+d($e7e|~rdwc4VOAmZc@`ZHY z<6e@CJqpTVGmvJ4yR<@kcEo(-F*Ue>b`BKeYf()%kEwx?a^jcHyIhNa+@DCF8Q6PT zh_W2dxpi1G8Nlz79HA_?&VFq2f1)VON5rnUnKD|TIUC^yLHMI|my&lI*bY>(71jqN zyo=a2C$ML5mZV5>w#j}x{T@V!i|)6Rsts(blC@}|R6gU7~ z3`8)8Km~wu__6jiXZ2V?OWc?fG6gf3HBs8FsjTH3N-wG!2c!}oeZ(dmXDhf`XV(0n zjrJOku3Hm?*%Iq?9bMe1kjXFQ*~D`4^N}R^e?vR5?sTjdmeb!l5wAK)#$iF_Tye@M zF^$p5&qvSXpFf>E1L-P!2GBCi*ROE)Ozw5h%GLIa?^8_nVdNo>$c=-9bY*H(bCQMn z-fPP5HnYAML;nkoV=nb@l_^>4fCQP;$Au=x;2i5absGLJ++>gwu}_Hue-al2m(5|5t|2Ihmj53v@23|LxN=SyZ}#vy$I-zm>ZuHCvh$xxGrn`*#c@(I7`o zTxtMMfOJVTW=DxVla5)Yf@xg4${Ekqcr7(B>ATb`N)kIpDX~Mdd78N2xu|u3g@1LDzel% zK~yeSWgF*y#hHlM#P2xjrNgGOON$v-A0%30ab+Zh7t*2JVvC3Tj=?)(hCERWGIvP# zU1?$@Ql#f{vbY|%BoWd}s5HXQq$`%3J~6Km%Knc8x|MNU!04A4b_Ir1U6$xFET}Mz zL*2D0_<&&aONMjwo{6qy_s%}0INNRZ?_(%LQ(NTG3Y^&d6y`41?~BSFgUk{|xZu{yK-||4 z%H0fte3{NE*!ghyt~-O_C7UOGvtn1R7ztE+pNT0}fZ0s5x>TR}$UTXF=c`IIY_l4E zD0Pbeg~Z42dFwxm5&Hz@2Si_P*B<*f;3hzi^&DOA#JQ+)@RipspEmELohwGObL%!EXSsCrdjD5PIJCYzrqQY zv-|HixevGWvm%++DZ(w5epV!pbkUwJbTkTi*`CY+EH%=l42*HRsb}Drh}k^#tW-Bb zs|}N{a5I%wru%b=SXvZVnX1Cq(}yCGTq3kG1Y32y$d!>4WlKyc*X@Nbf4Cr5i3kL- zSQ0@F6y+yn!HVMO(Wa%`-cpy=4)<(YJ}JyUxpW@{ObuSHUzz;$*8oDh3iyq%S87sJt#QeJvv%ED_(r~S%nHTIXRp_t=vNJ4;e_&Ie z(ck+s_`Tw0Dq)fnGx4(onWB(ed2V5gP`pLh9Ks?*X<^ktngRlOq(6IzLeFv2qmDW{3o7axvgx5@}Ke_;B( zZ}RodxI9|lJl!&KPrJDmg*Q*MY`x_yyHFozxQ;nTA|plGU#`2lNN0n|+Xz%GsjNH<{A74q z;3UE;92GETGjl1-4oE}{p*c)K)a!^5=EidsC5_5RSNzPH2dy$SNA{M#G>yQ4Wd#oS zcVW5Zs?(Dv;C%-8u>puN&5basO!+F(N-M@|ZHCVm=v4f@Mf;;4vG`@3afAy5)2@8i zL_jQ@Ty)V&9K-h^rT8M@VM3VR+kcYq#0cW@ z)ozFVI<>B18FWVhoO5sfwSkie__%erq&BFj*19l>x-iLcSH0QosJ}c&<|HLCxmcg3 zY)Ky75>s`zl3%G5_bOEbUCLYNmV?0rg}Uac4&JtepHDB*)fD^{Cpo%6+21&MsEU7Q zYxS=*&v0@fzFaL(@-d+>$8^qPRXN}Jk$5?6e-)hiZ%!zjoDV`yVtM0)-oc!4n0$Up zxO@zBBTh6(CZ8Y17*eDiU!>HAl03uWZ6D=fU-+}J(MnUs_TQW+M@Ugfg>1W%P+c&J zx)OnIPB;ysJnV8Dx{TxTKf6$1-rwyQ{m}D@(MFv2R7kuYRU;do6zjNnRMbKv*u8Oev36qG>@7X%xgLTnG|iCg(FrUc-G?FIaX z$AU3@Dtw73$clui&_*ye8P_q!c^)GMS|jod&>~#0#^2!tv+3=rL*a<%b79pFqgs)O zzKT(tlQY5Hoi148Z8011;O; zv0=ptECm#;PzGbRG`dU)W<{xX#MSYiB7UAPeI6QptzZ<%XnY%5)*fCzpB&5Pd*Dsp zqG=!#0`QwIIGK}Y(jq{L9Q=b68B_A9Sj^KtU%kD{=d=s+?t(1&>gbaq>z1){RiebM zN^B^HqyI!_@#?P9#BUffLcVqYSf%FGAX8Rm{p6W8d|5W6L&r0n1&w6D%pj&SY{-J< zU7Y4jbD~`RZBf}^se6ipg9s%#hQfnN1|n2;9oE>Xbpf5Px-Q(+Fqj}KZBQ!4t*~p8 z;zIc@D_K#SS%5BEIx1b_I6l3?dAKkRi_m8tXKGSPhXltVM4>;Bi{nax~?;*yGtiaYm#wtzN|9cDt`86S2N446%b5rW} z#?*>Am5o=>@$3yM^=)-`FjJ5TuFT~=;Z-EubHBb_!$7*to>3;3s|LWziX^FyM9H&o znUuq0#j!aaOx6vdYfbpt?0Fw-!py>V6K-MDzgMPVjh)e`OfbXcKLE1}j-kHu#WXg| zNKe_Dy4)%vLV`z_yRJjiRV*g*4t-8Qnu$iN$xwho9;8-ujOVG*=9z967Mj0wK|&IP z3%CdvUjpe)+wZL?YteL>G({Jw<^YcV0_J*Nnef2&{{>2HlyjN68I<`!xZ9|3v4m-= z0=9}}p)O)Fwv)nz&Zvennj17_*yA{CiPtNfiJ)etP$XQ&#p^0K3I>p#?_4|A0uQh9J)~$d?xKW^ zVC2^BiD2S0!UNW;b;g87?jFl^JK5$XVp{qoqKuA0Cc>$3Ax7(>H5Z51%F$KY1?7Td zZ~VOxk$8nnk3Oe7IR{o|-&7>h(>xe~PdGZyDEy>&v4zs9Op&03KIami$qviF6{R1w zyFv6e?#On)9?ozKYS&K2PH-0`q?+MXs?57AGzG)a-e_pN^nu6pv1O}MPamK z6nOIFUZPTPz!{oPn-U(}AS#8`fcc}0QUUfR!@+@|10&=@g$@!Oyh_y$#iPtQXng3vY1>5 zvkzV1REHOc$tB)GP-~W#RQpZRlE$&Es07+eN*cCTOuC^|RA$t^iA>~Vn|=t1$QWUt zJXDG)#tkw-U>`rcWxak&E;0YWh{JZaIMcVvIqh8N>tjL!khN^svKKK?w}bShaVg}m z3jObTtbkWvmmN2<3kNuXtK0CdK1BP`P~~Pl!+!826Jx0O>z~~B|<4m zn8=0^WuRni|1yQKF0kG@k*OJ+Dx=Kin z|{=r|s;Ewz1eF~=j|7CFNw%pGBL7waD{&yX|59mM&TrH7jpR>3? zX@(OKfn!nT%T0-hdnJfN`b)`3LrmXSd0)%qskTJY>wMS$@}+Zqt$l_9QJ}X-VF0>c z*cQyb;yLL3ETje__ij(J9a&HmeY!{?zmq$Csgi4IsN(coC2$Qu&#ozy*Y=gaeCc$% z-40B#RA#2Yz^=a<%}@@9olBfVQ&6*_I!ly8;q;^YB(JZ_PH^<3)}|44F%#bzM!$gs zGajCUF{`Sg&GV+tc<*HTJpe4M)0FmCLwSD1u)V&n>3``4#gsES3IG_m`zA_^Eci`Z zD$KFw0IamgHBgK)2B@I~VCGP+15lPR0PINsD9>{dWhQoMz=ug> zDl9Ut^>=+!W^nc|o{Lj%SRS|;TFT=CCB`&DW2)+@3Gt82TB_?`-+{O@F0f(!4@bj2 zXZ`Q*9gH5=|3f@{{eR#q*$D-w7lR5~rTj_+8>n5tnttk*u?Tf;#KeO}8`jFpU~+-L zQ&!;_cv@c0nZDFQLiy4bZpzXXRY8jUx`2ShfErD7zkKQF(*5s593bPo&5WN^31=s+ zn(zTC8(2=PwIH#f#5x#U;!=wI}r|ZHj8@t z+$MLOA#@odKXo$aBmhqvy&Nt*eHVk%? z&+SRK#y%y{VRg(K#@zvC7;tRby~PkcchPV$e(R8O8)Pf!nwc-XazjZaDTzFj_$VaY z+vC~)bf zi8yf05_}BMuT4GOAsOh=BD+AKS0r!+aSUfM(nDZ1F!hKOMy0a-CH(xcd@m-yL5{E? z3T#YRr|eA&D4yf6aL` zv5c?HN|U_RCWsp`a^#-M43=Z)BZel-Hy;6^EdPnb5y}Fi9q+KYgn+WVCvN2#XFuL9 zH3?z<^P!I9Re6ymm4I$;GFlngZ3CYwmtVFMsq2qVX%R@0ek9h$DhinsURWN zxb3#6)_7&bb6^>wOevba1VPXS_iCFC_MGW0ApJX9mlXpwgu7+$)MPlllL);pYxlrtD$8WyoI4}JDZ|XFH;ho8m5HC&KhNFjCLE!iy91fsSMXz?hG~< zQ*Aw|m^p4|RMKdv{>2 z@_+5#_)z{Id*l64#s6dc$p0VY;r#y;g(QiX#AY}FGigr=axsCC%*B^GLGo%@zTqZo z83W`EUr($gJg>0^n3olJ$i7|~V8Yxg>R6Z9oXR@-{KvDXOAO0ce~p;2E~`j)fs5xV zO?b>;Ta@;qw@Qud(YI=ZYB<`*ejmX*}ky1cgZ^+3%cF=$qXX)0Nur+HyAszURu>iQ+yOG%c) zxE8Cb2yd$;mCpbBTLe7v-zt3A`(MM+;K05AH5xtM|9Ft6a{uF`4E85;%kX3cH@ywQ z_dWk%P`U~?9ssEmgOi_+O!KOl`MheQWTo})xPyKLJK8~nqr<-oHq2k_%A*`!%}j6X zo_jns+BMFQ7;;_rgos0|ly808quP>d<`+i?{zIQ_to=qyfv4TJXFp_)H&t#0d-2gV-|JWb7`u})u{K)?w3z2aIE5fB3mfWpk&FphC#?n20%L zI+kJ63e3O5BIjXBxM!1L4HhP38BFs7iP2Z&ILZ;XT}Ep>n_4-H*0r#;zh{M8S7Guz zGwd_}Lz%kk4V)4nlgMv3ec$6G!pX(sEN<6KMq(rb!N3&%n2{oF82OG03S+LDt&cK&`s9=BTm;3{0pGM;fA)k-pd zJUy|x{|jCGE+v2s`~P5n;GX}E4@QH>{r@2zx&I?@>dA;GH}U$dTG?$po3ZBE0`Tv{ zr-irt`xO3Kpy~!D?NW?I@dRV9BzjHD{@+b~@vVQ(Xdll1cQhVU&i@7nkL&+Io{IfP zB}=-Yy+<38n;d{u5canIzbf*(VF6OF9RE5+yfyxH^0Q&PQE+Y&??ctCiS|+Y2wTmz z_Yqc|Y3n0w_wJtJgXjsin`>((Dywhn`Pnf%Kh?Q3wTN{SQ8sydo+^^u|Zh z24bu@dukl+$=B0Bz0zcptEZ}Gx_UZ8`un+h>K;6Ldfw!z-T$FbwC+L-*d+fSRL*}U zND$^yY7q*e;LV+G5fGwXbcan5BYG*!a?G>DNZ8(Z54u$C3^oJ3e!xHsa)UnJ za=AChZ>TK0x-bi#Ko7Oc?lJO0Icux($oWi3EG5r!e1=wGZffbix+dkZ@`>C`q;rj< z&#yvLT=dlP6)*;%TOk-T?}GxQ2hbcZAoJb4BN4Jv?{!(-9no}I#7J=vd_XYzCBr#- z&pmv0!EfN#f|y}o%CP+wXgh7cdKlM+7bVU;ivMM`_u|EiA93Jo#pn1bpb7I(0Cs@S zCy7mDa1oOkj05nr;ye5AVv7G=o{Ic0-0}Oy^^E?xaogf18o?&{e>8OBe~gBs{mG;J z{}7Lm|CQ*U6BX6pxt>Fkjtcv)mT({7L|zL;r4_#>{6Ej9ygBxN<(`hm3#k4Ekh1ml zzXOM9%J_ksYPHNEC{6ewz(+vYyz|)m(~S_VmdTTXjJAwVmpCS~asMK{rpK>8LEP-&~@#K1`96 z8-O6s3KW2VClx<|`62*8m%ZkhmV&ULIavlESQ)rU40fA_EUK;nWz9E+sd07HonrV8 z)HcGY8L;NVtH9+69soBzuWET(Rc*CMyzOo`8|tEP+u5iKAad;uZ?q9k-C#C`8>-BP zgwX#Eyh1t3mW-$KyKy4-mvv71{}ZXo^>L{nqgANvI7S#9vzay)-mU|ZXAN&dll<^KnH^!cA9 zBDjgGU>OY6*Ej5AFGDGzI49W}eEBkMD44?w z@a0P&V4f6lEP`=3)=0Zfs*7=hb~Veom0?}}ly1|54oX(jjvW9J_Aozd?2fRzw~r?Wp>hU8sfYBw4)#yR0v8^XZx(3hH^`(fuojY zBqt$>r{L`9qyw`HYSKwPXjYORUWq8i{w{Sv(Cu=`fc<$ZR0G*kEdUu-=@rgQ8(%-L zZiG~XGsBcCl$3W&uaQ>gJi|+F#4|q$zgxrCw&$5gJO?CeK=uOXr5e|^-1m^8$+&Il zQ|&WclBCw_#G!yv;ijOU5t8?NlrH)>I?pH+cJN{*KFfF44R>s+*l1HNzs+IVZMSq= z7E)KM{r{F%0ygab!{Nc6oBw+}c+CI#AdlYv-=`?~`Q#Xc8DeCEVN9i&h3eg3gnZj# z_pca*x(~3DZ+aO)J3us@0d~#Bes}j08g+hqFe=v-1RL3~XW1~^eML$G(TyR>q2IU# zKdO9R+0%;ui;epJ`2U`({|&}_kM}_6JZ~%dVjR1j{mFRdbc+IwTb^cuE_uUdyoGA5AtaK zuR}N9*7&CbIeJZh>Z{N2r@n14``N|X82#)Tw#jd6n;!rnOyLa2ILFFi3PzFglInuv z*JtO4uim{m?rdQnG{Rs05v_xodhW_LXpYDITLu{c!z2CNwHbyb6w&2}q`t!h`JzJ|+q3VstO zI$UvA65t}w)AN{n{hg=$H1WmY`9OZW$kNdMD86u6*Srrh$1xI}?B~n0ufOw#{kO;5 z(T&L^R`O67W0d3yc#*|+o>cd$Mwr1A$)#VpVNu`S1ugG7{FBVi^(^(As|`8KacIM5 zb%ev1bHO1dA&eJ<=K8IB?FF#LeC@F3{5*yE;{06d8teyG7;3H%{K-rht@!`_>i?sW zNB@7!|MW0VmH*#X|2MaSs{XGzu}A+`-!|y~cCj}4zg^>&`u`S6y|K^z5tVvP5_hH4 zo8xi+O8o|}8;wkBpBu4V_1Mn*vXAnxWRjLt5L6snRA*E%38~^PQV-L19I1ZF5RBd@ z@p=mK%nWsRL(iNRzBrBZ`^T|={Mnz)`@f#l`?CKG5B3h+{eSN<{@=qqb@m@K$<#yI zf69DQTd0qI`;V#7-o5?DC+6I<{iht8t#ABkwY>hWUsy05E#&Q5>t7yfRny>90Jw{-q#VgKJ7RrJ5X-sAm`2YDL(e+2Q~k>ihd z(RKOZn>6s7VoLmG>V1aX1(aD*3+$!^idi5Ko=_CzGE(r0B;J zpc+!&Hi=cQb@I!Aq$m-&RBxP$wFCkD0*Y?z3TNn|fZ44wznVZi4R%^d9IG@@vW5o} z@#zN~%ShLMR&)2`<2+6LUoM0GxggVf)BlGDV^{tgO&;@qJ;+nX|J8LMG4()g0#Jvr za8&9T(;SewSGDfIB;qxp=XMd}q{99@$D0oqG-vj!{6t-1x(|(Cw*7z#zwYhU`aZp7 zU?0_2de^~x9`~BB>uJUR?>GL#-oeD>|HI+rQU8CCr*i-Ew#UC7E?J)b%8$OoU-@an z*{@Zq&C#z_;da3uws8DbZ%+T~^!(lXS0CTL-s04ljou&gz?jj`U7Z!nQMmtO;+jJS z*8U}q`{TeU^5Ol*v)AWCtHkhN)EiEEgWjM&90mSF z*J3bhh~l$w#yb{S>*@KMlhxS9Of-9a&BZMl#dhQymzpWpQ{o>G9|n`M`cw5?=GCXG ziAYJKOL$M>H}tI@_DcYEjDTVP@y#mmmg|9Cw~u!+_!H0IPn^*o-emOasgz`3$A_L` zy9GrVU+%lj+R5|R|No=6A78zGb^QA5m-iq3etQ1q(^HZEWVrvkxc9G~P5vJTuKYJV7>pnFzXy35 z^S?qT`zwr<6aG7x-f8Yvm1M#RA0S!oyoh6!A7rx)y6fI)cn4Eey98yFs^pmM*_Rkf zc}ix)@A>mwm{;=6@4f1s2)pH%4Y~e3j)zuqehI=((Xy-F_srM68yRYBti&sP|FXX~ zz%!WFO@lZ%jd8GdlUY~c?WWVMW5*lv=_+t{m_%0$Mx_Pzx-6TgG1yVyb}b`j-3HQb z|ETBxD$~&I9l)FU|8OvN@Ba@c`{T#>e-H9(&HvxX#8LOb{dJ0=yWss2*p{5%%!_qv zzV9a4`U<$dIVx42Z+>mT@eKr@rWszsY<((oeNA723&RGgQh-$qt~x=5sP33qpUSwj zr)9S0y18^m$ib&FQug9XL;+7A?55UTIBbFk?gM!s97DJQw`!)O9lRhaO&e z4{;?4*a5n`Yt1R9r#YO(-nD1izI0YPRY6{4P;iz}bd|9|p(zx!5y*Z9z`kf{t(zm( zl~N$60aa?=_;dFg)~7ls)s*U*$>7f@dWWMZMprNs93k-ICT?*4;8sxU*6}ED0E;Zq z0#Kz*i%GB+tt8YOdKJ-^mgV6Y-~{=foF*$}-NCD17hD!IlqD!fG|Zv^?Akb$*1eYK zXjE?7a4Cn`GMO`t%eonKr)BA#k>!??v1~UF%cdz<-eUCY+pit?Et;#2xx;Ba)4$8! zF0B`um2Mg@KgCvI>9Jt5(zJ*g8l=9)b}RjL)ftaZf|m`JbtEGcN{|$tYE&R|@BQi& zpo)4EwNdRRQP% zp2T!&WbD^KbY+?7v?L_J11B*JwZ|1xPu_nkxL}EV36q8}Mn_1cPXnNm-@svS=KmbQ zHOOO;;*>G$0Dle<&!OsT>}l@<;>T0H4`_wig7tD;JO{lJomv$65E$k3VE7rUXGZmp ztcXjiv7CXGXZXd8m96vKw4O;=@jCra~M);WXh>~8yH)&n- z1?M}fea6#4U0;`+@FYWX{5cT7*=HZv3T6PzV0ej=XllLOj08|Qn%#=#2BikNQWx-) z&ef^_B*k)uGEu!uj#%l3CD}L_9dB-*mV~vjDR;=~mf&_)v_I}sZ~seI;avoOXp{eU z;KctL?oTF<@!uch+1mbhq7H#`5%=XNhIn}|*1&XSq=WL9>df#5M%ajETV0K%&V>bP zZFTlRuyrQXvrS2qqd|WSvsUT6c3gCH~mmZS*aX6j>tyn8R>ev#P_&-Az&LiO%Ipu`r5n>u8e&aYOg=% zC`%weZw^dUICaTV{53L4+SYF4L-i2D+uECxU_;5b1V-P(7$zagn(=bU)~Kk)!G32U z?>14=}k<$3b;pr*-SL4q7dVckQX# zG#Pc>polWwb~qP#21Oa?r7h6}G_g~gK;E2e>qS@T zc3RA0Oc%!_XKKXyFp3yIR3uUN)f(Mq5LV-SA9L*WY!7;7n8B@`(L$NMGIL>Z8?$B2 z?3pG_ktNACclOGc#t!k+yvAd-rneLOBM&dZ*o<9>Z!!Tt-mUp~TKo0v=)^c&R_~|a z?C7N9vjCSR%FcU`b&pZJ5Ue)J3Z-=58J`_4npv#&m_*#V%r+-sWf40RM=p^ccXxFs z)hnY5>Xor``gL|6O^f691l8_JyLF%0HnJ<%dW^!HWK$o95T9yRsr^~5$$Ed(y0vM} zP`%uxTYK9qhSk~ZH|(diLgect66e%+Ek;&`h88o5)I}Sp8IQgrh*R&5sJ32%*KEmc zn)r=q+Q)NBX7YSs9-Y*$A^!liKuW&>=b!Lw<&W@ewEvt7740@wpiTFG_A3702M7C) z_rD+H;r5>oC@-=^CfndDCuar1<|AWx+jgJUwj5W(H_R830iAFTHGL_ps^xb-U+YQ2!Hr zL;olEKY?~fU^`8{!)k^oW68qFanqRD9d^ddcA9220ySB?TKp0;;S8w6;iVkHZ3d7D zQL4UWfYUH9(V9Al{|4qbqj|mWv;pu=Y~z21r^^4;T{YV0tRLPY@t1ry@c%L6`R@JC zgU9p#2YGxPTwnYZ^B(Fss6Cw?=uGFZla@`A#J@U`Vwzowi}c+g0f$RgE#A#?b+?nnJ#I{hWh18Z#j1$ zs|-l?nsWyOvbh*uHq}v$sH+Cm@iEuTj${GVV&W#R*&|C%bP&1$oCfle))2lH+?8N_ zcbH~w8@()SC7RaJlx^Gc8L(;_@f>0_G?e-q@ilYevtQcstNtpvXi#Uhu!0(C#LRiC za?jlMmZ>yGYXcksou5Zr{v0ah)2Xbj?%Wzgp*g0fx}R9Q&2dg=f|U%>SIhz1?RGoc z2LuoR9si|m&S@)dTN#OCX|Bp(5*^0r0v;Djux~ooC?p&Mv}JqN-u7Z_E!P~|dggpn z9^+#0tZzjYS8g~=`~7cL({EP7A5Wnm8WrH5%4yjc-ltg=s>uH_p7leN<^6N^-_zSg z{uR$A|KH(g=*s`2y~q6j5Ayirf0X4`@LuKZqA#|zc6QNQvmFivW%*Aej;u(Rh96H| zVcS2(mwZOL!g%ir1y-TDMjWqMb$h6`czKs-*Lw=w4m}&Uo3(2BDcM_AY5HTSd9aijr zlgIpj5A>+>pA4fF0*syZ=TNG=i~#T)hcHI~QyKZK$WT;&_~YHny zvb%BJn7y25WT~S`bFr?mXB&F-RHDR*20G=;o~UT_5|FbxjxP3dVX>Dw^Zf zd*(=1d73OF7ZF=~4b1IPIQ*I)zx=m=OaL^@X!q&=GnkAj@qZ`d$Nc{f^6(rhN8+BA zdBHPh#pA^l()pA zTCs|k&uMQp?1c&Lg-JMPy0nV9&YS!v!3hYSf#3$PYwW0P$6(9u{|;=jY5iNVt!}{p zHv0dK1{MFm(PRF%2YEz}r8p*6;P1r@NgJ8W_(FsoG(t(QcIkTqpk0=rO!qY9N!&X! zD;e$fRQqbB8i1U8i;mz63?D|ArWr{y%!HTH?#JEj+~~Di^~wzER(48Uj}0Wt!O2CB zF(gd-t6^ZzGkfad zgyt{_k=--X&Fqo8{<}U+{9lmHy~lqU9~`*y|71LT^#6E}hx4h|pHnDvtn#ZIWG=$D zFfyoRPbOnATm?k@qhr&H!o8(pxO)8TL`|}MIy|6Wf*pOg+4EVc4dRpK%duN~Z=}>p z`1Zj0o^C}!wA?~GP4n~etVlvI+2eoWzZNjY zbIdl1H02Z0>->TQbY4DZZLrCqV1`0iPy{GhBCfy*t}do=j!_(mD@QS2;v7XHT`s0z zXSU{3{Ob6WmBq;gPtdsA>%5tROzZ#xh|J+hB{lGOSmpwrAy80;Ck2orFR^VVnbJwf zAe*GougH_$LrlRBG7-cb(OLyumEI~v9GX+T+e~+MW<0lEZF?5liEznrsdYj#%1ST>o$zGx68DODAu5;)@~&Nxe^T$XZ%pgj*PrH znaedJN^$9I19Oyeu45}OI%;qn`FAOqW+;uhfBpXrKyV&x&tFupT(&Mn*26F)MUpd? zz&J>APpDPr*jc@X+14)D6G6eO*;BMyF%nc<2zTqCCU#KC3hC+qN%}rTOF*>-6YGX7 zNl_NBK?oU9C?ZjNCQ0&)#4*Zv0GLe#qD!BxQ;#9V$VVs3Nx%6Br7>AA^--*23VK!f zd~Jsjss{|wk|Y$>z~x_0(biyT4s$dwVh-2``BWD0!R|I(tIYufD;VPlxNYuyLwAEZ zjC@?Vc7tZ~8VH*FzaZ%G|LXfM0hs?9C7ZUqU!$a4r6m{WF)q+*A($*t+`G9Qhfwlg zll)InUfe$W=jQXjgK;JP<9Pq^{O>^?56SXrH$1=l-+^~1yAbOjCLxUF7APGhl{e>;a>x!y+daC_x!pc`2d!MTY3FF-Re$S0sxlzdw#pgrX+c z5lT@Kp(MoohKd5y!^uCnHKnQ53`LmUszDB+Ra;A#VHnMB)tZFiw%5vV)3p9o0Lc5b z|BglnL-+iDG8sI^|9FsxOEPISZ8b3G9KOyjr2Kv0Cy;9vu#+{~h23 zK}w>-(wX2brnv~nWxp3gUtX6qzrDg?u0yJnrR=Qto@NYyrJJJ%v=E%dBpa2=8<`3x zm?VUcE$^7WWp4{UO!R!(<*lKXZSK~Lt1zNlLn>ZXMpL|QHIRmE8JFf67#fv9ppJ0tVT|F-JBnpZFOhmb+oS6(vh7I2Hl$nMQoErq>-!1Wk55y( zZRZ5m(6^1zh6!@1-ThKGE%!tFUijP2L)(?$ZLE>0cvgYctQ>0*#i-;dWfFjLoO!|u zkxWF6uvo|_tB&b)HBTGP(XuAd32&on0kmR2#F*yXytJc|pcz-WcJ1f`{JwgQmc7JE zY-Sqgs^71xm+ws$CwnRCi_W;`tM(X1XoWWq--balfNU5aQSvJvp^{`g+ozGNMg#NQ z_AK{HGgF1hUlQ?tx7bO0nl_fD9&9`Kj2a40n~h9Lz-qNqG(d01qVi?R zW39PO)^x$%Pk8Mn9K1O5F|FMxoW`{9Tg6=mov0;(irD0Sda$W)u{8-W8znI>%p1(L zl?A{>*V?Wsv%Fzzk`wF`&#V?&OszGs(gClWP8FHT+^leNaih)31pakzRH}z9*f2w= z!iLqTX+TXZSQfTsQC|&mSDq~FWxdsJ+pIl>bGvm{ZR@VsZ4KnRW3{pYADgXd`vxr5 zXk>f#suqgFTCLajKDBqoPOI?lgq2FL9yVHSa61-SLT=AKU-NO~mrikvE>Hw`P&1sb znWlg~=iq9A5>uYV^61#$tkz+vsC^`A_YA<5(>0HrThDJ?$ULU21ReO?s3m>!UQ)P1 zfEH;Qqa{jm82^}&BBdZFfS)%lL^Kw4x6OxP22gr8BR~Gb*zM48P8h}wX?*7g36gfj$6z=(sKqTL z%Nb6DD~B-W!Z@xWY_(6Dq)dynB)5|+66n{5+~6cZUiX9x7cM& zP&<{2qA$U4Fd8#%sd=OqiWQ_)_4=id_iMO_)GloF(?-PQ*PG*<-Wc1B+_2m+G{icl zB$-0svdC&+-e!T)Tx)frWXT6DIa0p1IE#a&1w(N&7YKiE^9Gj(T3dDHn$kZ)a+NXDZ3k6wgjUn&`_#6t8W=s?8}Pt6vfa_*lS zq^qz>AGPp)I@thjL1=yg^MxIfyGK!eg0dy%2^Z-phgAc}E*fmATj9nEgT_WmG;7P> zXr0>gwknhRpDA~=hn&FHh*tKA4Y-N1+JKlR5_&5PuWxrf)9?SM&%OKSOs-5zg6gf| za$9%64gSA-dk0SZ=h5)s;4%KkgFKD--}41>GQhJpOHw2zj{*NAGm!=!Q;-!&XNKk^ zQ}<-}<>ENz*7Js}VTL1(O>jnFHg0LLP7#sF@`O@ji@W##%cL2akcp>k9 z%bvqH#R+=D-uE(;5{h$@t-+Ts)0#p#)LDhCDUlKQi{y}gq$rz$0e?{%q^CkE=Wk&g zldBW;=`{_Zpd7P|DIln{nM@#2e*@43hi~6@0LT#K>6>+CUT#=X$m_4BiJ)b&VMewv ziA0lK5cFp_>C;7^es@FtCkht?e0ylA=OM{56y|KkP2Sq;efuBR*VRM}FpAjcRjQIR z{eWYn>5eCVCAr84;i)1o_F&432Y~0P4Hx7p0o@N^fAV~~KY0%Nt2F7W7XAZ-izSKJ z_ly5~Wq$*|{RTvzM436nDw*9XO=OhVXZ+UbniOo}6V}h;A5K?eaCr2V{y*MHF_a=C z7F&Vm&%o0~$}L(hfg9K|;*)&f%NLP{Azk(aM-qt@sEX*|^r0T>DwHo@n(^PzuP%0;3vpW3rqXF9X_WbH&*ZMw-}tyX=b-m%g#@z1oF z*&pSL5+1&DWRtFF;Rv$}$*S33cY)pA;pX}+)C-hb2y2yAVmwFTI#l)x{qy#ab0*Ct zLfKg&N*O`v&B^%quKYGNhIV`41~GcT8+7b5ZJ=Z|wRY^2AK$!^^v11;))HvYwyb4T zg8T8q`;RB*cMI|^pk3?e8#}dT$PB^geG;!f5Rx-ljIL>pmRu66t-^GiW0J5cpdx{t zPR>8PK74il{`l>Goqu@${><)2Fbw=YNK*2;L~C^hVJfI7SsCdzP034!<#q=vPh$n< zsb^TWY@7e}Lq?YEFkmH1HSO9APA)S}{T;18pm|x1uYUc$tZQWIDSKqW5Gu6WNBO8! zICXUy>fWm6p^2;*s#JCk;^zBJh?`}%Mck^p8FA;GoYvnI%PSe)^GbD}Z=6LaC|PmO z0Gmh*uR+UvB0tIgs$ZtVphZqraSvrX5S%fn?pZRJL~tUa9nlnpc)sQh_5}#09in7~ zGmvht`?muy*yOaqqsqFpAQUOFH2B7C~4C`|Tgojpvp0V+ek z7C1u@2z=e6BA^pL9wT$Ggeg@u05n2NsUty;UxuN78B-`GN>;ub~l>^!k4fMKE%Vn}@wTZVzYH86x{Q|5)bdwfWUdY_~ zJD$u*cl%W9l^Jg7;igm*5rKIzlc zlM!hA@-yd*)gaL&6w_!{0+ST%v#1%Z)QQqfNM~e*{8($3u>N-)AOa|~_?ahn_bb#d{P<~V=6akOf$9?1~PO-n~BLrU5^rR>O zX@|7(RgLM}Zzq3xa|8LKq3w_IY_$KSB)V+`m<{K@lR+i^)4_26G5+g=Ji`9hIa~1X z7{Z)~b4-#3`(Llq$^e*>$c+DDiNo5|CQ`6+4&%OSw8m6jb*mu?8#X&%Ji}g%*~R0i z&zoy+l&bS9wwuW?;Q(VusS3VbdD-4tM8gG&iWp@Imi3}NoCTrzu}ICpN*F)4gQ28; z^><@!^PWmVODmWDVHtj`BDSzr(+dO6QC!d*Wk2AI=D*;4@slX&$YM1Ws@t9&)ip|F zVxb-p3D-PdI7Omtg)-k)ieMHl#2&2Qde5_~ZSm2NKW=Z^^kdA+8ZV~cAOCxYO_|*X zK>gaj5#vvBsCufdwj?r5RH;+ApIew?FESXS6O>`jD@YRYN=AtvD+OxkpRr$kY@!9S zCh4`}FjK>Nwuq63^I9loiY^OPQ%HR3e6l?7EenXc&2lMoD_){Ct!v;nP$c+Q@Ef2c z%Xt>9UB^07o?fX`i8Y{X+oYj6mmq8x98h(`DI1f)L90M3`nfwWF98%c=-dwmbf1bW zDL;+Djn-Fn(?c`%#Ji6Fe>S z|17^{4A>3&|L|a3$^W>&_o)9r$ioerC;U2_R`^w(154p=q3(0buaTldUyP0I+rs|a z6i)65?fYn_jIhOlR9@?o7xEgmdS24nSporTD`Nh%Op%N=vx7 zR%q!dX-0AqlGu97y*|*d#@FDdv$KX`5Xh0X%LeH#N+~p?YO=? zI@9-U(hM(QwpMu&r5^4w`-*xZKlEgEo#WPosV;E`WpnbTui2ux0U7nAJ-{w3_l>Hu z6hlf&bVacew;gdnC%+2oajPB$DlEE#$L_9o5kKXld$vwRUMtRZbXo?vIq)LKayw*y zTi2Jw#G33+6sqj5PIG2!>T?hn>cRk2DoQ&uCnn3QR5mH@?Yk+U#5bCv(B}d%vi4ZV zA-41+a!A0M_-@6Up+t$_o9KGHN5uV2vs7^S@$7w2DeM_Jv-OhW`&w~QV%0$8n}0L9 zmXQKff|ofxQ#+v1hO^bVU)Tpfp1~r|(;rbj4SciamR8b4%KcuySp}+RsklQ^aUHG$ zK*I%M0#6BoBU=lhcC>jP@-RIm;bn6#8i&-Hb3;7ww5G>^i!-tV-pU($vpw{5Gh81j zDX9Ex5XP@i4AZA>Fu#yw9V&^)XPJQF#K44o}9L>DBEs<7P>Edl3viAa&xqHKR} z2{g5>`7TWBvmathJ;MLz-R%Dx2KjHaH`sUYe-8(PNBQp|9vB0`9U z%*=3}mQ(;R1*Ik_rD2m5f?$Vdt=xFK5%*H!YFLH2cKf!bM#&hfFt0?ovugPYR4IusEMBx+R~4dR-)jj+wdu;@ zyjCsURKISTriO`nJe|0kr{(^CD+ADm{eQfFaNyqm9UP1v_y31@xcz7I{@=d|hMeHo0WUw%wiGgd;Y1BM6jIwpZb?3R1esJN{`!vanJ8jA@RO z3(n|mHrM|S9L860O+lKWIm!S`fL$EVbs!yzavlBMMe}7-lN)kw_rC-0^99PTFhxM1 z!IQ!xaPsq!Fx5NFx;;#M*~p#!WrrIP>MC(jrD~Tk`nTg`%5F0&we9Uzul*$Mxl+YA za2E(Uf@oda?f}n8Caj802yLw46H3eL9IA5ub19Yxqg}}U)GngBMf;FK*~gr<1p>58 z^Yts7+3QQawZbpilAZ}_i6UH7EQRG^o(30)l7UBhZf=3%f1$T{iQQ8@ZzH;}uO0qV zm7O}>^;k5=)sZAwb-jqu)YpZA-MS*;qEBE&Onypc|3qP~S(?7?r>WQ|z|ZoK2=8UG zVy>q#QdeYbHC_U!ZCTzHGu}J}6_u>9)A|5V{1)_CvVQ}z*GepgM${62A8)E_OP*D_ zk$cNK66t!zt7$b#!X|)hl(ibbe@qQ>^!Vva>P6$mh3SNvR6j*)sglvli=kS{mGt54 zr22DX?^LNX9UKwxwD=7JwYewa9Km8R%4yClEToZBaj@X?a`IgU_GXr^pdeDqdnAi? zmb*JQ;@#r$%KxTgaQ|GUmwqF&OK-0UY>@x=hr??8$I)Z{_Xl}A@gLP)MhYO4;3Kls z*~z&T3MI72n6{9sl|cavGeRjS(uflgif~SqT*=)=YW0T=nasRIAy4?;;u?!J31*>7_5+~6Vh)YPFCCXt0bIACl z$RcDMZ8{>L$};4+i6AyD*?yRzh>BiCvou31ObX#AMaX55f?zcaKp+rs`bSe3mYw8) z0>x6EMza%0sXQT9FEc`N`?ctf5? zC^TY&m+iL!#tJtm-gn^jk~GTqx7Ot{J2U10Lx zj}&F%lDkCOUaK{=UcnsBAVomUf2Eg27AJ(#?XdiRl*UUEp_ejD;)7$I#tsK@iF$$z+H@z5Dwp`@Ye!$uD$W%B_!RG z6TK97jKv`!>czPk%m=wVG$>=ev<22HvKRz>J{X9trs4)|usMH-b{Nfi+G#%PS!S z#+gwWu|dQ4oE(*3yR7vx%4}f8l2nD<5cqZke7Bs4f*;gHE&Uo}*ZafP7fFs|kY1c) znjsjiLH8r@_S^VVZ-HOFfbK#ZABYM4^5s83L;#HuO2G)Q9|;P4F?Zk0k4b)#A&Qdx zaj&`eXDj}HLj&L@``_N!wf~KV2aoqZ9_0DD?0?qAaAOmovpKZf9UjsUco#OncILnI z;y#Rj#umEC{wEP=3r+sn1lH5|2Gd;)x)o?{<6D6B;eBJnpdK@Ck-GjjTLw4wQ?+^n z^I!?vRGf{s`{TWlr8_r^56v31x9*LNhHY`LHy{2Eec5PAY~+b|V@PZRvCfw047#6G z?ry+ZSQQNw$LQG&ZHqo&sR>FiwJktxX3^KmZln5f z0A8(6fd0J{KHmE6b-ofzz1nv-8Xj+{NeiVSHwUC>6eF^4<(y|z??W9`+?XBUrm1%F&##WN-Z5!H3 ze)Tu@C_Vj2AFupZK0_%Z&|!#w={{|Yas;tmLo5o7u< zmuy(V1)7S>U_6pt=L5=%ECCQuGS5LmB6O%CreIPA=YDBt*Y{ z{TYP?zee5xperxvp(I4=WOfPjaPj(cnjsNp+dQ#VN!fZ<0BH7*l!?+Ln}Roq@mh3q z`v0-_w%u*q$b#_m_3AI&FL>y?CswZ5>}K;-XC`MA*@?B+cC?b5oI9SJ5!elq7&RL` z4Nx*C&i?j2C;;8)7f>Xvcrvrrhs06?g+ifFZzvQR)mwCBMD@7}sd$64^;x*aZIcH= z7fW%9f{Hk=t>Y5s@h7dL1n}FgqZ&bWF;`P|Uq-u1@D0h$)tc@<(^_s>y-!%UV$I}c z@1Ty_Ex*YMcB=1Hk-s5xaSg__FNEzTH9QNTby3J%a{_+Z2de5(f!b0>u}uPIEH?D- z$$zJU?!O)xi)->QVyld$Bo)P4kPjlqZzR*cHjbuwtf2Mw*2|PM~xfH#ck(RCN>t)j_XYe%N%E!cekFAJSBo~kFs9T=~UgeED78guC+E- z`x~vzMX6(?Un|h1Ioh7gbPSxDctk~RN_nQK))KjBKsE)?|4WM7DnZNxF?;H0@kbx*hF8c)#fwBbH|yR~e#1Gn1F8?82EbCd14#dg_XTej4b z?WWITYN(N(z|ydE;nNu!)|P(E&iLH^-!}grax*{C_y7NPssA5@HUED!^2cBN|IhKW zoBwai2C*b4%cV18Yp0s9q2nsPyKe7t2jva)$? zQ3?s{T$kX){jGmou9|72e&1yYD_A`t1&P!xSjaWhjyNt)I{6kdHE8?f#IjAp#|hMe z&y%Q*ZSr4RX}`7n_lIG<{{Lv?f2sfWS$_7A|Nm7Ok%$YN#?t9hEaGHd%|WKQRkz=H zfZn?IwOuV3NI{mOm}Cjts6xwJyC1eY0f`FyKB~5O49|)`vK`d|=4%(`|LB$7?PuHm z=Yr*Mr|A;~z$5#=9}b4~^B+I>Qvdn0{OoW4*&6s-aR`FviQBZPVIg=>qg0_*<)n5q z&@Mz)8iQ!7rmT%sJe2Vt`U4=TUW>9T!Py@Ri;%5FwzeM|DH3WL?F)zVIr$svbUW21 z)nbtb?jKR-&z(PaIxQY1K)F6Yd;PNer|+(7&`_<|nt@iH{L>Fz-JuI~fMSJ6TVmBz zfaCh;t)N{Kt~jsev1K(3vZ-Q*HV?owq18uxyhqEJ#XGMb&X+hB))AJ6 zGHYwqPKZZHv90SbEp-pgTOaLUYNR@LH{`&Ns8JgIX(;Nb^4#_yPEn%4qJXOD2kw~0 zr)wv){PU>df5^`^{V%fQUcV{&Nfy9k_W#Hq*Y$rm`eOfomY==!zjQ&lDvP)#s#39j zov(DNy`y&=FUV<|HBd5?a%W3}0RG%=3c#Osc9)w&)C8iOUghyaHJMr@USx^+VnXhy zwZ>?*%X81f_tjne`u-0_qc8jabNuYF|9?{K zfbfj11zL0Y@0=xx{J+49Z5zMfB;Ec7FSdk#uNV{C_IN8a+en8a!g>t%Bg)BweE5#0 zG3s>lKmR%Y&;R(ym$*M1ovQN5Kb>8@y?FcmDY`0Wg<>K|BuI>&|MCm6qsO`qh${GT ze1bACZRFTmG*VT^UF0lXBpZ|yiM|v{F%k^ndq(3X6*;1C{FbwLt=?iJ={?O^x+1CY zj{cLTbB2~eWc;+(i&@0I85JpBQ7>YvUiqqjZ^<6Ig7wxQvjtA$t{$Z;N9kHE?cCqr zhfwVkN?)=KmBp=rT*_{`FVyeu@EFrA-bwK06i>8ie_t? z#8N6{IJ$!~h@)o+Zi?xbpE=@7k|ap_b}HwCri&AllLQNTPoSu{^>>`cN6%17^czmk zvz*N72NJ8oM*sh@hv20smO@X763R%95}Fe4$a``9mutata`X(H1IwZx&#zHTbAIG4 zsOZ6e75Ycs?C*IG{%iiQT=e9B%&+`D?UjILIJ#SBp!@jI*B*b!j=uJ0`0nUyPpss> zSxy&6U;m$@XXr$xt@U?BJwp+uf_LpmT^eB!a3>bo`P`E z4ZY9{JkP5@J4Vm@en032{jMJ#A34yOILnk<>PH<>Vus<~u{EmK*)5GfJD|o30VU!cN zNQ={0Iz~B>Q)hD&kz91S&Sqh$A&MeJe@{~M-J}>eNHI8+6k(MV1Dh0+8Ywbq6X{$Y zQ?XszId>#?;Tt;e-HrWQ@anzu}_rds-~ z6VwZ$1$zBd0WBmKsyHHvQN;3`L?YSf+3&V(%GnRyvkzSA_0ZY-HN|SrzQ618?xx$z z3Ht5{y6lI8%!i3LsV}eJI>GM<7IJTR z?Ta@#bn(X3#hX+YFQ_kGiM@LGsX$jJA4xT#XTm+be0vI}u~RUO9m_X9bos{B4_$O^OxHRL+;m{>r_rI-)2M1ajVjhtFxqi~gZ<3eaNsm&M-J<0bg1<-s!Hfl#d->cJ5Deh?Ki=2 zJgP|Ha)MPUoNVBXOy8vgR|cs^2I0xn;s_OXVRj#VrA1D-r#1?m z+GymE#G^wc@v!QIk1CSbqJt%FjlZIUz$n2Rm)kOQxYWZ#UFu=gr5;vX>R`~|%P1jO z`j7|`oxBZRC2C3bbR|P@C0%^Jr;8pc7rnq#G*nzWEk_Po?zYQXXgRFXa%9u8VM5EL zSGAtbvP{j}-_yeIofgK>p-P8`s?uRql@2SaG}tlr68d{`iNA$Q`qTZSVShS0u8E;J z{eW_vKnKAS)mEL>(3A@d=esTvw`=*~p;~@e)$+rNmiH%3E1okDpDN5uobRQhA5r80CV^5LP1d{|ZF!-^vJo0iJ8 z@{Bj=`*#k$SC>`7*n|+9jBrhkJ*D5oX$uY<XXYBr$SL@<97I^ny`slH=A%YKy{h zXHXh5RkAmL-7SrcIOQx;AyS%xN>C)&&n)VXoQ|u+*F}N@&DzilhBXqDhOOW2JH2zA zM%T0IlLt~#`Y2Y{jAObWTu2Iy#^HEA7%6J(c>>vo6Ubsz#aVg;NdJ2de>zsc!#%fD zxNS?d+t~8M!K5D4NIl$%)U_=Y?#WN#HhyZia^;6lN>uP`6CKzS^=sQo-PBi+Td6H8 z_jSNpS81P?^$Xg=dRvdBNZq*s3I%&oDA-1!b{krLIG7FkHR^;Gb%JSw4K7vQRQF|+ z(2Nt5;as5p3BobX;A}z)An@JgFOkVl0a^s({q|ch4&6>!u;)QRpbiS!BJ^stRI)H- zDI7`&EXaJFB%BE6YP1{t^25Qa5!6f8&tgs<~7bi1w+x2Cb25z?uaAH zkzJEH&|(k0puX{f_Q`15Oe(bE?xfjNO20KGC9PGpYOp0!CYErF!qI}>lT;lg1$!Q& z1ny&$(3M3M9+*WXdroWQ@on;qYis?#)?A=0XZJKFNGH*&$w$i-i_siYb)1IRf@LIM zQB@vOQDV5CM-vR49!=;-;0g~-;0nE(0XwzH(2Q40&+Z=QQl@COP#%rQ30@^MB`BVu zb)Im97nnLCa-kz5Dm*kJD)ed=>ZCr4b~Id8={1~+^JZhBQ6;p8kY>KammoLO*Mb&M8jnk9c&fVjG}NiG+g$;;pRXUjs9+E zI5qj9Xw>!iZfLj^=7IXMUtbh|7c}~gMd=^9DE;c9^s9?9aH7$^DE&hhrC(i?esxjY zXtXa%|IkGV>eTReK_hTbBRG^AL6sUol^U*G^uR%l;81G#UJzFC@OQz(clmYx!G4`z z^Xq)euk)uW!PkLG`+o5cc53{ZQ{!7s%_FF^FOPq)$?aE7Zr?Jww`0<7^7@CFygDus zR4o_3w0k8k6DKb1hO2+5;p$fnSHCn|B^o0q8tsOwf2iT=R}ELcG+ei%(QZ!qhnkaq zeNjfcq0w#!`G?v;e$@{0OFKxS;qoSYhaKb}W(O5~I;i3j?uLs?jvOvVs%Z3gL!({O z_=jp5zp82cQqycl!zIc-d`A#u z?bm}9oCppz$`(0WXNWzdB(LV~Pp5nNXVa;}JsZ2!?)YG}JFcnSab4}UWI46DXw&`9 zpQoPkrI;F5r*LUjf-;bAXb-o~11tJ~@idp)VfCGc)8zPPoTMNYI`ew3oN^O#0 ze6Ue7t{OGtx>3`Zk$J%widw+c#&x>pBrawL@%v)OsW&%KrNx}(k{+%Zwi!#~Lye_z z)j%27?4-u@^qg4Y$St>SZt7|1c0C^DG;5EKj~({T_)vRiT(x(`HG8LJ(bPf3eU{cU zcU<_k8Ajtn4Wn_@FdEkkBfz&EjkX9F{QXcg230hM+sLM64^C4i;JVOj_1tx1}VdQlM4KS>ebsT z+i&Vh_8U7)?eU?ew(M9l94dB0GrzZ86WE7jH^D*xaQ+DiMho01Qe;XgfOI4UShFScNUjK>(@C=hgle+T&#r5<=VpR=U@!CI2bNl?;uleR9O-+ivB>pGX3K?_aPhXaXH&6-f4 zTFFwVD3%L3_u~5S-Gq0s=q{N~mr!Jq6W_0($8_MhaHz3tpZTFF7OJaXnR;0DXZ&XV zj#m46j)HK3>{tBNtoO>Bn7Rs&Xat?JK77Ha^+`Jxyjme(o#~t8IDzm&C7&xMa0wY| zz~D%%aguB#laN@EWIw|Q?)&}b^?wuzdRH&cUc7nvTNHoVq5kKvUw{9j?}y=+`cI$Z z=NY=t`Tg*o+tGLHR3)$_be7|M11k6?Uz2m4`t?|YYYO*6P{JURA+>k;6`f_7va$8= za|S9DBTiQ|!MQ2@c7nu`@?wk!%%L6~=#-qmZG;u3sURtq!$ph>G$Z1H5cNWk+E6OY zB5ew-twg>-I9gJ2FHu}DoJbsJMDE@fSO4wFO^>eBJBV_Z^CRoklT&p2%^w3V7#KBXi1_wuwdW+ZB3)QuG}I5E!H$9yp&<3;PP0$ z=&f+N#!2sgLyv3OOlt(O&%hs{_gSS}p#E<;)=G9L(BA1=ykO-sqAW`>`y(xL!kyGLh9 zg0ARdDY&$SNPbUZ)I~Q{*4A0A{|rU{tRF4^mn2zrwa@$HN?^PE9}j}zs3!lzF#PiV z|7ZD;GE61NO3BhyC7F+oEWV~3WjS5poF*Gp6jTafu!J_i|8LK(bt0|Y-rmtG_CW4Q zeu5r|zV@lw;v~`X-+Dj_MpYwu=pt2OKW5Py%JoPHbOnxt`I8hECZ|_F=|)qK47!}B z7K$J;VQ8|uk_ zsqn8Y>zhKpThReWA1w#!ybK_G)B!{E5#9ds>n-|-t}_zR`3B*1)9Q0^v?Mv)LX$3+ z{FrYL6=cOd^b$wQc1Mjb**b}p`%MLhh{YY*cuLKb6%8VsqL~Wedq`s~T^|ciDavO= zD)WyZ8BJ6KR-mjHD>(xvvVWJQ+>=eE#!>Kd?|U zO`G#C`GV?q7Fp~Z;=YYZ;ePkVE?JK5aZcr!>afHf4j9%6{x#(ia-#ls`~GJ+fKBv#REILGEP1BekM!2ZT#M)}Lda3}O#9xP{=d^fFvV8&z zDqNf6hfHllB@w0ZtC$U=@2Nmmf%(}6?!)WaPFPA|2nSwYzmhEH9@$g3ww0XXruzMD zrz1&tg&zQdfwm*0Z!ssMK?^+fp-WQPGp>X7&`(fHnu(>gaMD5MM4SMfbB&NhMAf&- zauSgkUgz2cHT~dc6SbEgD2Mw*`ruA4y!=a@0yoBIK;%OPCp8p&jTuyP<&u%jh9~Hj z#(&8Ks%oVf$XPct=&z zg7;oBy}fo?%ROq>@Z)n&O2`H3WXG1i`Pyy&;16wh+D5|}1Wz$yhOi&YBaB4G>t zOzDzl5>v2q6Lv@UXA?8fUTjie_ZXX4&<|siVx&5o*pQ!yO^UJhWRs%bo^0a5I@a-) z?2%!yd~jViMH5tJf0HYiLn+z0cB}xwK}87d-mo<=aC1|E>(( zBHgQdpQXpOX?qI6?`T4*9NE!3pmQn};7P|EC3a3bz56WfnZBL!ll0^|ryU8abJ9r} zC=b(LsE-90;P^}JFk)Sjl>VKltN}wd#aVD(sf-BYe@Yhk@$#+bo{m=>epYpD1$l|Y zPfHpt)gv34w`5P_(#^E0tU7G2v9vR5jR(}Q)VpGqN_!l~(rQ%KX5drKucM&sPq0t?kq2uvg&egf2c-kHYAB z3A#EMq8yQwtryEWBK0%+t-?|2Ei5*n=Kr zAfbB^OCypA-s91d#A|pYjNGd*QcrrIi?o}uxSO(=^q!fqx;TxyI2E*O{-T9+lF^i0 z04qAUOEuZbTqO`MTPMjSOK4PcXD{Y&nYdKmS%cBm|Uc5H;wzePm-n7g3Z; z3fV^l&~5urb@1vDIt%VSluhaXPyO=Tz@HAo=>X4Wm`wdKnGR;byg!foq#u(}G?@4O z01s!=u|F7&!~P(Q@Py2QQ9PSO@oXGz#|B21809TC$`AJ>&!rjze@nJ7uA%X{%3T3K z)`IZ}Cu%0e!v4Xq@HbM_#WBL@70c=0W#2@4J?Kn#)No4Aax0VAksCLo)PNnvEVf75 z&N202_TU-|_znZN4c5v-ea|;M)SnDPJekGugpha|`O{ex4`zYy&!+KUM*4m<=;P2I z&!%w@%`gdY-yihHBQhOK=F_Oj(M_}rBS~XT`Yc;{NjG}Vk00TvGJ(s%1LwvJEeoDo zQ4+9dr4scd-&xUZ(^4C=O0~{5rO|7}$nVIeIDFRH=qm-{D~*#^#Z}u+UYQcy7Oy|E zzDl1jwjz?IbbBk<7z^A2uj~a4AYU>SwLrbj9E=?pKk6KEROT%6U69ok_?zgyRv#Xj zxyV_Pko*x+ZfV_WZh=2))orwZYeTuLYS}YIdN>ii7?TxCIT7^{-O)9js;OsZ+SmI# z$<*F(msyo>9~?5FoInDuL`j+oAJJ_f$9TJjs;q2|V#29({xTNxX6Jj#DNA2bE(PFg zx`JT01{6Y&S;4=C+Y+iZTB_zKQSECm)!U@+AhXQNa4x74@s`+2X<`UrP0~Eps=6Yp z>$Va2I$sbM^pcu2;4AzA>7LtwuTy-FX#$*a$PktO)q$jOC&*&sf?H)ow9XbejtMHd zN$34VF*ZMuCNYhTk01@wEAtxDb1k!vAxKrhQUw97^&(u8RzN?bFGxZJX?8C`d*}tQ zs03jipA<{V8#}1Q+Ae0%aZKK6a$7ZR%N@e<3Rl7S;M||%49{pn1tqmD+`)0&Ieq{0 zNhi)(CjSMS`n)_Wg_Cm0uT@{di)@%|Eu^n!9J%k`UC3=+Jz1CNsPw|BaCrZ7MN3-M zSD{^-s(h#M(#wofTdc^ziGC}Gni_O-i1@5iI7@kV{cVxxXlY$IYIZAJ_1V(1cAZ$5 zT*}onY9yBKq_RY~BDG%0&gpygv2)si(v_VP{fPW&C+Ph8^GSyjoJUK-i*+#vZ|KF_ zYq=_NI{c)tDNV|iDuk(qK`XpLIpHk1Cn)6!V|VM!MD|&#^8c-<1}9>jY3_|v-eQRA zz52pr83=|t=gFE2l7B~YE;@+LABbkWmsfiBL}4H3E2UEQ$v zOhwM&4eKQ_e?Hc8Y>N`T!8C2h+e0@Eqv;y%`50Moiq4MF&7V%uyPI?L?J>GMyT1PE z#VPvgmtT-~rR%Umj^D4peud7<2Jl1D`|onL(!U|(d1fu(?+x{CKHg-B%T6HaJtU#% z{;h2m37g@>o3E2ZZjQn%-=Z!^Drin1?OHvwUaC(GjdCr7noMIi+hstUB4(Nx;iR6+ zEDrQE>Ht}?G?Y;$P51R3CzbEo*3^$gkyPYV{k2C#)RQea>Y^3SGKtp3rEHxOuDi4^%ASpIxl*?j091HJi7E&Oen|=61{S7W{^-RXN{6 z>IjBz9pd7)7_t$q(`$8>B<#V&Dj}pxKFA$OMcGY@P=H0ZIo}#)yJt42S#S`8*-4ssuO7_)V+lSc8CoHI0hc#~^T5Q=)w8S*+&M>D@2lg)*C~U5<(;f8r zqsTFt(>wdi-GqaP;u(&J+3R>M*a{08K{m}f7&II#n!@K(fn>-Wu%N-sr7R<9tRSo0 za2T{4g%>#oMNjn+T^9L}Yje}LYOWdlN@jV^NhWnEIj$fgv14nN}AS*L2N#pLC z>sU#J(jZIT`#-}!s&+9jYnOb$t1Ka2!Xli2fh@Pa5qb5nf#%-~^CH2oeK`9qGQbe0P`)~e;0xuYJ{apq!`70 zt&2O!T24@|4&(M16>gF3JSw!_c~t#NS?_j>31GKXc{?U$wiu)kQu=lTx6NL-7BOw& zuxghD>QJoQ8~?D_o)KJkLA!&;{6GIg!Y$ltYeF6c_*}meBz?vozV1pP?7d??{ZWNgUs_ zpf8dpOO$%}=Jj=GJZ=WYH}R1MJpN8=O`%r`nc3(P6GHP8d(S-iV? zeJz`=Ik9rM^)AgOvlFt zY!1>my#gi@=J0Ch594qU`XnAlK|BcOBn~F=EDnP4cs3r9Xf~Qh;dm4T;Vc>iaX5%^ zKlG!4-^YW=aQGNP#s|<2T0zQ3Jb`NSHhIth>Jj5*RK=RqPb@dJFLWbV6RI^x4b1)~ zd2MnHkfj5(H)<><*XF@xN6NB?kN0hOirdntI&v@U_TswMN$GjxKD?Wvn``&9pr30)5Etvxft1 z>H@9rBb+CguG);li#fz`9&oBJIzu^>6q$|)9-2KVZATq5E52X;cwY6kELqip(46HF zX*dTeVGF*Q<9sOh2GC*HpQNRbsuXyzQ%ndiH`c6UKsZHcBsc2W{{-euC3R3|%W7w! zYASe@Ao^|Z4-&P%u=!ualKe$={O0zgh*AlLzUqFZPd&H|eYO_W^|bB~I7#=!cD@?Y zIa*F|42f_pTxqsDo!gUYq=6y{qbrSd=O~>1y~YXC>GXSAWFcdOTjh16HYZh&r5aQ#0u`_?<`DgqjL^M3LGdQVD;lYrot&~%zwBaCl`0*I z2V-teD!D2}XOg#sc=Qt5kT_cr^@t2fI8nghN=x+xD7)u6g^)Xm(Q|9)W7tUwXu3`k z>7+Fuu#u`%0)v}Wa9!OTVYSS_P5$-FwISbWPcdTYUrp5qaH4N3lI+&gJSc4jjQD!i zg^&bIx!C|k)FLjobWz4hIww#=$$??>>^HlQ%%N{n0z>o0sqbm|dgY1!=c~&Tl-)-s zh^#WPc|r3N?OmRfnJOn`Eh?!;)Y(Eio-3T0u$xOiz0{xC9By8k>oTZ^Yi?82r}46_}>07kL-PP+aEV3Jco51Vh;K z`HU;!DF70xGp|~)ms*V<^?0&95O%LqLM6I;y85j?^0QHc6Tz6=@5CU5NKz}SF*yX0 zXXXK8H%6}eC^5M|;2O%-5ty){$3b>q>p zQB3r=wod?sy>>}42q)sws;l0zC(lgO9gG#b2)jC}j+X2pRn?&3fw|V9lrr9#`LD~D zw?EGwDDf*8RpaoRY>1ZOe&74TLiqQvJuGy7^Ic+%RoyHFgFN|`Q5Nc6hNiB5&~8su z;d$C~c*DS})hWH>@feZ}N~Kt2768l@v$A>gXpfAeLPSp}j<_cNoq?4&@ zo2yM1N-g$Qn{M&-*Pm-@S`Vw>ZnpqysQe2UQMDPlO={I}t2wO+xsxqj8}~Oh-}n;e z5SVL^R2J#1#+@^RNY7k$EeZryYK!wv(j72XO!KDhP}q7a64P~Su+JR6>lT8c&Kt5~ z`KD9y8%AQ4%{h90b@rw^!_ggyRrqql1z8>2UNo$o4wV>?ODvG=r4I>M+!BS+cyju8 zVlw&L;*t`;?KS;7Q8<1JxG1BT-=aCeP#t(7mjG^O>Pw9qwuXQtH;0-Cf=rN641kcH zm8NJDKS5UR>p=&vIY=wA%9yI$py}2&cH0V?h58*WBcS@bT}1WRt~&wmceZymy1)O; zYY_cCFMPgs-ZK9ku6w>t|4DYdM)vo*^q+iBsN`<+Jjo8T5&{(x%jt@njWf%OswhAEAWgcEhqLjJd_Ev;iGxR95R~ zHcZOO2>Te6y5nO5HV0{%l6`OB1;&z`gtLf{xIe<9a5C!$K|C7HMr7j010062AH>n5 zKbr((6#DUSOeT|XHkkT2@}uFH%v&tUDniDN%xBoiwXM5jcX^i0oA`wSDEgwJV1hY)ZIJmLCxs1>v22|v zd86AGS0lBO1RbbG^w75iVYu=LVMzfGc35?Oq-G*%ly5Sj;&NKEp6F-5*GY`vLLsCf z+*3~VO?8}ZW-Q*Q!ObdKr~SH6=bR>5hi<9vdHYKT9#go?={-%zg1qDrPJjbDr?7QT zI(E?=xw6gbJtv*a^pA^f=2Y{FG4Wjy!Zr1Q?e{{}-}Z@lwOoEPw|#f2RbWh~#{#HD zyHBfBVD2s3h`P!MRPD*8xGd&b2ld36_0Dlr9qgURd~M&rrsXT_nP7OTb$rDA~|gRx2Bz00%^@YL4B2? z9FT+uMQP|yDKsp<_9s%hhymjP{Ie=FPGo~Zv{%YWRQU*5uU-@bcsdFvtN)5$+*?=Hg+DZ=RH z{IXyK`E@}=xl?H>NG|u!yQ|mm7524NernsK1kM*kJjS`@11MJenj0O{`JChx@dN~b z7k-6$mBf^#f-m4O-j)Dw;XZ~b@U7iNo4<^B(%D0$=(l{x+S%Z327qA^;PSTCq>@Cj z7C1%^>+=4#`~zpz#TC_Krgi~noj5%r2b*K;xnp>x1o#0p3Le=t2L6s4hr92+7D}iH zBNT1xP@30Qv_XDxSvgL&rKGM^$4_;->vJhwXIi)(pHyV+2`b>7lrq;su`;*Ynl}$aV!M)+=E+9J_%OUZ-ABX7CDZ{CCMoq3bQn} zE57=WLTUUono9c`nwaC{l#p1NCuWe8Xj^g z1WCQmF!ye-W%kYzYZqxO)e}KW_OSc(%Kc+J!?>+(>aFyCw66aSC&>&)cQ@=cTks#! zmwC?e+s{iFmT2psS=XR2SK%cDyXB`ohX4@a>4OrgK2{YhV+mVqt~2Q}o)<4MG|@B9 zHn@5m@^*uv9gs}X&4BN6fZr`2hcG9>DtQNPao!Z=U0Mn)I!jFFco0F)^Bb+|{M*VewT7&wx)^bO6N}38QK-r z3-*vo4QH(C1|ZM#T404N&;Jbo0RR7+>`S%)fCB&^kYNh| literal 0 HcmV?d00001 diff --git a/dependency/memcached/1.0.19/helm-values.md b/dependency/memcached/1.0.20/helm-values.md similarity index 100% rename from dependency/memcached/1.0.19/helm-values.md rename to dependency/memcached/1.0.20/helm-values.md diff --git a/dependency/memcached/1.0.19/ix_values.yaml b/dependency/memcached/1.0.20/ix_values.yaml similarity index 100% rename from dependency/memcached/1.0.19/ix_values.yaml rename to dependency/memcached/1.0.20/ix_values.yaml diff --git a/dependency/memcached/1.0.19/questions.yaml b/dependency/memcached/1.0.20/questions.yaml similarity index 100% rename from dependency/memcached/1.0.19/questions.yaml rename to dependency/memcached/1.0.20/questions.yaml diff --git a/dependency/memcached/1.0.20/sec-scan.md b/dependency/memcached/1.0.20/sec-scan.md new file mode 100644 index 0000000000..3e2afb8488 --- /dev/null +++ b/dependency/memcached/1.0.20/sec-scan.md @@ -0,0 +1,878 @@ +# Security Scan + +## Helm-Chart + +##### Scan Results + +``` +2021-12-03T19:48:25.464Z INFO Detected config files: 1 + +memcached/templates/common.yaml (kubernetes) +============================================ +Tests: 39 (SUCCESSES: 28, FAILURES: 11, EXCEPTIONS: 0) +Failures: 11 (UNKNOWN: 0, LOW: 4, MEDIUM: 7, HIGH: 0, CRITICAL: 0) + ++---------------------------+------------+-----------------------------------+----------+------------------------------------------+ +| TYPE | MISCONF ID | CHECK | SEVERITY | MESSAGE | ++---------------------------+------------+-----------------------------------+----------+------------------------------------------+ +| Kubernetes Security Check | KSV003 | Default capabilities not dropped | LOW | Container 'RELEASE-NAME-memcached' of | +| | | | | Deployment 'RELEASE-NAME-memcached' | +| | | | | should add 'ALL' to | +| | | | | 'securityContext.capabilities.drop' | +| | | | | -->avd.aquasec.com/appshield/ksv003 | ++ +------------+-----------------------------------+----------+------------------------------------------+ +| | KSV012 | Runs as root user | MEDIUM | Container 'autopermissions' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-memcached' should set | +| | | | | 'securityContext.runAsNonRoot' to true | +| | | | | -->avd.aquasec.com/appshield/ksv012 | ++ +------------+-----------------------------------+----------+------------------------------------------+ +| | KSV013 | Image tag ':latest' used | LOW | Container 'RELEASE-NAME-memcached' of | +| | | | | Deployment 'RELEASE-NAME-memcached' | +| | | | | should specify an image tag | +| | | | | -->avd.aquasec.com/appshield/ksv013 | ++ + + + +------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | Deployment 'RELEASE-NAME-memcached' | +| | | | | should specify an image tag | +| | | | | -->avd.aquasec.com/appshield/ksv013 | ++ +------------+-----------------------------------+ +------------------------------------------+ +| | KSV014 | Root file system is not read-only | | Container 'autopermissions' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-memcached' should set | +| | | | | 'securityContext.readOnlyRootFilesystem' | +| | | | | to true | +| | | | | -->avd.aquasec.com/appshield/ksv014 | ++ +------------+-----------------------------------+----------+------------------------------------------+ +| | KSV019 | Seccomp policies disabled | MEDIUM | Container 'RELEASE-NAME-memcached' of | +| | | | | Deployment 'RELEASE-NAME-memcached' | +| | | | | should specify a seccomp profile | +| | | | | -->avd.aquasec.com/appshield/ksv019 | ++ + + + +------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | Deployment 'RELEASE-NAME-memcached' | +| | | | | should specify a seccomp profile | +| | | | | -->avd.aquasec.com/appshield/ksv019 | ++ +------------+-----------------------------------+ +------------------------------------------+ +| | KSV020 | Runs with low user ID | | Container 'RELEASE-NAME-memcached' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-memcached' should set | +| | | | | 'securityContext.runAsUser' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv020 | ++ + + + +------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-memcached' should set | +| | | | | 'securityContext.runAsUser' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv020 | ++ +------------+-----------------------------------+ +------------------------------------------+ +| | KSV021 | Runs with low group ID | | Container 'RELEASE-NAME-memcached' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-memcached' should set | +| | | | | 'securityContext.runAsGroup' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv021 | ++ + + + +------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-memcached' should set | +| | | | | 'securityContext.runAsGroup' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv021 | ++---------------------------+------------+-----------------------------------+----------+------------------------------------------+ +``` + +## Containers + +##### Detected Containers + + tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c + tccr.io/truecharts/memcached:v1.6.12@sha256:90da9d23e5c448d44ee3c1aa2af4c868ab5a3f8042a4000851fe55355db7c569 + +##### Scan Results + +**Container: tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c** + +``` +2021-12-03T19:48:26.594Z INFO Detected OS: alpine +2021-12-03T19:48:26.594Z INFO Detecting Alpine vulnerabilities... +2021-12-03T19:48:26.602Z INFO Number of language-specific files: 0 + +tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c (alpine 3.14.2) +========================================================================================================================= +Total: 22 (UNKNOWN: 0, LOW: 0, MEDIUM: 4, HIGH: 18, CRITICAL: 0) + ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +| busybox | CVE-2021-42378 | HIGH | 1.33.1-r3 | 1.33.1-r6 | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42378 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42379 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42379 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42380 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42380 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42381 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42381 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42382 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42382 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42383 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42383 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42384 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42384 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42385 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42385 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42386 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42386 | ++ +------------------+----------+ +---------------+---------------------------------------+ +| | CVE-2021-42374 | MEDIUM | | 1.33.1-r4 | busybox: out-of-bounds read | +| | | | | | in unlzma applet leads to | +| | | | | | information leak and denial... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42374 | ++ +------------------+ + +---------------+---------------------------------------+ +| | CVE-2021-42375 | | | 1.33.1-r5 | busybox: incorrect handling | +| | | | | | of a special element in | +| | | | | | ash applet leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42375 | ++------------+------------------+----------+ +---------------+---------------------------------------+ +| ssl_client | CVE-2021-42378 | HIGH | | 1.33.1-r6 | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42378 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42379 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42379 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42380 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42380 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42381 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42381 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42382 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42382 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42383 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42383 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42384 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42384 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42385 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42385 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42386 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42386 | ++ +------------------+----------+ +---------------+---------------------------------------+ +| | CVE-2021-42374 | MEDIUM | | 1.33.1-r4 | busybox: out-of-bounds read | +| | | | | | in unlzma applet leads to | +| | | | | | information leak and denial... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42374 | ++ +------------------+ + +---------------+---------------------------------------+ +| | CVE-2021-42375 | | | 1.33.1-r5 | busybox: incorrect handling | +| | | | | | of a special element in | +| | | | | | ash applet leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42375 | ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +``` + +**Container: tccr.io/truecharts/memcached:v1.6.12@sha256:90da9d23e5c448d44ee3c1aa2af4c868ab5a3f8042a4000851fe55355db7c569** + +``` +2021-12-03T19:48:28.787Z INFO Detected OS: debian +2021-12-03T19:48:28.787Z INFO Detecting Debian vulnerabilities... +2021-12-03T19:48:28.804Z INFO Number of language-specific files: 1 +2021-12-03T19:48:28.804Z INFO Detecting gobinary vulnerabilities... + +tccr.io/truecharts/memcached:v1.6.12@sha256:90da9d23e5c448d44ee3c1aa2af4c868ab5a3f8042a4000851fe55355db7c569 (debian 10.11) +=========================================================================================================================== +Total: 142 (UNKNOWN: 0, LOW: 104, MEDIUM: 11, HIGH: 23, CRITICAL: 4) + ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| apt | CVE-2011-3374 | LOW | 1.8.2.3 | | It was found that apt-key in apt, | +| | | | | | all versions, do not correctly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| bash | CVE-2019-18276 | | 5.0-4 | | bash: when effective UID is not | +| | | | | | equal to its real UID the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-18276 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| bsdutils | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| coreutils | CVE-2016-2781 | | 8.30-3 | | coreutils: Non-privileged | +| | | | | | session can escape to the | +| | | | | | parent session in chroot | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-2781 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-18018 | | | | coreutils: race condition | +| | | | | | vulnerability in chown and chgrp | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-18018 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| curl | CVE-2021-22946 | HIGH | 7.64.0-4+deb10u2 | | curl: Requirement to use | +| | | | | | TLS not properly enforced | +| | | | | | for IMAP, POP3, and... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22946 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22947 | MEDIUM | | | curl: Server responses | +| | | | | | received before STARTTLS | +| | | | | | processed after TLS handshake | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22947 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22898 | LOW | | | curl: TELNET stack | +| | | | | | contents disclosure | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22898 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22922 | | | | curl: Content not matching hash | +| | | | | | in Metalink is not being discarded | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22923 | | | | curl: Metalink download | +| | | | | | sends credentials | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22924 | | | | curl: Bad connection reuse | +| | | | | | due to flawed path name checks | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22924 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| fdisk | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| gcc-8-base | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| gpgv | CVE-2019-14855 | LOW | 2.2.12-1+deb10u1 | | gnupg2: OpenPGP Key Certification | +| | | | | | Forgeries with SHA-1 | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-14855 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libapt-pkg5.0 | CVE-2011-3374 | | 1.8.2.3 | | It was found that apt-key in apt, | +| | | | | | all versions, do not correctly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libblkid1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libc-bin | CVE-2021-33574 | CRITICAL | 2.28-10 | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-35942 | | | | glibc: Arbitrary read in wordexp() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-35942 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2020-1751 | HIGH | | | glibc: array overflow in | +| | | | | | backtrace functions for powerpc | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1751 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-1752 | | | | glibc: use-after-free in glob() | +| | | | | | function when expanding ~user | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1752 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-3326 | | | | glibc: Assertion failure in | +| | | | | | ISO-2022-JP-3 gconv module | +| | | | | | related to combining characters | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-3326 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-25013 | MEDIUM | | | glibc: buffer over-read in | +| | | | | | iconv when processing invalid | +| | | | | | multi-byte input sequences in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-25013 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-10029 | | | | glibc: stack corruption | +| | | | | | from crafted input in cosl, | +| | | | | | sinl, sincosl, and tanl... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-10029 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-27618 | | | | glibc: iconv when processing | +| | | | | | invalid multi-byte input | +| | | | | | sequences fails to advance the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-27618 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2016-10228 | | | | glibc: iconv program can hang | +| | | | | | when invoked with the -c option | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-10228 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19126 | | | | glibc: LD_PREFER_MAP_32BIT_EXEC | +| | | | | | not ignored in setuid binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19126 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-6096 | | | | glibc: signed comparison | +| | | | | | vulnerability in the | +| | | | | | ARMv7 memcpy function | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-6096 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-27645 | | | | glibc: Use-after-free in | +| | | | | | addgetnetgrentX function | +| | | | | | in netgroupcache.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-27645 | ++------------------+------------------+----------+ +---------------+--------------------------------------------------------------+ +| libc6 | CVE-2021-33574 | CRITICAL | | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-35942 | | | | glibc: Arbitrary read in wordexp() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-35942 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2020-1751 | HIGH | | | glibc: array overflow in | +| | | | | | backtrace functions for powerpc | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1751 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-1752 | | | | glibc: use-after-free in glob() | +| | | | | | function when expanding ~user | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1752 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-3326 | | | | glibc: Assertion failure in | +| | | | | | ISO-2022-JP-3 gconv module | +| | | | | | related to combining characters | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-3326 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-25013 | MEDIUM | | | glibc: buffer over-read in | +| | | | | | iconv when processing invalid | +| | | | | | multi-byte input sequences in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-25013 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-10029 | | | | glibc: stack corruption | +| | | | | | from crafted input in cosl, | +| | | | | | sinl, sincosl, and tanl... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-10029 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-27618 | | | | glibc: iconv when processing | +| | | | | | invalid multi-byte input | +| | | | | | sequences fails to advance the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-27618 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2016-10228 | | | | glibc: iconv program can hang | +| | | | | | when invoked with the -c option | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-10228 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19126 | | | | glibc: LD_PREFER_MAP_32BIT_EXEC | +| | | | | | not ignored in setuid binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19126 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-6096 | | | | glibc: signed comparison | +| | | | | | vulnerability in the | +| | | | | | ARMv7 memcpy function | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-6096 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-27645 | | | | glibc: Use-after-free in | +| | | | | | addgetnetgrentX function | +| | | | | | in netgroupcache.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-27645 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libcurl4 | CVE-2021-22946 | HIGH | 7.64.0-4+deb10u2 | | curl: Requirement to use | +| | | | | | TLS not properly enforced | +| | | | | | for IMAP, POP3, and... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22946 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22947 | MEDIUM | | | curl: Server responses | +| | | | | | received before STARTTLS | +| | | | | | processed after TLS handshake | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22947 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22898 | LOW | | | curl: TELNET stack | +| | | | | | contents disclosure | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22898 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22922 | | | | curl: Content not matching hash | +| | | | | | in Metalink is not being discarded | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22923 | | | | curl: Metalink download | +| | | | | | sends credentials | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22924 | | | | curl: Bad connection reuse | +| | | | | | due to flawed path name checks | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22924 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libfdisk1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgcc1 | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libgcrypt20 | CVE-2021-33560 | | 1.8.4-5+deb10u1 | | libgcrypt: mishandles ElGamal | +| | | | | | encryption because it lacks | +| | | | | | exponent blinding to address a... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33560 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-13627 | MEDIUM | | | libgcrypt: ECDSA timing attack | +| | | | | | allowing private key leak | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-13627 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2018-6829 | LOW | | | libgcrypt: ElGamal implementation | +| | | | | | doesn't have semantic security due | +| | | | | | to incorrectly encoded plaintexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-6829 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgmp10 | CVE-2021-43618 | HIGH | 2:6.1.2+dfsg-4 | | gmp: Integer overflow and resultant | +| | | | | | buffer overflow via crafted input | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-43618 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgnutls30 | CVE-2011-3389 | LOW | 3.6.7-4+deb10u7 | | HTTPS: block-wise chosen-plaintext | +| | | | | | attack against SSL/TLS (BEAST) | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3389 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libgssapi-krb5-2 | CVE-2004-0971 | | 1.17-3+deb10u3 | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libidn2-0 | CVE-2019-12290 | HIGH | 2.0.5-1+deb10u1 | | GNU libidn2 before 2.2.0 | +| | | | | | fails to perform the roundtrip | +| | | | | | checks specified in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-12290 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libk5crypto3 | CVE-2004-0971 | LOW | 1.17-3+deb10u3 | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libkrb5-3 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libkrb5support0 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libldap-2.4-2 | CVE-2015-3276 | | 2.4.47+dfsg-3+deb10u6 | | openldap: incorrect multi-keyword | +| | | | | | mode cipherstring parsing | +| | | | | | -->avd.aquasec.com/nvd/cve-2015-3276 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-14159 | | | | openldap: Privilege escalation | +| | | | | | via PID file manipulation | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-14159 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-17740 | | | | openldap: | +| | | | | | contrib/slapd-modules/nops/nops.c | +| | | | | | attempts to free stack buffer | +| | | | | | allowing remote attackers to cause... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-17740 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-15719 | | | | openldap: Certificate | +| | | | | | validation incorrectly | +| | | | | | matches name against CN-ID | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-15719 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libldap-common | CVE-2015-3276 | | | | openldap: incorrect multi-keyword | +| | | | | | mode cipherstring parsing | +| | | | | | -->avd.aquasec.com/nvd/cve-2015-3276 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-14159 | | | | openldap: Privilege escalation | +| | | | | | via PID file manipulation | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-14159 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-17740 | | | | openldap: | +| | | | | | contrib/slapd-modules/nops/nops.c | +| | | | | | attempts to free stack buffer | +| | | | | | allowing remote attackers to cause... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-17740 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-15719 | | | | openldap: Certificate | +| | | | | | validation incorrectly | +| | | | | | matches name against CN-ID | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-15719 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| liblz4-1 | CVE-2019-17543 | | 1.8.3-1+deb10u1 | | lz4: heap-based buffer | +| | | | | | overflow in LZ4_write32 | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-17543 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libmount1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libncurses6 | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+ + + +---------------+ + +| libncursesw6 | | | | | | +| | | | | | | +| | | | | | | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libnghttp2-14 | CVE-2020-11080 | HIGH | 1.36.0-2+deb10u1 | | nghttp2: overly large SETTINGS | +| | | | | | frames can lead to DoS | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-11080 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libpcre3 | CVE-2020-14155 | MEDIUM | 2:8.39-12 | | pcre: Integer overflow when | +| | | | | | parsing callout numeric arguments | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-14155 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2017-11164 | LOW | | | pcre: OP_KETRMAX feature in the | +| | | | | | match function in pcre_exec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-11164 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-16231 | | | | pcre: self-recursive call | +| | | | | | in match() in pcre_exec.c | +| | | | | | leads to denial of service... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-16231 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-7245 | | | | pcre: stack-based buffer overflow | +| | | | | | write in pcre32_copy_substring | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-7245 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-7246 | | | | pcre: stack-based buffer overflow | +| | | | | | write in pcre32_copy_substring | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-7246 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20838 | | | | pcre: Buffer over-read in JIT | +| | | | | | when UTF is disabled and \X or... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20838 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libseccomp2 | CVE-2019-9893 | | 2.3.3-4 | | libseccomp: incorrect generation | +| | | | | | of syscall filters in libseccomp | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9893 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsepol1 | CVE-2021-36084 | | 2.8-1 | | libsepol: use-after-free in | +| | | | | | __cil_verify_classperms() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36084 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36085 | | | | libsepol: use-after-free in | +| | | | | | __cil_verify_classperms() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36085 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36086 | | | | libsepol: use-after-free in | +| | | | | | cil_reset_classpermission() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36086 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36087 | | | | libsepol: heap-based buffer | +| | | | | | overflow in ebitmap_match_any() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36087 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsmartcols1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libssh2-1 | CVE-2019-13115 | HIGH | 1.8.0-2.1 | | libssh2: integer overflow in | +| | | | | | kex_method_diffie_hellman_group_exchange_sha256_key_exchange | +| | | | | | in kex.c leads to out-of-bounds write | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-13115 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-17498 | LOW | | | libssh2: integer overflow in | +| | | | | | SSH_MSG_DISCONNECT logic in packet.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-17498 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libssl1.1 | CVE-2007-6755 | | 1.1.1d-0+deb10u7 | | Dual_EC_DRBG: weak pseudo | +| | | | | | random number generator | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2010-0928 | | | | openssl: RSA authentication weakness | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libstdc++6 | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsystemd0 | CVE-2019-3843 | | 241-7~deb10u8 | | systemd: services with DynamicUser | +| | | | | | can create SUID/SGID binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3843 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-3844 | | | | systemd: services with DynamicUser | +| | | | | | can get new privileges and | +| | | | | | create SGID binaries... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3844 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2013-4392 | LOW | | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20386 | | | | systemd: memory leak in button_open() | +| | | | | | in login/logind-button.c when | +| | | | | | udev events are received... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20386 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13776 | | | | systemd: Mishandles numerical | +| | | | | | usernames beginning with decimal | +| | | | | | digits or 0x followed by... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13776 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libtasn1-6 | CVE-2018-1000654 | | 4.13-3 | | libtasn1: Infinite loop in | +| | | | | | _asn1_expand_object_id(ptree) | +| | | | | | leads to memory exhaustion | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-1000654 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libtinfo6 | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libudev1 | CVE-2019-3843 | HIGH | 241-7~deb10u8 | | systemd: services with DynamicUser | +| | | | | | can create SUID/SGID binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3843 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-3844 | | | | systemd: services with DynamicUser | +| | | | | | can get new privileges and | +| | | | | | create SGID binaries... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3844 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2013-4392 | LOW | | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20386 | | | | systemd: memory leak in button_open() | +| | | | | | in login/logind-button.c when | +| | | | | | udev events are received... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20386 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13776 | | | | systemd: Mishandles numerical | +| | | | | | usernames beginning with decimal | +| | | | | | digits or 0x followed by... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13776 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libuuid1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| login | CVE-2007-5686 | | 1:4.5-1.1 | | initscripts in rPath Linux 1 | +| | | | | | sets insecure permissions for | +| | | | | | the /var/log/btmp file,... | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | +| | | | | | conditions by copying and | +| | | | | | removing directory trees | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-7169 | | | | shadow-utils: newgidmap | +| | | | | | allows unprivileged user to | +| | | | | | drop supplementary groups | +| | | | | | potentially allowing privilege... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-7169 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19882 | | | | shadow-utils: local users can | +| | | | | | obtain root access because setuid | +| | | | | | programs are misconfigured... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| mount | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| ncurses-base | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| openssl | CVE-2007-6755 | | 1.1.1d-0+deb10u7 | | Dual_EC_DRBG: weak pseudo | +| | | | | | random number generator | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2010-0928 | | | | openssl: RSA authentication weakness | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| passwd | CVE-2007-5686 | | 1:4.5-1.1 | | initscripts in rPath Linux 1 | +| | | | | | sets insecure permissions for | +| | | | | | the /var/log/btmp file,... | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | +| | | | | | conditions by copying and | +| | | | | | removing directory trees | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-7169 | | | | shadow-utils: newgidmap | +| | | | | | allows unprivileged user to | +| | | | | | drop supplementary groups | +| | | | | | potentially allowing privilege... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-7169 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19882 | | | | shadow-utils: local users can | +| | | | | | obtain root access because setuid | +| | | | | | programs are misconfigured... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| perl-base | CVE-2020-16156 | MEDIUM | 5.28.1-6+deb10u1 | | [Signature Verification Bypass] | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-16156 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2011-4116 | LOW | | | perl: File::Temp insecure | +| | | | | | temporary file handling | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-4116 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| tar | CVE-2005-2541 | | 1.30+dfsg-6 | | tar: does not properly warn the user | +| | | | | | when extracting setuid or setgid... | +| | | | | | -->avd.aquasec.com/nvd/cve-2005-2541 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9923 | | | | tar: null-pointer dereference | +| | | | | | in pax_decode_header in sparse.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-20193 | | | | tar: Memory leak in | +| | | | | | read_header() in list.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-20193 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| util-linux | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ + +opt/bitnami/common/bin/gosu (gobinary) +====================================== +Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0) + +``` + diff --git a/dependency/memcached/1.0.19/templates/common.yaml b/dependency/memcached/1.0.20/templates/common.yaml similarity index 100% rename from dependency/memcached/1.0.19/templates/common.yaml rename to dependency/memcached/1.0.20/templates/common.yaml diff --git a/dependency/memcached/1.0.19/values.yaml b/dependency/memcached/1.0.20/values.yaml similarity index 100% rename from dependency/memcached/1.0.19/values.yaml rename to dependency/memcached/1.0.20/values.yaml diff --git a/dependency/postgresql/6.0.17/Chart.lock b/dependency/postgresql/6.0.17/Chart.lock deleted file mode 100644 index c96b7bd3b3..0000000000 --- a/dependency/postgresql/6.0.17/Chart.lock +++ /dev/null @@ -1,6 +0,0 @@ -dependencies: -- name: common - repository: https://truecharts.org - version: 8.9.7 -digest: sha256:fcde72accd942e87af2e3e43b8743053fca3f604d214556f2357bd39ca43d3dd -generated: "2021-12-03T14:13:00.244717564Z" diff --git a/dependency/postgresql/6.0.17/charts/common-8.9.7.tgz b/dependency/postgresql/6.0.17/charts/common-8.9.7.tgz deleted file mode 100644 index d624e7df28b2e6a9f2fbdbe515f1463795197ed7..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 37337 zcmV)kK%l=LiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0POw!ciT3yFplrf`YZ4->9=;D=+&|v>u&bBu9LPon>aqP(|+&W zdrtz9kc2fwvH&SZ>*jy|9J~?$L5lKQ)2(@S8;b-617I+i84PB^bh%8E{>cK8ytjtS z_%C<=3dAz#`8xI_dZ4IA0XgUYIWXIVn)c%k*KE(SA-4>MtS95$VhKf)qPAWDO}0 za0PQnXitDDC?a8+8^hJw->|S@Sr#74!-RyAx?6L6GS*Lw1haG0G!Oy|11IbQZnxVkU-X7V*mgsNL-@t zR1n1_2KhQe6NO%9rEq!PJL(;F9%}yO`d`7gK=hs%K;!x!4o0Jck-Pp6_x2vw|3f@a zK(`CtWhnXi>=e)pg?NTT5T?lt&kF+CTJJmo{~4hfEaIFMK1T>lQJh|N(hMc5EP1_z zb2RAyz+s(p7;BI(5Re5x7-N*=0JDM}00_!biu07LCm_lYp=r{WMZ2PCTVNoEY!&8k zuGrOo(ghstA55a*;dn4UobDe+`@_S%@o>DiH`<5M;oi~yXgD|+?+r%#=wN?%Fog#L zc(iwjj`oH}(R4aK7>$nhT4RtEaSXCF#^JgH_^&hmV**~!PSgC1Aj&$_;n04;1pQb* z5^X!wSD2tVt5`qSC2Zd~&le%-;k1AGoOWT}Wqi7?fwll=j`V8S8}vql(Qt4y9IFA} zJ3Knt8y~@=>EI|lcz!gSg=oAF$03SP7#{BJ!`XN?4UYyxv^R{7!e|l@E zXb_G^aBpxpJ&K0m6rv#<4aTFx19UWgK069gyY{ytUKnRMLE8?ss8v7A#{z205f;!k z!EwiR+#9KJ9S@H7_m0MJI)&(HaEOk^)8TA1i$-V^p@VQd8x4kVe|mH{81EnMjmCQ+ ze2%8WgJ}9ZjHZWPhHEvw9k)$sJ|~F&x;?+uH5)i?3EelmQ=BJoiTh=-HbBg=9gcg$ zl4PgR3{8il>Hh3FM9(7>&BD>_Fq{sb!@(4epC9cXh2sc@;qYj9crZE|!O?6siw1BC z!w5~ivs!7r?eKQyaXN)@IW8y%FahZb5rQMcH88==(F}hE>5TuH6>-e84XLBNlcg;v ztQ<;mOb{;vA~eGZ=92|90JA2h=O@Q+UQNIZ#uRlrOcf((93!IPq6AK3Bp0dr+Uo%M zA)0XI%*CQC3Yb>Zzur+c~#Cr&10Fxxmp@5zy9FMY2-vHUyZFPWI>kX#)1pMQF1$?Os(sYUBz&`;1 zaK%cz<$s#E+#Z7oxc*YpyBJPUybV}U;kJFcVY6mOPK)If5k|-nqL`ovWNAdjl8!ZL2&l;B1V#wZoWLB-*SzQtDFH7vGV~ei1CB&b1Z}-XAwe)lU`KMPT>z5^yiem8 zC-VRgCc<|h-0?&crD}iHehH$<^ll!%c*Kity4FHBv%Xtl)p5$crRv@0U>CG zDNYlxz?5-y5aT7z`K*f%KZ*Bm*y{<{>vXWST?nRH?h5u6VV5cyzx}?JCCg1t@j^** z%Oy;r9lEPou-e}kHF5(|M;78MstN*+;tmCX6|3?xh|<>VVlqyVN|?05#C0E8)+qXaPq8-ar2WNryfAV5AII8wBPrTWx3QmkVyv7GAWHZ*gEX|5o@Bzx?#vEMXe8D>{ zrNDJsNJV(frssPE;1%T39pn-#MW(#SSQbh`vd$QFOxH>ncqW(_XSR$LqZyMBnLNY< zx+k2YChKV$tpx%w3|T+q_#1~hV1{GV>j-4EuzhxXe*Vk5_b(@4x$b6=(yNq2vb%2~ zP5??)n4}4p3RjR|PAffdA=#s%5Z1%=ptMO0E_@vKag~(e*@6#^*Sh7@g6*3Dx$87a3_L4f>Io>;LjY}kUIYuwjtKZ_H{}&1x5Y&QglH zSsHb5GE2!)lx4mAnW4rfLiP3Z-OE=WPmkZenn;y!hEW{7M>F+XzBz;WV#3!!FG(ZB zMxoPDv#R7jVJ3PDGhScRRtKf*OLqygt`rTsa=lfGir2bW7o2cL1u}wDg7Y;9V@QRt z9pTvw5k}HEW5=Ahr@}}>!v%^8CLpSMC#>2jZvs34bWL-#?6SUeLxOW0!dOY1ahzUJ zwdR>b0VT66p>kY1`lkj9uP)i-b|aX~5lIW$EfJ}Mjy|&q#W`4{lnbDY>~ppOsuxOY z`DK9;DdezEr-I9aCA>sTokN0GF%>YOis7cz}y=Imp_n2EthXjc~OKN0&5PUhWwfz<2Wj@TZ~#m_f5xuiD1oWO+X z5CuhCD_}H8QCRSGmnJ#-ocBVQ!6}Y$&J>cg$SKpEr5^C(hu3UoE=Yk+kIwo;KV<#){5Vy;n?GhQc{W17IU?nsUT-wa}RnYfg+=@pUl9 zGZe1F7}fPm7ci|6()bROHNXkZPgH5jg=PRLh%k3%f@BSFj+V3sUcqo-msYy&0i-=AtezaJ@6BX4Y34-P2=^oi|yY)8Jr zbiuizoc(oL5I#u?_?d<+cwV^xC2Wdvst)?6h-*>ciU|Wu-4FtSmQhMX?LG$=CuaeF zFHTi1PR_~(Ue5poKV4j$$rdmbyj*F5e7UmkefFPoy&>(2E@v=bs5-u;`++nYGa*v_ z(iR~$E<(ywL`_Wv%r&c8qt=t4UeBcP!_-g|flq2A`Aj?$Xo@x#X&g}nQ67`2jmQhT zj&cCUd?Ez`4hhCDQ4H7TC`^-xPQY*=zh;PFzUw&ebG$@pk?Rlp^8F0rxFG0aK@epK zvoEEsJ%ac~w62$#pV;;1d!cp>{gK?aA$NP&?wH>Fz`r(vKNow#*5oet5j_jF-idVYUC=-r&V> zf56lvR+p0z!x9u3m3W=kVA z-q^zVw-gv)!4gpl=h~tMt_aR^l=M_{LQZTF6A9wxn-CcvyD-CjrmMy&jJiyXFGz@J zpNWvGVgHF%5W2%%rf^6sxP3}9jMquTR9gfV=~erVlxJbeDje1MuY6+a)F*EA`1Ave z<0%X;FVZ*ZoW4t55t5Qmztb?NQ*PP#OUWhyPD)A>)_#y6BO@w zbKH5WXO;cJ)gKMrN3p4`j!>wwUdR(`pMJUl@UaI4sZ+ry5(a;UCgpN*T1m}2} z#c1bE3Zp5EVG<&;`wXz3-^-uRl)dxy*)wpOM(8Xhxv`P!ufnY2^;WC#?W*56r_#tB7i086-LgiX+|1tx+OdQbK}4rez+>qc&8^<9#n8hR63C)1T}(tssRpCC&~ z4vb?J$r?6^6s%e~K)$ww`L9JI1`py;Z_I!gPd6A)t1c+9sANSO*-@sbx`rQZ;7NQe zHZUXu&JB5z81Y($RKt`kX_tdYxW{8zCnfpBDa%$l>qnl3Y1}iuofjF0VVov^Vp931 zXX4*;_Q%D^nG`!dygd74Ru=+1`y@sA3|=JwGJT-*vq>T_M|sI7agrm#Na@4-H~cH- zs^zhS(R+dLghO|_q|KToN968KysM6`B+l$C_Q`uKj(Had80QlFOV6I&PbKJ2Y{sOI zI*Oz+U`&JF5pbeiONGVM&=7D!a|9!h&Wv_g=}#GNg3m^e&9FSPXCoBJrKe8(shB!* z^WjQKiF=8)OApqa6S)h>vuY)Tn7am_CAC{vI}kNT>b9pu`ap<5=EtP0gXKz7m`*BU zl=Qb?%x<$3#ckX5987#R7?%X@NK60t-;U90t#BvHw2|)0qPG+8B%FHjPI;%a7w^;% zSnO2$^)&KQS@pK^odi?IOI0iPF5l_FZ4&VGacipFvSFgVa=;QtQG5jnGRN}={24`W z*%!n=Rq*7roz6sUQAY8YoIo_gm*$tt=TsaJXD~#{brKeN$~N~93T2BQe{-KQ3SeT0 zS*1Uc36n7am}Q9Ra|}NFEt@Xe((XfLP4Q8-cgCjy$Ln%jtrJ*{Yq>6VD9X6A<*tPe z!!a##z+F$|nfy|@#MyUuKX}WXL}Z z&P43DUFi?ki_;LsrOe_YmBD;bBE>K`R$XE0y%Ks%Ixwp{nEcfx|m_lk%~ zuS~!*VvK;ly#T}BaNHeKAYE|1{fuAVvpyO|oJvb-)3S^=V)xUgwUQKAGY%BtA=Vl) z7m(XQHq;kKoVs{(?vhIne4pkE>AuIkBpG`Yl*MKsBPn-jh4$=-`N(5xa0BfeD9G2M znr{mnApL6uee%Dq zEpA*m*L3Wv)@@C&>57kC*C#1(0J<26U=D!_@Z|7g?Q72Jv4WPkF-y}4m_pJ-X}6}b zmUAe*sA?RLN__MYn{=G5;A)*&^Mf|pYdpGcO%P^FtkZRLai>Bizm#Va%h}H-lH~sl z?Zmp%v0hkCf9piN>LeM51(kEf38Ta;MrS{tJd=O^boLBntMC~>%Pe2N#N?UW>zftI=vep3!h}6f0Cdc5M z>N|BB{x95Qkf&mw5(oZiTr81N*6g!bHNd9J`KSJ089E=+*~ff=K8osp`}9l}m2Tjy zm!cIBt;r)MBqCvb^FCXtB?*=#T| zRU;O8s&VO~``78-~#nn}U z3Vsm+pwF0c3Jqh3m(R*cm+mO~J6m{`c4D0Ls6rmbxhJ8DEVWJ$l?ztc#<^cH5mB1>9Y?)%*i?3DG3DxmL`y6# zl4fu&9m*}Xc+Bq@yiLuJCyGJl4(YxvO^m4&>A9RNuE#CY24fgx3wCAtg?Doo>0cWnaRBN+WcaE{(F(Y5UU#R35+m}5HAII3Q- zjR(>4D4}+2DE=3kfTN?MAF&25j0!1NVgyApCM)he{Con6EKR_t1rx@KgiS7t<4=-t zv4ZaH;}flysLe-F2AhlpBurk(uMkQAj7>N8jxoyH46+_s-d=>sZnJ+MLm`^jB9B(! z#O9|kce#FFRQ4ETmMFpnw_XO~zJ5^dW)S4dY(~M(`{TFWDGV>!Jn5SiyK2QqpxXOP zOtAvYW}4Nd`pie}N&GusRia^=)$l{9bNnwPK7P+z|5=RKCon@WXUk+RZ^_H?c*Z$Y z2otq;mPd8?Ut;|&IXEDDBd4IGF&U-B9dGpv@!%+ zb-c)xkqnU~rj+aU!k0f>q*sXu1hH7Af*dHy&&q-o#nGcpOS!$JF0CEz*|dC8n16EV zJ_wi^yj;ID`*Utyfmc;8))}{+Ff}4vpzu<;tLJ1bwQ?I*g%z79I%TSQM;a!y z5)EO5XB1LS6R$5moXT#M5orFv^n2gr>z#3Vw7z+|W#pcAb1e#Qo@m*6%UO1zKF)9* zgNjN9rJW)97%fe^tTCPz>o`0-^zu46TjKP!I$8XE=}mNr))P=rMD*bk&^|fKb$3qE zBI_^LU0tNJ!Q^cOs+Lq%9tM6gJS}h%;T4Vw7_*tV6lMn`B8Jc$CL!u|#0Ycaxr&lT zWuz;9X3c|EnVKVe%U_yC;J~s12mHIR+;Y|F$rJF70Df!$VoY-*j4D&UimcL#@mibV z^94E=e{a$L=tnGmS!W#K0>P{+-*vf@pB(j5Mi;^Y&jvh96PgoAn3Y2~UO~E?@0-*spWzDwaWa6u=qx=3g5)iGYt=hf8XMnrf{J zlc)=m9Cy{5-H!UpgJhm&X`Ig2=NVg)C%42@-L2$TD#g7@)j*f>7P{qNFhQZNd8&iA zE#c?$OLR2>f5l0T=7{`_lZUGKceYmlN^^pfx%hImK*@)M!W`2Xk5%P-=SSk@wEb0Z z>c2UmaB@Bfc^bRM3-vcA8LKz7|))bD{DTonV$!iY$emx`k5T^xY zki$ia4NoDqhxEj)d>GRd;Dqf3{D#MZF?=d~i6|gN!c=G@7@Lgi7~?#T5d*Cec?M_^ zE?DDlae~?O_SB(pls5|z*upm*?bSY&RaAMWI_Ob(*-B9^qI5>q(u(?krsq0`BW_CNuRIY zo{@u#XE96*(k)}jFAo zbzQitVK6~f+Mra7TVdBui@EY$R}%lBB|yw02QyoGOTvQ5wALaO0|en_*Ac9p{Ot1scgK0j%ROBscoyfgPC?raAhv{39lmIp8NIf8V1sB z_KY&2Tr~g|DUzf*5+%>VWl|20702dyFj+T*t~KFnv*&%V2{ZHFO}K?o|6ZAfHFid$ zGQkX&{{SR&j-kHu#WXg|NKe_Dy4)%vLV`z_yRJjiRV+^B9r`>484-qR z7|&Cq%`@FDEHr=Vf+S50F5n_ydDq_;clbC#S&(j3fL-^g}R8z*iHr)I-?pUG&g9$3 zAx7(>H5Z3h%F$KY1?7TdZ~VOxk$8nnk3MHSIR{o|-%KRZ(>xe~PdNHWDEy>&v4zsP zOp&03KIami$qviF6{R1wyFv6e?#On)9?ozKYS&K2PH-0`q?+MXs?57AGy%iW-e_pN z^nu6pv1O}MPamK6nOIFUZPTPzy!@EO$iTf5S7Ae!2D50sQ`Ni!@;4T10&=@ zg$@!Oy`Md$O#y@6Ib{sM}t7t-bWB zZgXxYlj$VJr9f87WN|tdW*@r1nGP=yr<*Jj2Bm z&KF$fI7_2DTN?_8rnRB*ybm=(1Ha3~QKmk>$>MMlgx{Bq;mMPZj3!IVqc;&um*2f% zLYZiiVKCz++$2{)T_TjBgo$hzQ3guJ_AgTy>jLYovpjp#DymyYTKbBnAwdxh6wQZr zst_JS2qpkQx|YnI(^Zn@NM6bO@czxYObux42y6;oe$R-vAhB`a_8vu;Zr?4!sL(D>RB3Uq!C){r z7?1hCgTcW4ceHn~|Cix-xIf%G*c%-l{$(&4jP?hA0fRg4tM@5r4#{5zw{FYr+#lq* zzV3h5;roORw7}ICc{VzY3zQL@hzK2vGM{diinv&UIHW(7j6?)UnHRQ9u4+pxz0P<2 zFJC&>*V?Bj5CwXR3BL7E1rSg&qAs&a`W~iTapDu(Wi?H@;kee7b^LthAK|i zRf5+5^z52Kxouzh%a=~K+wH&%OJ!#Q4D9-=(G=xy*tx_>Gyyd$s;y+oYIPb>7c=plVe}hFFyrw#7_+J>8a;37g7;3Q=L5jPI?HH(HI(OD4BPALn*Nt= zQcQW1qX2+`yKkbz$b#RrCBqzR4!}yATm!`@V}Ke;0A`NmIsj!E1HhgHfO3LEbC~@^ z*POOl4M$fRcHYb5bS28mpQU0glN@G+ej^$>Xt1G?A$oO^KO7DBob|uIcd+-k{vYDu>;FAp$xf&^y%w#=@U*_j-s*(~bmbDP|ChR|h<{8Y-ElK?zzl*<`E~|1F*>|JTv)9*X~u zMhC9^w?7_?9{K-6JdO4r#?)*J5I4ti0y)>$>pWH;d78A1*+-LI;5DvDGleiwXbk)& zlvd`OTi8}q1@38VY((l3nGE-6@ya~?FSv~BVQJoIx&qV)phl6Ny3*rCvk6Hv5T}7h zJ)Q=Z%D6<32z>Vwrg=)%GQfwS!W-@R$_l_bT^2`zr#XLPOik0|^i@;1yj< z@CLyEP#NyJ=6plmW5ZxK`P`m#YwWW$Ird_Z&!^K20&5!gwP z0j~tITltd4F;3e`}ezi_l=Xtu>A~F`x&Np;7D4W== zj5E;n1(k|Zm+NZ-trp}+OvHg}mf&N6er@XMPD((J7G#bhb~UsNgSRmBZD&(d>SdNj=Y}bvv9m_m z8l&BY@}dUAT`I%1mOFzD##CERDrSz`89B^7yG3W%KNsr^NwLp(G10sFn8ao{0W)b& z3371?Bblo&cY^5EvV6l$)-ndj8^E4eN_bXd4KOb&@Q{AJG603SRn)OAu{o7>^!blx zQI{B&u>cz}V_jB}@B$alRhICW!nP>wMQ@cQ?eKCV9&9mes%rZ|Q#IP5=3YAA0yR~& zJ!-1P2GqVUa2%EXnM;_NsQB!^%6ZY;+6JHoXzB0X>@>a#Z3pzKk2()havX+fk>pO< zneR}?H&8Qxe)W~*G#EHXto3@lS+Ft+Kzf%l0b)~wmQzFa@-MPksb4C7R? zKu`0+WK@ObS=IGRwwI+OhjA@dRT17+ODdiJ_qPam>y8p31a`pf5-rghse~@RZ_#ZHi zjs4;0GS$tUI)Vxz*JC2)l<8Q8O)D_}4vUSr`5(&EU2ou&0GUL7yXpHLClOBOkF&U4GbD|X3i#cu@w=1&Hthd{{egS_J3br^ANT)k5P6!F&h*U8U@ z?MA`5NxTnLw zO+?w`?Rl<9a+9-X11-AFo*Rg<;_Rt$xF=sv1NBOiO|G7*p6Tl84C(LZ>ZyD1=;?Wr zr*{8`LeaVlF<_JYe^@#HIT(*0?|(nYW61xee!aCGU^_2VZFhEwp3JD-tT$LD0o7@fA8XfROmG^h*lfJEo>mvH?^prxtpCz8;*NBH4eNirHyXO~|KY*G zpy?($z403}$-Ez4%$8V@CySgw7obyiFryrRM9h zx;vujvWSu5Ab5{p^b5f`ddEF{cENAp*CI8;z?5P8EzovafAuh~4d*4!J&ONjwRd!M z^dk;@t@s>21vFtE3cwEV`6RK44CZke9$R(xmwT}<)6%Ttm6g*$%VxSrAfXxz5A ziAJzV{vQpU_#dO;Xngo6|3AbdvMWq$LCj39o zx4b#_f90Nz#|x2M#{GD^6t;mHf+ z;@i`u#qKpD>5^}e*2NbCre)vM_F$u@RpbKRXxAL13c!kCwf`M>EpZoz8dkDnWpzc% zEMHr_mnWocy6(U%Gc1+XaOW043BT$z>g$0qr?Q^d($!pwU-tCL5?ggZ__dwucv>~H zC_y(*q3NhBuispvwLVOdlpBB`Cj|;Xz>|)j!F&;bpvzwKOiMvn&^%oRAXpi=Nep(I zhAgVC0cFiMhN*FN)tzGa57aiosTr{5!>hpM2_679J+EqcT2*beNWATCHyi4raNF6a z3m|gs4R5p&PTgQOh8wEPhJ?`n4!lG;B1^{8`Q12?`^!2f{r`zn=K8o)kkKksb{r#& zj@e8b3vbr}$+L>Lp-Fyk$ojx>G~r3z;^Q;$bdl2Bj2$JR^L*R2XM8(Cqu`Z$BAf7F z*Pu>Gt)ee_JOYMCpgXf$bCA|{Eo=<$)U+0i;7+$#3w3}0-g3~N^=T>pOZnnv2LhY? ze+~~1T={=Ec$EJiLQfK?DorZEtsez-Gku*=kG@gKqld}#ab86B_J!n>vA6|(l#{MpKLD21T$$xMfvRcy4Wmfz+u?Y3LGEeolu)&76WD*+q!|Kad(&&~fm9z5p%e2_=)|L-!C{Csu_ zLV_6CU>H+rW}$lb7a`xa*!?R;q3#2${&JpcVCgxKy+h>a_Bd1!H+86SN62x|6-%QKmNbx>VJdr=<)u?gFKr5OLO)PK{G^9 z65?bI<~T2fn_Wi<1USi4;{ZjN&9^w+@mt&iEA3u6JwW zUz_;Pe;vBc+0QQ4#^`6)uuXnj+x!3s zVFsr-#yM6FQ!t8@msA&=zPk8${POMV)6N$5K_mR-AJICfspqb2gXVbLzh#gSFiav5 zp`t&%?(x~o|8=Ksd>Lc|{~sLgd+a}t_dg!w zsq_CbBl$k0^H&+vx8C)u5-Qm5_@%pWFJ521ZSJ0ZzRIy_^!VCJ7_VFZD(*9v|73L4 z`;!00<6&j}A3Vl?e~?GZe>$qTnC~rZzB;hD5k9+q0sF#`*P3ikIK;OwyZJq>u4>S- z*=}XARqblj*Kiq6z;EJ2hb!(%0$k*I_A%yOe;+e`ns_vLK9C>hBn$12;tQ8`&HErT z93#=me!k55`a5sfe|yXw-8j9(N*)ShjFMadFGy_XNp-Jkgal?tF8#_4i~9EFw7l!^ z&vg1x&r;91+K|H>hcvc*7aZa=gz+M!xqji=6P^~OH;M^x%HN!*oEZ;r?PEA<<^ZZtBjeQv~d)nhyJi$2Q3l1W-pK~QmQQJqo6 zB&3SFNIgv3aisc*AQ-(%;`IdN#0+(JL(iNRzBrBZ`^T|={Mnz)`@f#l`?CKG5BCn; z{eSN<{@=qqb@m@K$<#yIf69DQTd0qI`;V#7-o5?DC+6I<{iht8t#ABkwY>hWUsy05E#&Q5>t7yfRny>90Jw{-q#VgKJ7RrJ5X z=<)u?gFKD?KZ1Dg$nnR!=(_yyO&a)aVb^<<7jO8~t^ZY)^gr_KmG>V1aX1(a-1v{9 z!_njVe~70}{*%d1A5!$=2~Z8GZ=1xb*E;!SkY*?mxm0hQinRm*`~r$@>AuiDQ)|O4jgTB0l|qV;SlC&uZ>|e4M9=|I202|0u}x-t_E4Z^jCiL9sbHs8_s^MQf-cYtqQjb_OONHw|aB_U*{j+zI*xM&8sa=joIk^ zF%OIx{oK`Au^ff_KPIj@WMJ)I;y6CP!g;u`Tl?Yl`&Yjlzj)y@%7niY-1*xy}st+mW*OM@{LQ) zlg^zl17*Cp2TnHTRrR-0PGk6!~Wx&Rp2ex1G{b??_}@~ zJcEDWjQ;Q@qhC*@DFHh^^c34IC?b5h?>3jqAf;C+iNwgDWc33{m%>*;$Z;}BDA=5t z)3M1a9&aFD^@lLL9!x)-(xB0!3rJAZ(*@Nq3S`9B`ir8D&BK}|Z7HevUoc@u)okPM zz{a6v;|4pB zQ?89A$f>f8EolGXxnm6yZ*FZ5DwUG+S7*oXk1yW6w=4$#5j>iVswSg9q|NB>uiv~m z|K;_?$xqe{b2q?R^U0W-Pi(upY)pG0(oUv;?Dw~P9T{}npfUtz4A@ZZAhPIJGiBoj{f0LgM^MI5XAAe(K_ zUH4AITbQZZB`Bj*CC6;fzQj<nnTBrf0N%|1hl8vNgwYw`lj z4I8LR0ah`%>I4;{x?^U2D&x|gm)V-@=F%M@2cODF+20#R%!5L8;5>y|wBXKqr8Sko zj18p=kEitTT=2J3*U8KudU)kM#FZpq2k7puHK&-K=WrT(*Pdzn(pl+L1$mJ{!C6Mp z6=8!yGbm^yko^pRebLfdHz%wsr9e;vs?@yk=k7PGPjyhLDb+QT!Jkp|7DrKxt{@Q{ zA@JiSZgBqKR#5BK@hEWsi!9LsP^C?aNw5~JB-9*w710-#<>49N1o@wwCM#v#!K+{w zTozMA5|kqvk|+SXHcq8=uO&JfmD@I4%3-!l=1k+VZU)_HS$bz=x#eUm+s(tWX$qFN z82$S8YX^Rd=Bi`va9Ypw@3OZ`>xE{eo5sseu~k@lEZD3xEuw}7sjso!N`GB-#^aOV zWrJlM$q0oKBt@qh70BFszd8k|qTU2KfoO&=b)QRW>fy9c(jw<+y>hb7Qk>*8FkIiL z@xe?hb%mzZUUEo2M;$&urez+_%=~)bD>5_cL~- zTup5rSHksau9wF~YS?O30J?xDF`XD0`!x_rxeWehvOpF_lRsQMav+Ix@q@l@|UT4AAyacMP{GqCauznHPIb)K8nGYN}4&&p}#`De}WiN=wL z$W3d^p1$3q1$&>g+pX5fr10vIY3=;F7Ex64M0>G#p_zt$r6t~^ijRqrQI-F;BxMgy z7UhaD&(z5XA9Eg2(o6Uzt!uvEd}p;Ucsi)->yi_m5j4Y}0|A_U_JOTn2EY`CmnexQ z*2~RE0F|TJt!QpgYM?810Z-{%tqMR=ET@Qw>Sc1oNg#=+=xbNjR;tc^{%Lsqv0 zx3i-Cai4noU$zSGBKSj_{J#Sy{?~B-VE-}x`-41N+yBngA#g6@zMRAmFYm<~n5~R- zP##mA8UDZs8_{g5tFhF%ut2S?&OQjX&V-+4Wg7c-rpmi9?MWy}nu8tmtG{H>4V(n| z3fZbLOMPi<(jA1dH`>6F5=%I6TJ;wzp)uu4=uKXdbI+OlN|kEP9H*4%wh781PPRPN zF}f)0D`jPY;$@F6`s&=jn{fxTU;-`?%6x&gZ?BFtNs%{AMs5V0)h3cw@LAVYbfc}lo@p`lk%{4cA4qoboA zao{S5m4T9=1Y-)o4iGj}gJ%TgvYp526vhE~YT7Fdk`c}}B~g~YEmVzSzI$SK<|$IY z|0}WhzR&*#hr>g6|9?FHd#GpY{a+oZ+{cbDNv?6%H`T-2?D(#lxz%ppF_qEZYsFhW)5P(dONH-Y zGFQhzbzdiS>$VPBEs1ySsoFFdb={zdGTwGP6L|(j8Rw-f(E2Jg0~MZlUeMxG-KhBC zv>B3Gj)F9?Q=33upKa?!SLt?EOk+$Jr)kdAi1l$4F@C5>qVB6Ty3HW0#`!+x*z4II z^vp1WTRWqLGJ9p_!s0e&%bM9UO`0N0l5Otnl`oAQ;;DI!$7)S)C-z4kUV^b1yAa=G z0)D((^YOg)>&3~Lak#ABPr${=S;uDqE=!c1_aN&Yqj(`$ZIl&C>A*8SJ6trgSnX*V zaqBYMoP?D{>`)xJM1I`e)tywYj4r5G#?I;2*?lxEj@uJdyDRP1eP-Lpu3YOe3iFgq zd>lf2s#&G>XSpWp{ZZ@Ira43Pa+hxHO|uwQXS3h1pVkVIuaZcdQ{S~1Ss5ByOesD{0E$W!n2h>!n4u- z^HHd1x3L0ky8p9R@&7(N+<(0P{U8sw|GYOHY*B7YCSPK**8)~?C+_~qvv zWt2Hh1>5G9GKC-;US)>*pWqw%Kf(VAv^xUZY3dzT38IW83n#}-V`g{Q88h2yn$-x@ zWbJD4OVETfpc01{atOB>Kqf?~`j!Ds!@NXm>LC6bm|;Tmdf#aS;GNjU{|rx+|Es%d zw9i>TyhY+K`E20-j|{6z;Xhc==PNCVs?OQ1(%FZam&I`YqLA zR)yPcjq)&G@b~@loov_vrH|`*A1r$Wd*kW{*QP(|oVZ?~iU`>2i!3%Z1*RkL9=-rO zrI#Wr^t9I7l9%_xaK5>!rBm7-(i%rFg?z>Lu^iGDU`OmeqR_7J`m2T6q@tQJMEKU} zzZGLmhR-9oTEBV~#$S2YqmVt7CkJBrF4FXpL5$P%vdBQN8U`THmv{rS-Jq-yl>IUs zyjjO=&u)j#bV*Y-)GuFn%eeztWk9mmoI4nh&BgGdsg7zyT{WnVkGW=cBnzk(6E}Iy z9$9jtgU}7&G?16HhVZrEt_0(|!!&c-=w)Fm(X@`HY}=O4fK}Uw=MbZzq0HZiubDHS z{nD0S^;gM7gF35)71T&0X3krcd*-&cOrvMzUf?} zkZ=spmhD-4+l#TaTyt#ene$C~jEljuz7-^{+;Eum``@f4->if`o@BM_eYq}DQqw6x>qy7Dwx`i{qZ@DpMJLMMRIXp`di|=T`%6V^};{cPC(?;`xq#`wR(iv924G5_BKJ?i|2V6;MjvD5wxN|l!p0G{Cx<_KUaBfk{{ zMfHb24v#h*UR&&C9m5piVXtSpuGlD2e^3waiYpRUuhZs+nPg(~f9eWxCa|f4b4N_|wng`z46TZ5k z1c8AaBQw4C`!=I;L^q9;*tE7EDr2+z>c;AZL$k$F)=L!N1mMpnS)qjtZVGqh8{hYC~@MrIpU>~(>yl1 zIjeow$G&A<(?z<1v0jym=6LmVihl+)81;>3lrQ6lW@j#X%%ywH~G&LCm?tRf*ZiD zv7@#fgDt!NJFv;7^>4+tx&;H+=>InwRQ&&jkNMvo<KM;4tv9+z+;WuIHEl} zl!L@zigIW*=~Xoa!(X8AQV#~rMSJV*hNBGj*>%o(+jYr`lDFGDg7Ve@DSV+*A0^D2 zKTZ5!-pIJM1#lDpA5`ss`+JZ6e-HAQ@}In~yq)N$&N$fOQ}ItY{WPTT949{&?B&x_d%e+EG} z@Jr#H6CN=KK#jqyh~qW*wSY06VYX3Z8K00|=NBZP^YS@sgG~+vQxw92B0$q6;tHJL z>S7va7{!seaunkw&QT=N%MoGKVLX)WF|i znG1M|KtUOv6hMx=#I~7aN+%(MY?4O5B2Rh`F$F)!L=bmGYZY)+daD$1XioKRGu_#l z@!Wc~?OA9i!X?M0)-8cq=6%DTR?oe>Bxi{R&TTM>iN8#x0lQKemz{g9+c4VRF4HQa zSc9TkyOjv!N;F8E@k1#)GV2kHau6lAN&w#zC5ULajQd&gwPHwsygu2nuG+o}$%?k)Yy2xLXG` zv4cuhNLL3)()TG^0;)BbST|(T43T&ZLdb|h5sBI}(B= zJ~~-W`priui_`T|AH_PRpqG`;*LE18dcY7Z(}bcLxcuum+8Qj)VUA`+%mMo#pUVP1 z*xiO}wK;%b1!Eimx6Pez=x$Jlk&i3aZqRIA13{Dj7X&^2Uw!{20JC4CWYd=SYm}6$ zwB!Ok#syj}1d}C-dpEb^5K8`QlK&~ni`!@a+hXQW8;qe;lC*MNP0Hl%XU-Nr?Fk6$Pe;lYeq+N>i%@MVQ{IK@Oo+TT4hV zjHb70O~P>7Yh}1;TK_5l=_{rldk5`)zc5+x{0 zlaUb11T~R#y=$yhP((accG4xzON~#|bOWF-S+AqA_OhTk9|@)%T@jok7b~+l3zYT= z?17-XTA{G9TJlLA9S*1e9pD8)mPW^=Gr=27a}kiselLc;ye?^edx^tbhg2y`*;(&B z%@_bnH%AX>AvlXkHY$}jG8IlRNm4$xykq{By)F1K(er7Sw}x7_xmz=?!ia7Ssd!Zx zP4T+bKpL`TT*9v#O9OE0VT|FlI*OHMUGNQKXjBG)I>NDsF@{s`D3&$7MC$!)kFK}K zwj&MOkZyfT?S{Ur?_EOXropH}s?JS`mtGcW( zc>x%U2m1%l4O}@v%TD(0JhiQIS$hJ(Xe+`@D@#ffm`5awJM$2Ekl_Gy!pX_1xW7N$uEbDO@c88^nx zz_ekBRtW~7|C`L8w+#!Lr_0*UocGm!jn)ZV z;;{C+YWgKfv!=FdzN^M-K9{Zg3p9ve)=f1SMKwKsaRUHuP}EisBG!SLj<-a@22qEF z9`d^GTlDavb-gXxbNXr%L1T;FF6#A3@Jhu97XeWmUgvU9mleu%3PxOzY7Q?EIaTM( zER%8Vf*o*)ljt=!0+iuf>@p^(oytYg7hpITjTyJpJkkrr3eu{2{X)q5HC#k$7dHA? zBjWPw&2i3djO|8lSne1aVjWYGOd)VtWHm5vvp{LCwK`F<9J`C{>-+w~QLMHK`&_sfy%mPn zx4WL{_y5!9-u;hEuFOh;>aF2&TX(<>{=a*Bhfe(G(eUu#G5*JcJdOF^^96D;z_T~Y zv`9=I1OAy#MH+Za0V$Hs6wOki?#b}W#c|B7=M7oI3`ZK9;Ecd*+|pv5Bvx%}GsZ{BnOAc*qx z%{ntLH>@b+^;gqG&@$ODBU_k6qRB1@`cs_r=^{|SyP^IQg^Lt?du*xaVM+)Jb2j59 zZ|(KI{g3PGY9a<0MeOq`Q^}crz%kNv$CJONxyT3MsUk1-V9JXJfaj?V7wJ_3y6?gM z!Sl)f!E?}GWl3MP@E;&tEYpa6pa0)0`y2S}Hz4{X%FG~E$?R5HBBR7UT#GwN7fh~$I01UP)s>?N;KaSzYFtdJm*W_?69r93aRy`9oIivw z-%>6qFHKJP)oJDR;0h=^PB;f6+K*i)hx1)K01$tFR>bjH8sl(ni9@1JrazW4fhAK& zxxgbNNT#MNYLv@+x}S_`veqo7Wo5OyzHX3BHtC8Mj*!eHt7d=Q1$K9bo9nkwFHmkF ztW{cx@eGCQP}wi^&)Y-JnKYLOWoL;fWdx-+C*$MW^4r81+UYO%qlHR3xzTgOBfD9l!ke?)1%neSH7!-G$wcU>Nv)kfh{wiPq{2 z!c{2a+z^VZch3YTC6KoLpv{`a4>`N3*gT zU;X-hS=Y$aQ})P$AyjC$kMdEeaO&zZ)V)>BLlapsRH^J7#Lf4c5I4(ii?~&HGvdxW zIjz4bmRB;o=auR{-#Cjve4Mfh}8QJC!0I(wLG0~A5O7MP$21itQ35zvVrkEJuPgc(&e05n2NsUty;UxuN7 z8B-`GN>;ub~l>^!k4fMKE%jICx zY7=jb)Y77X`UO~p=q4?$ypXx|cRZuH>q7I$drz&!=NU|E_h`bdT$Xau9mw@cy7L1i zE46D>Ph#Xp+cXO#D>vA27wA_dC${)-S;xzMOTO zMr%yfRks?Vuwk?F#WU>Hm|Z-M`n`pNiBBtc3A%I~YppSARFwHt(qRAC}?ADq;(3HN7z4oWupq5%~cV zn*W0H#ZRK7Ba78ksBU|9RM#kxiG_NpNVw+t!YLAw6(YW`6hRU$#2&2Qde5_~ZSm2N zKW=Z^^kdA+8ZRc`AOCxYO_|*XK>gaj5#vvBsCurhwj?r5RH;+ApIew?=LCl63=zzE zMVdssl2PKvN`V^sXY5xWn`nWoNqVg~%+#=+En?*1ycUX?qRT?n6cV30pDYi2%L1Zq zvs}vDikE0j>l*kC6bb$n{03-Ba-KzN*RhV2r&lUfVht$UHfdt%sI-dp$z+wDT=rl z0pl79@fN736X|$hO>pn-XRy(d)r5IDk>1bSPp1#erb*pOyLJ_8`L^6A%63}s@y9WS zR4{Af=j~;qB#n?xrt;-W$NYVJ=y1k`UcPqK-?xXFr&$`O^YwW~5R6XJgysZd=_XVA z@h;kp5h(*A7(cg!{iwwM37!`EKgn+y19pS{KRg^)@;~m69`*kRdAMQoj9+Kd3ct#8 zU@819)O~LGHBxlwi?OkNTiAb_!pS|MeIMzQw zxCZi_sNLQ6@Is^xK%ZIdK4GG^aG+NQYsL-lYjtZ)_rvHc@5NJn=g=J>+p)?xjJqz+ zTFrZcI~6aV@}pr%wj=GoD~NFDryxqXoJEU_4-0EAl6~P<1T?T7*wH1xH}skD35ekQ zB1DY0dBfFOia)G?=%N9qw1kUmg_fR@ku*=kG`8MyuMhOA@iqAA;^Hjet{v6)=e`dY zC%n8k8If-%;Ns-0a)MKSWr$Z1s@}$|2WoB0ca(8`GymsjBlnsAd+*?IRLTFn|Cs;r zK_0>X`5Xh0X%MFgh|@U^+i`t)bf)jyWCSlES*yH=QV(~TeMLQyA9}L7&T(tPRF}Ae zvN?Iv*KE<;fQ)+59$*)i`$kn+iXo*Xx}sQ#+m1M(lV64PxK)n=6&BsWV|UlPh@bM& zy;x@=uNCJyIxU0T9C(paxgD~S$nMG5L{lpBjWz1St>aGaPcmv z6!wgq*?P(GeXTetv1%al&A%C4%SZt#!ONVUsU6U0!`bTGFYJRK&tQ?~*^eln1io2w zODkz2<9@H-tOC`uOx&TVxDM9=py2{Bfu{t)k*$SLJKDStd6=E2;bn6#8i&-Hb3;7w zw5G>^i!-tV-pU($vpw`|Gh81jDX9Ex5XLW24AZA>Fu#yw9V&^)XPJQFz!f-V*W z(M1|ZRoHHcmVk4-L}`)NqHKR}2{f~<`7TWBvmathJ;MLz-R%Dx2KjHa zH`sUYe-93akMiF`JX}TnS(ttsEC986UTU4TTy?*FIB3(BFJir=9H=F6l-C9)FG?-7 z&le$YY1cID;g^9jZkzJ_{uSYwKR6dF!&b;ef<|p)OGX>1HN=Z3{(ofTS6m zb3?W$=)Tg zJ2=>T-2Wfq;r5@+`+qB2kUm#-?AMARnmc{H0H8Ih@^y`=+vJiZ+je($6OP#6jUZ4; z*|g`2vwEOc4-h@TBkvoc(+vO!ZE)ZVwY*Hgacw+2KZnx=LJBsoG_X z{_QxKvfIo`ZF{@bYd?v5u2eA&+yz38AX?Y9JHWG)2&-ZfLK|!NgwpalhpL?aT#6;a zXcw|SwTq~3(LSV5_AzH|fdDPDeEkv=dwr?5R`?}b(lbFVQG|<%rLa8A)8GP8GVn;x z%`H&;FZ2d4v3siLZA2ILwZng^vJ~9l4q4}P6$m zh3SNvR6j*)nUc}Vi=kS{mGt54r22DX?^LM^9UKwxwD=7JwYewa9Km8R%4yClEToZh zaj@X?a`IgU_GXr^pdeDqdnAi?mb*JQ;@#r$%KxTgaQ~xBFa26(m)>3z*dYJ!4~NzG zkHg3O?+@~L;yxJe*mkBRu~qk*RRDVL5x>CSRIAy4?=UunZA2 z0jpu>5+~6Fh)YPFCCXt0bIACl$RcDMZ8{>L$};4+i6AyD*?ve+L`AQnX-3crr-ks7 zO4G|C1Hoz-fIuMN^p9pREIY{o1&XCSjizUiQh7qIUXnD;?bo6^O7Ju=C=bphq!(ZZ z2p!8P)?@WG3SC7S0oVnFjlw;qT49nN4CS!f@8JU5?BRC#nG)> z+vO0lCB!c)oEA&4KkyHYw~)8D3NRlTl!W&6@%oOHt@&zNTW~>QITrf3_1AdP?|-wJ ze6#w`Z&qE|%4BbEaKKIO?gEqlexQhmOYRbBd#%>gdI@tlg%klb|CL@ABu-LFx5M)P zQ5rAP2)&SD5+5AvEQUDAQj#-9=Ah1b8OOAqp*6y-gSkDpe@4^Lfy7_YUt@8_i;uB~ z2JT{%gmCySgTEH2bM1{6FCpokoav>wV=N8;7X{QCb-mtNnj@@~KVYlq0*X-;vpEhdx`DHtP4aPz}6%ip=8~ z%pdk?q5r9yp|2C1-{=@<)BTUpLB;=LZ}@os<3S#e{-^Z2ERCp2MW^lt15Fxhuz)KB zAc#;5*C+yP99yb+mAl4UYk4Jvz&JB1BQ|LGo|B{UYnQcNMwtz)Sdyxc8v@^sfbW(Q zQSgJhsHI#u|CAOa0LjNaA@XcD_&IgSwT4bzb$uHqsD!R@{-2yMv89))i;5Kgw8`_?F?HHpc%y7**o` zjUVGbJ5@AAPIngrn4L*X@rhd9cMp-SJM6_S#POxi`~i43Ut8F-33)$d0Dd``P!P0FdAVdNA%x zW;XgGu|%*?C=}|2LScnPxP18`&4?t{90vs(2Q zT^Uh5E^OT_yOI zWaem1_g`r)x6IxrOk6%^aM#_kvX^qecA`Y_LCZ(1<*PuWR5uj zzZ?Qpy-|YNP)D&z0;Vi7^zX^P6G0E3kCa6fc^I-)$`X=@d@jfbk>NLzX<^B1o?-f79P0Z z<(lBR*j8Pt!RweRkDjr+@eBh(niRJvX^C}e^i)hEyrnzN~)6~0P&q$UK zLAXa*FMsJwowh6pT~!)iWUA5j$%$o~hPw&WfX|btj&1T^TWPD!_5I_eRjJ0hgRtbJ?=$2H8|GU7HJF>d>k^?tY`8&-|X( z4;M?E3G1Tn--}xHzV+y9H<>lHY9_=EQfzzm*M_=>=B|%sFcnfAyBl)gM^r0~{xlSI zRC#W?5GOCuU{OHT^aFQHS%l;qxldAq7jK13c zpXGCq{+BK&S7i~`L{%!*xAPTFwRiN6;{`cuvIYu={c|Mgd7M~`(K5LNKw_ynb3+Q`1OXr!u+yU19wh&L!B5`8I@A|x2X4~#~2Dsn_& z`z>S9THVD+k_VcxWJMC;9sMUw<_s-`NcmZ>7qO6gGb$3iqF%^Wz2a8?-jY3b1?#Or zW(%A|UENDp_R_Ul+PS}9hEV$Y`D`C8|Gg!NR}?n-pT3XX@!x9vr$6z(*8lx1pJ(U_ z3qi63qN|Dn(BqOMXtt(tB&AY{!+Y3+IC_TQq?o?>nIpa=ag3yIr*b}MvN%B*iLsy$ z1d57VzvCo2dWI6B?{IpaW@Ju3kVq9a`u~qT1UE&o1m2V=p_F7OrU~(mycairy%8)U zN6*j&uq^uN;s!-D<44|tiXQx{&_D8K|HyjqulZrQ=*fS~SN@Rn3P3X)-mg>8ef;PT z9)C=a{@~5<{m~yhv66qYj4qD;@PCe;p`UODN2xAfyyQn-nz6r;P#k$QBDklTXY6lB z-UAO=M0)=U0#vX6i&y7we|Y)&#~-{^^yGbPU;o2?zjps~e=z=9|LwDUo}r5+P8K9) zi$Bh?Z;y_S{)k~m|4-W5>YjR2Z_@epk3IbD(X(gI(0lv$U!EIVWI@GpJp(I5WNV`C zitphx<&biPGt#qO9DAN;!#PIJ`+h&@20?e=A0Nq%BxZ889{oWdD@6%Qx-0xQmZ9hG zp9RDIe!Wx9*M#?E`{Uyy#{fr;0gl=Za9AGT$QodOY6kc{{UC>j)uljii3`FgBXGtL zCy}%nGa`r1<|rhY=yJW$&k{ovMT-7`r0BazF?5h(*p?K7GAV{ODNZY-NTs^aX%42C zwNwH3By-_AaNs*=i*LV-@4&`)upe&@PWPjhnUKNh&^;l2#{l=6^M(Nis~F5}}Y~83{$a(WBpQ*%YH6xkn#3Mjx~tysDXsZcsV^;-= zfdcxPcUUox1mBYk@eLPb#a-iQHipJ+jiGVb7#f$1q2P2+?K3)1`;460XY8<^#%-;q zaoKtrm#n8?yypOihncg3q0^ilJFKU1TkC0DmeAvp^%RWu9N=Jl*Z>D(_W+xv@VKoM z9+#!?xFm&(0hXn3yn*clear}48KmxCgWDwY-6dFs=|lL97CD0hwb8(-jm8d1JZ>wA zN8Y4N2fvvPmbf+kijI$=7;ju|%gEtUkJ`G_qq0jqD!J6bu*R2ROtADJ5#)e)8@!6u zlpN?v4#1Uk@%e!+`arqpIi{kf;+knWcF=OaRn|buQJI!wo0c^bT28$xgL9syYTW*T z7KZP%Fh&klI%=y*M`cwyDyh<7&)CbrKaflOEnL!{9wrU@)A4ad49)2WlHXCr(Rc5ocEzkwK14v4jtqewk5~F3#K+bhCAqS9z|yQb=U#U%3_W%dd+b3 z9gcAlk_??oy6E8_W&-xzky43ms+ws4t6Lfy zQNmfOLZmbSm7qv)m|4^xI~`YvuZsjN&Dwz%j4C833|qh3cY5bK!>DJKZVsfR^iiZv zU`BL7xR4YYPX?3uaIB~?Jdh!V1KUVcoTYn!%&6z^)3E|RIB-b~wk@e<8(ThTP3mEV z)T6yfU0G6t1NmvNjh~vWT=}5QAO+!~JMac&jVYno1NAG*N*!WWkz1)POGg>NT2~oy zmh}tT!@72iB}g4d015>MQYhF)p=KLeK4{Gb{R(vk7IlJYjSa3;N=f%+7}Jy!l;TXF z{t3bnPGN6C3Lx;^<(JTG-2*Lx$zkg)m<-%bS#aP+L7+AYnj-XSwp1P^WeIFb2rS5a z9mkvq=WH|^{PIET*$67L(YI%#x)*)H(hVvflJRQ$pn{=rN#jUWxpu^nWzVj`w6xd< zUQk_lLGxg=Z6+03eyq$aDy83QgOb*&nl)IG2@^}$M&W2dA4sCMl7a)bQ3CfiiX4oK zKCMmHX@xw#O`b_*uK(AX3zTN;fkp)B{9-luaJga;nq#WA)9_lblw>QaDhDb`j1Kc? zf|1js8F(%ewzUOYF<_@Q8S3$B>DfKtOv)6^7RsX$8NsWVCIm$@w9aCV@B&juL~h`@ zY}D2!YQ;i5t&XA@4VM+!+K8;!kdsDY=1b0m3@mN7&SFzw-$>fwVGdw0bUJ_oMhqn7(Wl(saOL? zTyoGhE;%U2B?q2us`*nV8ZNV_wN+FxiU#|k;j#zXn*(Ju`um~b)Z}f^sOs_k&~Pct zmin?^ofLl`H2RK7>9?JfetA;*s>MOpTx|HGD4^l=1NQ!NYg?b$)BV&ae1&zU9~XQmFDU3TbtZ|+2r;ulY2WR%_gtk&g9i`iJ)w`_=VjoaXEG3(rmc; zZ4FnyY`FS`;VRJ>JJD!1T>Z9&t6w%;{lakFjz+UN>9;i}{pzHQ_d}!E4)WXDL4Mf| z@(VjiqT%u;e1{$6x3hzCJ{^{E8SICPOOCV`BV{!D`=QaSY5caD#xH9cztA+>(Qt{f zR+22AnF^QqyK$LFl$*F!J!pf?q@wo}Bny=yxktw`R`{ME$l9+4D>xAx$~P@CwoVay zOh{JF-Jebm^3SGIhkG`0sohCywL7V(-APsLHe@+9xoFeF_MfM&?dOS0oljb;^GQXW zPpaxXa2(Hgq#0SPaTXzxJfH`hakL-;sWjNelo8dH3;R~f7vA(M*xL)(N}W>JC+mBH za2%tbuHNc=L9WiuKN1wNtxMIl#dSL_xXxb*Ab#pi#f|AJzOJfGL|N7jipK1K$%qRq}uTGm{{z{ zEzfVw$%moa^>~=kv^hRLao9VPw)W1XZ0}4e_D;j3sf~(KgUPK7%lw>?e4PXr2Ua(d^Q~t(9;^2M-%bvt9EXmL4!w*#V`Ha!L~rn0fgQd&vo= zcj6T>56j1xs&owK?Q)f7>;W>I;4gxrL`|$*BD%g3qzv;-BJc;QXYZhFzo{$PZ{jeu zCv8n_`C`RzDA^751Q(EUE0z%*z+SFr1<8TXKfJoQMk|_SdTK`p9iEwvPOH16TC_&% zG^U|s9V3ZM0Vz0&SFz|^_HMqUpOoc15P6n%0a04I4C`2I&x%(OdLMWq^*xL zDf>8+ijPw#<`O>;P^8il!jM*Zg~d{xSzHpWU*|L?rusV^7SFXa5aTdOFd9^u6Ie4_ zC+GYvOQ1ZHV3rK3rn?Gruo5ztD-&~=gE89TV7P3(R;J$A3x?I1u}wWcPu8&6^qO#y ztwSLdp=NfPP?gGUCCC<}Dp)z9M(Z7Ro@?ql&ZS1sKoj+#B~i**6ADx#S#lM{G9kyF zA0NIyXYO+hVViupDQA82pM5%Fot4{<9H*P zghYxYhZ#n2-tV7XIpyEuqvpAH{qp?9o0q>w@t-~FKaTpf`agbu__hAe=lDEBm--L` z+~;-l{W?)udNG}4INN}oaht8lh0br=)!>H0As7@h2-ipxrFe?Y(^NSU`um)Loq!Ri zD;nd>l>RzFVo7=4$0O!Yj|>!NM&QWB3e!Z81k3J1#s!)Y@kofeAx23J6-$zalUB(h z+aMe+DS416E*Op_jx!=f)Qju?@}y)#*XkZTDa!bfb?e0$y8HG|fftNDzw6&Y(-)R( zKRWt|u8Z=JAK?ZX^b!3;GHI)$k4GQ7*5_mCKlv9xyvz@)!8m|SM@LY0jdFz1D-y5J zYfTn)cC)BkdHd?}23@>5zrID6H|Xt;x9H8w^S8I?_DA&HOLY16=Jx#c>z6Oki_7bm z7q_qf3wpd!r&W)Ry68%kund4yLkJA>{m=BCx*#7Pbj% z8hj*sAQ9@K+cInG)ZKqEy`<&;lEka7cI=;A32c}DlVK2yEAoFZ=zp#M_*p(uhN&!I zDOtLzB=6CY#n+UhG@~n=(RibZLP{YF=H3SQ|LysW&K8!-+dF#29?1jAPS7LKXIoWU z9LHMzTNemHuc{{xT_#HGM=V@JO(F?_uE1L|KS^<65|{OrUNiy8pvyUGp$H-q*0vl0 zMA&DWLNCb|02#sZykCwJQq(YjI3`=rP-z82nUCntL`wJDO)90kp`QFp#kg%*Ul;P- zk`6ffXnBbjMU>>Dj*6m>=>n zmpEKDd!u~G)^Vg_3{-Fk%iNQVr_@YQwjsm`nyGyX4{5BWe`nz-Mfr?KW&RN)qY3@M z3=|bZC1>DRzTagD_heJ4aTI(NwOD5)LQuC@aRVS!bn1mHQbIVZ_HRcfOIR2?BF95g zBUvDfB(ScArjUZ@MHmv!RY_0}U5Y&r{GMehVn~xYJIQsZK<_21MJ&{s)0AztykbyA zY@KyM3Tu6&9Wae~R}-xF%tH9MnJS(Nl11nvnlUCRaW}^?Cz6d`>iF3@N$TS-_=4(t z_E_ZX;-QI2;Sl@AE?JEpa7JaHYDdWK4j9%6{x#(ia;*Nld;g2lJy#9znW=QO`huz3IrDqM@>$5bst zB@w0ZtC$U=AE-c9f$`Y}4*lx_R#-}5hf|3p`W3aFcV8_;&4U~C*lO?oN0t4BC3d2nvsx1a68jJ zsObwI>!`i_Ksg+m(z}y-;^i+@3fvl>0g(?WY)4V>HD*L&!zCk|1y9f&jsBW(e78k1 zc{EvMg!4VtB2JKQY{hh|Ldn&QK4#s}jWliTUhWczW5dr05t0mf2@)!nuzasrw5KX*!22MXo@2O6 zpj*(}iSxXtsw}r5KanKQ`#MmL=kM()#nX(f1g7y5uu2ZfVwK#uh}lA4Q@Nz6#1!n@ znBCLE*~D~o5S!%K?P3!PdOJ4Bd#bXD4f%=KB=74$Hp$;RkWD<8$12{EJyI-|T+QhM z&JN0Mlzegkx~C0VOoDoM{aONg4K0dSAJSxRF0B~iIgkEy^)?s(UzDMn=d^Vn(&V@@ zY)>KhJ&j43BRhHpbk3v#Jn5MI(#~0@_mCz%^KPejBt5y#Sx3U^oOBWf%EP=b)WaMM zaQu~a7_qLqO8-GrYJ?%1;w;#dRYrvIKP3zNboJJA568=Qc+0xBguF!J=Oqo7>XHS` zTk=ig(#^E0EIVwjzO*xI^#|0j)VpGqQhOXl(rQ%w!kfb6crWP)59dx`^%=@SXD-yc_LkTr;p!bu^Cgs71XE1ca7 z%v*DkB`WG&m0}l}wCDxJ>Kf;eC5h}+k5_heqwUk@uvXwwkS;z}mxAb`5V`~!q8yQg ztryEGBGp8Mt-?|2Ez`Lb5-}sL!76tpYD>mswAHL)*@0~Cp`UO}Bg5(72AP*mkeLyd zS?Rpc>3mKTDmD$P;00Wa#fv5(OSs4|O$5r;5WIN*J|pvAis<)!z6L$YKtlIImV_h~ zyvM^OiPmsQ6nRi#q@MIZ7fCl|Q8!@`={+-jb#W4PaUy8f{Gx?)oYI7-OZgq#rJ8JI zt^$acuH*QM#WbwAvzPO?Ok64NtVZ*5)rDFS5&}v!hzj(~-mOkm=5u5hRM{Qkm+z1%=`1GPx=uVhr@Z_5AbL_eo@0IJj<<2Vn=S=j8XyCj#+Gvw3%b7-5kI* z7VtefZtAR&hx(pxc&L9m8sO7e6rB0?pBlpELy2V zJ;`@gblbGl#;j7UvrS?2S~2o_vdK4}wKn=jf%rz_l^)&-^bYH6nJ4P-t7RMyp zLCP(y8_g~7N3G(N7I1AS7o|IUrV?Jfdgs=u_F6&gUBJ0&{J@9q5 zATHu%vyETj8q5mY%hX;lkh&u7*(| zv2-VuCBhY{^-Olo-m8b5vkuhf?40OJ#LqfG=eJ)@I-KAvToRtoi`jTXFW%nBS&_rx zC%H{&Qm$0BPt^@t;SI_NXYm6;36B}OU#BLr&k}XW!HQ~dBG#$q-YDS>hNxbvFHDw! zV5oBuuel)E_cY_8gXkQ>EN}B|1O!?dmQktc&r~d5sg_M|Nfo6qQA$et*RN@E&)p_K zPpf}*Ojs4F(oqI?e7Cq`=pb)Xztz<{CNx>}bX=f|Q*{hRPIXr|>^)PFbGXBJNzBj3 zdW=m`qBoc(&3Jq0wq`Wlz+omME6&jQF}nTlGxYBE0s+VnH}8FSjIPdaZhn4ohQ9gr zSL9vmV)KyW_uFsZpo^jbd`R-}ea2R2=7xCBGjjpI*VMatc$>y9JAot*kc6V&Z)~%O z*$l_td>zMfapY$C7Ii@qK{EomU zjH9TlyYC7HkrN`qE@04oq+$twcCo^{cbt#ZEZzn>|6HWf+bxTu{u{PdHH&kpBN)1K zh>N?t%UZNf&((PxvquxFgpe-zAXg+6#cNuG0xY`C`PML-J!`tnpDw*=x5;0u`o^U< zjMr-R*LQlEk^yyNveVHl8n*Q_SC}T>7&xAdswW?5zvFxQfkba;6vgBbXM{JnA-T}b zuW-i6CU?45@?HIEa~B8sggG^pp=P44rlKr&N}AS=@^NuutW>sU#N z(jZIT`@g^+WxE)dwM#zWRT>j7W+9HjK$c72h`egpK=W^kd7j|c+#PIbnm?M7L9Sr0 z=SjfV_oS{sQ9wVJz~zxNdlDv)6wxNn{@XvHzzc?5f1i#_{)|fw8hxfX-=xq$>-^xg zmJ^h#&A0=4g`;wN_X@4|?p1#&iu!Ib0qnLaZ^xv}=AGn1N}rD4w%H5EBBpg5R?V_N zZHg6Z<6l@3)P}sv2r30il^R{orTMdi?6rr3hQyK^ zD%%3)9zBP-W*%F20@U|~bR%z_HThFvIYa{-jT1yL-{|x#FsJ0wK#!1T@$UNdjcmH+ z#LD5419=ycd8)5+*`x(gv=`D?c4h-3VraYQ0eb zbGRX18C(ry;r1Mi8jHw{xl7s+YS8%#TiJb&G!h$3yWLxpI1$Da!j_GUU+Tui_fbkR z&XS&P+*J_w>#)|zt`!hWhW>Ce8%?57Fc}Pk;b71o;b=0Lj{1Q=9uEBeh>Su$#oI}Xw5hwagGn98pka-co#knVinW)2K`SYuvF3OIT zC7>D*nzJk3CCDX44db- zfSAE#(Qd&y>GRYdEIeH3hNSv*Rx)g`RoG4&$dZm1$mHp;Af#^Dk&~vNn zV^~QFXtIuD>5tVfT$3&Hip(0z>oK2JcyM8|R7s z^VQV}N*}@#L{_QTyr9{Mb|g=Vq?D7QwwBZ*Y8#;$&lOHhgw3U&Uh2ne4u>pFp3^En zn6wq@zmN2^2c-yAS3;|eYTI4mv~Jj2%CDfKrnyS4H)3x$2EVs(1*YlhN#2Js6qh-; z!h-g1!4UR%KI2Sy3V?*_OrcinrDo$N-Jfg^ggt0OP>JrIuI8(E_iWT)^DiO~dof5Z zlGMyjQ_Bq9$jPMmD*p&s1-CmuFw#I$+Abvlmqrq$ri)dmcW<2B6h zof+bt8;^#CVgkLDbpj|Hv`X?$I1yJ?o%n_|d2RyiV650h<<+iqxMYuss%{Mz<~4Su zl=0roe^cBf{(06wfnUz38i(IyK{RytWv>eh;V)r%Sm^xjtHkQ7yjXGudGaNrEYyPx zOh)ld2P%t4$Y5NA^~mZvOPQUn*)^cdOuTw*V`s{2Lfil@Ym3YSnP7Ijsq~mn~iC z_jfkm_!4Ijm}`zy=9#O;oim+C&s@Hm*8(inO6Q-XJD{(KW_8`6u=Q3XqU*+BpV?>E zEd)cIH)O@KO{d^DjKnIPbM*ZB{7rX;!+R2`@a2XJvO2cCXqY=4Dls6JSRnb9-Wgy~ zLlj2i$>~3cN!o9UOG*HDH}oGw;rJckqKsmGhvo!Bwc~}H0yv1N&o6G+8Um8s>|Y`X zGC}e%0780Hnxb|51X;OH0=1rVkXB@sGF7BO)2*rRrWrI7^#x5Mp!&s5qPjfToon}n ztzC`om%n%oqF?gFXKUwy@-J}Svvu+>vf?$eU+UC<@{yD$JV%nU=zRBS!g8yYrwC1z zoRmecT?hOml=4x%+FOU8_On3TxCDKHB>st6N2@(}x?Q$fnuA1{Bs=c^UBxY13ctv|f``vvt z!LMaU1Vb+$!SEQdDx#%!dY;N{TUvfPDj&l7~wDsrom*~pZ0No zKA%TEp5ZVev-*+t8d7;?L`E5`plyk=x+R+tr(ts?pH`-?+ubL2EHJ+ZC8m}R92m*< zpY?l8A4ozt?@Gss!e3B6Z=H4(Y9`nWUp&*?h45?hJZ-?d0gh+3#2P$4P?J=7!Yb}U zb$$coOVIFoDmLcw9|Kj9t*N`6B@I1;3FLK>4hEX*zvkuCyujWIS00+AxSG=SQdzx!st| z>t1d#C2c@04astu%$gZl>fwMYN#?~}9o9RkS4Zl5gTj)W`hGACM`RdGPoqJ9Gzj|R zc^LZP)Q@ICFq@8pD4P3t5ca43crqT(hvOiaO#B(avuNJmg^;l$vl({stqFc0eIECk z#p?Kq_5C}VMCLTDgyn_Bv+W*j-N&@MX@aNw`UJ4su+`7D`o!mTcY06gp8&Ri*CO-x zkg0>xdkz$@;n_Ci_*&nH+fY?1ictPoZ0QZtbx%r>b|u{f<+ zPxMvh>o`JiUJz0b9w?{!AUaMqGZt-B=VlhI9e!Phb53KeL$?&~y!*8ScO_h9^nu1? zL0<9@$H0M|Gg!JO9lNHEoY{JDo|8^$-jDLv%uePtW8(WfY-`H@+IOC+-wug$HJoiT zhk5rZMPN*)T|v{l-KP~IFvpT@L|s(^%JyVkT;}7ff_ma?dS^eX%=KPmzOfHj(`3%F zl@e|>LMxzcsk{^--9}}A-j?9%Ecq6Y35&>;iTeLW{&9P8bqCXZ_wL2jorjc9 zCx6i1U5XzQgwgHARn7?V>4J!2rP4%@Os=1I*RSCztZS>f)V4thoGpmh#ks}(CRY23 z8y(U4oMa{O1O$LviiNs##8jPvC*UyN6#(zx42G%St=&bNzl?a&8AFBWw|vOTe&AgS zfMF8gY_`^ixF-183F673Hm^W&vpJGVPFq^*#<j3FTpgyloXq{m6xL>OKU$XL$*T<6mk6T1kI!L0l=CWwQ+;iCAd25hg-kxKaF4w!pvP zc5g`cmS4f}m{B1};(dm(cY`gXcUDllOd_eC2wJko{fAeqALAKDO=VHzi6S3p1GC5^+ubk84T@!WQuMEe3t|KZgKa6*$Gw&J8*LIHm}~&P)E^m^s`cb z_slMkduNr9rAb5|Xtc($bV=@&>>{cn4Hr1S$1lIuVrwA#XPS{8;PQ(tk?b<4cA@N| zqvlw4rH@^~Z0nw*UjFLNP8&L^2ebpv_xgT6@TbAh#I*;L>2xrh;_1wvhU3%ed>)eF z2oFONkuaPLMtDA)&%&u6kU + +### [postgresql-6.0.18](https://github.com/truecharts/apps/compare/postgresql-6.0.17...postgresql-6.0.18) (2021-12-03) + +#### Chore + +* bump common on dependency train ([#1452](https://github.com/truecharts/apps/issues/1452)) + + + ### [postgresql-6.0.17](https://github.com/truecharts/apps/compare/postgresql-6.0.16...postgresql-6.0.17) (2021-12-03) @@ -88,12 +97,3 @@ ### [postgresql-6.0.6](https://github.com/truecharts/apps/compare/postgresql-6.0.5...postgresql-6.0.6) (2021-11-22) -#### Chore - -* update non-major ([#1380](https://github.com/truecharts/apps/issues/1380)) - - - - -### [postgresql-6.0.4](https://github.com/truecharts/apps/compare/postgresql-6.0.3...postgresql-6.0.4) (2021-11-18) - diff --git a/dependency/postgresql/6.0.17/CONFIG.md b/dependency/postgresql/6.0.18/CONFIG.md similarity index 100% rename from dependency/postgresql/6.0.17/CONFIG.md rename to dependency/postgresql/6.0.18/CONFIG.md diff --git a/dependency/postgresql/6.0.18/Chart.lock b/dependency/postgresql/6.0.18/Chart.lock new file mode 100644 index 0000000000..47b3d92947 --- /dev/null +++ b/dependency/postgresql/6.0.18/Chart.lock @@ -0,0 +1,6 @@ +dependencies: +- name: common + repository: https://truecharts.org + version: 8.9.10 +digest: sha256:76ef16a78cbfe53b0be5d9fac03039063f57b2b43f927e4cbfed13be1c939fcc +generated: "2021-12-03T19:49:04.037663516Z" diff --git a/dependency/postgresql/6.0.17/Chart.yaml b/dependency/postgresql/6.0.18/Chart.yaml similarity index 95% rename from dependency/postgresql/6.0.17/Chart.yaml rename to dependency/postgresql/6.0.18/Chart.yaml index 060ea80046..2a64d416ad 100644 --- a/dependency/postgresql/6.0.17/Chart.yaml +++ b/dependency/postgresql/6.0.18/Chart.yaml @@ -3,7 +3,7 @@ appVersion: "14.1.0" dependencies: - name: common repository: https://truecharts.org - version: 8.9.7 + version: 8.9.10 deprecated: false description: PostgresSQL home: https://github.com/truecharts/apps/tree/master/stable/postgres @@ -22,7 +22,7 @@ name: postgresql sources: - https://www.postgresql.org/ type: application -version: 6.0.17 +version: 6.0.18 annotations: truecharts.org/catagories: | - database diff --git a/dependency/postgresql/6.0.17/README.md b/dependency/postgresql/6.0.18/README.md similarity index 96% rename from dependency/postgresql/6.0.17/README.md rename to dependency/postgresql/6.0.18/README.md index 9c4af717fd..97ebdb9018 100644 --- a/dependency/postgresql/6.0.17/README.md +++ b/dependency/postgresql/6.0.18/README.md @@ -17,7 +17,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://truecharts.org | common | 8.9.7 | +| https://truecharts.org | common | 8.9.10 | ## Installing the Chart diff --git a/dependency/postgresql/6.0.17/app-readme.md b/dependency/postgresql/6.0.18/app-readme.md similarity index 100% rename from dependency/postgresql/6.0.17/app-readme.md rename to dependency/postgresql/6.0.18/app-readme.md diff --git a/dependency/postgresql/6.0.18/charts/common-8.9.10.tgz b/dependency/postgresql/6.0.18/charts/common-8.9.10.tgz new file mode 100644 index 0000000000000000000000000000000000000000..635c25c8f45a30bba38761caeb6173c2890bb31d GIT binary patch literal 37602 zcmV)!K#;#5iwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0POw!ciT3yFplrf`YZ4->9=;D=+&~E=x+A8u9LPon>aqP(|+&W zdyfN=kcBlxummYb>*jy|9J~?$L5lKQ)2(@S8;b-617I+i84PAZvRsm+f3$#E-dn?E z{Fl3b27|$1G9L4P2ZMq8?_jbw{L64W+#ii6lY{-qUk1a`{$ThQFt`U?Do;UknEhpN z>$cp^{Xrg>;-67QF-fLiHR`}L)jwmHBbs+2M8gcHIe+&J z;siuH3$jF0u*mb2PW$}}oG*%5FC@!;o)swMW%@8pX+O^p>MtS9QP!951u1rL$Qn{0 z;0oq2qdfttpePGTlA|Q&P>cS-WIPxg?C*Cj(fW#H5uJ9rplqzuRhV}9i%u8FW-f~v z(p~-bZ!d?v;iNa{4!-RyAx?6L6O?gaXbEvV1vr_L|11IbNOsWyAc3sE#sC0NWO0eU zQ$ZA$806~|O%-~bmBQtD??rDo=seK;%k{s4ae?SPF@VPPKOBtqMk9CqAM71GuK$O4 zo`7x_yiZZ`^T{!wDGKo%hae=$9A6X}WNW?i1pH@&=CFu!R`?VlFheo9>W~yAt2BAD zgcoSq0f56gT~VtoT#!Sy zAai)3IM;vD1sv^9rn7Jl?oVc;aQI>$j%VW#?T3?t`D_r51~2A&&j)*x{m~H3qP^iH znvdW?G!GX%WXDB{2@y9l(E`@E=p~W`0calMGSTp$>=k3(nAw z1+OANLY=%OTe=TR<}hdNu3~dZWQ;ICwD}tMQ(Pql4!tI)G@rKi(hB zN6+`3kHdWwJs-~ZUrhF*K{SfsY&Lo^*?ayXoV=LrhtX`fhxUe}$pD6JaM)_7(~K;0 zh~sTXTGgu`XbrjLIIHrTVOgU*>WzCtHN4OFW+6h+XaXmD&u63IFq-VoCg}Mf8pFN4 zXfTYz=cC#4A)4$BqWuH({Q2H&{9*vZLAZZ_=HnJ^Z#B9J%ISiTeB04g_3B4gLvA^` zs{CeH^~_>_upjM>_Xa3B2#3*lZ;qnj^Jo?ghX)6}lXzUA;5Ra!x`NO-R| z9Q6ijlt<6^_u%tc6g@{MdJzs@%))3q8x97u7twfzMuTuXf_sC5*^6ix&LA4X(O^6} zn4lNq=kpgKYS;c&WDMgJCurND7Pab!`A|S@Il=smH(n3}YMt!ZlM0 zV8#$kW3pbNB!31Xh?XRwC18w7coU_a}bJGS=bu6DB?YYF@Q-zawwpagyT`x z=^G&Xx~&c{YrVxZpMrni(78#Zfp0rvfDg4>e%1jXKh0*z30PptI6R2)66bu@#fP87`?u`% z6zp|6*xEV-Q!RH0d%Lhpm7L#xU(1r^hNpO;B)R1hCeaSv)ht-;b&MLhfvF=4@fB4C z0kaF*P?>$^H9IZYS4yHzN}@v#i}EaH?^5nOF&b;r0$;ga1Z`FzYreI)OnbEa490?L zpmG>R0D_-LhX2KeGX^Il0*6ITXb5AJIfBVwBTV`3^tTR_WpKiYL+@H*$74j3U7&o* z$fjH|k~c1K@`)YQWH5{1^fzmn!Dm*b@3V?*nE}0%;i(Nm)F*=FoV`usE*k1x>v}EHYyUYZ7R!3~jXY7~Q7rm7bQ?sZjjCnor zW~(YVG3xLdAE}VdSnpDj7O~(1l*x@bxWf5@cUnq;Yf?z1c+IBgdj#MW(@{36~02FvFZydf-g5M@1p5 zho|c#ho6qHao}E>7koTZ*!*mp?Pq_(Z6_9>0I} z`uzCt-Rr4T3FjEa(FZhFzvY_~m@lS$9rO|sAvOw~j+#{^{|S@PJDBqNqP99nWna2W zn0BRT*p=(8QdGRw#k$~#Gb)f~m}EF#gD{3v2-^{!&r!xmI%n*d6ZcFQX=u1WQNaX6 zRqu#ZJLXM*CxEVLj+R~4mu{Hh9EUJg5@#HfE2`E!lPI8MmL*h$ zlM9rQf_6(p>Y$^~Y(jAk7KCyEl#zYTHbC`4X)V7jP$GpK_UTw~d9Z|+h^cc(@G7PP zCR8z80zS!Y?FXFEoGqE3MBPsv1Bl)lctfuY{vVjt1AymN+n9=qoV^7#E%|CODX!Pi zi1N`ht1Cq2TT_M zf7eTmK`m0saS=N;BYn;N7-1^ShPToY{7Wh}!7z}br7&nyX>y?mX5j*v+m6_*`*Ne^ zXiL$RAx-9f9?c0|N*R=~=YRYoL-YUr-<<}g5t1ZCX-@m9URMePIJsaS6UIyoK0>>) zVE>8OcW`pi%@;_$-tCC(;Z*#5i<3)g6U-4zm<~};#I*uOgA|1YUw0(Q(dWDu!W7PM zjB}=tkRqo{cb0m^|SuB(O4j97DG%!;prF`lDv9mc4xXS#rCjgZE7n5+R#aDJpp zQ!X?ENI`_TvlGnL0Ox2)d*C$;7j|i->n`950nFINRRS&%m+F{e>cC*1gtQQ$9A!(K zh%S&ULRk;|gknQ10b#iSdL0|dnw}W;m9TY(e3hE|)r4gU%ZuwtMrNpT3e@ekVL(D^ zQFVnZqVYA}$9RPjL}`~%D&~LD9AK0D_;+&Q4?tmJqWti_e&ifoM5h-&0VPC$VLmU?wI$LCjGKATe($*e9d?Q-d%gj&g`t!X|yN3Qq z?%R;NJ#2SO?|$H48^NE7Jz;BdmwSny*r^Hhj!9j@ekAm52;CgCJ0^1<=(`|tmzYQL z{SzipVhWZBCKNE$9#R0o5`MikzeF?H$_H+p>f0mktRhL>mLExDlYlh;{BvQNL$FsM^* z+4w8TCIL=LN)y(8kRT-JPK^Zu7a0uEyolrV17Xi`=dGSp_6t{kG;|-urnWjlp~`w8 zPpp0V=?1`u9u%Zb1*1q9{27{@ZyPEcQza>0;uvPir2j1=$!`^yjaX0l2{cYBds+4H zN7nFcX=UAa@KT+D@ZAS58Jg-ic8Bi~I1!r$ea5yUZhFtdUaz-nFlT<0!FGtHaCm_U z7%DK&48tTpEFnp}E5!P;`U5SG$nKF6O0c(u2Qsl(J72-^Y9 z15)oo@*qp>1nN{vo*X*9N~$MpUB#mh8CJ8ub$W-x|Hh_c;hfc^Yl{(PqF zoo`N_fnyS(6O!e|My|gKvx?VSt;V;j*1Jn~;3Oj}*6A826tMv;;hGV4hJGz@CRm~O zWZ&a(c0;soo@}fzr<=iNFQQOFoH{9A%7@K7M%1zjCfx9!nU#7YI)|bf-(&tXXnI?(W39 z>gY=1%+6w;yw~EGcY%O$F2TR_?AiTPg8sy2O!}*%NGb!yH0T`xC)%}CSWFEK0Vgy^ zFal(5w8Kh&N_i7}HhOG^<(WMjp-3)0b>dIO)R~(PS4v9UORQabu|s5w%%JtfiyLJTrLCS@HgSDM0fS`nk9zXfAkV)Qfk@JEgsNr-r~{r`oTlk(bJC#P*P7qvwh#bfdeqB*`a zzg#}2;($1XAyTfBu*eD9+(RgoEq?sXeaa|+i6Lf{{zxWF#spxRBBswV`0TfAx@=3k z50y2=N7>#9p9UPS%W<_%U^TAgy4ay8<<6G77CH<^QsjWUp2#!#rD`1|QMaISSDd?J zD>+J+two%4XOQC17;0lp{#%Ut(j+T&V)}K8_G&A!w+^-FxEIb8Bo{dOTvIfUX%~jv z>6R^^;18}W+_9RWlt?+C+&!rcqk95A2;kIoV&P#iUho1YK<$_m@QIRB@Z^cJGcE|t z%U#jjVfdGFkqXp*B9z|`;7HkL%xb?(A*INWe;Ayp*l)YiAFdaZ5XPm<;v$v8d{H9B z0F=@w`&8;5C1xiuU-Upblz_He_pNurg2?xZh)J(Zz%ycyfWN&2!`^V*9aJElalQS7 zU*EGn8b+K-OKQ`yj5lKU)26kO6j(D36yYJ(8ZsA<+d($e7e|~rdwc4VOAmZc@`ZHY z<6e@CJqpTVGmvJ4yR<@kcEo(-F*Ue>b`BKeYf()%kEwx?a^jcHyIhNa+@DCF8Q6PT zh_W2dxpi1G8Nlz79HA_?&VFq2f1)VON5rnUnKD|TIUC^yLHMI|my&lI*bY>(71jqN zyo=a2C$ML5mZV5>w#j}x{T@V!i|)6Rsts(blC@}|R6gU7~ z3`8)8Km~wu__6jiXZ2V?OWc?fG6gf3HBs8FsjTH3N-wG!2c!}oeZ(dmXDhf`XV(0n zjrJOku3Hm?*%Iq?9bMe1kjXFQ*~D`4^N}R^e?vR5?sTjdmeb!l5wAK)#$iF_Tye@M zF^$p5&qvSXpFf>E1L-P!2GBCi*ROE)Ozw5h%GLIa?^8_nVdNo>$c=-9bY*H(bCQMn z-fPP5HnYAML;nkoV=nb@l_^>4fCQP;$Au=x;2i5absGLJ++>gwu}_Hue-al2m(5|5t|2Ihmj53v@23|LxN=SyZ}#vy$I-zm>ZuHCvh$xxGrn`*#c@(I7`o zTxtMMfOJVTW=DxVla5)Yf@xg4${Ekqcr7(B>ATb`N)kIpDX~Mdd78N2xu|u3g@1LDzel% zK~yeSWgF*y#hHlM#P2xjrNgGOON$v-A0%30ab+Zh7t*2JVvC3Tj=?)(hCERWGIvP# zU1?$@Ql#f{vbY|%BoWd}s5HXQq$`%3J~6Km%Knc8x|MNU!04A4b_Ir1U6$xFET}Mz zL*2D0_<&&aONMjwo{6qy_s%}0INNRZ?_(%LQ(NTG3Y^&d6y`41?~BSFgUk{|xZu{yK-||4 z%H0fte3{NE*!ghyt~-O_C7UOGvtn1R7ztE+pNT0}fZ0s5x>TR}$UTXF=c`IIY_l4E zD0Pbeg~Z42dFwxm5&Hz@2Si_P*B<*f;3hzi^&DOA#JQ+)@RipspEmELohwGObL%!EXSsCrdjD5PIJCYzrqQY zv-|HixevGWvm%++DZ(w5epV!pbkUwJbTkTi*`CY+EH%=l42*HRsb}Drh}k^#tW-Bb zs|}N{a5I%wru%b=SXvZVnX1Cq(}yCGTq3kG1Y32y$d!>4WlKyc*X@Nbf4Cr5i3kL- zSQ0@F6y+yn!HVMO(Wa%`-cpy=4)<(YJ}JyUxpW@{ObuSHUzz;$*8oDh3iyq%S87sJt#QeJvv%ED_(r~S%nHTIXRp_t=vNJ4;e_&Ie z(ck+s_`Tw0Dq)fnGx4(onWB(ed2V5gP`pLh9Ks?*X<^ktngRlOq(6IzLeFv2qmDW{3o7axvgx5@}Ke_;B( zZ}RodxI9|lJl!&KPrJDmg*Q*MY`x_yyHFozxQ;nTA|plGU#`2lNN0n|+Xz%GsjNH<{A74q z;3UE;92GETGjl1-4oE}{p*c)K)a!^5=EidsC5_5RSNzPH2dy$SNA{M#G>yQ4Wd#oS zcVW5Zs?(Dv;C%-8u>puN&5basO!+F(N-M@|ZHCVm=v4f@Mf;;4vG`@3afAy5)2@8i zL_jQ@Ty)V&9K-h^rT8M@VM3VR+kcYq#0cW@ z)ozFVI<>B18FWVhoO5sfwSkie__%erq&BFj*19l>x-iLcSH0QosJ}c&<|HLCxmcg3 zY)Ky75>s`zl3%G5_bOEbUCLYNmV?0rg}Uac4&JtepHDB*)fD^{Cpo%6+21&MsEU7Q zYxS=*&v0@fzFaL(@-d+>$8^qPRXN}Jk$5?6e-)hiZ%!zjoDV`yVtM0)-oc!4n0$Up zxO@zBBTh6(CZ8Y17*eDiU!>HAl03uWZ6D=fU-+}J(MnUs_TQW+M@Ugfg>1W%P+c&J zx)OnIPB;ysJnV8Dx{TxTKf6$1-rwyQ{m}D@(MFv2R7kuYRU;do6zjNnRMbKv*u8Oev36qG>@7X%xgLTnG|iCg(FrUc-G?FIaX z$AU3@Dtw73$clui&_*ye8P_q!c^)GMS|jod&>~#0#^2!tv+3=rL*a<%b79pFqgs)O zzKT(tlQY5Hoi148Z8011;O; zv0=ptECm#;PzGbRG`dU)W<{xX#MSYiB7UAPeI6QptzZ<%XnY%5)*fCzpB&5Pd*Dsp zqG=!#0`QwIIGK}Y(jq{L9Q=b68B_A9Sj^KtU%kD{=d=s+?t(1&>gbaq>z1){RiebM zN^B^HqyI!_@#?P9#BUffLcVqYSf%FGAX8Rm{p6W8d|5W6L&r0n1&w6D%pj&SY{-J< zU7Y4jbD~`RZBf}^se6ipg9s%#hQfnN1|n2;9oE>Xbpf5Px-Q(+Fqj}KZBQ!4t*~p8 z;zIc@D_K#SS%5BEIx1b_I6l3?dAKkRi_m8tXKGSPhXltVM4>;Bi{nax~?;*yGtiaYm#wtzN|9cDt`86S2N446%b5rW} z#?*>Am5o=>@$3yM^=)-`FjJ5TuFT~=;Z-EubHBb_!$7*to>3;3s|LWziX^FyM9H&o znUuq0#j!aaOx6vdYfbpt?0Fw-!py>V6K-MDzgMPVjh)e`OfbXcKLE1}j-kHu#WXg| zNKe_Dy4)%vLV`z_yRJjiRV*g*4t-8Qnu$iN$xwho9;8-ujOVG*=9z967Mj0wK|&IP z3%CdvUjpe)+wZL?YteL>G({Jw<^YcV0_J*Nnef2&{{>2HlyjN68I<`!xZ9|3v4m-= z0=9}}p)O)Fwv)nz&Zvennj17_*yA{CiPtNfiJ)etP$XQ&#p^0K3I>p#?_4|A0uQh9J)~$d?xKW^ zVC2^BiD2S0!UNW;b;g87?jFl^JK5$XVp{qoqKuA0Cc>$3Ax7(>H5Z51%F$KY1?7Td zZ~VOxk$8nnk3Oe7IR{o|-&7>h(>xe~PdGZyDEy>&v4zs9Op&03KIami$qviF6{R1w zyFv6e?#On)9?ozKYS&K2PH-0`q?+MXs?57AGzG)a-e_pN^nu6pv1O}MPamK z6nOIFUZPTPz!{oPn-U(}AS#8`fcc}0QUUfR!@+@|10&=@g$@!Oyh_y$#iPtQXng3vY1>5 zvkzV1REHOc$tB)GP-~W#RQpZRlE$&Es07+eN*cCTOuC^|RA$t^iA>~Vn|=t1$QWUt zJXDG)#tkw-U>`rcWxak&E;0YWh{JZaIMcVvIqh8N>tjL!khN^svKKK?w}bShaVg}m z3jObTtbkWvmmN2<3kNuXtK0CdK1BP`P~~Pl!+!826Jx0O>z~~B|<4m zn8=0^WuRni|1yQKF0kG@k*OJ+Dx=Kin z|{=r|s;Ewz1eF~=j|7CFNw%pGBL7waD{&yX|59mM&TrH7jpR>3? zX@(OKfn!nT%T0-hdnJfN`b)`3LrmXSd0)%qskTJY>wMS$@}+Zqt$l_9QJ}X-VF0>c z*cQyb;yLL3ETje__ij(J9a&HmeY!{?zmq$Csgi4IsN(coC2$Qu&#ozy*Y=gaeCc$% z-40B#RA#2Yz^=a<%}@@9olBfVQ&6*_I!ly8;q;^YB(JZ_PH^<3)}|44F%#bzM!$gs zGajCUF{`Sg&GV+tc<*HTJpe4M)0FmCLwSD1u)V&n>3``4#gsES3IG_m`zA_^Eci`Z zD$KFw0IamgHBgK)2B@I~VCGP+15lPR0PINsD9>{dWhQoMz=ug> zDl9Ut^>=+!W^nc|o{Lj%SRS|;TFT=CCB`&DW2)+@3Gt82TB_?`-+{O@F0f(!4@bj2 zXZ`Q*9gH5=|3f@{{eR#q*$D-w7lR5~rTj_+8>n5tnttk*u?Tf;#KeO}8`jFpU~+-L zQ&!;_cv@c0nZDFQLiy4bZpzXXRY8jUx`2ShfErD7zkKQF(*5s593bPo&5WN^31=s+ zn(zTC8(2=PwIH#f#5x#U;!=wI}r|ZHj8@t z+$MLOA#@odKXo$aBmhqvy&Nt*eHVk%? z&+SRK#y%y{VRg(K#@zvC7;tRby~PkcchPV$e(R8O8)Pf!nwc-XazjZaDTzFj_$VaY z+vC~)bf zi8yf05_}BMuT4GOAsOh=BD+AKS0r!+aSUfM(nDZ1F!hKOMy0a-CH(xcd@m-yL5{E? z3T#YRr|eA&D4yf6aL` zv5c?HN|U_RCWsp`a^#-M43=Z)BZel-Hy;6^EdPnb5y}Fi9q+KYgn+WVCvN2#XFuL9 zH3?z<^P!I9Re6ymm4I$;GFlngZ3CYwmtVFMsq2qVX%R@0ek9h$DhinsURWN zxb3#6)_7&bb6^>wOevba1VPXS_iCFC_MGW0ApJX9mlXpwgu7+$)MPlllL);pYxlrtD$8WyoI4}JDZ|XFH;ho8m5HC&KhNFjCLE!iy91fsSMXz?hG~< zQ*Aw|m^p4|RMKdv{>2 z@_+5#_)z{Id*l64#s6dc$p0VY;r#y;g(QiX#AY}FGigr=axsCC%*B^GLGo%@zTqZo z83W`EUr($gJg>0^n3olJ$i7|~V8Yxg>R6Z9oXR@-{KvDXOAO0ce~p;2E~`j)fs5xV zO?b>;Ta@;qw@Qud(YI=ZYB<`*ejmX*}ky1cgZ^+3%cF=$qXX)0Nur+HyAszURu>iQ+yOG%c) zxE8Cb2yd$;mCpbBTLe7v-zt3A`(MM+;K05AH5xtM|9Ft6a{uF`4E85;%kX3cH@ywQ z_dWk%P`U~?9ssEmgOi_+O!KOl`MheQWTo})xPyKLJK8~nqr<-oHq2k_%A*`!%}j6X zo_jns+BMFQ7;;_rgos0|ly808quP>d<`+i?{zIQ_to=qyfv4TJXFp_)H&t#0d-2gV-|JWb7`u})u{K)?w3z2aIE5fB3mfWpk&FphC#?n20%L zI+kJ63e3O5BIjXBxM!1L4HhP38BFs7iP2Z&ILZ;XT}Ep>n_4-H*0r#;zh{M8S7Guz zGwd_}Lz%kk4V)4nlgMv3ec$6G!pX(sEN<6KMq(rb!N3&%n2{oF82OG03S+LDt&cK&`s9=BTm;3{0pGM;fA)k-pd zJUy|x{|jCGE+v2s`~P5n;GX}E4@QH>{r@2zx&I?@>dA;GH}U$dTG?$po3ZBE0`Tv{ zr-irt`xO3Kpy~!D?NW?I@dRV9BzjHD{@+b~@vVQ(Xdll1cQhVU&i@7nkL&+Io{IfP zB}=-Yy+<38n;d{u5canIzbf*(VF6OF9RE5+yfyxH^0Q&PQE+Y&??ctCiS|+Y2wTmz z_Yqc|Y3n0w_wJtJgXjsin`>((Dywhn`Pnf%Kh?Q3wTN{SQ8sydo+^^u|Zh z24bu@dukl+$=B0Bz0zcptEZ}Gx_UZ8`un+h>K;6Ldfw!z-T$FbwC+L-*d+fSRL*}U zND$^yY7q*e;LV+G5fGwXbcan5BYG*!a?G>DNZ8(Z54u$C3^oJ3e!xHsa)UnJ za=AChZ>TK0x-bi#Ko7Oc?lJO0Icux($oWi3EG5r!e1=wGZffbix+dkZ@`>C`q;rj< z&#yvLT=dlP6)*;%TOk-T?}GxQ2hbcZAoJb4BN4Jv?{!(-9no}I#7J=vd_XYzCBr#- z&pmv0!EfN#f|y}o%CP+wXgh7cdKlM+7bVU;ivMM`_u|EiA93Jo#pn1bpb7I(0Cs@S zCy7mDa1oOkj05nr;ye5AVv7G=o{Ic0-0}Oy^^E?xaogf18o?&{e>8OBe~gBs{mG;J z{}7Lm|CQ*U6BX6pxt>Fkjtcv)mT({7L|zL;r4_#>{6Ej9ygBxN<(`hm3#k4Ekh1ml zzXOM9%J_ksYPHNEC{6ewz(+vYyz|)m(~S_VmdTTXjJAwVmpCS~asMK{rpK>8LEP-&~@#K1`96 z8-O6s3KW2VClx<|`62*8m%ZkhmV&ULIavlESQ)rU40fA_EUK;nWz9E+sd07HonrV8 z)HcGY8L;NVtH9+69soBzuWET(Rc*CMyzOo`8|tEP+u5iKAad;uZ?q9k-C#C`8>-BP zgwX#Eyh1t3mW-$KyKy4-mvv71{}ZXo^>L{nqgANvI7S#9vzay)-mU|ZXAN&dll<^KnH^!cA9 zBDjgGU>OY6*Ej5AFGDGzI49W}eEBkMD44?w z@a0P&V4f6lEP`=3)=0Zfs*7=hb~Veom0?}}ly1|54oX(jjvW9J_Aozd?2fRzw~r?Wp>hU8sfYBw4)#yR0v8^XZx(3hH^`(fuojY zBqt$>r{L`9qyw`HYSKwPXjYORUWq8i{w{Sv(Cu=`fc<$ZR0G*kEdUu-=@rgQ8(%-L zZiG~XGsBcCl$3W&uaQ>gJi|+F#4|q$zgxrCw&$5gJO?CeK=uOXr5e|^-1m^8$+&Il zQ|&WclBCw_#G!yv;ijOU5t8?NlrH)>I?pH+cJN{*KFfF44R>s+*l1HNzs+IVZMSq= z7E)KM{r{F%0ygab!{Nc6oBw+}c+CI#AdlYv-=`?~`Q#Xc8DeCEVN9i&h3eg3gnZj# z_pca*x(~3DZ+aO)J3us@0d~#Bes}j08g+hqFe=v-1RL3~XW1~^eML$G(TyR>q2IU# zKdO9R+0%;ui;epJ`2U`({|&}_kM}_6JZ~%dVjR1j{mFRdbc+IwTb^cuE_uUdyoGA5AtaK zuR}N9*7&CbIeJZh>Z{N2r@n14``N|X82#)Tw#jd6n;!rnOyLa2ILFFi3PzFglInuv z*JtO4uim{m?rdQnG{Rs05v_xodhW_LXpYDITLu{c!z2CNwHbyb6w&2}q`t!h`JzJ|+q3VstO zI$UvA65t}w)AN{n{hg=$H1WmY`9OZW$kNdMD86u6*Srrh$1xI}?B~n0ufOw#{kO;5 z(T&L^R`O67W0d3yc#*|+o>cd$Mwr1A$)#VpVNu`S1ugG7{FBVi^(^(As|`8KacIM5 zb%ev1bHO1dA&eJ<=K8IB?FF#LeC@F3{5*yE;{06d8teyG7;3H%{K-rht@!`_>i?sW zNB@7!|MW0VmH*#X|2MaSs{XGzu}A+`-!|y~cCj}4zg^>&`u`S6y|K^z5tVvP5_hH4 zo8xi+O8o|}8;wkBpBu4V_1Mn*vXAnxWRjLt5L6snRA*E%38~^PQV-L19I1ZF5RBd@ z@p=mK%nWsRL(iNRzBrBZ`^T|={Mnz)`@f#l`?CKG5B3h+{eSN<{@=qqb@m@K$<#yI zf69DQTd0qI`;V#7-o5?DC+6I<{iht8t#ABkwY>hWUsy05E#&Q5>t7yfRny>90Jw{-q#VgKJ7RrJ5X-sAm`2YDL(e+2Q~k>ihd z(RKOZn>6s7VoLmG>V1aX1(aD*3+$!^idi5Ko=_CzGE(r0B;J zpc+!&Hi=cQb@I!Aq$m-&RBxP$wFCkD0*Y?z3TNn|fZ44wznVZi4R%^d9IG@@vW5o} z@#zN~%ShLMR&)2`<2+6LUoM0GxggVf)BlGDV^{tgO&;@qJ;+nX|J8LMG4()g0#Jvr za8&9T(;SewSGDfIB;qxp=XMd}q{99@$D0oqG-vj!{6t-1x(|(Cw*7z#zwYhU`aZp7 zU?0_2de^~x9`~BB>uJUR?>GL#-oeD>|HI+rQU8CCr*i-Ew#UC7E?J)b%8$OoU-@an z*{@Zq&C#z_;da3uws8DbZ%+T~^!(lXS0CTL-s04ljou&gz?jj`U7Z!nQMmtO;+jJS z*8U}q`{TeU^5Ol*v)AWCtHkhN)EiEEgWjM&90mSF z*J3bhh~l$w#yb{S>*@KMlhxS9Of-9a&BZMl#dhQymzpWpQ{o>G9|n`M`cw5?=GCXG ziAYJKOL$M>H}tI@_DcYEjDTVP@y#mmmg|9Cw~u!+_!H0IPn^*o-emOasgz`3$A_L` zy9GrVU+%lj+R5|R|No=6A78zGb^QA5m-iq3etQ1q(^HZEWVrvkxc9G~P5vJTuKYJV7>pnFzXy35 z^S?qT`zwr<6aG7x-f8Yvm1M#RA0S!oyoh6!A7rx)y6fI)cn4Eey98yFs^pmM*_Rkf zc}ix)@A>mwm{;=6@4f1s2)pH%4Y~e3j)zuqehI=((Xy-F_srM68yRYBti&sP|FXX~ zz%!WFO@lZ%jd8GdlUY~c?WWVMW5*lv=_+t{m_%0$Mx_Pzx-6TgG1yVyb}b`j-3HQb z|ETBxD$~&I9l)FU|8OvN@Ba@c`{T#>e-H9(&HvxX#8LOb{dJ0=yWss2*p{5%%!_qv zzV9a4`U<$dIVx42Z+>mT@eKr@rWszsY<((oeNA723&RGgQh-$qt~x=5sP33qpUSwj zr)9S0y18^m$ib&FQug9XL;+7A?55UTIBbFk?gM!s97DJQw`!)O9lRhaO&e z4{;?4*a5n`Yt1R9r#YO(-nD1izI0YPRY6{4P;iz}bd|9|p(zx!5y*Z9z`kf{t(zm( zl~N$60aa?=_;dFg)~7ls)s*U*$>7f@dWWMZMprNs93k-ICT?*4;8sxU*6}ED0E;Zq z0#Kz*i%GB+tt8YOdKJ-^mgV6Y-~{=foF*$}-NCD17hD!IlqD!fG|Zv^?Akb$*1eYK zXjE?7a4Cn`GMO`t%eonKr)BA#k>!??v1~UF%cdz<-eUCY+pit?Et;#2xx;Ba)4$8! zF0B`um2Mg@KgCvI>9Jt5(zJ*g8l=9)b}RjL)ftaZf|m`JbtEGcN{|$tYE&R|@BQi& zpo)4EwNdRRQP% zp2T!&WbD^KbY+?7v?L_J11B*JwZ|1xPu_nkxL}EV36q8}Mn_1cPXnNm-@svS=KmbQ zHOOO;;*>G$0Dle<&!OsT>}l@<;>T0H4`_wig7tD;JO{lJomv$65E$k3VE7rUXGZmp ztcXjiv7CXGXZXd8m96vKw4O;=@jCra~M);WXh>~8yH)&n- z1?M}fea6#4U0;`+@FYWX{5cT7*=HZv3T6PzV0ej=XllLOj08|Qn%#=#2BikNQWx-) z&ef^_B*k)uGEu!uj#%l3CD}L_9dB-*mV~vjDR;=~mf&_)v_I}sZ~seI;avoOXp{eU z;KctL?oTF<@!uch+1mbhq7H#`5%=XNhIn}|*1&XSq=WL9>df#5M%ajETV0K%&V>bP zZFTlRuyrQXvrS2qqd|WSvsUT6c3gCH~mmZS*aX6j>tyn8R>ev#P_&-Az&LiO%Ipu`r5n>u8e&aYOg=% zC`%weZw^dUICaTV{53L4+SYF4L-i2D+uECxU_;5b1V-P(7$zagn(=bU)~Kk)!G32U z?>14=}k<$3b;pr*-SL4q7dVckQX# zG#Pc>polWwb~qP#21Oa?r7h6}G_g~gK;E2e>qS@T zc3RA0Oc%!_XKKXyFp3yIR3uUN)f(Mq5LV-SA9L*WY!7;7n8B@`(L$NMGIL>Z8?$B2 z?3pG_ktNACclOGc#t!k+yvAd-rneLOBM&dZ*o<9>Z!!Tt-mUp~TKo0v=)^c&R_~|a z?C7N9vjCSR%FcU`b&pZJ5Ue)J3Z-=58J`_4npv#&m_*#V%r+-sWf40RM=p^ccXxFs z)hnY5>Xor``gL|6O^f691l8_JyLF%0HnJ<%dW^!HWK$o95T9yRsr^~5$$Ed(y0vM} zP`%uxTYK9qhSk~ZH|(diLgect66e%+Ek;&`h88o5)I}Sp8IQgrh*R&5sJ32%*KEmc zn)r=q+Q)NBX7YSs9-Y*$A^!liKuW&>=b!Lw<&W@ewEvt7740@wpiTFG_A3702M7C) z_rD+H;r5>oC@-=^CfndDCuar1<|AWx+jgJUwj5W(H_R830iAFTHGL_ps^xb-U+YQ2!Hr zL;olEKY?~fU^`8{!)k^oW68qFanqRD9d^ddcA9220ySB?TKp0;;S8w6;iVkHZ3d7D zQL4UWfYUH9(V9Al{|4qbqj|mWv;pu=Y~z21r^^4;T{YV0tRLPY@t1ry@c%L6`R@JC zgU9p#2YGxPTwnYZ^B(Fss6Cw?=uGFZla@`A#J@U`Vwzowi}c+g0f$RgE#A#?b+?nnJ#I{hWh18Z#j1$ zs|-l?nsWyOvbh*uHq}v$sH+Cm@iEuTj${GVV&W#R*&|C%bP&1$oCfle))2lH+?8N_ zcbH~w8@()SC7RaJlx^Gc8L(;_@f>0_G?e-q@ilYevtQcstNtpvXi#Uhu!0(C#LRiC za?jlMmZ>yGYXcksou5Zr{v0ah)2Xbj?%Wzgp*g0fx}R9Q&2dg=f|U%>SIhz1?RGoc z2LuoR9si|m&S@)dTN#OCX|Bp(5*^0r0v;Djux~ooC?p&Mv}JqN-u7Z_E!P~|dggpn z9^+#0tZzjYS8g~=`~7cL({EP7A5Wnm8WrH5%4yjc-ltg=s>uH_p7leN<^6N^-_zSg z{uR$A|KH(g=*s`2y~q6j5Ayirf0X4`@LuKZqA#|zc6QNQvmFivW%*Aej;u(Rh96H| zVcS2(mwZOL!g%ir1y-TDMjWqMb$h6`czKs-*Lw=w4m}&Uo3(2BDcM_AY5HTSd9aijr zlgIpj5A>+>pA4fF0*syZ=TNG=i~#T)hcHI~QyKZK$WT;&_~YHny zvb%BJn7y25WT~S`bFr?mXB&F-RHDR*20G=;o~UT_5|FbxjxP3dVX>Dw^Zf zd*(=1d73OF7ZF=~4b1IPIQ*I)zx=m=OaL^@X!q&=GnkAj@qZ`d$Nc{f^6(rhN8+BA zdBHPh#pA^l()pA zTCs|k&uMQp?1c&Lg-JMPy0nV9&YS!v!3hYSf#3$PYwW0P$6(9u{|;=jY5iNVt!}{p zHv0dK1{MFm(PRF%2YEz}r8p*6;P1r@NgJ8W_(FsoG(t(QcIkTqpk0=rO!qY9N!&X! zD;e$fRQqbB8i1U8i;mz63?D|ArWr{y%!HTH?#JEj+~~Di^~wzER(48Uj}0Wt!O2CB zF(gd-t6^ZzGkfad zgyt{_k=--X&Fqo8{<}U+{9lmHy~lqU9~`*y|71LT^#6E}hx4h|pHnDvtn#ZIWG=$D zFfyoRPbOnATm?k@qhr&H!o8(pxO)8TL`|}MIy|6Wf*pOg+4EVc4dRpK%duN~Z=}>p z`1Zj0o^C}!wA?~GP4n~etVlvI+2eoWzZNjY zbIdl1H02Z0>->TQbY4DZZLrCqV1`0iPy{GhBCfy*t}do=j!_(mD@QS2;v7XHT`s0z zXSU{3{Ob6WmBq;gPtdsA>%5tROzZ#xh|J+hB{lGOSmpwrAy80;Ck2orFR^VVnbJwf zAe*GougH_$LrlRBG7-cb(OLyumEI~v9GX+T+e~+MW<0lEZF?5liEznrsdYj#%1ST>o$zGx68DODAu5;)@~&Nxe^T$XZ%pgj*PrH znaedJN^$9I19Oyeu45}OI%;qn`FAOqW+;uhfBpXrKyV&x&tFupT(&Mn*26F)MUpd? zz&J>APpDPr*jc@X+14)D6G6eO*;BMyF%nc<2zTqCCU#KC3hC+qN%}rTOF*>-6YGX7 zNl_NBK?oU9C?ZjNCQ0&)#4*Zv0GLe#qD!BxQ;#9V$VVs3Nx%6Br7>AA^--*23VK!f zd~Jsjss{|wk|Y$>z~x_0(biyT4s$dwVh-2``BWD0!R|I(tIYufD;VPlxNYuyLwAEZ zjC@?Vc7tZ~8VH*FzaZ%G|LXfM0hs?9C7ZUqU!$a4r6m{WF)q+*A($*t+`G9Qhfwlg zll)InUfe$W=jQXjgK;JP<9Pq^{O>^?56SXrH$1=l-+^~1yAbOjCLxUF7APGhl{e>;a>x!y+daC_x!pc`2d!MTY3FF-Re$S0sxlzdw#pgrX+c z5lT@Kp(MoohKd5y!^uCnHKnQ53`LmUszDB+Ra;A#VHnMB)tZFiw%5vV)3p9o0Lc5b z|BglnL-+iDG8sI^|9FsxOEPISZ8b3G9KOyjr2Kv0Cy;9vu#+{~h23 zK}w>-(wX2brnv~nWxp3gUtX6qzrDg?u0yJnrR=Qto@NYyrJJJ%v=E%dBpa2=8<`3x zm?VUcE$^7WWp4{UO!R!(<*lKXZSK~Lt1zNlLn>ZXMpL|QHIRmE8JFf67#fv9ppJ0tVT|F-JBnpZFOhmb+oS6(vh7I2Hl$nMQoErq>-!1Wk55y( zZRZ5m(6^1zh6!@1-ThKGE%!tFUijP2L)(?$ZLE>0cvgYctQ>0*#i-;dWfFjLoO!|u zkxWF6uvo|_tB&b)HBTGP(XuAd32&on0kmR2#F*yXytJc|pcz-WcJ1f`{JwgQmc7JE zY-Sqgs^71xm+ws$CwnRCi_W;`tM(X1XoWWq--balfNU5aQSvJvp^{`g+ozGNMg#NQ z_AK{HGgF1hUlQ?tx7bO0nl_fD9&9`Kj2a40n~h9Lz-qNqG(d01qVi?R zW39PO)^x$%Pk8Mn9K1O5F|FMxoW`{9Tg6=mov0;(irD0Sda$W)u{8-W8znI>%p1(L zl?A{>*V?Wsv%Fzzk`wF`&#V?&OszGs(gClWP8FHT+^leNaih)31pakzRH}z9*f2w= z!iLqTX+TXZSQfTsQC|&mSDq~FWxdsJ+pIl>bGvm{ZR@VsZ4KnRW3{pYADgXd`vxr5 zXk>f#suqgFTCLajKDBqoPOI?lgq2FL9yVHSa61-SLT=AKU-NO~mrikvE>Hw`P&1sb znWlg~=iq9A5>uYV^61#$tkz+vsC^`A_YA<5(>0HrThDJ?$ULU21ReO?s3m>!UQ)P1 zfEH;Qqa{jm82^}&BBdZFfS)%lL^Kw4x6OxP22gr8BR~Gb*zM48P8h}wX?*7g36gfj$6z=(sKqTL z%Nb6DD~B-W!Z@xWY_(6Dq)dynB)5|+66n{5+~6cZUiX9x7cM& zP&<{2qA$U4Fd8#%sd=OqiWQ_)_4=id_iMO_)GloF(?-PQ*PG*<-Wc1B+_2m+G{icl zB$-0svdC&+-e!T)Tx)frWXT6DIa0p1IE#a&1w(N&7YKiE^9Gj(T3dDHn$kZ)a+NXDZ3k6wgjUn&`_#6t8W=s?8}Pt6vfa_*lS zq^qz>AGPp)I@thjL1=yg^MxIfyGK!eg0dy%2^Z-phgAc}E*fmATj9nEgT_WmG;7P> zXr0>gwknhRpDA~=hn&FHh*tKA4Y-N1+JKlR5_&5PuWxrf)9?SM&%OKSOs-5zg6gf| za$9%64gSA-dk0SZ=h5)s;4%KkgFKD--}41>GQhJpOHw2zj{*NAGm!=!Q;-!&XNKk^ zQ}<-}<>ENz*7Js}VTL1(O>jnFHg0LLP7#sF@`O@ji@W##%cL2akcp>k9 z%bvqH#R+=D-uE(;5{h$@t-+Ts)0#p#)LDhCDUlKQi{y}gq$rz$0e?{%q^CkE=Wk&g zldBW;=`{_Zpd7P|DIln{nM@#2e*@43hi~6@0LT#K>6>+CUT#=X$m_4BiJ)b&VMewv ziA0lK5cFp_>C;7^es@FtCkht?e0ylA=OM{56y|KkP2Sq;efuBR*VRM}FpAjcRjQIR z{eWYn>5eCVCAr84;i)1o_F&432Y~0P4Hx7p0o@N^fAV~~KY0%Nt2F7W7XAZ-izSKJ z_ly5~Wq$*|{RTvzM436nDw*9XO=OhVXZ+UbniOo}6V}h;A5K?eaCr2V{y*MHF_a=C z7F&Vm&%o0~$}L(hfg9K|;*)&f%NLP{Azk(aM-qt@sEX*|^r0T>DwHo@n(^PzuP%0;3vpW3rqXF9X_WbH&*ZMw-}tyX=b-m%g#@z1oF z*&pSL5+1&DWRtFF;Rv$}$*S33cY)pA;pX}+)C-hb2y2yAVmwFTI#l)x{qy#ab0*Ct zLfKg&N*O`v&B^%quKYGNhIV`41~GcT8+7b5ZJ=Z|wRY^2AK$!^^v11;))HvYwyb4T zg8T8q`;RB*cMI|^pk3?e8#}dT$PB^geG;!f5Rx-ljIL>pmRu66t-^GiW0J5cpdx{t zPR>8PK74il{`l>Goqu@${><)2Fbw=YNK*2;L~C^hVJfI7SsCdzP034!<#q=vPh$n< zsb^TWY@7e}Lq?YEFkmH1HSO9APA)S}{T;18pm|x1uYUc$tZQWIDSKqW5Gu6WNBO8! zICXUy>fWm6p^2;*s#JCk;^zBJh?`}%Mck^p8FA;GoYvnI%PSe)^GbD}Z=6LaC|PmO z0Gmh*uR+UvB0tIgs$ZtVphZqraSvrX5S%fn?pZRJL~tUa9nlnpc)sQh_5}#09in7~ zGmvht`?muy*yOaqqsqFpAQUOFH2B7C~4C`|Tgojpvp0V+ek z7C1u@2z=e6BA^pL9wT$Ggeg@u05n2NsUty;UxuN78B-`GN>;ub~l>^!k4fMKE%Vn}@wTZVzYH86x{Q|5)bdwfWUdY_~ zJD$u*cl%W9l^Jg7;igm*5rKIzlc zlM!hA@-yd*)gaL&6w_!{0+ST%v#1%Z)QQqfNM~e*{8($3u>N-)AOa|~_?ahn_bb#d{P<~V=6akOf$9?1~PO-n~BLrU5^rR>O zX@|7(RgLM}Zzq3xa|8LKq3w_IY_$KSB)V+`m<{K@lR+i^)4_26G5+g=Ji`9hIa~1X z7{Z)~b4-#3`(Llq$^e*>$c+DDiNo5|CQ`6+4&%OSw8m6jb*mu?8#X&%Ji}g%*~R0i z&zoy+l&bS9wwuW?;Q(VusS3VbdD-4tM8gG&iWp@Imi3}NoCTrzu}ICpN*F)4gQ28; z^><@!^PWmVODmWDVHtj`BDSzr(+dO6QC!d*Wk2AI=D*;4@slX&$YM1Ws@t9&)ip|F zVxb-p3D-PdI7Omtg)-k)ieMHl#2&2Qde5_~ZSm2NKW=Z^^kdA+8ZV~cAOCxYO_|*X zK>gaj5#vvBsCufdwj?r5RH;+ApIew?FESXS6O>`jD@YRYN=AtvD+OxkpRr$kY@!9S zCh4`}FjK>Nwuq63^I9loiY^OPQ%HR3e6l?7EenXc&2lMoD_){Ct!v;nP$c+Q@Ef2c z%Xt>9UB^07o?fX`i8Y{X+oYj6mmq8x98h(`DI1f)L90M3`nfwWF98%c=-dwmbf1bW zDL;+Djn-Fn(?c`%#Ji6Fe>S z|17^{4A>3&|L|a3$^W>&_o)9r$ioerC;U2_R`^w(154p=q3(0buaTldUyP0I+rs|a z6i)65?fYn_jIhOlR9@?o7xEgmdS24nSporTD`Nh%Op%N=vx7 zR%q!dX-0AqlGu97y*|*d#@FDdv$KX`5Xh0X%LeH#N+~p?YO=? zI@9-U(hM(QwpMu&r5^4w`-*xZKlEgEo#WPosV;E`WpnbTui2ux0U7nAJ-{w3_l>Hu z6hlf&bVacew;gdnC%+2oajPB$DlEE#$L_9o5kKXld$vwRUMtRZbXo?vIq)LKayw*y zTi2Jw#G33+6sqj5PIG2!>T?hn>cRk2DoQ&uCnn3QR5mH@?Yk+U#5bCv(B}d%vi4ZV zA-41+a!A0M_-@6Up+t$_o9KGHN5uV2vs7^S@$7w2DeM_Jv-OhW`&w~QV%0$8n}0L9 zmXQKff|ofxQ#+v1hO^bVU)Tpfp1~r|(;rbj4SciamR8b4%KcuySp}+RsklQ^aUHG$ zK*I%M0#6BoBU=lhcC>jP@-RIm;bn6#8i&-Hb3;7ww5G>^i!-tV-pU($vpw{5Gh81j zDX9Ex5XP@i4AZA>Fu#yw9V&^)XPJQF#K44o}9L>DBEs<7P>Edl3viAa&xqHKR} z2{g5>`7TWBvmathJ;MLz-R%Dx2KjHaH`sUYe-8(PNBQp|9vB0`9U z%*=3}mQ(;R1*Ik_rD2m5f?$Vdt=xFK5%*H!YFLH2cKf!bM#&hfFt0?ovugPYR4IusEMBx+R~4dR-)jj+wdu;@ zyjCsURKISTriO`nJe|0kr{(^CD+ADm{eQfFaNyqm9UP1v_y31@xcz7I{@=d|hMeHo0WUw%wiGgd;Y1BM6jIwpZb?3R1esJN{`!vanJ8jA@RO z3(n|mHrM|S9L860O+lKWIm!S`fL$EVbs!yzavlBMMe}7-lN)kw_rC-0^99PTFhxM1 z!IQ!xaPsq!Fx5NFx;;#M*~p#!WrrIP>MC(jrD~Tk`nTg`%5F0&we9Uzul*$Mxl+YA za2E(Uf@oda?f}n8Caj802yLw46H3eL9IA5ub19Yxqg}}U)GngBMf;FK*~gr<1p>58 z^Yts7+3QQawZbpilAZ}_i6UH7EQRG^o(30)l7UBhZf=3%f1$T{iQQ8@ZzH;}uO0qV zm7O}>^;k5=)sZAwb-jqu)YpZA-MS*;qEBE&Onypc|3qP~S(?7?r>WQ|z|ZoK2=8UG zVy>q#QdeYbHC_U!ZCTzHGu}J}6_u>9)A|5V{1)_CvVQ}z*GepgM${62A8)E_OP*D_ zk$cNK66t!zt7$b#!X|)hl(ibbe@qQ>^!Vva>P6$mh3SNvR6j*)sglvli=kS{mGt54 zr22DX?^LNX9UKwxwD=7JwYewa9Km8R%4yClEToZBaj@X?a`IgU_GXr^pdeDqdnAi? zmb*JQ;@#r$%KxTgaQ|GUmwqF&OK-0UY>@x=hr??8$I)Z{_Xl}A@gLP)MhYO4;3Kls z*~z&T3MI72n6{9sl|cavGeRjS(uflgif~SqT*=)=YW0T=nasRIAy4?;;u?!J31*>7_5+~6Vh)YPFCCXt0bIACl z$RcDMZ8{>L$};4+i6AyD*?yRzh>BiCvou31ObX#AMaX55f?zcaKp+rs`bSe3mYw8) z0>x6EMza%0sXQT9FEc`N`?ctf5? zC^TY&m+iL!#tJtm-gn^jk~GTqx7Ot{J2U10Lx zj}&F%lDkCOUaK{=UcnsBAVomUf2Eg27AJ(#?XdiRl*UUEp_ejD;)7$I#tsK@iF$$z+H@z5Dwp`@Ye!$uD$W%B_!RG z6TK97jKv`!>czPk%m=wVG$>=ev<22HvKRz>J{X9trs4)|usMH-b{Nfi+G#%PS!S z#+gwWu|dQ4oE(*3yR7vx%4}f8l2nD<5cqZke7Bs4f*;gHE&Uo}*ZafP7fFs|kY1c) znjsjiLH8r@_S^VVZ-HOFfbK#ZABYM4^5s83L;#HuO2G)Q9|;P4F?Zk0k4b)#A&Qdx zaj&`eXDj}HLj&L@``_N!wf~KV2aoqZ9_0DD?0?qAaAOmovpKZf9UjsUco#OncILnI z;y#Rj#umEC{wEP=3r+sn1lH5|2Gd;)x)o?{<6D6B;eBJnpdK@Ck-GjjTLw4wQ?+^n z^I!?vRGf{s`{TWlr8_r^56v31x9*LNhHY`LHy{2Eec5PAY~+b|V@PZRvCfw047#6G z?ry+ZSQQNw$LQG&ZHqo&sR>FiwJktxX3^KmZln5f z0A8(6fd0J{KHmE6b-ofzz1nv-8Xj+{NeiVSHwUC>6eF^4<(y|z??W9`+?XBUrm1%F&##WN-Z5!H3 ze)Tu@C_Vj2AFupZK0_%Z&|!#w={{|Yas;tmLo5o7u< zmuy(V1)7S>U_6pt=L5=%ECCQuGS5LmB6O%CreIPA=YDBt*Y{ z{TYP?zee5xperxvp(I4=WOfPjaPj(cnjsNp+dQ#VN!fZ<0BH7*l!?+Ln}Roq@mh3q z`v0-_w%u*q$b#_m_3AI&FL>y?CswZ5>}K;-XC`MA*@?B+cC?b5oI9SJ5!elq7&RL` z4Nx*C&i?j2C;;8)7f>Xvcrvrrhs06?g+ifFZzvQR)mwCBMD@7}sd$64^;x*aZIcH= z7fW%9f{Hk=t>Y5s@h7dL1n}FgqZ&bWF;`P|Uq-u1@D0h$)tc@<(^_s>y-!%UV$I}c z@1Ty_Ex*YMcB=1Hk-s5xaSg__FNEzTH9QNTby3J%a{_+Z2de5(f!b0>u}uPIEH?D- z$$zJU?!O)xi)->QVyld$Bo)P4kPjlqZzR*cHjbuwtf2Mw*2|PM~xfH#ck(RCN>t)j_XYe%N%E!cekFAJSBo~kFs9T=~UgeED78guC+E- z`x~vzMX6(?Un|h1Ioh7gbPSxDctk~RN_nQK))KjBKsE)?|4WM7DnZNxF?;H0@kbx*hF8c)#fwBbH|yR~e#1Gn1F8?82EbCd14#dg_XTej4b z?WWITYN(N(z|ydE;nNu!)|P(E&iLH^-!}grax*{C_y7NPssA5@HUED!^2cBN|IhKW zoBwai2C*b4%cV18Yp0s9q2nsPyKe7t2jva)$? zQ3?s{T$kX){jGmou9|72e&1yYD_A`t1&P!xSjaWhjyNt)I{6kdHE8?f#IjAp#|hMe z&y%Q*ZSr4RX}`7n_lIG<{{Lv?f2sfWS$_7A|Nm7Ok%$YN#?t9hEaGHd%|WKQRkz=H zfZn?IwOuV3NI{mOm}Cjts6xwJyC1eY0f`FyKB~5O49|)`vK`d|=4%(`|LB$7?PuHm z=Yr*Mr|A;~z$5#=9}b4~^B+I>Qvdn0{OoW4*&6s-aR`FviQBZPVIg=>qg0_*<)n5q z&@Mz)8iQ!7rmT%sJe2Vt`U4=TUW>9T!Py@Ri;%5FwzeM|DH3WL?F)zVIr$svbUW21 z)nbtb?jKR-&z(PaIxQY1K)F6Yd;PNer|+(7&`_<|nt@iH{L>Fz-JuI~fMSJ6TVmBz zfaCh;t)N{Kt~jsev1K(3vZ-Q*HV?owq18uxyhqEJ#XGMb&X+hB))AJ6 zGHYwqPKZZHv90SbEp-pgTOaLUYNR@LH{`&Ns8JgIX(;Nb^4#_yPEn%4qJXOD2kw~0 zr)wv){PU>df5^`^{V%fQUcV{&Nfy9k_W#Hq*Y$rm`eOfomY==!zjQ&lDvP)#s#39j zov(DNy`y&=FUV<|HBd5?a%W3}0RG%=3c#Osc9)w&)C8iOUghyaHJMr@USx^+VnXhy zwZ>?*%X81f_tjne`u-0_qc8jabNuYF|9?{K zfbfj11zL0Y@0=xx{J+49Z5zMfB;Ec7FSdk#uNV{C_IN8a+en8a!g>t%Bg)BweE5#0 zG3s>lKmR%Y&;R(ym$*M1ovQN5Kb>8@y?FcmDY`0Wg<>K|BuI>&|MCm6qsO`qh${GT ze1bACZRFTmG*VT^UF0lXBpZ|yiM|v{F%k^ndq(3X6*;1C{FbwLt=?iJ={?O^x+1CY zj{cLTbB2~eWc;+(i&@0I85JpBQ7>YvUiqqjZ^<6Ig7wxQvjtA$t{$Z;N9kHE?cCqr zhfwVkN?)=KmBp=rT*_{`FVyeu@EFrA-bwK06i>8ie_t? z#8N6{IJ$!~h@)o+Zi?xbpE=@7k|ap_b}HwCri&AllLQNTPoSu{^>>`cN6%17^czmk zvz*N72NJ8oM*sh@hv20smO@X763R%95}Fe4$a``9mutata`X(H1IwZx&#zHTbAIG4 zsOZ6e75Ycs?C*IG{%iiQT=e9B%&+`D?UjILIJ#SBp!@jI*B*b!j=uJ0`0nUyPpss> zSxy&6U;m$@XXr$xt@U?BJwp+uf_LpmT^eB!a3>bo`P`E z4ZY9{JkP5@J4Vm@en032{jMJ#A34yOILnk<>PH<>Vus<~u{EmK*)5GfJD|o30VU!cN zNQ={0Iz~B>Q)hD&kz91S&Sqh$A&MeJe@{~M-J}>eNHI8+6k(MV1Dh0+8Ywbq6X{$Y zQ?XszId>#?;Tt;e-HrWQ@anzu}_rds-~ z6VwZ$1$zBd0WBmKsyHHvQN;3`L?YSf+3&V(%GnRyvkzSA_0ZY-HN|SrzQ618?xx$z z3Ht5{y6lI8%!i3LsV}eJI>GM<7IJTR z?Ta@#bn(X3#hX+YFQ_kGiM@LGsX$jJA4xT#XTm+be0vI}u~RUO9m_X9bos{B4_$O^OxHRL+;m{>r_rI-)2M1ajVjhtFxqi~gZ<3eaNsm&M-J<0bg1<-s!Hfl#d->cJ5Deh?Ki=2 zJgP|Ha)MPUoNVBXOy8vgR|cs^2I0xn;s_OXVRj#VrA1D-r#1?m z+GymE#G^wc@v!QIk1CSbqJt%FjlZIUz$n2Rm)kOQxYWZ#UFu=gr5;vX>R`~|%P1jO z`j7|`oxBZRC2C3bbR|P@C0%^Jr;8pc7rnq#G*nzWEk_Po?zYQXXgRFXa%9u8VM5EL zSGAtbvP{j}-_yeIofgK>p-P8`s?uRql@2SaG}tlr68d{`iNA$Q`qTZSVShS0u8E;J z{eW_vKnKAS)mEL>(3A@d=esTvw`=*~p;~@e)$+rNmiH%3E1okDpDN5uobRQhA5r80CV^5LP1d{|ZF!-^vJo0iJ8 z@{Bj=`*#k$SC>`7*n|+9jBrhkJ*D5oX$uY<XXYBr$SL@<97I^ny`slH=A%YKy{h zXHXh5RkAmL-7SrcIOQx;AyS%xN>C)&&n)VXoQ|u+*F}N@&DzilhBXqDhOOW2JH2zA zM%T0IlLt~#`Y2Y{jAObWTu2Iy#^HEA7%6J(c>>vo6Ubsz#aVg;NdJ2de>zsc!#%fD zxNS?d+t~8M!K5D4NIl$%)U_=Y?#WN#HhyZia^;6lN>uP`6CKzS^=sQo-PBi+Td6H8 z_jSNpS81P?^$Xg=dRvdBNZq*s3I%&oDA-1!b{krLIG7FkHR^;Gb%JSw4K7vQRQF|+ z(2Nt5;as5p3BobX;A}z)An@JgFOkVl0a^s({q|ch4&6>!u;)QRpbiS!BJ^stRI)H- zDI7`&EXaJFB%BE6YP1{t^25Qa5!6f8&tgs<~7bi1w+x2Cb25z?uaAH zkzJEH&|(k0puX{f_Q`15Oe(bE?xfjNO20KGC9PGpYOp0!CYErF!qI}>lT;lg1$!Q& z1ny&$(3M3M9+*WXdroWQ@on;qYis?#)?A=0XZJKFNGH*&$w$i-i_siYb)1IRf@LIM zQB@vOQDV5CM-vR49!=;-;0g~-;0nE(0XwzH(2Q40&+Z=QQl@COP#%rQ30@^MB`BVu zb)Im97nnLCa-kz5Dm*kJD)ed=>ZCr4b~Id8={1~+^JZhBQ6;p8kY>KammoLO*Mb&M8jnk9c&fVjG}NiG+g$;;pRXUjs9+E zI5qj9Xw>!iZfLj^=7IXMUtbh|7c}~gMd=^9DE;c9^s9?9aH7$^DE&hhrC(i?esxjY zXtXa%|IkGV>eTReK_hTbBRG^AL6sUol^U*G^uR%l;81G#UJzFC@OQz(clmYx!G4`z z^Xq)euk)uW!PkLG`+o5cc53{ZQ{!7s%_FF^FOPq)$?aE7Zr?Jww`0<7^7@CFygDus zR4o_3w0k8k6DKb1hO2+5;p$fnSHCn|B^o0q8tsOwf2iT=R}ELcG+ei%(QZ!qhnkaq zeNjfcq0w#!`G?v;e$@{0OFKxS;qoSYhaKb}W(O5~I;i3j?uLs?jvOvVs%Z3gL!({O z_=jp5zp82cQqycl!zIc-d`A#u z?bm}9oCppz$`(0WXNWzdB(LV~Pp5nNXVa;}JsZ2!?)YG}JFcnSab4}UWI46DXw&`9 zpQoPkrI;F5r*LUjf-;bAXb-o~11tJ~@idp)VfCGc)8zPPoTMNYI`ew3oN^O#0 ze6Ue7t{OGtx>3`Zk$J%widw+c#&x>pBrawL@%v)OsW&%KrNx}(k{+%Zwi!#~Lye_z z)j%27?4-u@^qg4Y$St>SZt7|1c0C^DG;5EKj~({T_)vRiT(x(`HG8LJ(bPf3eU{cU zcU<_k8Ajtn4Wn_@FdEkkBfz&EjkX9F{QXcg230hM+sLM64^C4i;JVOj_1tx1}VdQlM4KS>ebsT z+i&Vh_8U7)?eU?ew(M9l94dB0GrzZ86WE7jH^D*xaQ+DiMho01Qe;XgfOI4UShFScNUjK>(@C=hgle+T&#r5<=VpR=U@!CI2bNl?;uleR9O-+ivB>pGX3K?_aPhXaXH&6-f4 zTFFwVD3%L3_u~5S-Gq0s=q{N~mr!Jq6W_0($8_MhaHz3tpZTFF7OJaXnR;0DXZ&XV zj#m46j)HK3>{tBNtoO>Bn7Rs&Xat?JK77Ha^+`Jxyjme(o#~t8IDzm&C7&xMa0wY| zz~D%%aguB#laN@EWIw|Q?)&}b^?wuzdRH&cUc7nvTNHoVq5kKvUw{9j?}y=+`cI$Z z=NY=t`Tg*o+tGLHR3)$_be7|M11k6?Uz2m4`t?|YYYO*6P{JURA+>k;6`f_7va$8= za|S9DBTiQ|!MQ2@c7nu`@?wk!%%L6~=#-qmZG;u3sURtq!$ph>G$Z1H5cNWk+E6OY zB5ew-twg>-I9gJ2FHu}DoJbsJMDE@fSO4wFO^>eBJBV_Z^CRoklT&p2%^w3V7#KBXi1_wuwdW+ZB3)QuG}I5E!H$9yp&<3;PP0$ z=&f+N#!2sgLyv3OOlt(O&%hs{_gSS}p#E<;)=G9L(BA1=ykO-sqAW`>`y(xL!kyGLh9 zg0ARdDY&$SNPbUZ)I~Q{*4A0A{|rU{tRF4^mn2zrwa@$HN?^PE9}j}zs3!lzF#PiV z|7ZD;GE61NO3BhyC7F+oEWV~3WjS5poF*Gp6jTafu!J_i|8LK(bt0|Y-rmtG_CW4Q zeu5r|zV@lw;v~`X-+Dj_MpYwu=pt2OKW5Py%JoPHbOnxt`I8hECZ|_F=|)qK47!}B z7K$J;VQ8|uk_ zsqn8Y>zhKpThReWA1w#!ybK_G)B!{E5#9ds>n-|-t}_zR`3B*1)9Q0^v?Mv)LX$3+ z{FrYL6=cOd^b$wQc1Mjb**b}p`%MLhh{YY*cuLKb6%8VsqL~Wedq`s~T^|ciDavO= zD)WyZ8BJ6KR-mjHD>(xvvVWJQ+>=eE#!>Kd?|U zO`G#C`GV?q7Fp~Z;=YYZ;ePkVE?JK5aZcr!>afHf4j9%6{x#(ia-#ls`~GJ+fKBv#REILGEP1BekM!2ZT#M)}Lda3}O#9xP{=d^fFvV8&z zDqNf6hfHllB@w0ZtC$U=@2Nmmf%(}6?!)WaPFPA|2nSwYzmhEH9@$g3ww0XXruzMD zrz1&tg&zQdfwm*0Z!ssMK?^+fp-WQPGp>X7&`(fHnu(>gaMD5MM4SMfbB&NhMAf&- zauSgkUgz2cHT~dc6SbEgD2Mw*`ruA4y!=a@0yoBIK;%OPCp8p&jTuyP<&u%jh9~Hj z#(&8Ks%oVf$XPct=&z zg7;oBy}fo?%ROq>@Z)n&O2`H3WXG1i`Pyy&;16wh+D5|}1Wz$yhOi&YBaB4G>t zOzDzl5>v2q6Lv@UXA?8fUTjie_ZXX4&<|siVx&5o*pQ!yO^UJhWRs%bo^0a5I@a-) z?2%!yd~jViMH5tJf0HYiLn+z0cB}xwK}87d-mo<=aC1|E>(( zBHgQdpQXpOX?qI6?`T4*9NE!3pmQn};7P|EC3a3bz56WfnZBL!ll0^|ryU8abJ9r} zC=b(LsE-90;P^}JFk)Sjl>VKltN}wd#aVD(sf-BYe@Yhk@$#+bo{m=>epYpD1$l|Y zPfHpt)gv34w`5P_(#^E0tU7G2v9vR5jR(}Q)VpGqN_!l~(rQ%KX5drKucM&sPq0t?kq2uvg&egf2c-kHYAB z3A#EMq8yQwtryEWBK0%+t-?|2Ei5*n=Kr zAfbB^OCypA-s91d#A|pYjNGd*QcrrIi?o}uxSO(=^q!fqx;TxyI2E*O{-T9+lF^i0 z04qAUOEuZbTqO`MTPMjSOK4PcXD{Y&nYdKmS%cBm|Uc5H;wzePm-n7g3Z; z3fV^l&~5urb@1vDIt%VSluhaXPyO=Tz@HAo=>X4Wm`wdKnGR;byg!foq#u(}G?@4O z01s!=u|F7&!~P(Q@Py2QQ9PSO@oXGz#|B21809TC$`AJ>&!rjze@nJ7uA%X{%3T3K z)`IZ}Cu%0e!v4Xq@HbM_#WBL@70c=0W#2@4J?Kn#)No4Aax0VAksCLo)PNnvEVf75 z&N202_TU-|_znZN4c5v-ea|;M)SnDPJekGugpha|`O{ex4`zYy&!+KUM*4m<=;P2I z&!%w@%`gdY-yihHBQhOK=F_Oj(M_}rBS~XT`Yc;{NjG}Vk00TvGJ(s%1LwvJEeoDo zQ4+9dr4scd-&xUZ(^4C=O0~{5rO|7}$nVIeIDFRH=qm-{D~*#^#Z}u+UYQcy7Oy|E zzDl1jwjz?IbbBk<7z^A2uj~a4AYU>SwLrbj9E=?pKk6KEROT%6U69ok_?zgyRv#Xj zxyV_Pko*x+ZfV_WZh=2))orwZYeTuLYS}YIdN>ii7?TxCIT7^{-O)9js;OsZ+SmI# z$<*F(msyo>9~?5FoInDuL`j+oAJJ_f$9TJjs;q2|V#29({xTNxX6Jj#DNA2bE(PFg zx`JT01{6Y&S;4=C+Y+iZTB_zKQSECm)!U@+AhXQNa4x74@s`+2X<`UrP0~Eps=6Yp z>$Va2I$sbM^pcu2;4AzA>7LtwuTy-FX#$*a$PktO)q$jOC&*&sf?H)ow9XbejtMHd zN$34VF*ZMuCNYhTk01@wEAtxDb1k!vAxKrhQUw97^&(u8RzN?bFGxZJX?8C`d*}tQ zs03jipA<{V8#}1Q+Ae0%aZKK6a$7ZR%N@e<3Rl7S;M||%49{pn1tqmD+`)0&Ieq{0 zNhi)(CjSMS`n)_Wg_Cm0uT@{di)@%|Eu^n!9J%k`UC3=+Jz1CNsPw|BaCrZ7MN3-M zSD{^-s(h#M(#wofTdc^ziGC}Gni_O-i1@5iI7@kV{cVxxXlY$IYIZAJ_1V(1cAZ$5 zT*}onY9yBKq_RY~BDG%0&gpygv2)si(v_VP{fPW&C+Ph8^GSyjoJUK-i*+#vZ|KF_ zYq=_NI{c)tDNV|iDuk(qK`XpLIpHk1Cn)6!V|VM!MD|&#^8c-<1}9>jY3_|v-eQRA zz52pr83=|t=gFE2l7B~YE;@+LABbkWmsfiBL}4H3E2UEQ$v zOhwM&4eKQ_e?Hc8Y>N`T!8C2h+e0@Eqv;y%`50Moiq4MF&7V%uyPI?L?J>GMyT1PE z#VPvgmtT-~rR%Umj^D4peud7<2Jl1D`|onL(!U|(d1fu(?+x{CKHg-B%T6HaJtU#% z{;h2m37g@>o3E2ZZjQn%-=Z!^Drin1?OHvwUaC(GjdCr7noMIi+hstUB4(Nx;iR6+ zEDrQE>Ht}?G?Y;$P51R3CzbEo*3^$gkyPYV{k2C#)RQea>Y^3SGKtp3rEHxOuDi4^%ASpIxl*?j091HJi7E&Oen|=61{S7W{^-RXN{6 z>IjBz9pd7)7_t$q(`$8>B<#V&Dj}pxKFA$OMcGY@P=H0ZIo}#)yJt42S#S`8*-4ssuO7_)V+lSc8CoHI0hc#~^T5Q=)w8S*+&M>D@2lg)*C~U5<(;f8r zqsTFt(>wdi-GqaP;u(&J+3R>M*a{08K{m}f7&II#n!@K(fn>-Wu%N-sr7R<9tRSo0 za2T{4g%>#oMNjn+T^9L}Yje}LYOWdlN@jV^NhWnEIj$fgv14nN}AS*L2N#pLC z>sU#J(jZIT`#-}!s&+9jYnOb$t1Ka2!Xli2fh@Pa5qb5nf#%-~^CH2oeK`9qGQbe0P`)~e;0xuYJ{apq!`70 zt&2O!T24@|4&(M16>gF3JSw!_c~t#NS?_j>31GKXc{?U$wiu)kQu=lTx6NL-7BOw& zuxghD>QJoQ8~?D_o)KJkLA!&;{6GIg!Y$ltYeF6c_*}meBz?vozV1pP?7d??{ZWNgUs_ zpf8dpOO$%}=Jj=GJZ=WYH}R1MJpN8=O`%r`nc3(P6GHP8d(S-iV? zeJz`=Ik9rM^)AgOvlFt zY!1>my#gi@=J0Ch594qU`XnAlK|BcOBn~F=EDnP4cs3r9Xf~Qh;dm4T;Vc>iaX5%^ zKlG!4-^YW=aQGNP#s|<2T0zQ3Jb`NSHhIth>Jj5*RK=RqPb@dJFLWbV6RI^x4b1)~ zd2MnHkfj5(H)<><*XF@xN6NB?kN0hOirdntI&v@U_TswMN$GjxKD?Wvn``&9pr30)5Etvxft1 z>H@9rBb+CguG);li#fz`9&oBJIzu^>6q$|)9-2KVZATq5E52X;cwY6kELqip(46HF zX*dTeVGF*Q<9sOh2GC*HpQNRbsuXyzQ%ndiH`c6UKsZHcBsc2W{{-euC3R3|%W7w! zYASe@Ao^|Z4-&P%u=!ualKe$={O0zgh*AlLzUqFZPd&H|eYO_W^|bB~I7#=!cD@?Y zIa*F|42f_pTxqsDo!gUYq=6y{qbrSd=O~>1y~YXC>GXSAWFcdOTjh16HYZh&r5aQ#0u`_?<`DgqjL^M3LGdQVD;lYrot&~%zwBaCl`0*I z2V-teD!D2}XOg#sc=Qt5kT_cr^@t2fI8nghN=x+xD7)u6g^)Xm(Q|9)W7tUwXu3`k z>7+Fuu#u`%0)v}Wa9!OTVYSS_P5$-FwISbWPcdTYUrp5qaH4N3lI+&gJSc4jjQD!i zg^&bIx!C|k)FLjobWz4hIww#=$$??>>^HlQ%%N{n0z>o0sqbm|dgY1!=c~&Tl-)-s zh^#WPc|r3N?OmRfnJOn`Eh?!;)Y(Eio-3T0u$xOiz0{xC9By8k>oTZ^Yi?82r}46_}>07kL-PP+aEV3Jco51Vh;K z`HU;!DF70xGp|~)ms*V<^?0&95O%LqLM6I;y85j?^0QHc6Tz6=@5CU5NKz}SF*yX0 zXXXK8H%6}eC^5M|;2O%-5ty){$3b>q>p zQB3r=wod?sy>>}42q)sws;l0zC(lgO9gG#b2)jC}j+X2pRn?&3fw|V9lrr9#`LD~D zw?EGwDDf*8RpaoRY>1ZOe&74TLiqQvJuGy7^Ic+%RoyHFgFN|`Q5Nc6hNiB5&~8su z;d$C~c*DS})hWH>@feZ}N~Kt2768l@v$A>gXpfAeLPSp}j<_cNoq?4&@ zo2yM1N-g$Qn{M&-*Pm-@S`Vw>ZnpqysQe2UQMDPlO={I}t2wO+xsxqj8}~Oh-}n;e z5SVL^R2J#1#+@^RNY7k$EeZryYK!wv(j72XO!KDhP}q7a64P~Su+JR6>lT8c&Kt5~ z`KD9y8%AQ4%{h90b@rw^!_ggyRrqql1z8>2UNo$o4wV>?ODvG=r4I>M+!BS+cyju8 zVlw&L;*t`;?KS;7Q8<1JxG1BT-=aCeP#t(7mjG^O>Pw9qwuXQtH;0-Cf=rN641kcH zm8NJDKS5UR>p=&vIY=wA%9yI$py}2&cH0V?h58*WBcS@bT}1WRt~&wmceZymy1)O; zYY_cCFMPgs-ZK9ku6w>t|4DYdM)vo*^q+iBsN`<+Jjo8T5&{(x%jt@njWf%OswhAEAWgcEhqLjJd_Ev;iGxR95R~ zHcZOO2>Te6y5nO5HV0{%l6`OB1;&z`gtLf{xIe<9a5C!$K|C7HMr7j010062AH>n5 zKbr((6#DUSOeT|XHkkT2@}uFH%v&tUDniDN%xBoiwXM5jcX^i0oA`wSDEgwJV1hY)ZIJmLCxs1>v22|v zd86AGS0lBO1RbbG^w75iVYu=LVMzfGc35?Oq-G*%ly5Sj;&NKEp6F-5*GY`vLLsCf z+*3~VO?8}ZW-Q*Q!ObdKr~SH6=bR>5hi<9vdHYKT9#go?={-%zg1qDrPJjbDr?7QT zI(E?=xw6gbJtv*a^pA^f=2Y{FG4Wjy!Zr1Q?e{{}-}Z@lwOoEPw|#f2RbWh~#{#HD zyHBfBVD2s3h`P!MRPD*8xGd&b2ld36_0Dlr9qgURd~M&rrsXT_nP7OTb$rDA~|gRx2Bz00%^@YL4B2? z9FT+uMQP|yDKsp<_9s%hhymjP{Ie=FPGo~Zv{%YWRQU*5uU-@bcsdFvtN)5$+*?=Hg+DZ=RH z{IXyK`E@}=xl?H>NG|u!yQ|mm7524NernsK1kM*kJjS`@11MJenj0O{`JChx@dN~b z7k-6$mBf^#f-m4O-j)Dw;XZ~b@U7iNo4<^B(%D0$=(l{x+S%Z327qA^;PSTCq>@Cj z7C1%^>+=4#`~zpz#TC_Krgi~noj5%r2b*K;xnp>x1o#0p3Le=t2L6s4hr92+7D}iH zBNT1xP@30Qv_XDxSvgL&rKGM^$4_;->vJhwXIi)(pHyV+2`b>7lrq;su`;*Ynl}$aV!M)+=E+9J_%OUZ-ABX7CDZ{CCMoq3bQn} zE57=WLTUUono9c`nwaC{l#p1NCuWe8Xj^g z1WCQmF!ye-W%kYzYZqxO)e}KW_OSc(%Kc+J!?>+(>aFyCw66aSC&>&)cQ@=cTks#! zmwC?e+s{iFmT2psS=XR2SK%cDyXB`ohX4@a>4OrgK2{YhV+mVqt~2Q}o)<4MG|@B9 zHn@5m@^*uv9gs}X&4BN6fZr`2hcG9>DtQNPao!Z=U0Mn)I!jFFco0F)^Bb+|{M*VewT7&wx)^bO6N}38QK-r z3-*vo4QH(C1|ZM#T404N&;Jbo0RR7+>`S%)fCB&^kYNh| literal 0 HcmV?d00001 diff --git a/dependency/postgresql/6.0.17/helm-values.md b/dependency/postgresql/6.0.18/helm-values.md similarity index 100% rename from dependency/postgresql/6.0.17/helm-values.md rename to dependency/postgresql/6.0.18/helm-values.md diff --git a/dependency/postgresql/6.0.17/ix_values.yaml b/dependency/postgresql/6.0.18/ix_values.yaml similarity index 100% rename from dependency/postgresql/6.0.17/ix_values.yaml rename to dependency/postgresql/6.0.18/ix_values.yaml diff --git a/dependency/postgresql/6.0.17/questions.yaml b/dependency/postgresql/6.0.18/questions.yaml similarity index 100% rename from dependency/postgresql/6.0.17/questions.yaml rename to dependency/postgresql/6.0.18/questions.yaml diff --git a/dependency/postgresql/6.0.18/sec-scan.md b/dependency/postgresql/6.0.18/sec-scan.md new file mode 100644 index 0000000000..3657970c38 --- /dev/null +++ b/dependency/postgresql/6.0.18/sec-scan.md @@ -0,0 +1,1112 @@ +# Security Scan + +## Helm-Chart + +##### Scan Results + +``` +2021-12-03T19:49:25.561Z INFO Detected config files: 1 + +postgresql/templates/common.yaml (kubernetes) +============================================= +Tests: 41 (SUCCESSES: 28, FAILURES: 13, EXCEPTIONS: 0) +Failures: 13 (UNKNOWN: 0, LOW: 6, MEDIUM: 7, HIGH: 0, CRITICAL: 0) + ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +| TYPE | MISCONF ID | CHECK | SEVERITY | MESSAGE | ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +| Kubernetes Security Check | KSV003 | Default capabilities not dropped | LOW | Container 'RELEASE-NAME-postgresql' of | +| | | | | StatefulSet 'RELEASE-NAME-postgresql' | +| | | | | should add 'ALL' to | +| | | | | 'securityContext.capabilities.drop' | +| | | | | -->avd.aquasec.com/appshield/ksv003 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV012 | Runs as root user | MEDIUM | Container 'autopermissions' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-postgresql' should set | +| | | | | 'securityContext.runAsNonRoot' to true | +| | | | | -->avd.aquasec.com/appshield/ksv012 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV013 | Image tag ':latest' used | LOW | Container 'RELEASE-NAME-postgresql' of | +| | | | | StatefulSet 'RELEASE-NAME-postgresql' | +| | | | | should specify an image tag | +| | | | | -->avd.aquasec.com/appshield/ksv013 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | StatefulSet 'RELEASE-NAME-postgresql' | +| | | | | should specify an image tag | +| | | | | -->avd.aquasec.com/appshield/ksv013 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV014 | Root file system is not read-only | | Container 'RELEASE-NAME-postgresql' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-postgresql' should set | +| | | | | 'securityContext.readOnlyRootFilesystem' | +| | | | | to true | +| | | | | -->avd.aquasec.com/appshield/ksv014 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-postgresql' should set | +| | | | | 'securityContext.readOnlyRootFilesystem' | +| | | | | to true | +| | | | | -->avd.aquasec.com/appshield/ksv014 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV019 | Seccomp policies disabled | MEDIUM | Container 'RELEASE-NAME-postgresql' of | +| | | | | StatefulSet 'RELEASE-NAME-postgresql' | +| | | | | should specify a seccomp profile | +| | | | | -->avd.aquasec.com/appshield/ksv019 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | StatefulSet 'RELEASE-NAME-postgresql' | +| | | | | should specify a seccomp profile | +| | | | | -->avd.aquasec.com/appshield/ksv019 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV020 | Runs with low user ID | | Container 'RELEASE-NAME-postgresql' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-postgresql' should set | +| | | | | 'securityContext.runAsUser' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv020 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-postgresql' should set | +| | | | | 'securityContext.runAsUser' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv020 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV021 | Runs with low group ID | | Container 'RELEASE-NAME-postgresql' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-postgresql' should set | +| | | | | 'securityContext.runAsGroup' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv021 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-postgresql' should set | +| | | | | 'securityContext.runAsGroup' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv021 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV029 | A root primary or supplementary GID set | LOW | StatefulSet 'RELEASE-NAME-postgresql' should | +| | | | | set 'spec.securityContext.runAsGroup', | +| | | | | 'spec.securityContext.supplementalGroups[*]' | +| | | | | and 'spec.securityContext.fsGroup' | +| | | | | to integer greater than 0 | +| | | | | -->avd.aquasec.com/appshield/ksv029 | ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +``` + +## Containers + +##### Detected Containers + + tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c + tccr.io/truecharts/postgresql:v14.1.0@sha256:3b1df1487f9bd1bb3ee6a2b5e90e655b2ea5d9cdc3148826dc813bbcea3969c4 + +##### Scan Results + +**Container: tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c** + +``` +2021-12-03T19:49:26.640Z INFO Detected OS: alpine +2021-12-03T19:49:26.640Z INFO Detecting Alpine vulnerabilities... +2021-12-03T19:49:26.643Z INFO Number of language-specific files: 0 + +tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c (alpine 3.14.2) +========================================================================================================================= +Total: 22 (UNKNOWN: 0, LOW: 0, MEDIUM: 4, HIGH: 18, CRITICAL: 0) + ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +| busybox | CVE-2021-42378 | HIGH | 1.33.1-r3 | 1.33.1-r6 | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42378 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42379 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42379 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42380 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42380 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42381 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42381 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42382 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42382 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42383 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42383 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42384 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42384 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42385 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42385 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42386 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42386 | ++ +------------------+----------+ +---------------+---------------------------------------+ +| | CVE-2021-42374 | MEDIUM | | 1.33.1-r4 | busybox: out-of-bounds read | +| | | | | | in unlzma applet leads to | +| | | | | | information leak and denial... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42374 | ++ +------------------+ + +---------------+---------------------------------------+ +| | CVE-2021-42375 | | | 1.33.1-r5 | busybox: incorrect handling | +| | | | | | of a special element in | +| | | | | | ash applet leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42375 | ++------------+------------------+----------+ +---------------+---------------------------------------+ +| ssl_client | CVE-2021-42378 | HIGH | | 1.33.1-r6 | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42378 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42379 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42379 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42380 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42380 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42381 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42381 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42382 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42382 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42383 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42383 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42384 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42384 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42385 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42385 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42386 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42386 | ++ +------------------+----------+ +---------------+---------------------------------------+ +| | CVE-2021-42374 | MEDIUM | | 1.33.1-r4 | busybox: out-of-bounds read | +| | | | | | in unlzma applet leads to | +| | | | | | information leak and denial... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42374 | ++ +------------------+ + +---------------+---------------------------------------+ +| | CVE-2021-42375 | | | 1.33.1-r5 | busybox: incorrect handling | +| | | | | | of a special element in | +| | | | | | ash applet leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42375 | ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +``` + +**Container: tccr.io/truecharts/postgresql:v14.1.0@sha256:3b1df1487f9bd1bb3ee6a2b5e90e655b2ea5d9cdc3148826dc813bbcea3969c4** + +``` +2021-12-03T19:49:29.973Z INFO Detected OS: debian +2021-12-03T19:49:29.974Z INFO Detecting Debian vulnerabilities... +2021-12-03T19:49:29.991Z INFO Number of language-specific files: 2 +2021-12-03T19:49:29.991Z INFO Detecting gobinary vulnerabilities... +2021-12-03T19:49:29.991Z INFO Detecting jar vulnerabilities... + +tccr.io/truecharts/postgresql:v14.1.0@sha256:3b1df1487f9bd1bb3ee6a2b5e90e655b2ea5d9cdc3148826dc813bbcea3969c4 (debian 10.11) +============================================================================================================================ +Total: 190 (UNKNOWN: 0, LOW: 130, MEDIUM: 21, HIGH: 31, CRITICAL: 8) + ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| apt | CVE-2011-3374 | LOW | 1.8.2.3 | | It was found that apt-key in apt, | +| | | | | | all versions, do not correctly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| bash | CVE-2019-18276 | | 5.0-4 | | bash: when effective UID is not | +| | | | | | equal to its real UID the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-18276 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| bsdutils | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| coreutils | CVE-2016-2781 | | 8.30-3 | | coreutils: Non-privileged | +| | | | | | session can escape to the | +| | | | | | parent session in chroot | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-2781 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-18018 | | | | coreutils: race condition | +| | | | | | vulnerability in chown and chgrp | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-18018 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| curl | CVE-2021-22946 | HIGH | 7.64.0-4+deb10u2 | | curl: Requirement to use | +| | | | | | TLS not properly enforced | +| | | | | | for IMAP, POP3, and... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22946 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22947 | MEDIUM | | | curl: Server responses | +| | | | | | received before STARTTLS | +| | | | | | processed after TLS handshake | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22947 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22898 | LOW | | | curl: TELNET stack | +| | | | | | contents disclosure | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22898 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22922 | | | | curl: Content not matching hash | +| | | | | | in Metalink is not being discarded | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22923 | | | | curl: Metalink download | +| | | | | | sends credentials | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22924 | | | | curl: Bad connection reuse | +| | | | | | due to flawed path name checks | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22924 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| fdisk | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| gcc-8-base | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| gpgv | CVE-2019-14855 | LOW | 2.2.12-1+deb10u1 | | gnupg2: OpenPGP Key Certification | +| | | | | | Forgeries with SHA-1 | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-14855 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libapt-pkg5.0 | CVE-2011-3374 | | 1.8.2.3 | | It was found that apt-key in apt, | +| | | | | | all versions, do not correctly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libblkid1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libc-bin | CVE-2021-33574 | CRITICAL | 2.28-10 | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-35942 | | | | glibc: Arbitrary read in wordexp() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-35942 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2020-1751 | HIGH | | | glibc: array overflow in | +| | | | | | backtrace functions for powerpc | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1751 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-1752 | | | | glibc: use-after-free in glob() | +| | | | | | function when expanding ~user | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1752 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-3326 | | | | glibc: Assertion failure in | +| | | | | | ISO-2022-JP-3 gconv module | +| | | | | | related to combining characters | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-3326 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-25013 | MEDIUM | | | glibc: buffer over-read in | +| | | | | | iconv when processing invalid | +| | | | | | multi-byte input sequences in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-25013 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-10029 | | | | glibc: stack corruption | +| | | | | | from crafted input in cosl, | +| | | | | | sinl, sincosl, and tanl... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-10029 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-27618 | | | | glibc: iconv when processing | +| | | | | | invalid multi-byte input | +| | | | | | sequences fails to advance the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-27618 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2016-10228 | | | | glibc: iconv program can hang | +| | | | | | when invoked with the -c option | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-10228 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19126 | | | | glibc: LD_PREFER_MAP_32BIT_EXEC | +| | | | | | not ignored in setuid binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19126 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-6096 | | | | glibc: signed comparison | +| | | | | | vulnerability in the | +| | | | | | ARMv7 memcpy function | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-6096 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-27645 | | | | glibc: Use-after-free in | +| | | | | | addgetnetgrentX function | +| | | | | | in netgroupcache.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-27645 | ++------------------+------------------+----------+ +---------------+--------------------------------------------------------------+ +| libc-l10n | CVE-2021-33574 | CRITICAL | | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-35942 | | | | glibc: Arbitrary read in wordexp() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-35942 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2020-1751 | HIGH | | | glibc: array overflow in | +| | | | | | backtrace functions for powerpc | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1751 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-1752 | | | | glibc: use-after-free in glob() | +| | | | | | function when expanding ~user | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1752 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-3326 | | | | glibc: Assertion failure in | +| | | | | | ISO-2022-JP-3 gconv module | +| | | | | | related to combining characters | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-3326 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-25013 | MEDIUM | | | glibc: buffer over-read in | +| | | | | | iconv when processing invalid | +| | | | | | multi-byte input sequences in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-25013 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-10029 | | | | glibc: stack corruption | +| | | | | | from crafted input in cosl, | +| | | | | | sinl, sincosl, and tanl... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-10029 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-27618 | | | | glibc: iconv when processing | +| | | | | | invalid multi-byte input | +| | | | | | sequences fails to advance the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-27618 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2016-10228 | | | | glibc: iconv program can hang | +| | | | | | when invoked with the -c option | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-10228 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19126 | | | | glibc: LD_PREFER_MAP_32BIT_EXEC | +| | | | | | not ignored in setuid binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19126 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-6096 | | | | glibc: signed comparison | +| | | | | | vulnerability in the | +| | | | | | ARMv7 memcpy function | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-6096 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-27645 | | | | glibc: Use-after-free in | +| | | | | | addgetnetgrentX function | +| | | | | | in netgroupcache.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-27645 | ++------------------+------------------+----------+ +---------------+--------------------------------------------------------------+ +| libc6 | CVE-2021-33574 | CRITICAL | | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-35942 | | | | glibc: Arbitrary read in wordexp() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-35942 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2020-1751 | HIGH | | | glibc: array overflow in | +| | | | | | backtrace functions for powerpc | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1751 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-1752 | | | | glibc: use-after-free in glob() | +| | | | | | function when expanding ~user | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1752 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-3326 | | | | glibc: Assertion failure in | +| | | | | | ISO-2022-JP-3 gconv module | +| | | | | | related to combining characters | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-3326 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-25013 | MEDIUM | | | glibc: buffer over-read in | +| | | | | | iconv when processing invalid | +| | | | | | multi-byte input sequences in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-25013 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-10029 | | | | glibc: stack corruption | +| | | | | | from crafted input in cosl, | +| | | | | | sinl, sincosl, and tanl... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-10029 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-27618 | | | | glibc: iconv when processing | +| | | | | | invalid multi-byte input | +| | | | | | sequences fails to advance the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-27618 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2016-10228 | | | | glibc: iconv program can hang | +| | | | | | when invoked with the -c option | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-10228 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19126 | | | | glibc: LD_PREFER_MAP_32BIT_EXEC | +| | | | | | not ignored in setuid binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19126 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-6096 | | | | glibc: signed comparison | +| | | | | | vulnerability in the | +| | | | | | ARMv7 memcpy function | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-6096 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-27645 | | | | glibc: Use-after-free in | +| | | | | | addgetnetgrentX function | +| | | | | | in netgroupcache.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-27645 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libcurl4 | CVE-2021-22946 | HIGH | 7.64.0-4+deb10u2 | | curl: Requirement to use | +| | | | | | TLS not properly enforced | +| | | | | | for IMAP, POP3, and... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22946 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22947 | MEDIUM | | | curl: Server responses | +| | | | | | received before STARTTLS | +| | | | | | processed after TLS handshake | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22947 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22898 | LOW | | | curl: TELNET stack | +| | | | | | contents disclosure | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22898 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22922 | | | | curl: Content not matching hash | +| | | | | | in Metalink is not being discarded | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22923 | | | | curl: Metalink download | +| | | | | | sends credentials | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22924 | | | | curl: Bad connection reuse | +| | | | | | due to flawed path name checks | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22924 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libfdisk1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgcc1 | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libgcrypt20 | CVE-2021-33560 | | 1.8.4-5+deb10u1 | | libgcrypt: mishandles ElGamal | +| | | | | | encryption because it lacks | +| | | | | | exponent blinding to address a... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33560 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-13627 | MEDIUM | | | libgcrypt: ECDSA timing attack | +| | | | | | allowing private key leak | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-13627 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2018-6829 | LOW | | | libgcrypt: ElGamal implementation | +| | | | | | doesn't have semantic security due | +| | | | | | to incorrectly encoded plaintexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-6829 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgmp10 | CVE-2021-43618 | HIGH | 2:6.1.2+dfsg-4 | | gmp: Integer overflow and resultant | +| | | | | | buffer overflow via crafted input | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-43618 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgnutls30 | CVE-2011-3389 | LOW | 3.6.7-4+deb10u7 | | HTTPS: block-wise chosen-plaintext | +| | | | | | attack against SSL/TLS (BEAST) | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3389 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libgssapi-krb5-2 | CVE-2004-0971 | | 1.17-3+deb10u3 | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libidn2-0 | CVE-2019-12290 | HIGH | 2.0.5-1+deb10u1 | | GNU libidn2 before 2.2.0 | +| | | | | | fails to perform the roundtrip | +| | | | | | checks specified in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-12290 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libk5crypto3 | CVE-2004-0971 | LOW | 1.17-3+deb10u3 | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libkrb5-3 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libkrb5support0 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libldap-2.4-2 | CVE-2015-3276 | | 2.4.47+dfsg-3+deb10u6 | | openldap: incorrect multi-keyword | +| | | | | | mode cipherstring parsing | +| | | | | | -->avd.aquasec.com/nvd/cve-2015-3276 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-14159 | | | | openldap: Privilege escalation | +| | | | | | via PID file manipulation | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-14159 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-17740 | | | | openldap: | +| | | | | | contrib/slapd-modules/nops/nops.c | +| | | | | | attempts to free stack buffer | +| | | | | | allowing remote attackers to cause... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-17740 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-15719 | | | | openldap: Certificate | +| | | | | | validation incorrectly | +| | | | | | matches name against CN-ID | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-15719 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libldap-common | CVE-2015-3276 | | | | openldap: incorrect multi-keyword | +| | | | | | mode cipherstring parsing | +| | | | | | -->avd.aquasec.com/nvd/cve-2015-3276 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-14159 | | | | openldap: Privilege escalation | +| | | | | | via PID file manipulation | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-14159 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-17740 | | | | openldap: | +| | | | | | contrib/slapd-modules/nops/nops.c | +| | | | | | attempts to free stack buffer | +| | | | | | allowing remote attackers to cause... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-17740 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-15719 | | | | openldap: Certificate | +| | | | | | validation incorrectly | +| | | | | | matches name against CN-ID | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-15719 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| liblz4-1 | CVE-2019-17543 | | 1.8.3-1+deb10u1 | | lz4: heap-based buffer | +| | | | | | overflow in LZ4_write32 | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-17543 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libmount1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libncurses6 | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+ + + +---------------+ + +| libncursesw6 | | | | | | +| | | | | | | +| | | | | | | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libnghttp2-14 | CVE-2020-11080 | HIGH | 1.36.0-2+deb10u1 | | nghttp2: overly large SETTINGS | +| | | | | | frames can lead to DoS | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-11080 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libpcre3 | CVE-2020-14155 | MEDIUM | 2:8.39-12 | | pcre: Integer overflow when | +| | | | | | parsing callout numeric arguments | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-14155 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2017-11164 | LOW | | | pcre: OP_KETRMAX feature in the | +| | | | | | match function in pcre_exec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-11164 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-16231 | | | | pcre: self-recursive call | +| | | | | | in match() in pcre_exec.c | +| | | | | | leads to denial of service... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-16231 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-7245 | | | | pcre: stack-based buffer overflow | +| | | | | | write in pcre32_copy_substring | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-7245 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-7246 | | | | pcre: stack-based buffer overflow | +| | | | | | write in pcre32_copy_substring | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-7246 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20838 | | | | pcre: Buffer over-read in JIT | +| | | | | | when UTF is disabled and \X or... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20838 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libseccomp2 | CVE-2019-9893 | | 2.3.3-4 | | libseccomp: incorrect generation | +| | | | | | of syscall filters in libseccomp | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9893 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsepol1 | CVE-2021-36084 | | 2.8-1 | | libsepol: use-after-free in | +| | | | | | __cil_verify_classperms() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36084 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36085 | | | | libsepol: use-after-free in | +| | | | | | __cil_verify_classperms() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36085 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36086 | | | | libsepol: use-after-free in | +| | | | | | cil_reset_classpermission() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36086 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36087 | | | | libsepol: heap-based buffer | +| | | | | | overflow in ebitmap_match_any() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36087 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsmartcols1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libsqlite3-0 | CVE-2019-19603 | HIGH | 3.27.2-3+deb10u1 | | sqlite: mishandling of | +| | | | | | certain SELECT statements with | +| | | | | | non-existent VIEW can lead to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19603 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-19645 | MEDIUM | | | sqlite: infinite recursion via | +| | | | | | certain types of self-referential | +| | | | | | views in conjunction with... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19645 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19924 | | | | sqlite: incorrect | +| | | | | | sqlite3WindowRewrite() error | +| | | | | | handling leads to mishandling | +| | | | | | certain parser-tree rewriting | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19924 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13631 | | | | sqlite: Virtual table can be | +| | | | | | renamed into the name of one of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13631 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-19244 | LOW | | | sqlite: allows a crash | +| | | | | | if a sub-select uses both | +| | | | | | DISTINCT and window... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19244 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-11656 | | | | sqlite: use-after-free in the | +| | | | | | ALTER TABLE implementation | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-11656 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36690 | | | | ** DISPUTED ** A segmentation | +| | | | | | fault can occur in the | +| | | | | | sqlite3.exe command-line... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36690 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libssh2-1 | CVE-2019-13115 | HIGH | 1.8.0-2.1 | | libssh2: integer overflow in | +| | | | | | kex_method_diffie_hellman_group_exchange_sha256_key_exchange | +| | | | | | in kex.c leads to out-of-bounds write | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-13115 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-17498 | LOW | | | libssh2: integer overflow in | +| | | | | | SSH_MSG_DISCONNECT logic in packet.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-17498 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libssl1.1 | CVE-2007-6755 | | 1.1.1d-0+deb10u7 | | Dual_EC_DRBG: weak pseudo | +| | | | | | random number generator | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2010-0928 | | | | openssl: RSA authentication weakness | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libstdc++6 | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsystemd0 | CVE-2019-3843 | | 241-7~deb10u8 | | systemd: services with DynamicUser | +| | | | | | can create SUID/SGID binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3843 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-3844 | | | | systemd: services with DynamicUser | +| | | | | | can get new privileges and | +| | | | | | create SGID binaries... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3844 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2013-4392 | LOW | | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20386 | | | | systemd: memory leak in button_open() | +| | | | | | in login/logind-button.c when | +| | | | | | udev events are received... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20386 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13776 | | | | systemd: Mishandles numerical | +| | | | | | usernames beginning with decimal | +| | | | | | digits or 0x followed by... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13776 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libtasn1-6 | CVE-2018-1000654 | | 4.13-3 | | libtasn1: Infinite loop in | +| | | | | | _asn1_expand_object_id(ptree) | +| | | | | | leads to memory exhaustion | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-1000654 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libtinfo6 | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libudev1 | CVE-2019-3843 | HIGH | 241-7~deb10u8 | | systemd: services with DynamicUser | +| | | | | | can create SUID/SGID binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3843 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-3844 | | | | systemd: services with DynamicUser | +| | | | | | can get new privileges and | +| | | | | | create SGID binaries... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3844 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2013-4392 | LOW | | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20386 | | | | systemd: memory leak in button_open() | +| | | | | | in login/logind-button.c when | +| | | | | | udev events are received... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20386 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13776 | | | | systemd: Mishandles numerical | +| | | | | | usernames beginning with decimal | +| | | | | | digits or 0x followed by... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13776 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libuuid1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libxml2 | CVE-2017-16932 | HIGH | 2.9.4+dfsg1-7+deb10u2 | | libxml2: Infinite recursion | +| | | | | | in parameter entities | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-16932 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2016-9318 | MEDIUM | | | libxml2: XML External | +| | | | | | Entity vulnerability | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-9318 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libxslt1.1 | CVE-2015-9019 | LOW | 1.1.32-2.2~deb10u1 | | libxslt: math.random() in | +| | | | | | xslt uses unseeded randomness | +| | | | | | -->avd.aquasec.com/nvd/cve-2015-9019 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| locales | CVE-2021-33574 | CRITICAL | 2.28-10 | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-35942 | | | | glibc: Arbitrary read in wordexp() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-35942 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2020-1751 | HIGH | | | glibc: array overflow in | +| | | | | | backtrace functions for powerpc | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1751 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-1752 | | | | glibc: use-after-free in glob() | +| | | | | | function when expanding ~user | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1752 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-3326 | | | | glibc: Assertion failure in | +| | | | | | ISO-2022-JP-3 gconv module | +| | | | | | related to combining characters | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-3326 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-25013 | MEDIUM | | | glibc: buffer over-read in | +| | | | | | iconv when processing invalid | +| | | | | | multi-byte input sequences in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-25013 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-10029 | | | | glibc: stack corruption | +| | | | | | from crafted input in cosl, | +| | | | | | sinl, sincosl, and tanl... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-10029 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-27618 | | | | glibc: iconv when processing | +| | | | | | invalid multi-byte input | +| | | | | | sequences fails to advance the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-27618 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2016-10228 | | | | glibc: iconv program can hang | +| | | | | | when invoked with the -c option | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-10228 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19126 | | | | glibc: LD_PREFER_MAP_32BIT_EXEC | +| | | | | | not ignored in setuid binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19126 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-6096 | | | | glibc: signed comparison | +| | | | | | vulnerability in the | +| | | | | | ARMv7 memcpy function | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-6096 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-27645 | | | | glibc: Use-after-free in | +| | | | | | addgetnetgrentX function | +| | | | | | in netgroupcache.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-27645 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| login | CVE-2007-5686 | | 1:4.5-1.1 | | initscripts in rPath Linux 1 | +| | | | | | sets insecure permissions for | +| | | | | | the /var/log/btmp file,... | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | +| | | | | | conditions by copying and | +| | | | | | removing directory trees | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-7169 | | | | shadow-utils: newgidmap | +| | | | | | allows unprivileged user to | +| | | | | | drop supplementary groups | +| | | | | | potentially allowing privilege... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-7169 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19882 | | | | shadow-utils: local users can | +| | | | | | obtain root access because setuid | +| | | | | | programs are misconfigured... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| mount | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| ncurses-base | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| openssl | CVE-2007-6755 | | 1.1.1d-0+deb10u7 | | Dual_EC_DRBG: weak pseudo | +| | | | | | random number generator | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2010-0928 | | | | openssl: RSA authentication weakness | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| passwd | CVE-2007-5686 | | 1:4.5-1.1 | | initscripts in rPath Linux 1 | +| | | | | | sets insecure permissions for | +| | | | | | the /var/log/btmp file,... | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | +| | | | | | conditions by copying and | +| | | | | | removing directory trees | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-7169 | | | | shadow-utils: newgidmap | +| | | | | | allows unprivileged user to | +| | | | | | drop supplementary groups | +| | | | | | potentially allowing privilege... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-7169 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19882 | | | | shadow-utils: local users can | +| | | | | | obtain root access because setuid | +| | | | | | programs are misconfigured... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| perl-base | CVE-2020-16156 | MEDIUM | 5.28.1-6+deb10u1 | | [Signature Verification Bypass] | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-16156 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2011-4116 | LOW | | | perl: File::Temp insecure | +| | | | | | temporary file handling | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-4116 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| tar | CVE-2005-2541 | | 1.30+dfsg-6 | | tar: does not properly warn the user | +| | | | | | when extracting setuid or setgid... | +| | | | | | -->avd.aquasec.com/nvd/cve-2005-2541 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9923 | | | | tar: null-pointer dereference | +| | | | | | in pax_decode_header in sparse.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-20193 | | | | tar: Memory leak in | +| | | | | | read_header() in list.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-20193 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| util-linux | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ + +Java (jar) +========== +Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0) + + +opt/bitnami/common/bin/gosu (gobinary) +====================================== +Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0) + +``` + diff --git a/dependency/postgresql/6.0.17/templates/backup-postgres-config.yaml b/dependency/postgresql/6.0.18/templates/backup-postgres-config.yaml similarity index 100% rename from dependency/postgresql/6.0.17/templates/backup-postgres-config.yaml rename to dependency/postgresql/6.0.18/templates/backup-postgres-config.yaml diff --git a/dependency/postgresql/6.0.17/templates/common.yaml b/dependency/postgresql/6.0.18/templates/common.yaml similarity index 100% rename from dependency/postgresql/6.0.17/templates/common.yaml rename to dependency/postgresql/6.0.18/templates/common.yaml diff --git a/dependency/postgresql/6.0.17/templates/secret.yaml b/dependency/postgresql/6.0.18/templates/secret.yaml similarity index 100% rename from dependency/postgresql/6.0.17/templates/secret.yaml rename to dependency/postgresql/6.0.18/templates/secret.yaml diff --git a/dependency/postgresql/6.0.17/templates/upgrade-backup-postgres-hook.yaml b/dependency/postgresql/6.0.18/templates/upgrade-backup-postgres-hook.yaml similarity index 100% rename from dependency/postgresql/6.0.17/templates/upgrade-backup-postgres-hook.yaml rename to dependency/postgresql/6.0.18/templates/upgrade-backup-postgres-hook.yaml diff --git a/dependency/postgresql/6.0.17/values.yaml b/dependency/postgresql/6.0.18/values.yaml similarity index 100% rename from dependency/postgresql/6.0.17/values.yaml rename to dependency/postgresql/6.0.18/values.yaml diff --git a/dependency/promtail/1.0.5/Chart.lock b/dependency/promtail/1.0.5/Chart.lock deleted file mode 100644 index d9a3937515..0000000000 --- a/dependency/promtail/1.0.5/Chart.lock +++ /dev/null @@ -1,6 +0,0 @@ -dependencies: -- name: common - repository: https://truecharts.org - version: 8.9.7 -digest: sha256:fcde72accd942e87af2e3e43b8743053fca3f604d214556f2357bd39ca43d3dd -generated: "2021-12-03T14:13:32.70150928Z" diff --git a/dependency/promtail/1.0.5/charts/common-8.9.7.tgz b/dependency/promtail/1.0.5/charts/common-8.9.7.tgz deleted file mode 100644 index d624e7df28b2e6a9f2fbdbe515f1463795197ed7..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 37337 zcmV)kK%l=LiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0POw!ciT3yFplrf`YZ4->9=;D=+&|v>u&bBu9LPon>aqP(|+&W zdrtz9kc2fwvH&SZ>*jy|9J~?$L5lKQ)2(@S8;b-617I+i84PB^bh%8E{>cK8ytjtS z_%C<=3dAz#`8xI_dZ4IA0XgUYIWXIVn)c%k*KE(SA-4>MtS95$VhKf)qPAWDO}0 za0PQnXitDDC?a8+8^hJw->|S@Sr#74!-RyAx?6L6GS*Lw1haG0G!Oy|11IbQZnxVkU-X7V*mgsNL-@t zR1n1_2KhQe6NO%9rEq!PJL(;F9%}yO`d`7gK=hs%K;!x!4o0Jck-Pp6_x2vw|3f@a zK(`CtWhnXi>=e)pg?NTT5T?lt&kF+CTJJmo{~4hfEaIFMK1T>lQJh|N(hMc5EP1_z zb2RAyz+s(p7;BI(5Re5x7-N*=0JDM}00_!biu07LCm_lYp=r{WMZ2PCTVNoEY!&8k zuGrOo(ghstA55a*;dn4UobDe+`@_S%@o>DiH`<5M;oi~yXgD|+?+r%#=wN?%Fog#L zc(iwjj`oH}(R4aK7>$nhT4RtEaSXCF#^JgH_^&hmV**~!PSgC1Aj&$_;n04;1pQb* z5^X!wSD2tVt5`qSC2Zd~&le%-;k1AGoOWT}Wqi7?fwll=j`V8S8}vql(Qt4y9IFA} zJ3Knt8y~@=>EI|lcz!gSg=oAF$03SP7#{BJ!`XN?4UYyxv^R{7!e|l@E zXb_G^aBpxpJ&K0m6rv#<4aTFx19UWgK069gyY{ytUKnRMLE8?ss8v7A#{z205f;!k z!EwiR+#9KJ9S@H7_m0MJI)&(HaEOk^)8TA1i$-V^p@VQd8x4kVe|mH{81EnMjmCQ+ ze2%8WgJ}9ZjHZWPhHEvw9k)$sJ|~F&x;?+uH5)i?3EelmQ=BJoiTh=-HbBg=9gcg$ zl4PgR3{8il>Hh3FM9(7>&BD>_Fq{sb!@(4epC9cXh2sc@;qYj9crZE|!O?6siw1BC z!w5~ivs!7r?eKQyaXN)@IW8y%FahZb5rQMcH88==(F}hE>5TuH6>-e84XLBNlcg;v ztQ<;mOb{;vA~eGZ=92|90JA2h=O@Q+UQNIZ#uRlrOcf((93!IPq6AK3Bp0dr+Uo%M zA)0XI%*CQC3Yb>Zzur+c~#Cr&10Fxxmp@5zy9FMY2-vHUyZFPWI>kX#)1pMQF1$?Os(sYUBz&`;1 zaK%cz<$s#E+#Z7oxc*YpyBJPUybV}U;kJFcVY6mOPK)If5k|-nqL`ovWNAdjl8!ZL2&l;B1V#wZoWLB-*SzQtDFH7vGV~ei1CB&b1Z}-XAwe)lU`KMPT>z5^yiem8 zC-VRgCc<|h-0?&crD}iHehH$<^ll!%c*Kity4FHBv%Xtl)p5$crRv@0U>CG zDNYlxz?5-y5aT7z`K*f%KZ*Bm*y{<{>vXWST?nRH?h5u6VV5cyzx}?JCCg1t@j^** z%Oy;r9lEPou-e}kHF5(|M;78MstN*+;tmCX6|3?xh|<>VVlqyVN|?05#C0E8)+qXaPq8-ar2WNryfAV5AII8wBPrTWx3QmkVyv7GAWHZ*gEX|5o@Bzx?#vEMXe8D>{ zrNDJsNJV(frssPE;1%T39pn-#MW(#SSQbh`vd$QFOxH>ncqW(_XSR$LqZyMBnLNY< zx+k2YChKV$tpx%w3|T+q_#1~hV1{GV>j-4EuzhxXe*Vk5_b(@4x$b6=(yNq2vb%2~ zP5??)n4}4p3RjR|PAffdA=#s%5Z1%=ptMO0E_@vKag~(e*@6#^*Sh7@g6*3Dx$87a3_L4f>Io>;LjY}kUIYuwjtKZ_H{}&1x5Y&QglH zSsHb5GE2!)lx4mAnW4rfLiP3Z-OE=WPmkZenn;y!hEW{7M>F+XzBz;WV#3!!FG(ZB zMxoPDv#R7jVJ3PDGhScRRtKf*OLqygt`rTsa=lfGir2bW7o2cL1u}wDg7Y;9V@QRt z9pTvw5k}HEW5=Ahr@}}>!v%^8CLpSMC#>2jZvs34bWL-#?6SUeLxOW0!dOY1ahzUJ zwdR>b0VT66p>kY1`lkj9uP)i-b|aX~5lIW$EfJ}Mjy|&q#W`4{lnbDY>~ppOsuxOY z`DK9;DdezEr-I9aCA>sTokN0GF%>YOis7cz}y=Imp_n2EthXjc~OKN0&5PUhWwfz<2Wj@TZ~#m_f5xuiD1oWO+X z5CuhCD_}H8QCRSGmnJ#-ocBVQ!6}Y$&J>cg$SKpEr5^C(hu3UoE=Yk+kIwo;KV<#){5Vy;n?GhQc{W17IU?nsUT-wa}RnYfg+=@pUl9 zGZe1F7}fPm7ci|6()bROHNXkZPgH5jg=PRLh%k3%f@BSFj+V3sUcqo-msYy&0i-=AtezaJ@6BX4Y34-P2=^oi|yY)8Jr zbiuizoc(oL5I#u?_?d<+cwV^xC2Wdvst)?6h-*>ciU|Wu-4FtSmQhMX?LG$=CuaeF zFHTi1PR_~(Ue5poKV4j$$rdmbyj*F5e7UmkefFPoy&>(2E@v=bs5-u;`++nYGa*v_ z(iR~$E<(ywL`_Wv%r&c8qt=t4UeBcP!_-g|flq2A`Aj?$Xo@x#X&g}nQ67`2jmQhT zj&cCUd?Ez`4hhCDQ4H7TC`^-xPQY*=zh;PFzUw&ebG$@pk?Rlp^8F0rxFG0aK@epK zvoEEsJ%ac~w62$#pV;;1d!cp>{gK?aA$NP&?wH>Fz`r(vKNow#*5oet5j_jF-idVYUC=-r&V> zf56lvR+p0z!x9u3m3W=kVA z-q^zVw-gv)!4gpl=h~tMt_aR^l=M_{LQZTF6A9wxn-CcvyD-CjrmMy&jJiyXFGz@J zpNWvGVgHF%5W2%%rf^6sxP3}9jMquTR9gfV=~erVlxJbeDje1MuY6+a)F*EA`1Ave z<0%X;FVZ*ZoW4t55t5Qmztb?NQ*PP#OUWhyPD)A>)_#y6BO@w zbKH5WXO;cJ)gKMrN3p4`j!>wwUdR(`pMJUl@UaI4sZ+ry5(a;UCgpN*T1m}2} z#c1bE3Zp5EVG<&;`wXz3-^-uRl)dxy*)wpOM(8Xhxv`P!ufnY2^;WC#?W*56r_#tB7i086-LgiX+|1tx+OdQbK}4rez+>qc&8^<9#n8hR63C)1T}(tssRpCC&~ z4vb?J$r?6^6s%e~K)$ww`L9JI1`py;Z_I!gPd6A)t1c+9sANSO*-@sbx`rQZ;7NQe zHZUXu&JB5z81Y($RKt`kX_tdYxW{8zCnfpBDa%$l>qnl3Y1}iuofjF0VVov^Vp931 zXX4*;_Q%D^nG`!dygd74Ru=+1`y@sA3|=JwGJT-*vq>T_M|sI7agrm#Na@4-H~cH- zs^zhS(R+dLghO|_q|KToN968KysM6`B+l$C_Q`uKj(Had80QlFOV6I&PbKJ2Y{sOI zI*Oz+U`&JF5pbeiONGVM&=7D!a|9!h&Wv_g=}#GNg3m^e&9FSPXCoBJrKe8(shB!* z^WjQKiF=8)OApqa6S)h>vuY)Tn7am_CAC{vI}kNT>b9pu`ap<5=EtP0gXKz7m`*BU zl=Qb?%x<$3#ckX5987#R7?%X@NK60t-;U90t#BvHw2|)0qPG+8B%FHjPI;%a7w^;% zSnO2$^)&KQS@pK^odi?IOI0iPF5l_FZ4&VGacipFvSFgVa=;QtQG5jnGRN}={24`W z*%!n=Rq*7roz6sUQAY8YoIo_gm*$tt=TsaJXD~#{brKeN$~N~93T2BQe{-KQ3SeT0 zS*1Uc36n7am}Q9Ra|}NFEt@Xe((XfLP4Q8-cgCjy$Ln%jtrJ*{Yq>6VD9X6A<*tPe z!!a##z+F$|nfy|@#MyUuKX}WXL}Z z&P43DUFi?ki_;LsrOe_YmBD;bBE>K`R$XE0y%Ks%Ixwp{nEcfx|m_lk%~ zuS~!*VvK;ly#T}BaNHeKAYE|1{fuAVvpyO|oJvb-)3S^=V)xUgwUQKAGY%BtA=Vl) z7m(XQHq;kKoVs{(?vhIne4pkE>AuIkBpG`Yl*MKsBPn-jh4$=-`N(5xa0BfeD9G2M znr{mnApL6uee%Dq zEpA*m*L3Wv)@@C&>57kC*C#1(0J<26U=D!_@Z|7g?Q72Jv4WPkF-y}4m_pJ-X}6}b zmUAe*sA?RLN__MYn{=G5;A)*&^Mf|pYdpGcO%P^FtkZRLai>Bizm#Va%h}H-lH~sl z?Zmp%v0hkCf9piN>LeM51(kEf38Ta;MrS{tJd=O^boLBntMC~>%Pe2N#N?UW>zftI=vep3!h}6f0Cdc5M z>N|BB{x95Qkf&mw5(oZiTr81N*6g!bHNd9J`KSJ089E=+*~ff=K8osp`}9l}m2Tjy zm!cIBt;r)MBqCvb^FCXtB?*=#T| zRU;O8s&VO~``78-~#nn}U z3Vsm+pwF0c3Jqh3m(R*cm+mO~J6m{`c4D0Ls6rmbxhJ8DEVWJ$l?ztc#<^cH5mB1>9Y?)%*i?3DG3DxmL`y6# zl4fu&9m*}Xc+Bq@yiLuJCyGJl4(YxvO^m4&>A9RNuE#CY24fgx3wCAtg?Doo>0cWnaRBN+WcaE{(F(Y5UU#R35+m}5HAII3Q- zjR(>4D4}+2DE=3kfTN?MAF&25j0!1NVgyApCM)he{Con6EKR_t1rx@KgiS7t<4=-t zv4ZaH;}flysLe-F2AhlpBurk(uMkQAj7>N8jxoyH46+_s-d=>sZnJ+MLm`^jB9B(! z#O9|kce#FFRQ4ETmMFpnw_XO~zJ5^dW)S4dY(~M(`{TFWDGV>!Jn5SiyK2QqpxXOP zOtAvYW}4Nd`pie}N&GusRia^=)$l{9bNnwPK7P+z|5=RKCon@WXUk+RZ^_H?c*Z$Y z2otq;mPd8?Ut;|&IXEDDBd4IGF&U-B9dGpv@!%+ zb-c)xkqnU~rj+aU!k0f>q*sXu1hH7Af*dHy&&q-o#nGcpOS!$JF0CEz*|dC8n16EV zJ_wi^yj;ID`*Utyfmc;8))}{+Ff}4vpzu<;tLJ1bwQ?I*g%z79I%TSQM;a!y z5)EO5XB1LS6R$5moXT#M5orFv^n2gr>z#3Vw7z+|W#pcAb1e#Qo@m*6%UO1zKF)9* zgNjN9rJW)97%fe^tTCPz>o`0-^zu46TjKP!I$8XE=}mNr))P=rMD*bk&^|fKb$3qE zBI_^LU0tNJ!Q^cOs+Lq%9tM6gJS}h%;T4Vw7_*tV6lMn`B8Jc$CL!u|#0Ycaxr&lT zWuz;9X3c|EnVKVe%U_yC;J~s12mHIR+;Y|F$rJF70Df!$VoY-*j4D&UimcL#@mibV z^94E=e{a$L=tnGmS!W#K0>P{+-*vf@pB(j5Mi;^Y&jvh96PgoAn3Y2~UO~E?@0-*spWzDwaWa6u=qx=3g5)iGYt=hf8XMnrf{J zlc)=m9Cy{5-H!UpgJhm&X`Ig2=NVg)C%42@-L2$TD#g7@)j*f>7P{qNFhQZNd8&iA zE#c?$OLR2>f5l0T=7{`_lZUGKceYmlN^^pfx%hImK*@)M!W`2Xk5%P-=SSk@wEb0Z z>c2UmaB@Bfc^bRM3-vcA8LKz7|))bD{DTonV$!iY$emx`k5T^xY zki$ia4NoDqhxEj)d>GRd;Dqf3{D#MZF?=d~i6|gN!c=G@7@Lgi7~?#T5d*Cec?M_^ zE?DDlae~?O_SB(pls5|z*upm*?bSY&RaAMWI_Ob(*-B9^qI5>q(u(?krsq0`BW_CNuRIY zo{@u#XE96*(k)}jFAo zbzQitVK6~f+Mra7TVdBui@EY$R}%lBB|yw02QyoGOTvQ5wALaO0|en_*Ac9p{Ot1scgK0j%ROBscoyfgPC?raAhv{39lmIp8NIf8V1sB z_KY&2Tr~g|DUzf*5+%>VWl|20702dyFj+T*t~KFnv*&%V2{ZHFO}K?o|6ZAfHFid$ zGQkX&{{SR&j-kHu#WXg|NKe_Dy4)%vLV`z_yRJjiRV+^B9r`>484-qR z7|&Cq%`@FDEHr=Vf+S50F5n_ydDq_;clbC#S&(j3fL-^g}R8z*iHr)I-?pUG&g9$3 zAx7(>H5Z3h%F$KY1?7TdZ~VOxk$8nnk3MHSIR{o|-%KRZ(>xe~PdNHWDEy>&v4zsP zOp&03KIami$qviF6{R1wyFv6e?#On)9?ozKYS&K2PH-0`q?+MXs?57AGy%iW-e_pN z^nu6pv1O}MPamK6nOIFUZPTPzy!@EO$iTf5S7Ae!2D50sQ`Ni!@;4T10&=@ zg$@!Oy`Md$O#y@6Ib{sM}t7t-bWB zZgXxYlj$VJr9f87WN|tdW*@r1nGP=yr<*Jj2Bm z&KF$fI7_2DTN?_8rnRB*ybm=(1Ha3~QKmk>$>MMlgx{Bq;mMPZj3!IVqc;&um*2f% zLYZiiVKCz++$2{)T_TjBgo$hzQ3guJ_AgTy>jLYovpjp#DymyYTKbBnAwdxh6wQZr zst_JS2qpkQx|YnI(^Zn@NM6bO@czxYObux42y6;oe$R-vAhB`a_8vu;Zr?4!sL(D>RB3Uq!C){r z7?1hCgTcW4ceHn~|Cix-xIf%G*c%-l{$(&4jP?hA0fRg4tM@5r4#{5zw{FYr+#lq* zzV3h5;roORw7}ICc{VzY3zQL@hzK2vGM{diinv&UIHW(7j6?)UnHRQ9u4+pxz0P<2 zFJC&>*V?Bj5CwXR3BL7E1rSg&qAs&a`W~iTapDu(Wi?H@;kee7b^LthAK|i zRf5+5^z52Kxouzh%a=~K+wH&%OJ!#Q4D9-=(G=xy*tx_>Gyyd$s;y+oYIPb>7c=plVe}hFFyrw#7_+J>8a;37g7;3Q=L5jPI?HH(HI(OD4BPALn*Nt= zQcQW1qX2+`yKkbz$b#RrCBqzR4!}yATm!`@V}Ke;0A`NmIsj!E1HhgHfO3LEbC~@^ z*POOl4M$fRcHYb5bS28mpQU0glN@G+ej^$>Xt1G?A$oO^KO7DBob|uIcd+-k{vYDu>;FAp$xf&^y%w#=@U*_j-s*(~bmbDP|ChR|h<{8Y-ElK?zzl*<`E~|1F*>|JTv)9*X~u zMhC9^w?7_?9{K-6JdO4r#?)*J5I4ti0y)>$>pWH;d78A1*+-LI;5DvDGleiwXbk)& zlvd`OTi8}q1@38VY((l3nGE-6@ya~?FSv~BVQJoIx&qV)phl6Ny3*rCvk6Hv5T}7h zJ)Q=Z%D6<32z>Vwrg=)%GQfwS!W-@R$_l_bT^2`zr#XLPOik0|^i@;1yj< z@CLyEP#NyJ=6plmW5ZxK`P`m#YwWW$Ird_Z&!^K20&5!gwP z0j~tITltd4F;3e`}ezi_l=Xtu>A~F`x&Np;7D4W== zj5E;n1(k|Zm+NZ-trp}+OvHg}mf&N6er@XMPD((J7G#bhb~UsNgSRmBZD&(d>SdNj=Y}bvv9m_m z8l&BY@}dUAT`I%1mOFzD##CERDrSz`89B^7yG3W%KNsr^NwLp(G10sFn8ao{0W)b& z3371?Bblo&cY^5EvV6l$)-ndj8^E4eN_bXd4KOb&@Q{AJG603SRn)OAu{o7>^!blx zQI{B&u>cz}V_jB}@B$alRhICW!nP>wMQ@cQ?eKCV9&9mes%rZ|Q#IP5=3YAA0yR~& zJ!-1P2GqVUa2%EXnM;_NsQB!^%6ZY;+6JHoXzB0X>@>a#Z3pzKk2()havX+fk>pO< zneR}?H&8Qxe)W~*G#EHXto3@lS+Ft+Kzf%l0b)~wmQzFa@-MPksb4C7R? zKu`0+WK@ObS=IGRwwI+OhjA@dRT17+ODdiJ_qPam>y8p31a`pf5-rghse~@RZ_#ZHi zjs4;0GS$tUI)Vxz*JC2)l<8Q8O)D_}4vUSr`5(&EU2ou&0GUL7yXpHLClOBOkF&U4GbD|X3i#cu@w=1&Hthd{{egS_J3br^ANT)k5P6!F&h*U8U@ z?MA`5NxTnLw zO+?w`?Rl<9a+9-X11-AFo*Rg<;_Rt$xF=sv1NBOiO|G7*p6Tl84C(LZ>ZyD1=;?Wr zr*{8`LeaVlF<_JYe^@#HIT(*0?|(nYW61xee!aCGU^_2VZFhEwp3JD-tT$LD0o7@fA8XfROmG^h*lfJEo>mvH?^prxtpCz8;*NBH4eNirHyXO~|KY*G zpy?($z403}$-Ez4%$8V@CySgw7obyiFryrRM9h zx;vujvWSu5Ab5{p^b5f`ddEF{cENAp*CI8;z?5P8EzovafAuh~4d*4!J&ONjwRd!M z^dk;@t@s>21vFtE3cwEV`6RK44CZke9$R(xmwT}<)6%Ttm6g*$%VxSrAfXxz5A ziAJzV{vQpU_#dO;Xngo6|3AbdvMWq$LCj39o zx4b#_f90Nz#|x2M#{GD^6t;mHf+ z;@i`u#qKpD>5^}e*2NbCre)vM_F$u@RpbKRXxAL13c!kCwf`M>EpZoz8dkDnWpzc% zEMHr_mnWocy6(U%Gc1+XaOW043BT$z>g$0qr?Q^d($!pwU-tCL5?ggZ__dwucv>~H zC_y(*q3NhBuispvwLVOdlpBB`Cj|;Xz>|)j!F&;bpvzwKOiMvn&^%oRAXpi=Nep(I zhAgVC0cFiMhN*FN)tzGa57aiosTr{5!>hpM2_679J+EqcT2*beNWATCHyi4raNF6a z3m|gs4R5p&PTgQOh8wEPhJ?`n4!lG;B1^{8`Q12?`^!2f{r`zn=K8o)kkKksb{r#& zj@e8b3vbr}$+L>Lp-Fyk$ojx>G~r3z;^Q;$bdl2Bj2$JR^L*R2XM8(Cqu`Z$BAf7F z*Pu>Gt)ee_JOYMCpgXf$bCA|{Eo=<$)U+0i;7+$#3w3}0-g3~N^=T>pOZnnv2LhY? ze+~~1T={=Ec$EJiLQfK?DorZEtsez-Gku*=kG@gKqld}#ab86B_J!n>vA6|(l#{MpKLD21T$$xMfvRcy4Wmfz+u?Y3LGEeolu)&76WD*+q!|Kad(&&~fm9z5p%e2_=)|L-!C{Csu_ zLV_6CU>H+rW}$lb7a`xa*!?R;q3#2${&JpcVCgxKy+h>a_Bd1!H+86SN62x|6-%QKmNbx>VJdr=<)u?gFKr5OLO)PK{G^9 z65?bI<~T2fn_Wi<1USi4;{ZjN&9^w+@mt&iEA3u6JwW zUz_;Pe;vBc+0QQ4#^`6)uuXnj+x!3s zVFsr-#yM6FQ!t8@msA&=zPk8${POMV)6N$5K_mR-AJICfspqb2gXVbLzh#gSFiav5 zp`t&%?(x~o|8=Ksd>Lc|{~sLgd+a}t_dg!w zsq_CbBl$k0^H&+vx8C)u5-Qm5_@%pWFJ521ZSJ0ZzRIy_^!VCJ7_VFZD(*9v|73L4 z`;!00<6&j}A3Vl?e~?GZe>$qTnC~rZzB;hD5k9+q0sF#`*P3ikIK;OwyZJq>u4>S- z*=}XARqblj*Kiq6z;EJ2hb!(%0$k*I_A%yOe;+e`ns_vLK9C>hBn$12;tQ8`&HErT z93#=me!k55`a5sfe|yXw-8j9(N*)ShjFMadFGy_XNp-Jkgal?tF8#_4i~9EFw7l!^ z&vg1x&r;91+K|H>hcvc*7aZa=gz+M!xqji=6P^~OH;M^x%HN!*oEZ;r?PEA<<^ZZtBjeQv~d)nhyJi$2Q3l1W-pK~QmQQJqo6 zB&3SFNIgv3aisc*AQ-(%;`IdN#0+(JL(iNRzBrBZ`^T|={Mnz)`@f#l`?CKG5BCn; z{eSN<{@=qqb@m@K$<#yIf69DQTd0qI`;V#7-o5?DC+6I<{iht8t#ABkwY>hWUsy05E#&Q5>t7yfRny>90Jw{-q#VgKJ7RrJ5X z=<)u?gFKD?KZ1Dg$nnR!=(_yyO&a)aVb^<<7jO8~t^ZY)^gr_KmG>V1aX1(a-1v{9 z!_njVe~70}{*%d1A5!$=2~Z8GZ=1xb*E;!SkY*?mxm0hQinRm*`~r$@>AuiDQ)|O4jgTB0l|qV;SlC&uZ>|e4M9=|I202|0u}x-t_E4Z^jCiL9sbHs8_s^MQf-cYtqQjb_OONHw|aB_U*{j+zI*xM&8sa=joIk^ zF%OIx{oK`Au^ff_KPIj@WMJ)I;y6CP!g;u`Tl?Yl`&Yjlzj)y@%7niY-1*xy}st+mW*OM@{LQ) zlg^zl17*Cp2TnHTRrR-0PGk6!~Wx&Rp2ex1G{b??_}@~ zJcEDWjQ;Q@qhC*@DFHh^^c34IC?b5h?>3jqAf;C+iNwgDWc33{m%>*;$Z;}BDA=5t z)3M1a9&aFD^@lLL9!x)-(xB0!3rJAZ(*@Nq3S`9B`ir8D&BK}|Z7HevUoc@u)okPM zz{a6v;|4pB zQ?89A$f>f8EolGXxnm6yZ*FZ5DwUG+S7*oXk1yW6w=4$#5j>iVswSg9q|NB>uiv~m z|K;_?$xqe{b2q?R^U0W-Pi(upY)pG0(oUv;?Dw~P9T{}npfUtz4A@ZZAhPIJGiBoj{f0LgM^MI5XAAe(K_ zUH4AITbQZZB`Bj*CC6;fzQj<nnTBrf0N%|1hl8vNgwYw`lj z4I8LR0ah`%>I4;{x?^U2D&x|gm)V-@=F%M@2cODF+20#R%!5L8;5>y|wBXKqr8Sko zj18p=kEitTT=2J3*U8KudU)kM#FZpq2k7puHK&-K=WrT(*Pdzn(pl+L1$mJ{!C6Mp z6=8!yGbm^yko^pRebLfdHz%wsr9e;vs?@yk=k7PGPjyhLDb+QT!Jkp|7DrKxt{@Q{ zA@JiSZgBqKR#5BK@hEWsi!9LsP^C?aNw5~JB-9*w710-#<>49N1o@wwCM#v#!K+{w zTozMA5|kqvk|+SXHcq8=uO&JfmD@I4%3-!l=1k+VZU)_HS$bz=x#eUm+s(tWX$qFN z82$S8YX^Rd=Bi`va9Ypw@3OZ`>xE{eo5sseu~k@lEZD3xEuw}7sjso!N`GB-#^aOV zWrJlM$q0oKBt@qh70BFszd8k|qTU2KfoO&=b)QRW>fy9c(jw<+y>hb7Qk>*8FkIiL z@xe?hb%mzZUUEo2M;$&urez+_%=~)bD>5_cL~- zTup5rSHksau9wF~YS?O30J?xDF`XD0`!x_rxeWehvOpF_lRsQMav+Ix@q@l@|UT4AAyacMP{GqCauznHPIb)K8nGYN}4&&p}#`De}WiN=wL z$W3d^p1$3q1$&>g+pX5fr10vIY3=;F7Ex64M0>G#p_zt$r6t~^ijRqrQI-F;BxMgy z7UhaD&(z5XA9Eg2(o6Uzt!uvEd}p;Ucsi)->yi_m5j4Y}0|A_U_JOTn2EY`CmnexQ z*2~RE0F|TJt!QpgYM?810Z-{%tqMR=ET@Qw>Sc1oNg#=+=xbNjR;tc^{%Lsqv0 zx3i-Cai4noU$zSGBKSj_{J#Sy{?~B-VE-}x`-41N+yBngA#g6@zMRAmFYm<~n5~R- zP##mA8UDZs8_{g5tFhF%ut2S?&OQjX&V-+4Wg7c-rpmi9?MWy}nu8tmtG{H>4V(n| z3fZbLOMPi<(jA1dH`>6F5=%I6TJ;wzp)uu4=uKXdbI+OlN|kEP9H*4%wh781PPRPN zF}f)0D`jPY;$@F6`s&=jn{fxTU;-`?%6x&gZ?BFtNs%{AMs5V0)h3cw@LAVYbfc}lo@p`lk%{4cA4qoboA zao{S5m4T9=1Y-)o4iGj}gJ%TgvYp526vhE~YT7Fdk`c}}B~g~YEmVzSzI$SK<|$IY z|0}WhzR&*#hr>g6|9?FHd#GpY{a+oZ+{cbDNv?6%H`T-2?D(#lxz%ppF_qEZYsFhW)5P(dONH-Y zGFQhzbzdiS>$VPBEs1ySsoFFdb={zdGTwGP6L|(j8Rw-f(E2Jg0~MZlUeMxG-KhBC zv>B3Gj)F9?Q=33upKa?!SLt?EOk+$Jr)kdAi1l$4F@C5>qVB6Ty3HW0#`!+x*z4II z^vp1WTRWqLGJ9p_!s0e&%bM9UO`0N0l5Otnl`oAQ;;DI!$7)S)C-z4kUV^b1yAa=G z0)D((^YOg)>&3~Lak#ABPr${=S;uDqE=!c1_aN&Yqj(`$ZIl&C>A*8SJ6trgSnX*V zaqBYMoP?D{>`)xJM1I`e)tywYj4r5G#?I;2*?lxEj@uJdyDRP1eP-Lpu3YOe3iFgq zd>lf2s#&G>XSpWp{ZZ@Ira43Pa+hxHO|uwQXS3h1pVkVIuaZcdQ{S~1Ss5ByOesD{0E$W!n2h>!n4u- z^HHd1x3L0ky8p9R@&7(N+<(0P{U8sw|GYOHY*B7YCSPK**8)~?C+_~qvv zWt2Hh1>5G9GKC-;US)>*pWqw%Kf(VAv^xUZY3dzT38IW83n#}-V`g{Q88h2yn$-x@ zWbJD4OVETfpc01{atOB>Kqf?~`j!Ds!@NXm>LC6bm|;Tmdf#aS;GNjU{|rx+|Es%d zw9i>TyhY+K`E20-j|{6z;Xhc==PNCVs?OQ1(%FZam&I`YqLA zR)yPcjq)&G@b~@loov_vrH|`*A1r$Wd*kW{*QP(|oVZ?~iU`>2i!3%Z1*RkL9=-rO zrI#Wr^t9I7l9%_xaK5>!rBm7-(i%rFg?z>Lu^iGDU`OmeqR_7J`m2T6q@tQJMEKU} zzZGLmhR-9oTEBV~#$S2YqmVt7CkJBrF4FXpL5$P%vdBQN8U`THmv{rS-Jq-yl>IUs zyjjO=&u)j#bV*Y-)GuFn%eeztWk9mmoI4nh&BgGdsg7zyT{WnVkGW=cBnzk(6E}Iy z9$9jtgU}7&G?16HhVZrEt_0(|!!&c-=w)Fm(X@`HY}=O4fK}Uw=MbZzq0HZiubDHS z{nD0S^;gM7gF35)71T&0X3krcd*-&cOrvMzUf?} zkZ=spmhD-4+l#TaTyt#ene$C~jEljuz7-^{+;Eum``@f4->if`o@BM_eYq}DQqw6x>qy7Dwx`i{qZ@DpMJLMMRIXp`di|=T`%6V^};{cPC(?;`xq#`wR(iv924G5_BKJ?i|2V6;MjvD5wxN|l!p0G{Cx<_KUaBfk{{ zMfHb24v#h*UR&&C9m5piVXtSpuGlD2e^3waiYpRUuhZs+nPg(~f9eWxCa|f4b4N_|wng`z46TZ5k z1c8AaBQw4C`!=I;L^q9;*tE7EDr2+z>c;AZL$k$F)=L!N1mMpnS)qjtZVGqh8{hYC~@MrIpU>~(>yl1 zIjeow$G&A<(?z<1v0jym=6LmVihl+)81;>3lrQ6lW@j#X%%ywH~G&LCm?tRf*ZiD zv7@#fgDt!NJFv;7^>4+tx&;H+=>InwRQ&&jkNMvo<KM;4tv9+z+;WuIHEl} zl!L@zigIW*=~Xoa!(X8AQV#~rMSJV*hNBGj*>%o(+jYr`lDFGDg7Ve@DSV+*A0^D2 zKTZ5!-pIJM1#lDpA5`ss`+JZ6e-HAQ@}In~yq)N$&N$fOQ}ItY{WPTT949{&?B&x_d%e+EG} z@Jr#H6CN=KK#jqyh~qW*wSY06VYX3Z8K00|=NBZP^YS@sgG~+vQxw92B0$q6;tHJL z>S7va7{!seaunkw&QT=N%MoGKVLX)WF|i znG1M|KtUOv6hMx=#I~7aN+%(MY?4O5B2Rh`F$F)!L=bmGYZY)+daD$1XioKRGu_#l z@!Wc~?OA9i!X?M0)-8cq=6%DTR?oe>Bxi{R&TTM>iN8#x0lQKemz{g9+c4VRF4HQa zSc9TkyOjv!N;F8E@k1#)GV2kHau6lAN&w#zC5ULajQd&gwPHwsygu2nuG+o}$%?k)Yy2xLXG` zv4cuhNLL3)()TG^0;)BbST|(T43T&ZLdb|h5sBI}(B= zJ~~-W`priui_`T|AH_PRpqG`;*LE18dcY7Z(}bcLxcuum+8Qj)VUA`+%mMo#pUVP1 z*xiO}wK;%b1!Eimx6Pez=x$Jlk&i3aZqRIA13{Dj7X&^2Uw!{20JC4CWYd=SYm}6$ zwB!Ok#syj}1d}C-dpEb^5K8`QlK&~ni`!@a+hXQW8;qe;lC*MNP0Hl%XU-Nr?Fk6$Pe;lYeq+N>i%@MVQ{IK@Oo+TT4hV zjHb70O~P>7Yh}1;TK_5l=_{rldk5`)zc5+x{0 zlaUb11T~R#y=$yhP((accG4xzON~#|bOWF-S+AqA_OhTk9|@)%T@jok7b~+l3zYT= z?17-XTA{G9TJlLA9S*1e9pD8)mPW^=Gr=27a}kiselLc;ye?^edx^tbhg2y`*;(&B z%@_bnH%AX>AvlXkHY$}jG8IlRNm4$xykq{By)F1K(er7Sw}x7_xmz=?!ia7Ssd!Zx zP4T+bKpL`TT*9v#O9OE0VT|FlI*OHMUGNQKXjBG)I>NDsF@{s`D3&$7MC$!)kFK}K zwj&MOkZyfT?S{Ur?_EOXropH}s?JS`mtGcW( zc>x%U2m1%l4O}@v%TD(0JhiQIS$hJ(Xe+`@D@#ffm`5awJM$2Ekl_Gy!pX_1xW7N$uEbDO@c88^nx zz_ekBRtW~7|C`L8w+#!Lr_0*UocGm!jn)ZV z;;{C+YWgKfv!=FdzN^M-K9{Zg3p9ve)=f1SMKwKsaRUHuP}EisBG!SLj<-a@22qEF z9`d^GTlDavb-gXxbNXr%L1T;FF6#A3@Jhu97XeWmUgvU9mleu%3PxOzY7Q?EIaTM( zER%8Vf*o*)ljt=!0+iuf>@p^(oytYg7hpITjTyJpJkkrr3eu{2{X)q5HC#k$7dHA? zBjWPw&2i3djO|8lSne1aVjWYGOd)VtWHm5vvp{LCwK`F<9J`C{>-+w~QLMHK`&_sfy%mPn zx4WL{_y5!9-u;hEuFOh;>aF2&TX(<>{=a*Bhfe(G(eUu#G5*JcJdOF^^96D;z_T~Y zv`9=I1OAy#MH+Za0V$Hs6wOki?#b}W#c|B7=M7oI3`ZK9;Ecd*+|pv5Bvx%}GsZ{BnOAc*qx z%{ntLH>@b+^;gqG&@$ODBU_k6qRB1@`cs_r=^{|SyP^IQg^Lt?du*xaVM+)Jb2j59 zZ|(KI{g3PGY9a<0MeOq`Q^}crz%kNv$CJONxyT3MsUk1-V9JXJfaj?V7wJ_3y6?gM z!Sl)f!E?}GWl3MP@E;&tEYpa6pa0)0`y2S}Hz4{X%FG~E$?R5HBBR7UT#GwN7fh~$I01UP)s>?N;KaSzYFtdJm*W_?69r93aRy`9oIivw z-%>6qFHKJP)oJDR;0h=^PB;f6+K*i)hx1)K01$tFR>bjH8sl(ni9@1JrazW4fhAK& zxxgbNNT#MNYLv@+x}S_`veqo7Wo5OyzHX3BHtC8Mj*!eHt7d=Q1$K9bo9nkwFHmkF ztW{cx@eGCQP}wi^&)Y-JnKYLOWoL;fWdx-+C*$MW^4r81+UYO%qlHR3xzTgOBfD9l!ke?)1%neSH7!-G$wcU>Nv)kfh{wiPq{2 z!c{2a+z^VZch3YTC6KoLpv{`a4>`N3*gT zU;X-hS=Y$aQ})P$AyjC$kMdEeaO&zZ)V)>BLlapsRH^J7#Lf4c5I4(ii?~&HGvdxW zIjz4bmRB;o=auR{-#Cjve4Mfh}8QJC!0I(wLG0~A5O7MP$21itQ35zvVrkEJuPgc(&e05n2NsUty;UxuN7 z8B-`GN>;ub~l>^!k4fMKE%jICx zY7=jb)Y77X`UO~p=q4?$ypXx|cRZuH>q7I$drz&!=NU|E_h`bdT$Xau9mw@cy7L1i zE46D>Ph#Xp+cXO#D>vA27wA_dC${)-S;xzMOTO zMr%yfRks?Vuwk?F#WU>Hm|Z-M`n`pNiBBtc3A%I~YppSARFwHt(qRAC}?ADq;(3HN7z4oWupq5%~cV zn*W0H#ZRK7Ba78ksBU|9RM#kxiG_NpNVw+t!YLAw6(YW`6hRU$#2&2Qde5_~ZSm2N zKW=Z^^kdA+8ZRc`AOCxYO_|*XK>gaj5#vvBsCurhwj?r5RH;+ApIew?=LCl63=zzE zMVdssl2PKvN`V^sXY5xWn`nWoNqVg~%+#=+En?*1ycUX?qRT?n6cV30pDYi2%L1Zq zvs}vDikE0j>l*kC6bb$n{03-Ba-KzN*RhV2r&lUfVht$UHfdt%sI-dp$z+wDT=rl z0pl79@fN736X|$hO>pn-XRy(d)r5IDk>1bSPp1#erb*pOyLJ_8`L^6A%63}s@y9WS zR4{Af=j~;qB#n?xrt;-W$NYVJ=y1k`UcPqK-?xXFr&$`O^YwW~5R6XJgysZd=_XVA z@h;kp5h(*A7(cg!{iwwM37!`EKgn+y19pS{KRg^)@;~m69`*kRdAMQoj9+Kd3ct#8 zU@819)O~LGHBxlwi?OkNTiAb_!pS|MeIMzQw zxCZi_sNLQ6@Is^xK%ZIdK4GG^aG+NQYsL-lYjtZ)_rvHc@5NJn=g=J>+p)?xjJqz+ zTFrZcI~6aV@}pr%wj=GoD~NFDryxqXoJEU_4-0EAl6~P<1T?T7*wH1xH}skD35ekQ zB1DY0dBfFOia)G?=%N9qw1kUmg_fR@ku*=kG`8MyuMhOA@iqAA;^Hjet{v6)=e`dY zC%n8k8If-%;Ns-0a)MKSWr$Z1s@}$|2WoB0ca(8`GymsjBlnsAd+*?IRLTFn|Cs;r zK_0>X`5Xh0X%MFgh|@U^+i`t)bf)jyWCSlES*yH=QV(~TeMLQyA9}L7&T(tPRF}Ae zvN?Iv*KE<;fQ)+59$*)i`$kn+iXo*Xx}sQ#+m1M(lV64PxK)n=6&BsWV|UlPh@bM& zy;x@=uNCJyIxU0T9C(paxgD~S$nMG5L{lpBjWz1St>aGaPcmv z6!wgq*?P(GeXTetv1%al&A%C4%SZt#!ONVUsU6U0!`bTGFYJRK&tQ?~*^eln1io2w zODkz2<9@H-tOC`uOx&TVxDM9=py2{Bfu{t)k*$SLJKDStd6=E2;bn6#8i&-Hb3;7w zw5G>^i!-tV-pU($vpw`|Gh81jDX9Ex5XLW24AZA>Fu#yw9V&^)XPJQFz!f-V*W z(M1|ZRoHHcmVk4-L}`)NqHKR}2{f~<`7TWBvmathJ;MLz-R%Dx2KjHa zH`sUYe-93akMiF`JX}TnS(ttsEC986UTU4TTy?*FIB3(BFJir=9H=F6l-C9)FG?-7 z&le$YY1cID;g^9jZkzJ_{uSYwKR6dF!&b;ef<|p)OGX>1HN=Z3{(ofTS6m zb3?W$=)Tg zJ2=>T-2Wfq;r5@+`+qB2kUm#-?AMARnmc{H0H8Ih@^y`=+vJiZ+je($6OP#6jUZ4; z*|g`2vwEOc4-h@TBkvoc(+vO!ZE)ZVwY*Hgacw+2KZnx=LJBsoG_X z{_QxKvfIo`ZF{@bYd?v5u2eA&+yz38AX?Y9JHWG)2&-ZfLK|!NgwpalhpL?aT#6;a zXcw|SwTq~3(LSV5_AzH|fdDPDeEkv=dwr?5R`?}b(lbFVQG|<%rLa8A)8GP8GVn;x z%`H&;FZ2d4v3siLZA2ILwZng^vJ~9l4q4}P6$m zh3SNvR6j*)nUc}Vi=kS{mGt54r22DX?^LM^9UKwxwD=7JwYewa9Km8R%4yClEToZh zaj@X?a`IgU_GXr^pdeDqdnAi?mb*JQ;@#r$%KxTgaQ~xBFa26(m)>3z*dYJ!4~NzG zkHg3O?+@~L;yxJe*mkBRu~qk*RRDVL5x>CSRIAy4?=UunZA2 z0jpu>5+~6Fh)YPFCCXt0bIACl$RcDMZ8{>L$};4+i6AyD*?ve+L`AQnX-3crr-ks7 zO4G|C1Hoz-fIuMN^p9pREIY{o1&XCSjizUiQh7qIUXnD;?bo6^O7Ju=C=bphq!(ZZ z2p!8P)?@WG3SC7S0oVnFjlw;qT49nN4CS!f@8JU5?BRC#nG)> z+vO0lCB!c)oEA&4KkyHYw~)8D3NRlTl!W&6@%oOHt@&zNTW~>QITrf3_1AdP?|-wJ ze6#w`Z&qE|%4BbEaKKIO?gEqlexQhmOYRbBd#%>gdI@tlg%klb|CL@ABu-LFx5M)P zQ5rAP2)&SD5+5AvEQUDAQj#-9=Ah1b8OOAqp*6y-gSkDpe@4^Lfy7_YUt@8_i;uB~ z2JT{%gmCySgTEH2bM1{6FCpokoav>wV=N8;7X{QCb-mtNnj@@~KVYlq0*X-;vpEhdx`DHtP4aPz}6%ip=8~ z%pdk?q5r9yp|2C1-{=@<)BTUpLB;=LZ}@os<3S#e{-^Z2ERCp2MW^lt15Fxhuz)KB zAc#;5*C+yP99yb+mAl4UYk4Jvz&JB1BQ|LGo|B{UYnQcNMwtz)Sdyxc8v@^sfbW(Q zQSgJhsHI#u|CAOa0LjNaA@XcD_&IgSwT4bzb$uHqsD!R@{-2yMv89))i;5Kgw8`_?F?HHpc%y7**o` zjUVGbJ5@AAPIngrn4L*X@rhd9cMp-SJM6_S#POxi`~i43Ut8F-33)$d0Dd``P!P0FdAVdNA%x zW;XgGu|%*?C=}|2LScnPxP18`&4?t{90vs(2Q zT^Uh5E^OT_yOI zWaem1_g`r)x6IxrOk6%^aM#_kvX^qecA`Y_LCZ(1<*PuWR5uj zzZ?Qpy-|YNP)D&z0;Vi7^zX^P6G0E3kCa6fc^I-)$`X=@d@jfbk>NLzX<^B1o?-f79P0Z z<(lBR*j8Pt!RweRkDjr+@eBh(niRJvX^C}e^i)hEyrnzN~)6~0P&q$UK zLAXa*FMsJwowh6pT~!)iWUA5j$%$o~hPw&WfX|btj&1T^TWPD!_5I_eRjJ0hgRtbJ?=$2H8|GU7HJF>d>k^?tY`8&-|X( z4;M?E3G1Tn--}xHzV+y9H<>lHY9_=EQfzzm*M_=>=B|%sFcnfAyBl)gM^r0~{xlSI zRC#W?5GOCuU{OHT^aFQHS%l;qxldAq7jK13c zpXGCq{+BK&S7i~`L{%!*xAPTFwRiN6;{`cuvIYu={c|Mgd7M~`(K5LNKw_ynb3+Q`1OXr!u+yU19wh&L!B5`8I@A|x2X4~#~2Dsn_& z`z>S9THVD+k_VcxWJMC;9sMUw<_s-`NcmZ>7qO6gGb$3iqF%^Wz2a8?-jY3b1?#Or zW(%A|UENDp_R_Ul+PS}9hEV$Y`D`C8|Gg!NR}?n-pT3XX@!x9vr$6z(*8lx1pJ(U_ z3qi63qN|Dn(BqOMXtt(tB&AY{!+Y3+IC_TQq?o?>nIpa=ag3yIr*b}MvN%B*iLsy$ z1d57VzvCo2dWI6B?{IpaW@Ju3kVq9a`u~qT1UE&o1m2V=p_F7OrU~(mycairy%8)U zN6*j&uq^uN;s!-D<44|tiXQx{&_D8K|HyjqulZrQ=*fS~SN@Rn3P3X)-mg>8ef;PT z9)C=a{@~5<{m~yhv66qYj4qD;@PCe;p`UODN2xAfyyQn-nz6r;P#k$QBDklTXY6lB z-UAO=M0)=U0#vX6i&y7we|Y)&#~-{^^yGbPU;o2?zjps~e=z=9|LwDUo}r5+P8K9) zi$Bh?Z;y_S{)k~m|4-W5>YjR2Z_@epk3IbD(X(gI(0lv$U!EIVWI@GpJp(I5WNV`C zitphx<&biPGt#qO9DAN;!#PIJ`+h&@20?e=A0Nq%BxZ889{oWdD@6%Qx-0xQmZ9hG zp9RDIe!Wx9*M#?E`{Uyy#{fr;0gl=Za9AGT$QodOY6kc{{UC>j)uljii3`FgBXGtL zCy}%nGa`r1<|rhY=yJW$&k{ovMT-7`r0BazF?5h(*p?K7GAV{ODNZY-NTs^aX%42C zwNwH3By-_AaNs*=i*LV-@4&`)upe&@PWPjhnUKNh&^;l2#{l=6^M(Nis~F5}}Y~83{$a(WBpQ*%YH6xkn#3Mjx~tysDXsZcsV^;-= zfdcxPcUUox1mBYk@eLPb#a-iQHipJ+jiGVb7#f$1q2P2+?K3)1`;460XY8<^#%-;q zaoKtrm#n8?yypOihncg3q0^ilJFKU1TkC0DmeAvp^%RWu9N=Jl*Z>D(_W+xv@VKoM z9+#!?xFm&(0hXn3yn*clear}48KmxCgWDwY-6dFs=|lL97CD0hwb8(-jm8d1JZ>wA zN8Y4N2fvvPmbf+kijI$=7;ju|%gEtUkJ`G_qq0jqD!J6bu*R2ROtADJ5#)e)8@!6u zlpN?v4#1Uk@%e!+`arqpIi{kf;+knWcF=OaRn|buQJI!wo0c^bT28$xgL9syYTW*T z7KZP%Fh&klI%=y*M`cwyDyh<7&)CbrKaflOEnL!{9wrU@)A4ad49)2WlHXCr(Rc5ocEzkwK14v4jtqewk5~F3#K+bhCAqS9z|yQb=U#U%3_W%dd+b3 z9gcAlk_??oy6E8_W&-xzky43ms+ws4t6Lfy zQNmfOLZmbSm7qv)m|4^xI~`YvuZsjN&Dwz%j4C833|qh3cY5bK!>DJKZVsfR^iiZv zU`BL7xR4YYPX?3uaIB~?Jdh!V1KUVcoTYn!%&6z^)3E|RIB-b~wk@e<8(ThTP3mEV z)T6yfU0G6t1NmvNjh~vWT=}5QAO+!~JMac&jVYno1NAG*N*!WWkz1)POGg>NT2~oy zmh}tT!@72iB}g4d015>MQYhF)p=KLeK4{Gb{R(vk7IlJYjSa3;N=f%+7}Jy!l;TXF z{t3bnPGN6C3Lx;^<(JTG-2*Lx$zkg)m<-%bS#aP+L7+AYnj-XSwp1P^WeIFb2rS5a z9mkvq=WH|^{PIET*$67L(YI%#x)*)H(hVvflJRQ$pn{=rN#jUWxpu^nWzVj`w6xd< zUQk_lLGxg=Z6+03eyq$aDy83QgOb*&nl)IG2@^}$M&W2dA4sCMl7a)bQ3CfiiX4oK zKCMmHX@xw#O`b_*uK(AX3zTN;fkp)B{9-luaJga;nq#WA)9_lblw>QaDhDb`j1Kc? zf|1js8F(%ewzUOYF<_@Q8S3$B>DfKtOv)6^7RsX$8NsWVCIm$@w9aCV@B&juL~h`@ zY}D2!YQ;i5t&XA@4VM+!+K8;!kdsDY=1b0m3@mN7&SFzw-$>fwVGdw0bUJ_oMhqn7(Wl(saOL? zTyoGhE;%U2B?q2us`*nV8ZNV_wN+FxiU#|k;j#zXn*(Ju`um~b)Z}f^sOs_k&~Pct zmin?^ofLl`H2RK7>9?JfetA;*s>MOpTx|HGD4^l=1NQ!NYg?b$)BV&ae1&zU9~XQmFDU3TbtZ|+2r;ulY2WR%_gtk&g9i`iJ)w`_=VjoaXEG3(rmc; zZ4FnyY`FS`;VRJ>JJD!1T>Z9&t6w%;{lakFjz+UN>9;i}{pzHQ_d}!E4)WXDL4Mf| z@(VjiqT%u;e1{$6x3hzCJ{^{E8SICPOOCV`BV{!D`=QaSY5caD#xH9cztA+>(Qt{f zR+22AnF^QqyK$LFl$*F!J!pf?q@wo}Bny=yxktw`R`{ME$l9+4D>xAx$~P@CwoVay zOh{JF-Jebm^3SGIhkG`0sohCywL7V(-APsLHe@+9xoFeF_MfM&?dOS0oljb;^GQXW zPpaxXa2(Hgq#0SPaTXzxJfH`hakL-;sWjNelo8dH3;R~f7vA(M*xL)(N}W>JC+mBH za2%tbuHNc=L9WiuKN1wNtxMIl#dSL_xXxb*Ab#pi#f|AJzOJfGL|N7jipK1K$%qRq}uTGm{{z{ zEzfVw$%moa^>~=kv^hRLao9VPw)W1XZ0}4e_D;j3sf~(KgUPK7%lw>?e4PXr2Ua(d^Q~t(9;^2M-%bvt9EXmL4!w*#V`Ha!L~rn0fgQd&vo= zcj6T>56j1xs&owK?Q)f7>;W>I;4gxrL`|$*BD%g3qzv;-BJc;QXYZhFzo{$PZ{jeu zCv8n_`C`RzDA^751Q(EUE0z%*z+SFr1<8TXKfJoQMk|_SdTK`p9iEwvPOH16TC_&% zG^U|s9V3ZM0Vz0&SFz|^_HMqUpOoc15P6n%0a04I4C`2I&x%(OdLMWq^*xL zDf>8+ijPw#<`O>;P^8il!jM*Zg~d{xSzHpWU*|L?rusV^7SFXa5aTdOFd9^u6Ie4_ zC+GYvOQ1ZHV3rK3rn?Gruo5ztD-&~=gE89TV7P3(R;J$A3x?I1u}wWcPu8&6^qO#y ztwSLdp=NfPP?gGUCCC<}Dp)z9M(Z7Ro@?ql&ZS1sKoj+#B~i**6ADx#S#lM{G9kyF zA0NIyXYO+hVViupDQA82pM5%Fot4{<9H*P zghYxYhZ#n2-tV7XIpyEuqvpAH{qp?9o0q>w@t-~FKaTpf`agbu__hAe=lDEBm--L` z+~;-l{W?)udNG}4INN}oaht8lh0br=)!>H0As7@h2-ipxrFe?Y(^NSU`um)Loq!Ri zD;nd>l>RzFVo7=4$0O!Yj|>!NM&QWB3e!Z81k3J1#s!)Y@kofeAx23J6-$zalUB(h z+aMe+DS416E*Op_jx!=f)Qju?@}y)#*XkZTDa!bfb?e0$y8HG|fftNDzw6&Y(-)R( zKRWt|u8Z=JAK?ZX^b!3;GHI)$k4GQ7*5_mCKlv9xyvz@)!8m|SM@LY0jdFz1D-y5J zYfTn)cC)BkdHd?}23@>5zrID6H|Xt;x9H8w^S8I?_DA&HOLY16=Jx#c>z6Oki_7bm z7q_qf3wpd!r&W)Ry68%kund4yLkJA>{m=BCx*#7Pbj% z8hj*sAQ9@K+cInG)ZKqEy`<&;lEka7cI=;A32c}DlVK2yEAoFZ=zp#M_*p(uhN&!I zDOtLzB=6CY#n+UhG@~n=(RibZLP{YF=H3SQ|LysW&K8!-+dF#29?1jAPS7LKXIoWU z9LHMzTNemHuc{{xT_#HGM=V@JO(F?_uE1L|KS^<65|{OrUNiy8pvyUGp$H-q*0vl0 zMA&DWLNCb|02#sZykCwJQq(YjI3`=rP-z82nUCntL`wJDO)90kp`QFp#kg%*Ul;P- zk`6ffXnBbjMU>>Dj*6m>=>n zmpEKDd!u~G)^Vg_3{-Fk%iNQVr_@YQwjsm`nyGyX4{5BWe`nz-Mfr?KW&RN)qY3@M z3=|bZC1>DRzTagD_heJ4aTI(NwOD5)LQuC@aRVS!bn1mHQbIVZ_HRcfOIR2?BF95g zBUvDfB(ScArjUZ@MHmv!RY_0}U5Y&r{GMehVn~xYJIQsZK<_21MJ&{s)0AztykbyA zY@KyM3Tu6&9Wae~R}-xF%tH9MnJS(Nl11nvnlUCRaW}^?Cz6d`>iF3@N$TS-_=4(t z_E_ZX;-QI2;Sl@AE?JEpa7JaHYDdWK4j9%6{x#(ia;*Nld;g2lJy#9znW=QO`huz3IrDqM@>$5bst zB@w0ZtC$U=AE-c9f$`Y}4*lx_R#-}5hf|3p`W3aFcV8_;&4U~C*lO?oN0t4BC3d2nvsx1a68jJ zsObwI>!`i_Ksg+m(z}y-;^i+@3fvl>0g(?WY)4V>HD*L&!zCk|1y9f&jsBW(e78k1 zc{EvMg!4VtB2JKQY{hh|Ldn&QK4#s}jWliTUhWczW5dr05t0mf2@)!nuzasrw5KX*!22MXo@2O6 zpj*(}iSxXtsw}r5KanKQ`#MmL=kM()#nX(f1g7y5uu2ZfVwK#uh}lA4Q@Nz6#1!n@ znBCLE*~D~o5S!%K?P3!PdOJ4Bd#bXD4f%=KB=74$Hp$;RkWD<8$12{EJyI-|T+QhM z&JN0Mlzegkx~C0VOoDoM{aONg4K0dSAJSxRF0B~iIgkEy^)?s(UzDMn=d^Vn(&V@@ zY)>KhJ&j43BRhHpbk3v#Jn5MI(#~0@_mCz%^KPejBt5y#Sx3U^oOBWf%EP=b)WaMM zaQu~a7_qLqO8-GrYJ?%1;w;#dRYrvIKP3zNboJJA568=Qc+0xBguF!J=Oqo7>XHS` zTk=ig(#^E0EIVwjzO*xI^#|0j)VpGqQhOXl(rQ%w!kfb6crWP)59dx`^%=@SXD-yc_LkTr;p!bu^Cgs71XE1ca7 z%v*DkB`WG&m0}l}wCDxJ>Kf;eC5h}+k5_heqwUk@uvXwwkS;z}mxAb`5V`~!q8yQg ztryEGBGp8Mt-?|2Ez`Lb5-}sL!76tpYD>mswAHL)*@0~Cp`UO}Bg5(72AP*mkeLyd zS?Rpc>3mKTDmD$P;00Wa#fv5(OSs4|O$5r;5WIN*J|pvAis<)!z6L$YKtlIImV_h~ zyvM^OiPmsQ6nRi#q@MIZ7fCl|Q8!@`={+-jb#W4PaUy8f{Gx?)oYI7-OZgq#rJ8JI zt^$acuH*QM#WbwAvzPO?Ok64NtVZ*5)rDFS5&}v!hzj(~-mOkm=5u5hRM{Qkm+z1%=`1GPx=uVhr@Z_5AbL_eo@0IJj<<2Vn=S=j8XyCj#+Gvw3%b7-5kI* z7VtefZtAR&hx(pxc&L9m8sO7e6rB0?pBlpELy2V zJ;`@gblbGl#;j7UvrS?2S~2o_vdK4}wKn=jf%rz_l^)&-^bYH6nJ4P-t7RMyp zLCP(y8_g~7N3G(N7I1AS7o|IUrV?Jfdgs=u_F6&gUBJ0&{J@9q5 zATHu%vyETj8q5mY%hX;lkh&u7*(| zv2-VuCBhY{^-Olo-m8b5vkuhf?40OJ#LqfG=eJ)@I-KAvToRtoi`jTXFW%nBS&_rx zC%H{&Qm$0BPt^@t;SI_NXYm6;36B}OU#BLr&k}XW!HQ~dBG#$q-YDS>hNxbvFHDw! zV5oBuuel)E_cY_8gXkQ>EN}B|1O!?dmQktc&r~d5sg_M|Nfo6qQA$et*RN@E&)p_K zPpf}*Ojs4F(oqI?e7Cq`=pb)Xztz<{CNx>}bX=f|Q*{hRPIXr|>^)PFbGXBJNzBj3 zdW=m`qBoc(&3Jq0wq`Wlz+omME6&jQF}nTlGxYBE0s+VnH}8FSjIPdaZhn4ohQ9gr zSL9vmV)KyW_uFsZpo^jbd`R-}ea2R2=7xCBGjjpI*VMatc$>y9JAot*kc6V&Z)~%O z*$l_td>zMfapY$C7Ii@qK{EomU zjH9TlyYC7HkrN`qE@04oq+$twcCo^{cbt#ZEZzn>|6HWf+bxTu{u{PdHH&kpBN)1K zh>N?t%UZNf&((PxvquxFgpe-zAXg+6#cNuG0xY`C`PML-J!`tnpDw*=x5;0u`o^U< zjMr-R*LQlEk^yyNveVHl8n*Q_SC}T>7&xAdswW?5zvFxQfkba;6vgBbXM{JnA-T}b zuW-i6CU?45@?HIEa~B8sggG^pp=P44rlKr&N}AS=@^NuutW>sU#N z(jZIT`@g^+WxE)dwM#zWRT>j7W+9HjK$c72h`egpK=W^kd7j|c+#PIbnm?M7L9Sr0 z=SjfV_oS{sQ9wVJz~zxNdlDv)6wxNn{@XvHzzc?5f1i#_{)|fw8hxfX-=xq$>-^xg zmJ^h#&A0=4g`;wN_X@4|?p1#&iu!Ib0qnLaZ^xv}=AGn1N}rD4w%H5EBBpg5R?V_N zZHg6Z<6l@3)P}sv2r30il^R{orTMdi?6rr3hQyK^ zD%%3)9zBP-W*%F20@U|~bR%z_HThFvIYa{-jT1yL-{|x#FsJ0wK#!1T@$UNdjcmH+ z#LD5419=ycd8)5+*`x(gv=`D?c4h-3VraYQ0eb zbGRX18C(ry;r1Mi8jHw{xl7s+YS8%#TiJb&G!h$3yWLxpI1$Da!j_GUU+Tui_fbkR z&XS&P+*J_w>#)|zt`!hWhW>Ce8%?57Fc}Pk;b71o;b=0Lj{1Q=9uEBeh>Su$#oI}Xw5hwagGn98pka-co#knVinW)2K`SYuvF3OIT zC7>D*nzJk3CCDX44db- zfSAE#(Qd&y>GRYdEIeH3hNSv*Rx)g`RoG4&$dZm1$mHp;Af#^Dk&~vNn zV^~QFXtIuD>5tVfT$3&Hip(0z>oK2JcyM8|R7s z^VQV}N*}@#L{_QTyr9{Mb|g=Vq?D7QwwBZ*Y8#;$&lOHhgw3U&Uh2ne4u>pFp3^En zn6wq@zmN2^2c-yAS3;|eYTI4mv~Jj2%CDfKrnyS4H)3x$2EVs(1*YlhN#2Js6qh-; z!h-g1!4UR%KI2Sy3V?*_OrcinrDo$N-Jfg^ggt0OP>JrIuI8(E_iWT)^DiO~dof5Z zlGMyjQ_Bq9$jPMmD*p&s1-CmuFw#I$+Abvlmqrq$ri)dmcW<2B6h zof+bt8;^#CVgkLDbpj|Hv`X?$I1yJ?o%n_|d2RyiV650h<<+iqxMYuss%{Mz<~4Su zl=0roe^cBf{(06wfnUz38i(IyK{RytWv>eh;V)r%Sm^xjtHkQ7yjXGudGaNrEYyPx zOh)ld2P%t4$Y5NA^~mZvOPQUn*)^cdOuTw*V`s{2Lfil@Ym3YSnP7Ijsq~mn~iC z_jfkm_!4Ijm}`zy=9#O;oim+C&s@Hm*8(inO6Q-XJD{(KW_8`6u=Q3XqU*+BpV?>E zEd)cIH)O@KO{d^DjKnIPbM*ZB{7rX;!+R2`@a2XJvO2cCXqY=4Dls6JSRnb9-Wgy~ zLlj2i$>~3cN!o9UOG*HDH}oGw;rJckqKsmGhvo!Bwc~}H0yv1N&o6G+8Um8s>|Y`X zGC}e%0780Hnxb|51X;OH0=1rVkXB@sGF7BO)2*rRrWrI7^#x5Mp!&s5qPjfToon}n ztzC`om%n%oqF?gFXKUwy@-J}Svvu+>vf?$eU+UC<@{yD$JV%nU=zRBS!g8yYrwC1z zoRmecT?hOml=4x%+FOU8_On3TxCDKHB>st6N2@(}x?Q$fnuA1{Bs=c^UBxY13ctv|f``vvt z!LMaU1Vb+$!SEQdDx#%!dY;N{TUvfPDj&l7~wDsrom*~pZ0No zKA%TEp5ZVev-*+t8d7;?L`E5`plyk=x+R+tr(ts?pH`-?+ubL2EHJ+ZC8m}R92m*< zpY?l8A4ozt?@Gss!e3B6Z=H4(Y9`nWUp&*?h45?hJZ-?d0gh+3#2P$4P?J=7!Yb}U zb$$coOVIFoDmLcw9|Kj9t*N`6B@I1;3FLK>4hEX*zvkuCyujWIS00+AxSG=SQdzx!st| z>t1d#C2c@04astu%$gZl>fwMYN#?~}9o9RkS4Zl5gTj)W`hGACM`RdGPoqJ9Gzj|R zc^LZP)Q@ICFq@8pD4P3t5ca43crqT(hvOiaO#B(avuNJmg^;l$vl({stqFc0eIECk z#p?Kq_5C}VMCLTDgyn_Bv+W*j-N&@MX@aNw`UJ4su+`7D`o!mTcY06gp8&Ri*CO-x zkg0>xdkz$@;n_Ci_*&nH+fY?1ictPoZ0QZtbx%r>b|u{f<+ zPxMvh>o`JiUJz0b9w?{!AUaMqGZt-B=VlhI9e!Phb53KeL$?&~y!*8ScO_h9^nu1? zL0<9@$H0M|Gg!JO9lNHEoY{JDo|8^$-jDLv%uePtW8(WfY-`H@+IOC+-wug$HJoiT zhk5rZMPN*)T|v{l-KP~IFvpT@L|s(^%JyVkT;}7ff_ma?dS^eX%=KPmzOfHj(`3%F zl@e|>LMxzcsk{^--9}}A-j?9%Ecq6Y35&>;iTeLW{&9P8bqCXZ_wL2jorjc9 zCx6i1U5XzQgwgHARn7?V>4J!2rP4%@Os=1I*RSCztZS>f)V4thoGpmh#ks}(CRY23 z8y(U4oMa{O1O$LviiNs##8jPvC*UyN6#(zx42G%St=&bNzl?a&8AFBWw|vOTe&AgS zfMF8gY_`^ixF-183F673Hm^W&vpJGVPFq^*#<j3FTpgyloXq{m6xL>OKU$XL$*T<6mk6T1kI!L0l=CWwQ+;iCAd25hg-kxKaF4w!pvP zc5g`cmS4f}m{B1};(dm(cY`gXcUDllOd_eC2wJko{fAeqALAKDO=VHzi6S3p1GC5^+ubk84T@!WQuMEe3t|KZgKa6*$Gw&J8*LIHm}~&P)E^m^s`cb z_slMkduNr9rAb5|Xtc($bV=@&>>{cn4Hr1S$1lIuVrwA#XPS{8;PQ(tk?b<4cA@N| zqvlw4rH@^~Z0nw*UjFLNP8&L^2ebpv_xgT6@TbAh#I*;L>2xrh;_1wvhU3%ed>)eF z2oFONkuaPLMtDA)&%&u6kU + +### [promtail-1.0.6](https://github.com/truecharts/apps/compare/promtail-1.0.5...promtail-1.0.6) (2021-12-03) + +#### Chore + +* bump common on dependency train ([#1452](https://github.com/truecharts/apps/issues/1452)) + + + ### [promtail-1.0.5](https://github.com/truecharts/apps/compare/promtail-1.0.4...promtail-1.0.5) (2021-12-03) diff --git a/dependency/promtail/1.0.5/CONFIG.md b/dependency/promtail/1.0.6/CONFIG.md similarity index 100% rename from dependency/promtail/1.0.5/CONFIG.md rename to dependency/promtail/1.0.6/CONFIG.md diff --git a/dependency/promtail/1.0.6/Chart.lock b/dependency/promtail/1.0.6/Chart.lock new file mode 100644 index 0000000000..e8772842b4 --- /dev/null +++ b/dependency/promtail/1.0.6/Chart.lock @@ -0,0 +1,6 @@ +dependencies: +- name: common + repository: https://truecharts.org + version: 8.9.10 +digest: sha256:76ef16a78cbfe53b0be5d9fac03039063f57b2b43f927e4cbfed13be1c939fcc +generated: "2021-12-03T19:50:04.789607888Z" diff --git a/dependency/promtail/1.0.5/Chart.yaml b/dependency/promtail/1.0.6/Chart.yaml similarity index 96% rename from dependency/promtail/1.0.5/Chart.yaml rename to dependency/promtail/1.0.6/Chart.yaml index 8341b99432..043bd65786 100644 --- a/dependency/promtail/1.0.5/Chart.yaml +++ b/dependency/promtail/1.0.6/Chart.yaml @@ -3,7 +3,7 @@ appVersion: "2.4.1" dependencies: - name: common repository: https://truecharts.org - version: 8.9.7 + version: 8.9.10 deprecated: false description: Promtail is an agent which ships the contents of local logs to a Loki instance icon: https://raw.githubusercontent.com/grafana/loki/master/docs/sources/logo.png @@ -22,7 +22,7 @@ sources: - https://grafana.com/oss/loki/ - https://grafana.com/docs/loki/latest/ type: application -version: 1.0.5 +version: 1.0.6 annotations: truecharts.org/catagories: | - metrics diff --git a/dependency/promtail/1.0.5/README.md b/dependency/promtail/1.0.6/README.md similarity index 96% rename from dependency/promtail/1.0.5/README.md rename to dependency/promtail/1.0.6/README.md index 3909f98c6c..4fbf86e6bd 100644 --- a/dependency/promtail/1.0.5/README.md +++ b/dependency/promtail/1.0.6/README.md @@ -19,7 +19,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://truecharts.org | common | 8.9.7 | +| https://truecharts.org | common | 8.9.10 | ## Installing the Chart diff --git a/dependency/promtail/1.0.5/app-readme.md b/dependency/promtail/1.0.6/app-readme.md similarity index 100% rename from dependency/promtail/1.0.5/app-readme.md rename to dependency/promtail/1.0.6/app-readme.md diff --git a/dependency/promtail/1.0.6/charts/common-8.9.10.tgz b/dependency/promtail/1.0.6/charts/common-8.9.10.tgz new file mode 100644 index 0000000000000000000000000000000000000000..635c25c8f45a30bba38761caeb6173c2890bb31d GIT binary patch literal 37602 zcmV)!K#;#5iwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0POw!ciT3yFplrf`YZ4->9=;D=+&~E=x+A8u9LPon>aqP(|+&W zdyfN=kcBlxummYb>*jy|9J~?$L5lKQ)2(@S8;b-617I+i84PAZvRsm+f3$#E-dn?E z{Fl3b27|$1G9L4P2ZMq8?_jbw{L64W+#ii6lY{-qUk1a`{$ThQFt`U?Do;UknEhpN z>$cp^{Xrg>;-67QF-fLiHR`}L)jwmHBbs+2M8gcHIe+&J z;siuH3$jF0u*mb2PW$}}oG*%5FC@!;o)swMW%@8pX+O^p>MtS9QP!951u1rL$Qn{0 z;0oq2qdfttpePGTlA|Q&P>cS-WIPxg?C*Cj(fW#H5uJ9rplqzuRhV}9i%u8FW-f~v z(p~-bZ!d?v;iNa{4!-RyAx?6L6O?gaXbEvV1vr_L|11IbNOsWyAc3sE#sC0NWO0eU zQ$ZA$806~|O%-~bmBQtD??rDo=seK;%k{s4ae?SPF@VPPKOBtqMk9CqAM71GuK$O4 zo`7x_yiZZ`^T{!wDGKo%hae=$9A6X}WNW?i1pH@&=CFu!R`?VlFheo9>W~yAt2BAD zgcoSq0f56gT~VtoT#!Sy zAai)3IM;vD1sv^9rn7Jl?oVc;aQI>$j%VW#?T3?t`D_r51~2A&&j)*x{m~H3qP^iH znvdW?G!GX%WXDB{2@y9l(E`@E=p~W`0calMGSTp$>=k3(nAw z1+OANLY=%OTe=TR<}hdNu3~dZWQ;ICwD}tMQ(Pql4!tI)G@rKi(hB zN6+`3kHdWwJs-~ZUrhF*K{SfsY&Lo^*?ayXoV=LrhtX`fhxUe}$pD6JaM)_7(~K;0 zh~sTXTGgu`XbrjLIIHrTVOgU*>WzCtHN4OFW+6h+XaXmD&u63IFq-VoCg}Mf8pFN4 zXfTYz=cC#4A)4$BqWuH({Q2H&{9*vZLAZZ_=HnJ^Z#B9J%ISiTeB04g_3B4gLvA^` zs{CeH^~_>_upjM>_Xa3B2#3*lZ;qnj^Jo?ghX)6}lXzUA;5Ra!x`NO-R| z9Q6ijlt<6^_u%tc6g@{MdJzs@%))3q8x97u7twfzMuTuXf_sC5*^6ix&LA4X(O^6} zn4lNq=kpgKYS;c&WDMgJCurND7Pab!`A|S@Il=smH(n3}YMt!ZlM0 zV8#$kW3pbNB!31Xh?XRwC18w7coU_a}bJGS=bu6DB?YYF@Q-zawwpagyT`x z=^G&Xx~&c{YrVxZpMrni(78#Zfp0rvfDg4>e%1jXKh0*z30PptI6R2)66bu@#fP87`?u`% z6zp|6*xEV-Q!RH0d%Lhpm7L#xU(1r^hNpO;B)R1hCeaSv)ht-;b&MLhfvF=4@fB4C z0kaF*P?>$^H9IZYS4yHzN}@v#i}EaH?^5nOF&b;r0$;ga1Z`FzYreI)OnbEa490?L zpmG>R0D_-LhX2KeGX^Il0*6ITXb5AJIfBVwBTV`3^tTR_WpKiYL+@H*$74j3U7&o* z$fjH|k~c1K@`)YQWH5{1^fzmn!Dm*b@3V?*nE}0%;i(Nm)F*=FoV`usE*k1x>v}EHYyUYZ7R!3~jXY7~Q7rm7bQ?sZjjCnor zW~(YVG3xLdAE}VdSnpDj7O~(1l*x@bxWf5@cUnq;Yf?z1c+IBgdj#MW(@{36~02FvFZydf-g5M@1p5 zho|c#ho6qHao}E>7koTZ*!*mp?Pq_(Z6_9>0I} z`uzCt-Rr4T3FjEa(FZhFzvY_~m@lS$9rO|sAvOw~j+#{^{|S@PJDBqNqP99nWna2W zn0BRT*p=(8QdGRw#k$~#Gb)f~m}EF#gD{3v2-^{!&r!xmI%n*d6ZcFQX=u1WQNaX6 zRqu#ZJLXM*CxEVLj+R~4mu{Hh9EUJg5@#HfE2`E!lPI8MmL*h$ zlM9rQf_6(p>Y$^~Y(jAk7KCyEl#zYTHbC`4X)V7jP$GpK_UTw~d9Z|+h^cc(@G7PP zCR8z80zS!Y?FXFEoGqE3MBPsv1Bl)lctfuY{vVjt1AymN+n9=qoV^7#E%|CODX!Pi zi1N`ht1Cq2TT_M zf7eTmK`m0saS=N;BYn;N7-1^ShPToY{7Wh}!7z}br7&nyX>y?mX5j*v+m6_*`*Ne^ zXiL$RAx-9f9?c0|N*R=~=YRYoL-YUr-<<}g5t1ZCX-@m9URMePIJsaS6UIyoK0>>) zVE>8OcW`pi%@;_$-tCC(;Z*#5i<3)g6U-4zm<~};#I*uOgA|1YUw0(Q(dWDu!W7PM zjB}=tkRqo{cb0m^|SuB(O4j97DG%!;prF`lDv9mc4xXS#rCjgZE7n5+R#aDJpp zQ!X?ENI`_TvlGnL0Ox2)d*C$;7j|i->n`950nFINRRS&%m+F{e>cC*1gtQQ$9A!(K zh%S&ULRk;|gknQ10b#iSdL0|dnw}W;m9TY(e3hE|)r4gU%ZuwtMrNpT3e@ekVL(D^ zQFVnZqVYA}$9RPjL}`~%D&~LD9AK0D_;+&Q4?tmJqWti_e&ifoM5h-&0VPC$VLmU?wI$LCjGKATe($*e9d?Q-d%gj&g`t!X|yN3Qq z?%R;NJ#2SO?|$H48^NE7Jz;BdmwSny*r^Hhj!9j@ekAm52;CgCJ0^1<=(`|tmzYQL z{SzipVhWZBCKNE$9#R0o5`MikzeF?H$_H+p>f0mktRhL>mLExDlYlh;{BvQNL$FsM^* z+4w8TCIL=LN)y(8kRT-JPK^Zu7a0uEyolrV17Xi`=dGSp_6t{kG;|-urnWjlp~`w8 zPpp0V=?1`u9u%Zb1*1q9{27{@ZyPEcQza>0;uvPir2j1=$!`^yjaX0l2{cYBds+4H zN7nFcX=UAa@KT+D@ZAS58Jg-ic8Bi~I1!r$ea5yUZhFtdUaz-nFlT<0!FGtHaCm_U z7%DK&48tTpEFnp}E5!P;`U5SG$nKF6O0c(u2Qsl(J72-^Y9 z15)oo@*qp>1nN{vo*X*9N~$MpUB#mh8CJ8ub$W-x|Hh_c;hfc^Yl{(PqF zoo`N_fnyS(6O!e|My|gKvx?VSt;V;j*1Jn~;3Oj}*6A826tMv;;hGV4hJGz@CRm~O zWZ&a(c0;soo@}fzr<=iNFQQOFoH{9A%7@K7M%1zjCfx9!nU#7YI)|bf-(&tXXnI?(W39 z>gY=1%+6w;yw~EGcY%O$F2TR_?AiTPg8sy2O!}*%NGb!yH0T`xC)%}CSWFEK0Vgy^ zFal(5w8Kh&N_i7}HhOG^<(WMjp-3)0b>dIO)R~(PS4v9UORQabu|s5w%%JtfiyLJTrLCS@HgSDM0fS`nk9zXfAkV)Qfk@JEgsNr-r~{r`oTlk(bJC#P*P7qvwh#bfdeqB*`a zzg#}2;($1XAyTfBu*eD9+(RgoEq?sXeaa|+i6Lf{{zxWF#spxRBBswV`0TfAx@=3k z50y2=N7>#9p9UPS%W<_%U^TAgy4ay8<<6G77CH<^QsjWUp2#!#rD`1|QMaISSDd?J zD>+J+two%4XOQC17;0lp{#%Ut(j+T&V)}K8_G&A!w+^-FxEIb8Bo{dOTvIfUX%~jv z>6R^^;18}W+_9RWlt?+C+&!rcqk95A2;kIoV&P#iUho1YK<$_m@QIRB@Z^cJGcE|t z%U#jjVfdGFkqXp*B9z|`;7HkL%xb?(A*INWe;Ayp*l)YiAFdaZ5XPm<;v$v8d{H9B z0F=@w`&8;5C1xiuU-Upblz_He_pNurg2?xZh)J(Zz%ycyfWN&2!`^V*9aJElalQS7 zU*EGn8b+K-OKQ`yj5lKU)26kO6j(D36yYJ(8ZsA<+d($e7e|~rdwc4VOAmZc@`ZHY z<6e@CJqpTVGmvJ4yR<@kcEo(-F*Ue>b`BKeYf()%kEwx?a^jcHyIhNa+@DCF8Q6PT zh_W2dxpi1G8Nlz79HA_?&VFq2f1)VON5rnUnKD|TIUC^yLHMI|my&lI*bY>(71jqN zyo=a2C$ML5mZV5>w#j}x{T@V!i|)6Rsts(blC@}|R6gU7~ z3`8)8Km~wu__6jiXZ2V?OWc?fG6gf3HBs8FsjTH3N-wG!2c!}oeZ(dmXDhf`XV(0n zjrJOku3Hm?*%Iq?9bMe1kjXFQ*~D`4^N}R^e?vR5?sTjdmeb!l5wAK)#$iF_Tye@M zF^$p5&qvSXpFf>E1L-P!2GBCi*ROE)Ozw5h%GLIa?^8_nVdNo>$c=-9bY*H(bCQMn z-fPP5HnYAML;nkoV=nb@l_^>4fCQP;$Au=x;2i5absGLJ++>gwu}_Hue-al2m(5|5t|2Ihmj53v@23|LxN=SyZ}#vy$I-zm>ZuHCvh$xxGrn`*#c@(I7`o zTxtMMfOJVTW=DxVla5)Yf@xg4${Ekqcr7(B>ATb`N)kIpDX~Mdd78N2xu|u3g@1LDzel% zK~yeSWgF*y#hHlM#P2xjrNgGOON$v-A0%30ab+Zh7t*2JVvC3Tj=?)(hCERWGIvP# zU1?$@Ql#f{vbY|%BoWd}s5HXQq$`%3J~6Km%Knc8x|MNU!04A4b_Ir1U6$xFET}Mz zL*2D0_<&&aONMjwo{6qy_s%}0INNRZ?_(%LQ(NTG3Y^&d6y`41?~BSFgUk{|xZu{yK-||4 z%H0fte3{NE*!ghyt~-O_C7UOGvtn1R7ztE+pNT0}fZ0s5x>TR}$UTXF=c`IIY_l4E zD0Pbeg~Z42dFwxm5&Hz@2Si_P*B<*f;3hzi^&DOA#JQ+)@RipspEmELohwGObL%!EXSsCrdjD5PIJCYzrqQY zv-|HixevGWvm%++DZ(w5epV!pbkUwJbTkTi*`CY+EH%=l42*HRsb}Drh}k^#tW-Bb zs|}N{a5I%wru%b=SXvZVnX1Cq(}yCGTq3kG1Y32y$d!>4WlKyc*X@Nbf4Cr5i3kL- zSQ0@F6y+yn!HVMO(Wa%`-cpy=4)<(YJ}JyUxpW@{ObuSHUzz;$*8oDh3iyq%S87sJt#QeJvv%ED_(r~S%nHTIXRp_t=vNJ4;e_&Ie z(ck+s_`Tw0Dq)fnGx4(onWB(ed2V5gP`pLh9Ks?*X<^ktngRlOq(6IzLeFv2qmDW{3o7axvgx5@}Ke_;B( zZ}RodxI9|lJl!&KPrJDmg*Q*MY`x_yyHFozxQ;nTA|plGU#`2lNN0n|+Xz%GsjNH<{A74q z;3UE;92GETGjl1-4oE}{p*c)K)a!^5=EidsC5_5RSNzPH2dy$SNA{M#G>yQ4Wd#oS zcVW5Zs?(Dv;C%-8u>puN&5basO!+F(N-M@|ZHCVm=v4f@Mf;;4vG`@3afAy5)2@8i zL_jQ@Ty)V&9K-h^rT8M@VM3VR+kcYq#0cW@ z)ozFVI<>B18FWVhoO5sfwSkie__%erq&BFj*19l>x-iLcSH0QosJ}c&<|HLCxmcg3 zY)Ky75>s`zl3%G5_bOEbUCLYNmV?0rg}Uac4&JtepHDB*)fD^{Cpo%6+21&MsEU7Q zYxS=*&v0@fzFaL(@-d+>$8^qPRXN}Jk$5?6e-)hiZ%!zjoDV`yVtM0)-oc!4n0$Up zxO@zBBTh6(CZ8Y17*eDiU!>HAl03uWZ6D=fU-+}J(MnUs_TQW+M@Ugfg>1W%P+c&J zx)OnIPB;ysJnV8Dx{TxTKf6$1-rwyQ{m}D@(MFv2R7kuYRU;do6zjNnRMbKv*u8Oev36qG>@7X%xgLTnG|iCg(FrUc-G?FIaX z$AU3@Dtw73$clui&_*ye8P_q!c^)GMS|jod&>~#0#^2!tv+3=rL*a<%b79pFqgs)O zzKT(tlQY5Hoi148Z8011;O; zv0=ptECm#;PzGbRG`dU)W<{xX#MSYiB7UAPeI6QptzZ<%XnY%5)*fCzpB&5Pd*Dsp zqG=!#0`QwIIGK}Y(jq{L9Q=b68B_A9Sj^KtU%kD{=d=s+?t(1&>gbaq>z1){RiebM zN^B^HqyI!_@#?P9#BUffLcVqYSf%FGAX8Rm{p6W8d|5W6L&r0n1&w6D%pj&SY{-J< zU7Y4jbD~`RZBf}^se6ipg9s%#hQfnN1|n2;9oE>Xbpf5Px-Q(+Fqj}KZBQ!4t*~p8 z;zIc@D_K#SS%5BEIx1b_I6l3?dAKkRi_m8tXKGSPhXltVM4>;Bi{nax~?;*yGtiaYm#wtzN|9cDt`86S2N446%b5rW} z#?*>Am5o=>@$3yM^=)-`FjJ5TuFT~=;Z-EubHBb_!$7*to>3;3s|LWziX^FyM9H&o znUuq0#j!aaOx6vdYfbpt?0Fw-!py>V6K-MDzgMPVjh)e`OfbXcKLE1}j-kHu#WXg| zNKe_Dy4)%vLV`z_yRJjiRV*g*4t-8Qnu$iN$xwho9;8-ujOVG*=9z967Mj0wK|&IP z3%CdvUjpe)+wZL?YteL>G({Jw<^YcV0_J*Nnef2&{{>2HlyjN68I<`!xZ9|3v4m-= z0=9}}p)O)Fwv)nz&Zvennj17_*yA{CiPtNfiJ)etP$XQ&#p^0K3I>p#?_4|A0uQh9J)~$d?xKW^ zVC2^BiD2S0!UNW;b;g87?jFl^JK5$XVp{qoqKuA0Cc>$3Ax7(>H5Z51%F$KY1?7Td zZ~VOxk$8nnk3Oe7IR{o|-&7>h(>xe~PdGZyDEy>&v4zs9Op&03KIami$qviF6{R1w zyFv6e?#On)9?ozKYS&K2PH-0`q?+MXs?57AGzG)a-e_pN^nu6pv1O}MPamK z6nOIFUZPTPz!{oPn-U(}AS#8`fcc}0QUUfR!@+@|10&=@g$@!Oyh_y$#iPtQXng3vY1>5 zvkzV1REHOc$tB)GP-~W#RQpZRlE$&Es07+eN*cCTOuC^|RA$t^iA>~Vn|=t1$QWUt zJXDG)#tkw-U>`rcWxak&E;0YWh{JZaIMcVvIqh8N>tjL!khN^svKKK?w}bShaVg}m z3jObTtbkWvmmN2<3kNuXtK0CdK1BP`P~~Pl!+!826Jx0O>z~~B|<4m zn8=0^WuRni|1yQKF0kG@k*OJ+Dx=Kin z|{=r|s;Ewz1eF~=j|7CFNw%pGBL7waD{&yX|59mM&TrH7jpR>3? zX@(OKfn!nT%T0-hdnJfN`b)`3LrmXSd0)%qskTJY>wMS$@}+Zqt$l_9QJ}X-VF0>c z*cQyb;yLL3ETje__ij(J9a&HmeY!{?zmq$Csgi4IsN(coC2$Qu&#ozy*Y=gaeCc$% z-40B#RA#2Yz^=a<%}@@9olBfVQ&6*_I!ly8;q;^YB(JZ_PH^<3)}|44F%#bzM!$gs zGajCUF{`Sg&GV+tc<*HTJpe4M)0FmCLwSD1u)V&n>3``4#gsES3IG_m`zA_^Eci`Z zD$KFw0IamgHBgK)2B@I~VCGP+15lPR0PINsD9>{dWhQoMz=ug> zDl9Ut^>=+!W^nc|o{Lj%SRS|;TFT=CCB`&DW2)+@3Gt82TB_?`-+{O@F0f(!4@bj2 zXZ`Q*9gH5=|3f@{{eR#q*$D-w7lR5~rTj_+8>n5tnttk*u?Tf;#KeO}8`jFpU~+-L zQ&!;_cv@c0nZDFQLiy4bZpzXXRY8jUx`2ShfErD7zkKQF(*5s593bPo&5WN^31=s+ zn(zTC8(2=PwIH#f#5x#U;!=wI}r|ZHj8@t z+$MLOA#@odKXo$aBmhqvy&Nt*eHVk%? z&+SRK#y%y{VRg(K#@zvC7;tRby~PkcchPV$e(R8O8)Pf!nwc-XazjZaDTzFj_$VaY z+vC~)bf zi8yf05_}BMuT4GOAsOh=BD+AKS0r!+aSUfM(nDZ1F!hKOMy0a-CH(xcd@m-yL5{E? z3T#YRr|eA&D4yf6aL` zv5c?HN|U_RCWsp`a^#-M43=Z)BZel-Hy;6^EdPnb5y}Fi9q+KYgn+WVCvN2#XFuL9 zH3?z<^P!I9Re6ymm4I$;GFlngZ3CYwmtVFMsq2qVX%R@0ek9h$DhinsURWN zxb3#6)_7&bb6^>wOevba1VPXS_iCFC_MGW0ApJX9mlXpwgu7+$)MPlllL);pYxlrtD$8WyoI4}JDZ|XFH;ho8m5HC&KhNFjCLE!iy91fsSMXz?hG~< zQ*Aw|m^p4|RMKdv{>2 z@_+5#_)z{Id*l64#s6dc$p0VY;r#y;g(QiX#AY}FGigr=axsCC%*B^GLGo%@zTqZo z83W`EUr($gJg>0^n3olJ$i7|~V8Yxg>R6Z9oXR@-{KvDXOAO0ce~p;2E~`j)fs5xV zO?b>;Ta@;qw@Qud(YI=ZYB<`*ejmX*}ky1cgZ^+3%cF=$qXX)0Nur+HyAszURu>iQ+yOG%c) zxE8Cb2yd$;mCpbBTLe7v-zt3A`(MM+;K05AH5xtM|9Ft6a{uF`4E85;%kX3cH@ywQ z_dWk%P`U~?9ssEmgOi_+O!KOl`MheQWTo})xPyKLJK8~nqr<-oHq2k_%A*`!%}j6X zo_jns+BMFQ7;;_rgos0|ly808quP>d<`+i?{zIQ_to=qyfv4TJXFp_)H&t#0d-2gV-|JWb7`u})u{K)?w3z2aIE5fB3mfWpk&FphC#?n20%L zI+kJ63e3O5BIjXBxM!1L4HhP38BFs7iP2Z&ILZ;XT}Ep>n_4-H*0r#;zh{M8S7Guz zGwd_}Lz%kk4V)4nlgMv3ec$6G!pX(sEN<6KMq(rb!N3&%n2{oF82OG03S+LDt&cK&`s9=BTm;3{0pGM;fA)k-pd zJUy|x{|jCGE+v2s`~P5n;GX}E4@QH>{r@2zx&I?@>dA;GH}U$dTG?$po3ZBE0`Tv{ zr-irt`xO3Kpy~!D?NW?I@dRV9BzjHD{@+b~@vVQ(Xdll1cQhVU&i@7nkL&+Io{IfP zB}=-Yy+<38n;d{u5canIzbf*(VF6OF9RE5+yfyxH^0Q&PQE+Y&??ctCiS|+Y2wTmz z_Yqc|Y3n0w_wJtJgXjsin`>((Dywhn`Pnf%Kh?Q3wTN{SQ8sydo+^^u|Zh z24bu@dukl+$=B0Bz0zcptEZ}Gx_UZ8`un+h>K;6Ldfw!z-T$FbwC+L-*d+fSRL*}U zND$^yY7q*e;LV+G5fGwXbcan5BYG*!a?G>DNZ8(Z54u$C3^oJ3e!xHsa)UnJ za=AChZ>TK0x-bi#Ko7Oc?lJO0Icux($oWi3EG5r!e1=wGZffbix+dkZ@`>C`q;rj< z&#yvLT=dlP6)*;%TOk-T?}GxQ2hbcZAoJb4BN4Jv?{!(-9no}I#7J=vd_XYzCBr#- z&pmv0!EfN#f|y}o%CP+wXgh7cdKlM+7bVU;ivMM`_u|EiA93Jo#pn1bpb7I(0Cs@S zCy7mDa1oOkj05nr;ye5AVv7G=o{Ic0-0}Oy^^E?xaogf18o?&{e>8OBe~gBs{mG;J z{}7Lm|CQ*U6BX6pxt>Fkjtcv)mT({7L|zL;r4_#>{6Ej9ygBxN<(`hm3#k4Ekh1ml zzXOM9%J_ksYPHNEC{6ewz(+vYyz|)m(~S_VmdTTXjJAwVmpCS~asMK{rpK>8LEP-&~@#K1`96 z8-O6s3KW2VClx<|`62*8m%ZkhmV&ULIavlESQ)rU40fA_EUK;nWz9E+sd07HonrV8 z)HcGY8L;NVtH9+69soBzuWET(Rc*CMyzOo`8|tEP+u5iKAad;uZ?q9k-C#C`8>-BP zgwX#Eyh1t3mW-$KyKy4-mvv71{}ZXo^>L{nqgANvI7S#9vzay)-mU|ZXAN&dll<^KnH^!cA9 zBDjgGU>OY6*Ej5AFGDGzI49W}eEBkMD44?w z@a0P&V4f6lEP`=3)=0Zfs*7=hb~Veom0?}}ly1|54oX(jjvW9J_Aozd?2fRzw~r?Wp>hU8sfYBw4)#yR0v8^XZx(3hH^`(fuojY zBqt$>r{L`9qyw`HYSKwPXjYORUWq8i{w{Sv(Cu=`fc<$ZR0G*kEdUu-=@rgQ8(%-L zZiG~XGsBcCl$3W&uaQ>gJi|+F#4|q$zgxrCw&$5gJO?CeK=uOXr5e|^-1m^8$+&Il zQ|&WclBCw_#G!yv;ijOU5t8?NlrH)>I?pH+cJN{*KFfF44R>s+*l1HNzs+IVZMSq= z7E)KM{r{F%0ygab!{Nc6oBw+}c+CI#AdlYv-=`?~`Q#Xc8DeCEVN9i&h3eg3gnZj# z_pca*x(~3DZ+aO)J3us@0d~#Bes}j08g+hqFe=v-1RL3~XW1~^eML$G(TyR>q2IU# zKdO9R+0%;ui;epJ`2U`({|&}_kM}_6JZ~%dVjR1j{mFRdbc+IwTb^cuE_uUdyoGA5AtaK zuR}N9*7&CbIeJZh>Z{N2r@n14``N|X82#)Tw#jd6n;!rnOyLa2ILFFi3PzFglInuv z*JtO4uim{m?rdQnG{Rs05v_xodhW_LXpYDITLu{c!z2CNwHbyb6w&2}q`t!h`JzJ|+q3VstO zI$UvA65t}w)AN{n{hg=$H1WmY`9OZW$kNdMD86u6*Srrh$1xI}?B~n0ufOw#{kO;5 z(T&L^R`O67W0d3yc#*|+o>cd$Mwr1A$)#VpVNu`S1ugG7{FBVi^(^(As|`8KacIM5 zb%ev1bHO1dA&eJ<=K8IB?FF#LeC@F3{5*yE;{06d8teyG7;3H%{K-rht@!`_>i?sW zNB@7!|MW0VmH*#X|2MaSs{XGzu}A+`-!|y~cCj}4zg^>&`u`S6y|K^z5tVvP5_hH4 zo8xi+O8o|}8;wkBpBu4V_1Mn*vXAnxWRjLt5L6snRA*E%38~^PQV-L19I1ZF5RBd@ z@p=mK%nWsRL(iNRzBrBZ`^T|={Mnz)`@f#l`?CKG5B3h+{eSN<{@=qqb@m@K$<#yI zf69DQTd0qI`;V#7-o5?DC+6I<{iht8t#ABkwY>hWUsy05E#&Q5>t7yfRny>90Jw{-q#VgKJ7RrJ5X-sAm`2YDL(e+2Q~k>ihd z(RKOZn>6s7VoLmG>V1aX1(aD*3+$!^idi5Ko=_CzGE(r0B;J zpc+!&Hi=cQb@I!Aq$m-&RBxP$wFCkD0*Y?z3TNn|fZ44wznVZi4R%^d9IG@@vW5o} z@#zN~%ShLMR&)2`<2+6LUoM0GxggVf)BlGDV^{tgO&;@qJ;+nX|J8LMG4()g0#Jvr za8&9T(;SewSGDfIB;qxp=XMd}q{99@$D0oqG-vj!{6t-1x(|(Cw*7z#zwYhU`aZp7 zU?0_2de^~x9`~BB>uJUR?>GL#-oeD>|HI+rQU8CCr*i-Ew#UC7E?J)b%8$OoU-@an z*{@Zq&C#z_;da3uws8DbZ%+T~^!(lXS0CTL-s04ljou&gz?jj`U7Z!nQMmtO;+jJS z*8U}q`{TeU^5Ol*v)AWCtHkhN)EiEEgWjM&90mSF z*J3bhh~l$w#yb{S>*@KMlhxS9Of-9a&BZMl#dhQymzpWpQ{o>G9|n`M`cw5?=GCXG ziAYJKOL$M>H}tI@_DcYEjDTVP@y#mmmg|9Cw~u!+_!H0IPn^*o-emOasgz`3$A_L` zy9GrVU+%lj+R5|R|No=6A78zGb^QA5m-iq3etQ1q(^HZEWVrvkxc9G~P5vJTuKYJV7>pnFzXy35 z^S?qT`zwr<6aG7x-f8Yvm1M#RA0S!oyoh6!A7rx)y6fI)cn4Eey98yFs^pmM*_Rkf zc}ix)@A>mwm{;=6@4f1s2)pH%4Y~e3j)zuqehI=((Xy-F_srM68yRYBti&sP|FXX~ zz%!WFO@lZ%jd8GdlUY~c?WWVMW5*lv=_+t{m_%0$Mx_Pzx-6TgG1yVyb}b`j-3HQb z|ETBxD$~&I9l)FU|8OvN@Ba@c`{T#>e-H9(&HvxX#8LOb{dJ0=yWss2*p{5%%!_qv zzV9a4`U<$dIVx42Z+>mT@eKr@rWszsY<((oeNA723&RGgQh-$qt~x=5sP33qpUSwj zr)9S0y18^m$ib&FQug9XL;+7A?55UTIBbFk?gM!s97DJQw`!)O9lRhaO&e z4{;?4*a5n`Yt1R9r#YO(-nD1izI0YPRY6{4P;iz}bd|9|p(zx!5y*Z9z`kf{t(zm( zl~N$60aa?=_;dFg)~7ls)s*U*$>7f@dWWMZMprNs93k-ICT?*4;8sxU*6}ED0E;Zq z0#Kz*i%GB+tt8YOdKJ-^mgV6Y-~{=foF*$}-NCD17hD!IlqD!fG|Zv^?Akb$*1eYK zXjE?7a4Cn`GMO`t%eonKr)BA#k>!??v1~UF%cdz<-eUCY+pit?Et;#2xx;Ba)4$8! zF0B`um2Mg@KgCvI>9Jt5(zJ*g8l=9)b}RjL)ftaZf|m`JbtEGcN{|$tYE&R|@BQi& zpo)4EwNdRRQP% zp2T!&WbD^KbY+?7v?L_J11B*JwZ|1xPu_nkxL}EV36q8}Mn_1cPXnNm-@svS=KmbQ zHOOO;;*>G$0Dle<&!OsT>}l@<;>T0H4`_wig7tD;JO{lJomv$65E$k3VE7rUXGZmp ztcXjiv7CXGXZXd8m96vKw4O;=@jCra~M);WXh>~8yH)&n- z1?M}fea6#4U0;`+@FYWX{5cT7*=HZv3T6PzV0ej=XllLOj08|Qn%#=#2BikNQWx-) z&ef^_B*k)uGEu!uj#%l3CD}L_9dB-*mV~vjDR;=~mf&_)v_I}sZ~seI;avoOXp{eU z;KctL?oTF<@!uch+1mbhq7H#`5%=XNhIn}|*1&XSq=WL9>df#5M%ajETV0K%&V>bP zZFTlRuyrQXvrS2qqd|WSvsUT6c3gCH~mmZS*aX6j>tyn8R>ev#P_&-Az&LiO%Ipu`r5n>u8e&aYOg=% zC`%weZw^dUICaTV{53L4+SYF4L-i2D+uECxU_;5b1V-P(7$zagn(=bU)~Kk)!G32U z?>14=}k<$3b;pr*-SL4q7dVckQX# zG#Pc>polWwb~qP#21Oa?r7h6}G_g~gK;E2e>qS@T zc3RA0Oc%!_XKKXyFp3yIR3uUN)f(Mq5LV-SA9L*WY!7;7n8B@`(L$NMGIL>Z8?$B2 z?3pG_ktNACclOGc#t!k+yvAd-rneLOBM&dZ*o<9>Z!!Tt-mUp~TKo0v=)^c&R_~|a z?C7N9vjCSR%FcU`b&pZJ5Ue)J3Z-=58J`_4npv#&m_*#V%r+-sWf40RM=p^ccXxFs z)hnY5>Xor``gL|6O^f691l8_JyLF%0HnJ<%dW^!HWK$o95T9yRsr^~5$$Ed(y0vM} zP`%uxTYK9qhSk~ZH|(diLgect66e%+Ek;&`h88o5)I}Sp8IQgrh*R&5sJ32%*KEmc zn)r=q+Q)NBX7YSs9-Y*$A^!liKuW&>=b!Lw<&W@ewEvt7740@wpiTFG_A3702M7C) z_rD+H;r5>oC@-=^CfndDCuar1<|AWx+jgJUwj5W(H_R830iAFTHGL_ps^xb-U+YQ2!Hr zL;olEKY?~fU^`8{!)k^oW68qFanqRD9d^ddcA9220ySB?TKp0;;S8w6;iVkHZ3d7D zQL4UWfYUH9(V9Al{|4qbqj|mWv;pu=Y~z21r^^4;T{YV0tRLPY@t1ry@c%L6`R@JC zgU9p#2YGxPTwnYZ^B(Fss6Cw?=uGFZla@`A#J@U`Vwzowi}c+g0f$RgE#A#?b+?nnJ#I{hWh18Z#j1$ zs|-l?nsWyOvbh*uHq}v$sH+Cm@iEuTj${GVV&W#R*&|C%bP&1$oCfle))2lH+?8N_ zcbH~w8@()SC7RaJlx^Gc8L(;_@f>0_G?e-q@ilYevtQcstNtpvXi#Uhu!0(C#LRiC za?jlMmZ>yGYXcksou5Zr{v0ah)2Xbj?%Wzgp*g0fx}R9Q&2dg=f|U%>SIhz1?RGoc z2LuoR9si|m&S@)dTN#OCX|Bp(5*^0r0v;Djux~ooC?p&Mv}JqN-u7Z_E!P~|dggpn z9^+#0tZzjYS8g~=`~7cL({EP7A5Wnm8WrH5%4yjc-ltg=s>uH_p7leN<^6N^-_zSg z{uR$A|KH(g=*s`2y~q6j5Ayirf0X4`@LuKZqA#|zc6QNQvmFivW%*Aej;u(Rh96H| zVcS2(mwZOL!g%ir1y-TDMjWqMb$h6`czKs-*Lw=w4m}&Uo3(2BDcM_AY5HTSd9aijr zlgIpj5A>+>pA4fF0*syZ=TNG=i~#T)hcHI~QyKZK$WT;&_~YHny zvb%BJn7y25WT~S`bFr?mXB&F-RHDR*20G=;o~UT_5|FbxjxP3dVX>Dw^Zf zd*(=1d73OF7ZF=~4b1IPIQ*I)zx=m=OaL^@X!q&=GnkAj@qZ`d$Nc{f^6(rhN8+BA zdBHPh#pA^l()pA zTCs|k&uMQp?1c&Lg-JMPy0nV9&YS!v!3hYSf#3$PYwW0P$6(9u{|;=jY5iNVt!}{p zHv0dK1{MFm(PRF%2YEz}r8p*6;P1r@NgJ8W_(FsoG(t(QcIkTqpk0=rO!qY9N!&X! zD;e$fRQqbB8i1U8i;mz63?D|ArWr{y%!HTH?#JEj+~~Di^~wzER(48Uj}0Wt!O2CB zF(gd-t6^ZzGkfad zgyt{_k=--X&Fqo8{<}U+{9lmHy~lqU9~`*y|71LT^#6E}hx4h|pHnDvtn#ZIWG=$D zFfyoRPbOnATm?k@qhr&H!o8(pxO)8TL`|}MIy|6Wf*pOg+4EVc4dRpK%duN~Z=}>p z`1Zj0o^C}!wA?~GP4n~etVlvI+2eoWzZNjY zbIdl1H02Z0>->TQbY4DZZLrCqV1`0iPy{GhBCfy*t}do=j!_(mD@QS2;v7XHT`s0z zXSU{3{Ob6WmBq;gPtdsA>%5tROzZ#xh|J+hB{lGOSmpwrAy80;Ck2orFR^VVnbJwf zAe*GougH_$LrlRBG7-cb(OLyumEI~v9GX+T+e~+MW<0lEZF?5liEznrsdYj#%1ST>o$zGx68DODAu5;)@~&Nxe^T$XZ%pgj*PrH znaedJN^$9I19Oyeu45}OI%;qn`FAOqW+;uhfBpXrKyV&x&tFupT(&Mn*26F)MUpd? zz&J>APpDPr*jc@X+14)D6G6eO*;BMyF%nc<2zTqCCU#KC3hC+qN%}rTOF*>-6YGX7 zNl_NBK?oU9C?ZjNCQ0&)#4*Zv0GLe#qD!BxQ;#9V$VVs3Nx%6Br7>AA^--*23VK!f zd~Jsjss{|wk|Y$>z~x_0(biyT4s$dwVh-2``BWD0!R|I(tIYufD;VPlxNYuyLwAEZ zjC@?Vc7tZ~8VH*FzaZ%G|LXfM0hs?9C7ZUqU!$a4r6m{WF)q+*A($*t+`G9Qhfwlg zll)InUfe$W=jQXjgK;JP<9Pq^{O>^?56SXrH$1=l-+^~1yAbOjCLxUF7APGhl{e>;a>x!y+daC_x!pc`2d!MTY3FF-Re$S0sxlzdw#pgrX+c z5lT@Kp(MoohKd5y!^uCnHKnQ53`LmUszDB+Ra;A#VHnMB)tZFiw%5vV)3p9o0Lc5b z|BglnL-+iDG8sI^|9FsxOEPISZ8b3G9KOyjr2Kv0Cy;9vu#+{~h23 zK}w>-(wX2brnv~nWxp3gUtX6qzrDg?u0yJnrR=Qto@NYyrJJJ%v=E%dBpa2=8<`3x zm?VUcE$^7WWp4{UO!R!(<*lKXZSK~Lt1zNlLn>ZXMpL|QHIRmE8JFf67#fv9ppJ0tVT|F-JBnpZFOhmb+oS6(vh7I2Hl$nMQoErq>-!1Wk55y( zZRZ5m(6^1zh6!@1-ThKGE%!tFUijP2L)(?$ZLE>0cvgYctQ>0*#i-;dWfFjLoO!|u zkxWF6uvo|_tB&b)HBTGP(XuAd32&on0kmR2#F*yXytJc|pcz-WcJ1f`{JwgQmc7JE zY-Sqgs^71xm+ws$CwnRCi_W;`tM(X1XoWWq--balfNU5aQSvJvp^{`g+ozGNMg#NQ z_AK{HGgF1hUlQ?tx7bO0nl_fD9&9`Kj2a40n~h9Lz-qNqG(d01qVi?R zW39PO)^x$%Pk8Mn9K1O5F|FMxoW`{9Tg6=mov0;(irD0Sda$W)u{8-W8znI>%p1(L zl?A{>*V?Wsv%Fzzk`wF`&#V?&OszGs(gClWP8FHT+^leNaih)31pakzRH}z9*f2w= z!iLqTX+TXZSQfTsQC|&mSDq~FWxdsJ+pIl>bGvm{ZR@VsZ4KnRW3{pYADgXd`vxr5 zXk>f#suqgFTCLajKDBqoPOI?lgq2FL9yVHSa61-SLT=AKU-NO~mrikvE>Hw`P&1sb znWlg~=iq9A5>uYV^61#$tkz+vsC^`A_YA<5(>0HrThDJ?$ULU21ReO?s3m>!UQ)P1 zfEH;Qqa{jm82^}&BBdZFfS)%lL^Kw4x6OxP22gr8BR~Gb*zM48P8h}wX?*7g36gfj$6z=(sKqTL z%Nb6DD~B-W!Z@xWY_(6Dq)dynB)5|+66n{5+~6cZUiX9x7cM& zP&<{2qA$U4Fd8#%sd=OqiWQ_)_4=id_iMO_)GloF(?-PQ*PG*<-Wc1B+_2m+G{icl zB$-0svdC&+-e!T)Tx)frWXT6DIa0p1IE#a&1w(N&7YKiE^9Gj(T3dDHn$kZ)a+NXDZ3k6wgjUn&`_#6t8W=s?8}Pt6vfa_*lS zq^qz>AGPp)I@thjL1=yg^MxIfyGK!eg0dy%2^Z-phgAc}E*fmATj9nEgT_WmG;7P> zXr0>gwknhRpDA~=hn&FHh*tKA4Y-N1+JKlR5_&5PuWxrf)9?SM&%OKSOs-5zg6gf| za$9%64gSA-dk0SZ=h5)s;4%KkgFKD--}41>GQhJpOHw2zj{*NAGm!=!Q;-!&XNKk^ zQ}<-}<>ENz*7Js}VTL1(O>jnFHg0LLP7#sF@`O@ji@W##%cL2akcp>k9 z%bvqH#R+=D-uE(;5{h$@t-+Ts)0#p#)LDhCDUlKQi{y}gq$rz$0e?{%q^CkE=Wk&g zldBW;=`{_Zpd7P|DIln{nM@#2e*@43hi~6@0LT#K>6>+CUT#=X$m_4BiJ)b&VMewv ziA0lK5cFp_>C;7^es@FtCkht?e0ylA=OM{56y|KkP2Sq;efuBR*VRM}FpAjcRjQIR z{eWYn>5eCVCAr84;i)1o_F&432Y~0P4Hx7p0o@N^fAV~~KY0%Nt2F7W7XAZ-izSKJ z_ly5~Wq$*|{RTvzM436nDw*9XO=OhVXZ+UbniOo}6V}h;A5K?eaCr2V{y*MHF_a=C z7F&Vm&%o0~$}L(hfg9K|;*)&f%NLP{Azk(aM-qt@sEX*|^r0T>DwHo@n(^PzuP%0;3vpW3rqXF9X_WbH&*ZMw-}tyX=b-m%g#@z1oF z*&pSL5+1&DWRtFF;Rv$}$*S33cY)pA;pX}+)C-hb2y2yAVmwFTI#l)x{qy#ab0*Ct zLfKg&N*O`v&B^%quKYGNhIV`41~GcT8+7b5ZJ=Z|wRY^2AK$!^^v11;))HvYwyb4T zg8T8q`;RB*cMI|^pk3?e8#}dT$PB^geG;!f5Rx-ljIL>pmRu66t-^GiW0J5cpdx{t zPR>8PK74il{`l>Goqu@${><)2Fbw=YNK*2;L~C^hVJfI7SsCdzP034!<#q=vPh$n< zsb^TWY@7e}Lq?YEFkmH1HSO9APA)S}{T;18pm|x1uYUc$tZQWIDSKqW5Gu6WNBO8! zICXUy>fWm6p^2;*s#JCk;^zBJh?`}%Mck^p8FA;GoYvnI%PSe)^GbD}Z=6LaC|PmO z0Gmh*uR+UvB0tIgs$ZtVphZqraSvrX5S%fn?pZRJL~tUa9nlnpc)sQh_5}#09in7~ zGmvht`?muy*yOaqqsqFpAQUOFH2B7C~4C`|Tgojpvp0V+ek z7C1u@2z=e6BA^pL9wT$Ggeg@u05n2NsUty;UxuN78B-`GN>;ub~l>^!k4fMKE%Vn}@wTZVzYH86x{Q|5)bdwfWUdY_~ zJD$u*cl%W9l^Jg7;igm*5rKIzlc zlM!hA@-yd*)gaL&6w_!{0+ST%v#1%Z)QQqfNM~e*{8($3u>N-)AOa|~_?ahn_bb#d{P<~V=6akOf$9?1~PO-n~BLrU5^rR>O zX@|7(RgLM}Zzq3xa|8LKq3w_IY_$KSB)V+`m<{K@lR+i^)4_26G5+g=Ji`9hIa~1X z7{Z)~b4-#3`(Llq$^e*>$c+DDiNo5|CQ`6+4&%OSw8m6jb*mu?8#X&%Ji}g%*~R0i z&zoy+l&bS9wwuW?;Q(VusS3VbdD-4tM8gG&iWp@Imi3}NoCTrzu}ICpN*F)4gQ28; z^><@!^PWmVODmWDVHtj`BDSzr(+dO6QC!d*Wk2AI=D*;4@slX&$YM1Ws@t9&)ip|F zVxb-p3D-PdI7Omtg)-k)ieMHl#2&2Qde5_~ZSm2NKW=Z^^kdA+8ZV~cAOCxYO_|*X zK>gaj5#vvBsCufdwj?r5RH;+ApIew?FESXS6O>`jD@YRYN=AtvD+OxkpRr$kY@!9S zCh4`}FjK>Nwuq63^I9loiY^OPQ%HR3e6l?7EenXc&2lMoD_){Ct!v;nP$c+Q@Ef2c z%Xt>9UB^07o?fX`i8Y{X+oYj6mmq8x98h(`DI1f)L90M3`nfwWF98%c=-dwmbf1bW zDL;+Djn-Fn(?c`%#Ji6Fe>S z|17^{4A>3&|L|a3$^W>&_o)9r$ioerC;U2_R`^w(154p=q3(0buaTldUyP0I+rs|a z6i)65?fYn_jIhOlR9@?o7xEgmdS24nSporTD`Nh%Op%N=vx7 zR%q!dX-0AqlGu97y*|*d#@FDdv$KX`5Xh0X%LeH#N+~p?YO=? zI@9-U(hM(QwpMu&r5^4w`-*xZKlEgEo#WPosV;E`WpnbTui2ux0U7nAJ-{w3_l>Hu z6hlf&bVacew;gdnC%+2oajPB$DlEE#$L_9o5kKXld$vwRUMtRZbXo?vIq)LKayw*y zTi2Jw#G33+6sqj5PIG2!>T?hn>cRk2DoQ&uCnn3QR5mH@?Yk+U#5bCv(B}d%vi4ZV zA-41+a!A0M_-@6Up+t$_o9KGHN5uV2vs7^S@$7w2DeM_Jv-OhW`&w~QV%0$8n}0L9 zmXQKff|ofxQ#+v1hO^bVU)Tpfp1~r|(;rbj4SciamR8b4%KcuySp}+RsklQ^aUHG$ zK*I%M0#6BoBU=lhcC>jP@-RIm;bn6#8i&-Hb3;7ww5G>^i!-tV-pU($vpw{5Gh81j zDX9Ex5XP@i4AZA>Fu#yw9V&^)XPJQF#K44o}9L>DBEs<7P>Edl3viAa&xqHKR} z2{g5>`7TWBvmathJ;MLz-R%Dx2KjHaH`sUYe-8(PNBQp|9vB0`9U z%*=3}mQ(;R1*Ik_rD2m5f?$Vdt=xFK5%*H!YFLH2cKf!bM#&hfFt0?ovugPYR4IusEMBx+R~4dR-)jj+wdu;@ zyjCsURKISTriO`nJe|0kr{(^CD+ADm{eQfFaNyqm9UP1v_y31@xcz7I{@=d|hMeHo0WUw%wiGgd;Y1BM6jIwpZb?3R1esJN{`!vanJ8jA@RO z3(n|mHrM|S9L860O+lKWIm!S`fL$EVbs!yzavlBMMe}7-lN)kw_rC-0^99PTFhxM1 z!IQ!xaPsq!Fx5NFx;;#M*~p#!WrrIP>MC(jrD~Tk`nTg`%5F0&we9Uzul*$Mxl+YA za2E(Uf@oda?f}n8Caj802yLw46H3eL9IA5ub19Yxqg}}U)GngBMf;FK*~gr<1p>58 z^Yts7+3QQawZbpilAZ}_i6UH7EQRG^o(30)l7UBhZf=3%f1$T{iQQ8@ZzH;}uO0qV zm7O}>^;k5=)sZAwb-jqu)YpZA-MS*;qEBE&Onypc|3qP~S(?7?r>WQ|z|ZoK2=8UG zVy>q#QdeYbHC_U!ZCTzHGu}J}6_u>9)A|5V{1)_CvVQ}z*GepgM${62A8)E_OP*D_ zk$cNK66t!zt7$b#!X|)hl(ibbe@qQ>^!Vva>P6$mh3SNvR6j*)sglvli=kS{mGt54 zr22DX?^LNX9UKwxwD=7JwYewa9Km8R%4yClEToZBaj@X?a`IgU_GXr^pdeDqdnAi? zmb*JQ;@#r$%KxTgaQ|GUmwqF&OK-0UY>@x=hr??8$I)Z{_Xl}A@gLP)MhYO4;3Kls z*~z&T3MI72n6{9sl|cavGeRjS(uflgif~SqT*=)=YW0T=nasRIAy4?;;u?!J31*>7_5+~6Vh)YPFCCXt0bIACl z$RcDMZ8{>L$};4+i6AyD*?yRzh>BiCvou31ObX#AMaX55f?zcaKp+rs`bSe3mYw8) z0>x6EMza%0sXQT9FEc`N`?ctf5? zC^TY&m+iL!#tJtm-gn^jk~GTqx7Ot{J2U10Lx zj}&F%lDkCOUaK{=UcnsBAVomUf2Eg27AJ(#?XdiRl*UUEp_ejD;)7$I#tsK@iF$$z+H@z5Dwp`@Ye!$uD$W%B_!RG z6TK97jKv`!>czPk%m=wVG$>=ev<22HvKRz>J{X9trs4)|usMH-b{Nfi+G#%PS!S z#+gwWu|dQ4oE(*3yR7vx%4}f8l2nD<5cqZke7Bs4f*;gHE&Uo}*ZafP7fFs|kY1c) znjsjiLH8r@_S^VVZ-HOFfbK#ZABYM4^5s83L;#HuO2G)Q9|;P4F?Zk0k4b)#A&Qdx zaj&`eXDj}HLj&L@``_N!wf~KV2aoqZ9_0DD?0?qAaAOmovpKZf9UjsUco#OncILnI z;y#Rj#umEC{wEP=3r+sn1lH5|2Gd;)x)o?{<6D6B;eBJnpdK@Ck-GjjTLw4wQ?+^n z^I!?vRGf{s`{TWlr8_r^56v31x9*LNhHY`LHy{2Eec5PAY~+b|V@PZRvCfw047#6G z?ry+ZSQQNw$LQG&ZHqo&sR>FiwJktxX3^KmZln5f z0A8(6fd0J{KHmE6b-ofzz1nv-8Xj+{NeiVSHwUC>6eF^4<(y|z??W9`+?XBUrm1%F&##WN-Z5!H3 ze)Tu@C_Vj2AFupZK0_%Z&|!#w={{|Yas;tmLo5o7u< zmuy(V1)7S>U_6pt=L5=%ECCQuGS5LmB6O%CreIPA=YDBt*Y{ z{TYP?zee5xperxvp(I4=WOfPjaPj(cnjsNp+dQ#VN!fZ<0BH7*l!?+Ln}Roq@mh3q z`v0-_w%u*q$b#_m_3AI&FL>y?CswZ5>}K;-XC`MA*@?B+cC?b5oI9SJ5!elq7&RL` z4Nx*C&i?j2C;;8)7f>Xvcrvrrhs06?g+ifFZzvQR)mwCBMD@7}sd$64^;x*aZIcH= z7fW%9f{Hk=t>Y5s@h7dL1n}FgqZ&bWF;`P|Uq-u1@D0h$)tc@<(^_s>y-!%UV$I}c z@1Ty_Ex*YMcB=1Hk-s5xaSg__FNEzTH9QNTby3J%a{_+Z2de5(f!b0>u}uPIEH?D- z$$zJU?!O)xi)->QVyld$Bo)P4kPjlqZzR*cHjbuwtf2Mw*2|PM~xfH#ck(RCN>t)j_XYe%N%E!cekFAJSBo~kFs9T=~UgeED78guC+E- z`x~vzMX6(?Un|h1Ioh7gbPSxDctk~RN_nQK))KjBKsE)?|4WM7DnZNxF?;H0@kbx*hF8c)#fwBbH|yR~e#1Gn1F8?82EbCd14#dg_XTej4b z?WWITYN(N(z|ydE;nNu!)|P(E&iLH^-!}grax*{C_y7NPssA5@HUED!^2cBN|IhKW zoBwai2C*b4%cV18Yp0s9q2nsPyKe7t2jva)$? zQ3?s{T$kX){jGmou9|72e&1yYD_A`t1&P!xSjaWhjyNt)I{6kdHE8?f#IjAp#|hMe z&y%Q*ZSr4RX}`7n_lIG<{{Lv?f2sfWS$_7A|Nm7Ok%$YN#?t9hEaGHd%|WKQRkz=H zfZn?IwOuV3NI{mOm}Cjts6xwJyC1eY0f`FyKB~5O49|)`vK`d|=4%(`|LB$7?PuHm z=Yr*Mr|A;~z$5#=9}b4~^B+I>Qvdn0{OoW4*&6s-aR`FviQBZPVIg=>qg0_*<)n5q z&@Mz)8iQ!7rmT%sJe2Vt`U4=TUW>9T!Py@Ri;%5FwzeM|DH3WL?F)zVIr$svbUW21 z)nbtb?jKR-&z(PaIxQY1K)F6Yd;PNer|+(7&`_<|nt@iH{L>Fz-JuI~fMSJ6TVmBz zfaCh;t)N{Kt~jsev1K(3vZ-Q*HV?owq18uxyhqEJ#XGMb&X+hB))AJ6 zGHYwqPKZZHv90SbEp-pgTOaLUYNR@LH{`&Ns8JgIX(;Nb^4#_yPEn%4qJXOD2kw~0 zr)wv){PU>df5^`^{V%fQUcV{&Nfy9k_W#Hq*Y$rm`eOfomY==!zjQ&lDvP)#s#39j zov(DNy`y&=FUV<|HBd5?a%W3}0RG%=3c#Osc9)w&)C8iOUghyaHJMr@USx^+VnXhy zwZ>?*%X81f_tjne`u-0_qc8jabNuYF|9?{K zfbfj11zL0Y@0=xx{J+49Z5zMfB;Ec7FSdk#uNV{C_IN8a+en8a!g>t%Bg)BweE5#0 zG3s>lKmR%Y&;R(ym$*M1ovQN5Kb>8@y?FcmDY`0Wg<>K|BuI>&|MCm6qsO`qh${GT ze1bACZRFTmG*VT^UF0lXBpZ|yiM|v{F%k^ndq(3X6*;1C{FbwLt=?iJ={?O^x+1CY zj{cLTbB2~eWc;+(i&@0I85JpBQ7>YvUiqqjZ^<6Ig7wxQvjtA$t{$Z;N9kHE?cCqr zhfwVkN?)=KmBp=rT*_{`FVyeu@EFrA-bwK06i>8ie_t? z#8N6{IJ$!~h@)o+Zi?xbpE=@7k|ap_b}HwCri&AllLQNTPoSu{^>>`cN6%17^czmk zvz*N72NJ8oM*sh@hv20smO@X763R%95}Fe4$a``9mutata`X(H1IwZx&#zHTbAIG4 zsOZ6e75Ycs?C*IG{%iiQT=e9B%&+`D?UjILIJ#SBp!@jI*B*b!j=uJ0`0nUyPpss> zSxy&6U;m$@XXr$xt@U?BJwp+uf_LpmT^eB!a3>bo`P`E z4ZY9{JkP5@J4Vm@en032{jMJ#A34yOILnk<>PH<>Vus<~u{EmK*)5GfJD|o30VU!cN zNQ={0Iz~B>Q)hD&kz91S&Sqh$A&MeJe@{~M-J}>eNHI8+6k(MV1Dh0+8Ywbq6X{$Y zQ?XszId>#?;Tt;e-HrWQ@anzu}_rds-~ z6VwZ$1$zBd0WBmKsyHHvQN;3`L?YSf+3&V(%GnRyvkzSA_0ZY-HN|SrzQ618?xx$z z3Ht5{y6lI8%!i3LsV}eJI>GM<7IJTR z?Ta@#bn(X3#hX+YFQ_kGiM@LGsX$jJA4xT#XTm+be0vI}u~RUO9m_X9bos{B4_$O^OxHRL+;m{>r_rI-)2M1ajVjhtFxqi~gZ<3eaNsm&M-J<0bg1<-s!Hfl#d->cJ5Deh?Ki=2 zJgP|Ha)MPUoNVBXOy8vgR|cs^2I0xn;s_OXVRj#VrA1D-r#1?m z+GymE#G^wc@v!QIk1CSbqJt%FjlZIUz$n2Rm)kOQxYWZ#UFu=gr5;vX>R`~|%P1jO z`j7|`oxBZRC2C3bbR|P@C0%^Jr;8pc7rnq#G*nzWEk_Po?zYQXXgRFXa%9u8VM5EL zSGAtbvP{j}-_yeIofgK>p-P8`s?uRql@2SaG}tlr68d{`iNA$Q`qTZSVShS0u8E;J z{eW_vKnKAS)mEL>(3A@d=esTvw`=*~p;~@e)$+rNmiH%3E1okDpDN5uobRQhA5r80CV^5LP1d{|ZF!-^vJo0iJ8 z@{Bj=`*#k$SC>`7*n|+9jBrhkJ*D5oX$uY<XXYBr$SL@<97I^ny`slH=A%YKy{h zXHXh5RkAmL-7SrcIOQx;AyS%xN>C)&&n)VXoQ|u+*F}N@&DzilhBXqDhOOW2JH2zA zM%T0IlLt~#`Y2Y{jAObWTu2Iy#^HEA7%6J(c>>vo6Ubsz#aVg;NdJ2de>zsc!#%fD zxNS?d+t~8M!K5D4NIl$%)U_=Y?#WN#HhyZia^;6lN>uP`6CKzS^=sQo-PBi+Td6H8 z_jSNpS81P?^$Xg=dRvdBNZq*s3I%&oDA-1!b{krLIG7FkHR^;Gb%JSw4K7vQRQF|+ z(2Nt5;as5p3BobX;A}z)An@JgFOkVl0a^s({q|ch4&6>!u;)QRpbiS!BJ^stRI)H- zDI7`&EXaJFB%BE6YP1{t^25Qa5!6f8&tgs<~7bi1w+x2Cb25z?uaAH zkzJEH&|(k0puX{f_Q`15Oe(bE?xfjNO20KGC9PGpYOp0!CYErF!qI}>lT;lg1$!Q& z1ny&$(3M3M9+*WXdroWQ@on;qYis?#)?A=0XZJKFNGH*&$w$i-i_siYb)1IRf@LIM zQB@vOQDV5CM-vR49!=;-;0g~-;0nE(0XwzH(2Q40&+Z=QQl@COP#%rQ30@^MB`BVu zb)Im97nnLCa-kz5Dm*kJD)ed=>ZCr4b~Id8={1~+^JZhBQ6;p8kY>KammoLO*Mb&M8jnk9c&fVjG}NiG+g$;;pRXUjs9+E zI5qj9Xw>!iZfLj^=7IXMUtbh|7c}~gMd=^9DE;c9^s9?9aH7$^DE&hhrC(i?esxjY zXtXa%|IkGV>eTReK_hTbBRG^AL6sUol^U*G^uR%l;81G#UJzFC@OQz(clmYx!G4`z z^Xq)euk)uW!PkLG`+o5cc53{ZQ{!7s%_FF^FOPq)$?aE7Zr?Jww`0<7^7@CFygDus zR4o_3w0k8k6DKb1hO2+5;p$fnSHCn|B^o0q8tsOwf2iT=R}ELcG+ei%(QZ!qhnkaq zeNjfcq0w#!`G?v;e$@{0OFKxS;qoSYhaKb}W(O5~I;i3j?uLs?jvOvVs%Z3gL!({O z_=jp5zp82cQqycl!zIc-d`A#u z?bm}9oCppz$`(0WXNWzdB(LV~Pp5nNXVa;}JsZ2!?)YG}JFcnSab4}UWI46DXw&`9 zpQoPkrI;F5r*LUjf-;bAXb-o~11tJ~@idp)VfCGc)8zPPoTMNYI`ew3oN^O#0 ze6Ue7t{OGtx>3`Zk$J%widw+c#&x>pBrawL@%v)OsW&%KrNx}(k{+%Zwi!#~Lye_z z)j%27?4-u@^qg4Y$St>SZt7|1c0C^DG;5EKj~({T_)vRiT(x(`HG8LJ(bPf3eU{cU zcU<_k8Ajtn4Wn_@FdEkkBfz&EjkX9F{QXcg230hM+sLM64^C4i;JVOj_1tx1}VdQlM4KS>ebsT z+i&Vh_8U7)?eU?ew(M9l94dB0GrzZ86WE7jH^D*xaQ+DiMho01Qe;XgfOI4UShFScNUjK>(@C=hgle+T&#r5<=VpR=U@!CI2bNl?;uleR9O-+ivB>pGX3K?_aPhXaXH&6-f4 zTFFwVD3%L3_u~5S-Gq0s=q{N~mr!Jq6W_0($8_MhaHz3tpZTFF7OJaXnR;0DXZ&XV zj#m46j)HK3>{tBNtoO>Bn7Rs&Xat?JK77Ha^+`Jxyjme(o#~t8IDzm&C7&xMa0wY| zz~D%%aguB#laN@EWIw|Q?)&}b^?wuzdRH&cUc7nvTNHoVq5kKvUw{9j?}y=+`cI$Z z=NY=t`Tg*o+tGLHR3)$_be7|M11k6?Uz2m4`t?|YYYO*6P{JURA+>k;6`f_7va$8= za|S9DBTiQ|!MQ2@c7nu`@?wk!%%L6~=#-qmZG;u3sURtq!$ph>G$Z1H5cNWk+E6OY zB5ew-twg>-I9gJ2FHu}DoJbsJMDE@fSO4wFO^>eBJBV_Z^CRoklT&p2%^w3V7#KBXi1_wuwdW+ZB3)QuG}I5E!H$9yp&<3;PP0$ z=&f+N#!2sgLyv3OOlt(O&%hs{_gSS}p#E<;)=G9L(BA1=ykO-sqAW`>`y(xL!kyGLh9 zg0ARdDY&$SNPbUZ)I~Q{*4A0A{|rU{tRF4^mn2zrwa@$HN?^PE9}j}zs3!lzF#PiV z|7ZD;GE61NO3BhyC7F+oEWV~3WjS5poF*Gp6jTafu!J_i|8LK(bt0|Y-rmtG_CW4Q zeu5r|zV@lw;v~`X-+Dj_MpYwu=pt2OKW5Py%JoPHbOnxt`I8hECZ|_F=|)qK47!}B z7K$J;VQ8|uk_ zsqn8Y>zhKpThReWA1w#!ybK_G)B!{E5#9ds>n-|-t}_zR`3B*1)9Q0^v?Mv)LX$3+ z{FrYL6=cOd^b$wQc1Mjb**b}p`%MLhh{YY*cuLKb6%8VsqL~Wedq`s~T^|ciDavO= zD)WyZ8BJ6KR-mjHD>(xvvVWJQ+>=eE#!>Kd?|U zO`G#C`GV?q7Fp~Z;=YYZ;ePkVE?JK5aZcr!>afHf4j9%6{x#(ia-#ls`~GJ+fKBv#REILGEP1BekM!2ZT#M)}Lda3}O#9xP{=d^fFvV8&z zDqNf6hfHllB@w0ZtC$U=@2Nmmf%(}6?!)WaPFPA|2nSwYzmhEH9@$g3ww0XXruzMD zrz1&tg&zQdfwm*0Z!ssMK?^+fp-WQPGp>X7&`(fHnu(>gaMD5MM4SMfbB&NhMAf&- zauSgkUgz2cHT~dc6SbEgD2Mw*`ruA4y!=a@0yoBIK;%OPCp8p&jTuyP<&u%jh9~Hj z#(&8Ks%oVf$XPct=&z zg7;oBy}fo?%ROq>@Z)n&O2`H3WXG1i`Pyy&;16wh+D5|}1Wz$yhOi&YBaB4G>t zOzDzl5>v2q6Lv@UXA?8fUTjie_ZXX4&<|siVx&5o*pQ!yO^UJhWRs%bo^0a5I@a-) z?2%!yd~jViMH5tJf0HYiLn+z0cB}xwK}87d-mo<=aC1|E>(( zBHgQdpQXpOX?qI6?`T4*9NE!3pmQn};7P|EC3a3bz56WfnZBL!ll0^|ryU8abJ9r} zC=b(LsE-90;P^}JFk)Sjl>VKltN}wd#aVD(sf-BYe@Yhk@$#+bo{m=>epYpD1$l|Y zPfHpt)gv34w`5P_(#^E0tU7G2v9vR5jR(}Q)VpGqN_!l~(rQ%KX5drKucM&sPq0t?kq2uvg&egf2c-kHYAB z3A#EMq8yQwtryEWBK0%+t-?|2Ei5*n=Kr zAfbB^OCypA-s91d#A|pYjNGd*QcrrIi?o}uxSO(=^q!fqx;TxyI2E*O{-T9+lF^i0 z04qAUOEuZbTqO`MTPMjSOK4PcXD{Y&nYdKmS%cBm|Uc5H;wzePm-n7g3Z; z3fV^l&~5urb@1vDIt%VSluhaXPyO=Tz@HAo=>X4Wm`wdKnGR;byg!foq#u(}G?@4O z01s!=u|F7&!~P(Q@Py2QQ9PSO@oXGz#|B21809TC$`AJ>&!rjze@nJ7uA%X{%3T3K z)`IZ}Cu%0e!v4Xq@HbM_#WBL@70c=0W#2@4J?Kn#)No4Aax0VAksCLo)PNnvEVf75 z&N202_TU-|_znZN4c5v-ea|;M)SnDPJekGugpha|`O{ex4`zYy&!+KUM*4m<=;P2I z&!%w@%`gdY-yihHBQhOK=F_Oj(M_}rBS~XT`Yc;{NjG}Vk00TvGJ(s%1LwvJEeoDo zQ4+9dr4scd-&xUZ(^4C=O0~{5rO|7}$nVIeIDFRH=qm-{D~*#^#Z}u+UYQcy7Oy|E zzDl1jwjz?IbbBk<7z^A2uj~a4AYU>SwLrbj9E=?pKk6KEROT%6U69ok_?zgyRv#Xj zxyV_Pko*x+ZfV_WZh=2))orwZYeTuLYS}YIdN>ii7?TxCIT7^{-O)9js;OsZ+SmI# z$<*F(msyo>9~?5FoInDuL`j+oAJJ_f$9TJjs;q2|V#29({xTNxX6Jj#DNA2bE(PFg zx`JT01{6Y&S;4=C+Y+iZTB_zKQSECm)!U@+AhXQNa4x74@s`+2X<`UrP0~Eps=6Yp z>$Va2I$sbM^pcu2;4AzA>7LtwuTy-FX#$*a$PktO)q$jOC&*&sf?H)ow9XbejtMHd zN$34VF*ZMuCNYhTk01@wEAtxDb1k!vAxKrhQUw97^&(u8RzN?bFGxZJX?8C`d*}tQ zs03jipA<{V8#}1Q+Ae0%aZKK6a$7ZR%N@e<3Rl7S;M||%49{pn1tqmD+`)0&Ieq{0 zNhi)(CjSMS`n)_Wg_Cm0uT@{di)@%|Eu^n!9J%k`UC3=+Jz1CNsPw|BaCrZ7MN3-M zSD{^-s(h#M(#wofTdc^ziGC}Gni_O-i1@5iI7@kV{cVxxXlY$IYIZAJ_1V(1cAZ$5 zT*}onY9yBKq_RY~BDG%0&gpygv2)si(v_VP{fPW&C+Ph8^GSyjoJUK-i*+#vZ|KF_ zYq=_NI{c)tDNV|iDuk(qK`XpLIpHk1Cn)6!V|VM!MD|&#^8c-<1}9>jY3_|v-eQRA zz52pr83=|t=gFE2l7B~YE;@+LABbkWmsfiBL}4H3E2UEQ$v zOhwM&4eKQ_e?Hc8Y>N`T!8C2h+e0@Eqv;y%`50Moiq4MF&7V%uyPI?L?J>GMyT1PE z#VPvgmtT-~rR%Umj^D4peud7<2Jl1D`|onL(!U|(d1fu(?+x{CKHg-B%T6HaJtU#% z{;h2m37g@>o3E2ZZjQn%-=Z!^Drin1?OHvwUaC(GjdCr7noMIi+hstUB4(Nx;iR6+ zEDrQE>Ht}?G?Y;$P51R3CzbEo*3^$gkyPYV{k2C#)RQea>Y^3SGKtp3rEHxOuDi4^%ASpIxl*?j091HJi7E&Oen|=61{S7W{^-RXN{6 z>IjBz9pd7)7_t$q(`$8>B<#V&Dj}pxKFA$OMcGY@P=H0ZIo}#)yJt42S#S`8*-4ssuO7_)V+lSc8CoHI0hc#~^T5Q=)w8S*+&M>D@2lg)*C~U5<(;f8r zqsTFt(>wdi-GqaP;u(&J+3R>M*a{08K{m}f7&II#n!@K(fn>-Wu%N-sr7R<9tRSo0 za2T{4g%>#oMNjn+T^9L}Yje}LYOWdlN@jV^NhWnEIj$fgv14nN}AS*L2N#pLC z>sU#J(jZIT`#-}!s&+9jYnOb$t1Ka2!Xli2fh@Pa5qb5nf#%-~^CH2oeK`9qGQbe0P`)~e;0xuYJ{apq!`70 zt&2O!T24@|4&(M16>gF3JSw!_c~t#NS?_j>31GKXc{?U$wiu)kQu=lTx6NL-7BOw& zuxghD>QJoQ8~?D_o)KJkLA!&;{6GIg!Y$ltYeF6c_*}meBz?vozV1pP?7d??{ZWNgUs_ zpf8dpOO$%}=Jj=GJZ=WYH}R1MJpN8=O`%r`nc3(P6GHP8d(S-iV? zeJz`=Ik9rM^)AgOvlFt zY!1>my#gi@=J0Ch594qU`XnAlK|BcOBn~F=EDnP4cs3r9Xf~Qh;dm4T;Vc>iaX5%^ zKlG!4-^YW=aQGNP#s|<2T0zQ3Jb`NSHhIth>Jj5*RK=RqPb@dJFLWbV6RI^x4b1)~ zd2MnHkfj5(H)<><*XF@xN6NB?kN0hOirdntI&v@U_TswMN$GjxKD?Wvn``&9pr30)5Etvxft1 z>H@9rBb+CguG);li#fz`9&oBJIzu^>6q$|)9-2KVZATq5E52X;cwY6kELqip(46HF zX*dTeVGF*Q<9sOh2GC*HpQNRbsuXyzQ%ndiH`c6UKsZHcBsc2W{{-euC3R3|%W7w! zYASe@Ao^|Z4-&P%u=!ualKe$={O0zgh*AlLzUqFZPd&H|eYO_W^|bB~I7#=!cD@?Y zIa*F|42f_pTxqsDo!gUYq=6y{qbrSd=O~>1y~YXC>GXSAWFcdOTjh16HYZh&r5aQ#0u`_?<`DgqjL^M3LGdQVD;lYrot&~%zwBaCl`0*I z2V-teD!D2}XOg#sc=Qt5kT_cr^@t2fI8nghN=x+xD7)u6g^)Xm(Q|9)W7tUwXu3`k z>7+Fuu#u`%0)v}Wa9!OTVYSS_P5$-FwISbWPcdTYUrp5qaH4N3lI+&gJSc4jjQD!i zg^&bIx!C|k)FLjobWz4hIww#=$$??>>^HlQ%%N{n0z>o0sqbm|dgY1!=c~&Tl-)-s zh^#WPc|r3N?OmRfnJOn`Eh?!;)Y(Eio-3T0u$xOiz0{xC9By8k>oTZ^Yi?82r}46_}>07kL-PP+aEV3Jco51Vh;K z`HU;!DF70xGp|~)ms*V<^?0&95O%LqLM6I;y85j?^0QHc6Tz6=@5CU5NKz}SF*yX0 zXXXK8H%6}eC^5M|;2O%-5ty){$3b>q>p zQB3r=wod?sy>>}42q)sws;l0zC(lgO9gG#b2)jC}j+X2pRn?&3fw|V9lrr9#`LD~D zw?EGwDDf*8RpaoRY>1ZOe&74TLiqQvJuGy7^Ic+%RoyHFgFN|`Q5Nc6hNiB5&~8su z;d$C~c*DS})hWH>@feZ}N~Kt2768l@v$A>gXpfAeLPSp}j<_cNoq?4&@ zo2yM1N-g$Qn{M&-*Pm-@S`Vw>ZnpqysQe2UQMDPlO={I}t2wO+xsxqj8}~Oh-}n;e z5SVL^R2J#1#+@^RNY7k$EeZryYK!wv(j72XO!KDhP}q7a64P~Su+JR6>lT8c&Kt5~ z`KD9y8%AQ4%{h90b@rw^!_ggyRrqql1z8>2UNo$o4wV>?ODvG=r4I>M+!BS+cyju8 zVlw&L;*t`;?KS;7Q8<1JxG1BT-=aCeP#t(7mjG^O>Pw9qwuXQtH;0-Cf=rN641kcH zm8NJDKS5UR>p=&vIY=wA%9yI$py}2&cH0V?h58*WBcS@bT}1WRt~&wmceZymy1)O; zYY_cCFMPgs-ZK9ku6w>t|4DYdM)vo*^q+iBsN`<+Jjo8T5&{(x%jt@njWf%OswhAEAWgcEhqLjJd_Ev;iGxR95R~ zHcZOO2>Te6y5nO5HV0{%l6`OB1;&z`gtLf{xIe<9a5C!$K|C7HMr7j010062AH>n5 zKbr((6#DUSOeT|XHkkT2@}uFH%v&tUDniDN%xBoiwXM5jcX^i0oA`wSDEgwJV1hY)ZIJmLCxs1>v22|v zd86AGS0lBO1RbbG^w75iVYu=LVMzfGc35?Oq-G*%ly5Sj;&NKEp6F-5*GY`vLLsCf z+*3~VO?8}ZW-Q*Q!ObdKr~SH6=bR>5hi<9vdHYKT9#go?={-%zg1qDrPJjbDr?7QT zI(E?=xw6gbJtv*a^pA^f=2Y{FG4Wjy!Zr1Q?e{{}-}Z@lwOoEPw|#f2RbWh~#{#HD zyHBfBVD2s3h`P!MRPD*8xGd&b2ld36_0Dlr9qgURd~M&rrsXT_nP7OTb$rDA~|gRx2Bz00%^@YL4B2? z9FT+uMQP|yDKsp<_9s%hhymjP{Ie=FPGo~Zv{%YWRQU*5uU-@bcsdFvtN)5$+*?=Hg+DZ=RH z{IXyK`E@}=xl?H>NG|u!yQ|mm7524NernsK1kM*kJjS`@11MJenj0O{`JChx@dN~b z7k-6$mBf^#f-m4O-j)Dw;XZ~b@U7iNo4<^B(%D0$=(l{x+S%Z327qA^;PSTCq>@Cj z7C1%^>+=4#`~zpz#TC_Krgi~noj5%r2b*K;xnp>x1o#0p3Le=t2L6s4hr92+7D}iH zBNT1xP@30Qv_XDxSvgL&rKGM^$4_;->vJhwXIi)(pHyV+2`b>7lrq;su`;*Ynl}$aV!M)+=E+9J_%OUZ-ABX7CDZ{CCMoq3bQn} zE57=WLTUUono9c`nwaC{l#p1NCuWe8Xj^g z1WCQmF!ye-W%kYzYZqxO)e}KW_OSc(%Kc+J!?>+(>aFyCw66aSC&>&)cQ@=cTks#! zmwC?e+s{iFmT2psS=XR2SK%cDyXB`ohX4@a>4OrgK2{YhV+mVqt~2Q}o)<4MG|@B9 zHn@5m@^*uv9gs}X&4BN6fZr`2hcG9>DtQNPao!Z=U0Mn)I!jFFco0F)^Bb+|{M*VewT7&wx)^bO6N}38QK-r z3-*vo4QH(C1|ZM#T404N&;Jbo0RR7+>`S%)fCB&^kYNh| literal 0 HcmV?d00001 diff --git a/dependency/promtail/1.0.5/helm-values.md b/dependency/promtail/1.0.6/helm-values.md similarity index 100% rename from dependency/promtail/1.0.5/helm-values.md rename to dependency/promtail/1.0.6/helm-values.md diff --git a/dependency/promtail/1.0.5/ix_values.yaml b/dependency/promtail/1.0.6/ix_values.yaml similarity index 100% rename from dependency/promtail/1.0.5/ix_values.yaml rename to dependency/promtail/1.0.6/ix_values.yaml diff --git a/dependency/promtail/1.0.5/questions.yaml b/dependency/promtail/1.0.6/questions.yaml similarity index 100% rename from dependency/promtail/1.0.5/questions.yaml rename to dependency/promtail/1.0.6/questions.yaml diff --git a/dependency/promtail/1.0.6/sec-scan.md b/dependency/promtail/1.0.6/sec-scan.md new file mode 100644 index 0000000000..1a7fd0673c --- /dev/null +++ b/dependency/promtail/1.0.6/sec-scan.md @@ -0,0 +1,545 @@ +# Security Scan + +## Helm-Chart + +##### Scan Results + +``` +2021-12-03T19:50:27.019Z INFO Detected config files: 1 + +promtail/templates/common.yaml (kubernetes) +=========================================== +Tests: 41 (SUCCESSES: 28, FAILURES: 13, EXCEPTIONS: 0) +Failures: 13 (UNKNOWN: 0, LOW: 4, MEDIUM: 9, HIGH: 0, CRITICAL: 0) + ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +| TYPE | MISCONF ID | CHECK | SEVERITY | MESSAGE | ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +| Kubernetes Security Check | KSV012 | Runs as root user | MEDIUM | Container 'RELEASE-NAME-promtail' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-promtail' should set | +| | | | | 'securityContext.runAsNonRoot' to true | +| | | | | -->avd.aquasec.com/appshield/ksv012 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-promtail' should set | +| | | | | 'securityContext.runAsNonRoot' to true | +| | | | | -->avd.aquasec.com/appshield/ksv012 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV013 | Image tag ':latest' used | LOW | Container 'RELEASE-NAME-promtail' of | +| | | | | Deployment 'RELEASE-NAME-promtail' | +| | | | | should specify an image tag | +| | | | | -->avd.aquasec.com/appshield/ksv013 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | Deployment 'RELEASE-NAME-promtail' | +| | | | | should specify an image tag | +| | | | | -->avd.aquasec.com/appshield/ksv013 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV014 | Root file system is not read-only | | Container 'autopermissions' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-promtail' should set | +| | | | | 'securityContext.readOnlyRootFilesystem' | +| | | | | to true | +| | | | | -->avd.aquasec.com/appshield/ksv014 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV019 | Seccomp policies disabled | MEDIUM | Container 'RELEASE-NAME-promtail' of | +| | | | | Deployment 'RELEASE-NAME-promtail' | +| | | | | should specify a seccomp profile | +| | | | | -->avd.aquasec.com/appshield/ksv019 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | Deployment 'RELEASE-NAME-promtail' | +| | | | | should specify a seccomp profile | +| | | | | -->avd.aquasec.com/appshield/ksv019 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV020 | Runs with low user ID | | Container 'RELEASE-NAME-promtail' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-promtail' should set | +| | | | | 'securityContext.runAsUser' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv020 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-promtail' should set | +| | | | | 'securityContext.runAsUser' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv020 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV021 | Runs with low group ID | | Container 'RELEASE-NAME-promtail' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-promtail' should set | +| | | | | 'securityContext.runAsGroup' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv021 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of Deployment | +| | | | | 'RELEASE-NAME-promtail' should set | +| | | | | 'securityContext.runAsGroup' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv021 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV023 | hostPath volumes mounted | | Deployment 'RELEASE-NAME-promtail' | +| | | | | should not set | +| | | | | 'spec.template.volumes.hostPath' | +| | | | | -->avd.aquasec.com/appshield/ksv023 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV029 | A root primary or supplementary GID set | LOW | Deployment 'RELEASE-NAME-promtail' should | +| | | | | set 'spec.securityContext.runAsGroup', | +| | | | | 'spec.securityContext.supplementalGroups[*]' | +| | | | | and 'spec.securityContext.fsGroup' | +| | | | | to integer greater than 0 | +| | | | | -->avd.aquasec.com/appshield/ksv029 | ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +``` + +## Containers + +##### Detected Containers + + tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c + tccr.io/truecharts/promtail:v2.4.1@sha256:83bceed26a638b211d65b6e80d4a33d01dc82b81e630d57e883b490ac0c57ef4 + +##### Scan Results + +**Container: tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c** + +``` +2021-12-03T19:50:28.083Z INFO Detected OS: alpine +2021-12-03T19:50:28.083Z INFO Detecting Alpine vulnerabilities... +2021-12-03T19:50:28.087Z INFO Number of language-specific files: 0 + +tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c (alpine 3.14.2) +========================================================================================================================= +Total: 22 (UNKNOWN: 0, LOW: 0, MEDIUM: 4, HIGH: 18, CRITICAL: 0) + ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +| busybox | CVE-2021-42378 | HIGH | 1.33.1-r3 | 1.33.1-r6 | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42378 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42379 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42379 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42380 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42380 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42381 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42381 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42382 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42382 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42383 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42383 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42384 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42384 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42385 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42385 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42386 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42386 | ++ +------------------+----------+ +---------------+---------------------------------------+ +| | CVE-2021-42374 | MEDIUM | | 1.33.1-r4 | busybox: out-of-bounds read | +| | | | | | in unlzma applet leads to | +| | | | | | information leak and denial... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42374 | ++ +------------------+ + +---------------+---------------------------------------+ +| | CVE-2021-42375 | | | 1.33.1-r5 | busybox: incorrect handling | +| | | | | | of a special element in | +| | | | | | ash applet leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42375 | ++------------+------------------+----------+ +---------------+---------------------------------------+ +| ssl_client | CVE-2021-42378 | HIGH | | 1.33.1-r6 | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42378 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42379 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42379 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42380 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42380 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42381 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42381 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42382 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42382 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42383 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42383 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42384 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42384 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42385 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42385 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42386 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42386 | ++ +------------------+----------+ +---------------+---------------------------------------+ +| | CVE-2021-42374 | MEDIUM | | 1.33.1-r4 | busybox: out-of-bounds read | +| | | | | | in unlzma applet leads to | +| | | | | | information leak and denial... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42374 | ++ +------------------+ + +---------------+---------------------------------------+ +| | CVE-2021-42375 | | | 1.33.1-r5 | busybox: incorrect handling | +| | | | | | of a special element in | +| | | | | | ash applet leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42375 | ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +``` + +**Container: tccr.io/truecharts/promtail:v2.4.1@sha256:83bceed26a638b211d65b6e80d4a33d01dc82b81e630d57e883b490ac0c57ef4** + +``` +2021-12-03T19:50:31.667Z INFO Detected OS: debian +2021-12-03T19:50:31.667Z INFO Detecting Debian vulnerabilities... +2021-12-03T19:50:31.681Z INFO Number of language-specific files: 1 +2021-12-03T19:50:31.681Z INFO Detecting gobinary vulnerabilities... + +tccr.io/truecharts/promtail:v2.4.1@sha256:83bceed26a638b211d65b6e80d4a33d01dc82b81e630d57e883b490ac0c57ef4 (debian 11.1) +======================================================================================================================== +Total: 65 (UNKNOWN: 0, LOW: 60, MEDIUM: 1, HIGH: 2, CRITICAL: 2) + ++------------------+------------------+----------+-------------------+---------------+-----------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++------------------+------------------+----------+-------------------+---------------+-----------------------------------------+ +| apt | CVE-2011-3374 | LOW | 2.2.4 | | It was found that apt-key in apt, | +| | | | | | all versions, do not correctly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| coreutils | CVE-2016-2781 | | 8.32-4 | | coreutils: Non-privileged | +| | | | | | session can escape to the | +| | | | | | parent session in chroot | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-2781 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2017-18018 | | | | coreutils: race condition | +| | | | | | vulnerability in chown and chgrp | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-18018 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| libapt-pkg6.0 | CVE-2011-3374 | | 2.2.4 | | It was found that apt-key in apt, | +| | | | | | all versions, do not correctly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | ++------------------+------------------+----------+-------------------+---------------+-----------------------------------------+ +| libc-bin | CVE-2021-33574 | CRITICAL | 2.31-13+deb11u2 | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+----------+ +---------------+-----------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2021-43396 | | | | glibc: conversion from | +| | | | | | ISO-2022-JP-3 with iconv may | +| | | | | | emit spurious NUL character on... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-43396 | ++------------------+------------------+----------+ +---------------+-----------------------------------------+ +| libc6 | CVE-2021-33574 | CRITICAL | | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+----------+ +---------------+-----------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2021-43396 | | | | glibc: conversion from | +| | | | | | ISO-2022-JP-3 with iconv may | +| | | | | | emit spurious NUL character on... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-43396 | ++------------------+------------------+----------+-------------------+---------------+-----------------------------------------+ +| libgcrypt20 | CVE-2021-33560 | HIGH | 1.8.7-6 | | libgcrypt: mishandles ElGamal | +| | | | | | encryption because it lacks | +| | | | | | exponent blinding to address a... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33560 | ++ +------------------+----------+ +---------------+-----------------------------------------+ +| | CVE-2018-6829 | LOW | | | libgcrypt: ElGamal implementation | +| | | | | | doesn't have semantic security due | +| | | | | | to incorrectly encoded plaintexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-6829 | ++------------------+------------------+----------+-------------------+---------------+-----------------------------------------+ +| libgmp10 | CVE-2021-43618 | HIGH | 2:6.2.1+dfsg-1 | | gmp: Integer overflow and resultant | +| | | | | | buffer overflow via crafted input | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-43618 | ++------------------+------------------+----------+-------------------+---------------+-----------------------------------------+ +| libgnutls30 | CVE-2011-3389 | LOW | 3.7.1-5 | | HTTPS: block-wise chosen-plaintext | +| | | | | | attack against SSL/TLS (BEAST) | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3389 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| libgssapi-krb5-2 | CVE-2004-0971 | | 1.18.3-6+deb11u1 | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+-----------------------------------------+ +| libk5crypto3 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+-----------------------------------------+ +| libkrb5-3 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+-----------------------------------------+ +| libkrb5support0 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| libpcre3 | CVE-2017-11164 | | 2:8.39-13 | | pcre: OP_KETRMAX feature in the | +| | | | | | match function in pcre_exec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-11164 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2017-16231 | | | | pcre: self-recursive call | +| | | | | | in match() in pcre_exec.c | +| | | | | | leads to denial of service... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-16231 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2017-7245 | | | | pcre: stack-based buffer overflow | +| | | | | | write in pcre32_copy_substring | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-7245 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2017-7246 | | | | pcre: stack-based buffer overflow | +| | | | | | write in pcre32_copy_substring | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-7246 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-20838 | | | | pcre: Buffer over-read in JIT | +| | | | | | when UTF is disabled and \X or... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20838 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| libsepol1 | CVE-2021-36084 | | 3.1-1 | | libsepol: use-after-free in | +| | | | | | __cil_verify_classperms() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36084 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2021-36085 | | | | libsepol: use-after-free in | +| | | | | | __cil_verify_classperms() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36085 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2021-36086 | | | | libsepol: use-after-free in | +| | | | | | cil_reset_classpermission() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36086 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2021-36087 | | | | libsepol: heap-based buffer | +| | | | | | overflow in ebitmap_match_any() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36087 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| libssl1.1 | CVE-2007-6755 | | 1.1.1k-1+deb11u1 | | Dual_EC_DRBG: weak pseudo | +| | | | | | random number generator | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2010-0928 | | | | openssl: RSA authentication weakness | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| libsystemd-dev | CVE-2013-4392 | | 247.3-6 | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++------------------+------------------+ + +---------------+-----------------------------------------+ +| libsystemd0 | CVE-2013-4392 | | | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| libtinfo6 | CVE-2021-39537 | | 6.2+20201114-2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| libudev1 | CVE-2013-4392 | | 247.3-6 | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| login | CVE-2007-5686 | | 1:4.8.1-1 | | initscripts in rPath Linux 1 | +| | | | | | sets insecure permissions for | +| | | | | | the /var/log/btmp file,... | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | +| | | | | | conditions by copying and | +| | | | | | removing directory trees | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-19882 | | | | shadow-utils: local users can | +| | | | | | obtain root access because setuid | +| | | | | | programs are misconfigured... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| ncurses-base | CVE-2021-39537 | | 6.2+20201114-2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+ + + +---------------+ + +| ncurses-bin | | | | | | +| | | | | | | +| | | | | | | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| openssl | CVE-2007-6755 | | 1.1.1k-1+deb11u1 | | Dual_EC_DRBG: weak pseudo | +| | | | | | random number generator | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2010-0928 | | | | openssl: RSA authentication weakness | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| passwd | CVE-2007-5686 | | 1:4.8.1-1 | | initscripts in rPath Linux 1 | +| | | | | | sets insecure permissions for | +| | | | | | the /var/log/btmp file,... | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | +| | | | | | conditions by copying and | +| | | | | | removing directory trees | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | ++ +------------------+ + +---------------+-----------------------------------------+ +| | CVE-2019-19882 | | | | shadow-utils: local users can | +| | | | | | obtain root access because setuid | +| | | | | | programs are misconfigured... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | ++------------------+------------------+----------+-------------------+---------------+-----------------------------------------+ +| perl-base | CVE-2020-16156 | MEDIUM | 5.32.1-4+deb11u2 | | [Signature Verification Bypass] | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-16156 | ++ +------------------+----------+ +---------------+-----------------------------------------+ +| | CVE-2011-4116 | LOW | | | perl: File::Temp insecure | +| | | | | | temporary file handling | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-4116 | ++------------------+------------------+ +-------------------+---------------+-----------------------------------------+ +| tar | CVE-2005-2541 | | 1.34+dfsg-1 | | tar: does not properly warn the user | +| | | | | | when extracting setuid or setgid... | +| | | | | | -->avd.aquasec.com/nvd/cve-2005-2541 | ++------------------+------------------+----------+-------------------+---------------+-----------------------------------------+ + +usr/bin/promtail (gobinary) +=========================== +Total: 2 (UNKNOWN: 0, LOW: 0, MEDIUM: 1, HIGH: 1, CRITICAL: 0) + ++----------------------------------+------------------+----------+--------------------------------------+-----------------+---------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++----------------------------------+------------------+----------+--------------------------------------+-----------------+---------------------------------------+ +| github.com/containerd/containerd | CVE-2021-41103 | HIGH | v1.5.4 | v1.4.11, v1.5.7 | containerd: insufficiently | +| | | | | | restricted permissions on container | +| | | | | | root and plugin directories | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-41103 | ++----------------------------------+------------------+----------+--------------------------------------+-----------------+---------------------------------------+ +| github.com/prometheus/prometheus | CVE-2019-3826 | MEDIUM | v1.8.2-0.20211011171444-354d8d2ecfac | v2.7.1 | prometheus: Stored DOM | +| | | | | | cross-site scripting (XSS) | +| | | | | | attack via crafted URL | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3826 | ++----------------------------------+------------------+----------+--------------------------------------+-----------------+---------------------------------------+ +``` + diff --git a/dependency/promtail/1.0.5/templates/common.yaml b/dependency/promtail/1.0.6/templates/common.yaml similarity index 100% rename from dependency/promtail/1.0.5/templates/common.yaml rename to dependency/promtail/1.0.6/templates/common.yaml diff --git a/dependency/promtail/1.0.5/templates/secret.yaml b/dependency/promtail/1.0.6/templates/secret.yaml similarity index 100% rename from dependency/promtail/1.0.5/templates/secret.yaml rename to dependency/promtail/1.0.6/templates/secret.yaml diff --git a/dependency/promtail/1.0.5/templates/servicemonitor.yaml b/dependency/promtail/1.0.6/templates/servicemonitor.yaml similarity index 100% rename from dependency/promtail/1.0.5/templates/servicemonitor.yaml rename to dependency/promtail/1.0.6/templates/servicemonitor.yaml diff --git a/dependency/promtail/1.0.5/values.yaml b/dependency/promtail/1.0.6/values.yaml similarity index 100% rename from dependency/promtail/1.0.5/values.yaml rename to dependency/promtail/1.0.6/values.yaml diff --git a/dependency/redis/1.0.21/Chart.lock b/dependency/redis/1.0.21/Chart.lock deleted file mode 100644 index 9e23f84e2d..0000000000 --- a/dependency/redis/1.0.21/Chart.lock +++ /dev/null @@ -1,6 +0,0 @@ -dependencies: -- name: common - repository: https://truecharts.org - version: 8.9.7 -digest: sha256:fcde72accd942e87af2e3e43b8743053fca3f604d214556f2357bd39ca43d3dd -generated: "2021-12-03T14:14:05.026499062Z" diff --git a/dependency/redis/1.0.21/charts/common-8.9.7.tgz b/dependency/redis/1.0.21/charts/common-8.9.7.tgz deleted file mode 100644 index d624e7df28b2e6a9f2fbdbe515f1463795197ed7..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 37337 zcmV)kK%l=LiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0POw!ciT3yFplrf`YZ4->9=;D=+&|v>u&bBu9LPon>aqP(|+&W zdrtz9kc2fwvH&SZ>*jy|9J~?$L5lKQ)2(@S8;b-617I+i84PB^bh%8E{>cK8ytjtS z_%C<=3dAz#`8xI_dZ4IA0XgUYIWXIVn)c%k*KE(SA-4>MtS95$VhKf)qPAWDO}0 za0PQnXitDDC?a8+8^hJw->|S@Sr#74!-RyAx?6L6GS*Lw1haG0G!Oy|11IbQZnxVkU-X7V*mgsNL-@t zR1n1_2KhQe6NO%9rEq!PJL(;F9%}yO`d`7gK=hs%K;!x!4o0Jck-Pp6_x2vw|3f@a zK(`CtWhnXi>=e)pg?NTT5T?lt&kF+CTJJmo{~4hfEaIFMK1T>lQJh|N(hMc5EP1_z zb2RAyz+s(p7;BI(5Re5x7-N*=0JDM}00_!biu07LCm_lYp=r{WMZ2PCTVNoEY!&8k zuGrOo(ghstA55a*;dn4UobDe+`@_S%@o>DiH`<5M;oi~yXgD|+?+r%#=wN?%Fog#L zc(iwjj`oH}(R4aK7>$nhT4RtEaSXCF#^JgH_^&hmV**~!PSgC1Aj&$_;n04;1pQb* z5^X!wSD2tVt5`qSC2Zd~&le%-;k1AGoOWT}Wqi7?fwll=j`V8S8}vql(Qt4y9IFA} zJ3Knt8y~@=>EI|lcz!gSg=oAF$03SP7#{BJ!`XN?4UYyxv^R{7!e|l@E zXb_G^aBpxpJ&K0m6rv#<4aTFx19UWgK069gyY{ytUKnRMLE8?ss8v7A#{z205f;!k z!EwiR+#9KJ9S@H7_m0MJI)&(HaEOk^)8TA1i$-V^p@VQd8x4kVe|mH{81EnMjmCQ+ ze2%8WgJ}9ZjHZWPhHEvw9k)$sJ|~F&x;?+uH5)i?3EelmQ=BJoiTh=-HbBg=9gcg$ zl4PgR3{8il>Hh3FM9(7>&BD>_Fq{sb!@(4epC9cXh2sc@;qYj9crZE|!O?6siw1BC z!w5~ivs!7r?eKQyaXN)@IW8y%FahZb5rQMcH88==(F}hE>5TuH6>-e84XLBNlcg;v ztQ<;mOb{;vA~eGZ=92|90JA2h=O@Q+UQNIZ#uRlrOcf((93!IPq6AK3Bp0dr+Uo%M zA)0XI%*CQC3Yb>Zzur+c~#Cr&10Fxxmp@5zy9FMY2-vHUyZFPWI>kX#)1pMQF1$?Os(sYUBz&`;1 zaK%cz<$s#E+#Z7oxc*YpyBJPUybV}U;kJFcVY6mOPK)If5k|-nqL`ovWNAdjl8!ZL2&l;B1V#wZoWLB-*SzQtDFH7vGV~ei1CB&b1Z}-XAwe)lU`KMPT>z5^yiem8 zC-VRgCc<|h-0?&crD}iHehH$<^ll!%c*Kity4FHBv%Xtl)p5$crRv@0U>CG zDNYlxz?5-y5aT7z`K*f%KZ*Bm*y{<{>vXWST?nRH?h5u6VV5cyzx}?JCCg1t@j^** z%Oy;r9lEPou-e}kHF5(|M;78MstN*+;tmCX6|3?xh|<>VVlqyVN|?05#C0E8)+qXaPq8-ar2WNryfAV5AII8wBPrTWx3QmkVyv7GAWHZ*gEX|5o@Bzx?#vEMXe8D>{ zrNDJsNJV(frssPE;1%T39pn-#MW(#SSQbh`vd$QFOxH>ncqW(_XSR$LqZyMBnLNY< zx+k2YChKV$tpx%w3|T+q_#1~hV1{GV>j-4EuzhxXe*Vk5_b(@4x$b6=(yNq2vb%2~ zP5??)n4}4p3RjR|PAffdA=#s%5Z1%=ptMO0E_@vKag~(e*@6#^*Sh7@g6*3Dx$87a3_L4f>Io>;LjY}kUIYuwjtKZ_H{}&1x5Y&QglH zSsHb5GE2!)lx4mAnW4rfLiP3Z-OE=WPmkZenn;y!hEW{7M>F+XzBz;WV#3!!FG(ZB zMxoPDv#R7jVJ3PDGhScRRtKf*OLqygt`rTsa=lfGir2bW7o2cL1u}wDg7Y;9V@QRt z9pTvw5k}HEW5=Ahr@}}>!v%^8CLpSMC#>2jZvs34bWL-#?6SUeLxOW0!dOY1ahzUJ zwdR>b0VT66p>kY1`lkj9uP)i-b|aX~5lIW$EfJ}Mjy|&q#W`4{lnbDY>~ppOsuxOY z`DK9;DdezEr-I9aCA>sTokN0GF%>YOis7cz}y=Imp_n2EthXjc~OKN0&5PUhWwfz<2Wj@TZ~#m_f5xuiD1oWO+X z5CuhCD_}H8QCRSGmnJ#-ocBVQ!6}Y$&J>cg$SKpEr5^C(hu3UoE=Yk+kIwo;KV<#){5Vy;n?GhQc{W17IU?nsUT-wa}RnYfg+=@pUl9 zGZe1F7}fPm7ci|6()bROHNXkZPgH5jg=PRLh%k3%f@BSFj+V3sUcqo-msYy&0i-=AtezaJ@6BX4Y34-P2=^oi|yY)8Jr zbiuizoc(oL5I#u?_?d<+cwV^xC2Wdvst)?6h-*>ciU|Wu-4FtSmQhMX?LG$=CuaeF zFHTi1PR_~(Ue5poKV4j$$rdmbyj*F5e7UmkefFPoy&>(2E@v=bs5-u;`++nYGa*v_ z(iR~$E<(ywL`_Wv%r&c8qt=t4UeBcP!_-g|flq2A`Aj?$Xo@x#X&g}nQ67`2jmQhT zj&cCUd?Ez`4hhCDQ4H7TC`^-xPQY*=zh;PFzUw&ebG$@pk?Rlp^8F0rxFG0aK@epK zvoEEsJ%ac~w62$#pV;;1d!cp>{gK?aA$NP&?wH>Fz`r(vKNow#*5oet5j_jF-idVYUC=-r&V> zf56lvR+p0z!x9u3m3W=kVA z-q^zVw-gv)!4gpl=h~tMt_aR^l=M_{LQZTF6A9wxn-CcvyD-CjrmMy&jJiyXFGz@J zpNWvGVgHF%5W2%%rf^6sxP3}9jMquTR9gfV=~erVlxJbeDje1MuY6+a)F*EA`1Ave z<0%X;FVZ*ZoW4t55t5Qmztb?NQ*PP#OUWhyPD)A>)_#y6BO@w zbKH5WXO;cJ)gKMrN3p4`j!>wwUdR(`pMJUl@UaI4sZ+ry5(a;UCgpN*T1m}2} z#c1bE3Zp5EVG<&;`wXz3-^-uRl)dxy*)wpOM(8Xhxv`P!ufnY2^;WC#?W*56r_#tB7i086-LgiX+|1tx+OdQbK}4rez+>qc&8^<9#n8hR63C)1T}(tssRpCC&~ z4vb?J$r?6^6s%e~K)$ww`L9JI1`py;Z_I!gPd6A)t1c+9sANSO*-@sbx`rQZ;7NQe zHZUXu&JB5z81Y($RKt`kX_tdYxW{8zCnfpBDa%$l>qnl3Y1}iuofjF0VVov^Vp931 zXX4*;_Q%D^nG`!dygd74Ru=+1`y@sA3|=JwGJT-*vq>T_M|sI7agrm#Na@4-H~cH- zs^zhS(R+dLghO|_q|KToN968KysM6`B+l$C_Q`uKj(Had80QlFOV6I&PbKJ2Y{sOI zI*Oz+U`&JF5pbeiONGVM&=7D!a|9!h&Wv_g=}#GNg3m^e&9FSPXCoBJrKe8(shB!* z^WjQKiF=8)OApqa6S)h>vuY)Tn7am_CAC{vI}kNT>b9pu`ap<5=EtP0gXKz7m`*BU zl=Qb?%x<$3#ckX5987#R7?%X@NK60t-;U90t#BvHw2|)0qPG+8B%FHjPI;%a7w^;% zSnO2$^)&KQS@pK^odi?IOI0iPF5l_FZ4&VGacipFvSFgVa=;QtQG5jnGRN}={24`W z*%!n=Rq*7roz6sUQAY8YoIo_gm*$tt=TsaJXD~#{brKeN$~N~93T2BQe{-KQ3SeT0 zS*1Uc36n7am}Q9Ra|}NFEt@Xe((XfLP4Q8-cgCjy$Ln%jtrJ*{Yq>6VD9X6A<*tPe z!!a##z+F$|nfy|@#MyUuKX}WXL}Z z&P43DUFi?ki_;LsrOe_YmBD;bBE>K`R$XE0y%Ks%Ixwp{nEcfx|m_lk%~ zuS~!*VvK;ly#T}BaNHeKAYE|1{fuAVvpyO|oJvb-)3S^=V)xUgwUQKAGY%BtA=Vl) z7m(XQHq;kKoVs{(?vhIne4pkE>AuIkBpG`Yl*MKsBPn-jh4$=-`N(5xa0BfeD9G2M znr{mnApL6uee%Dq zEpA*m*L3Wv)@@C&>57kC*C#1(0J<26U=D!_@Z|7g?Q72Jv4WPkF-y}4m_pJ-X}6}b zmUAe*sA?RLN__MYn{=G5;A)*&^Mf|pYdpGcO%P^FtkZRLai>Bizm#Va%h}H-lH~sl z?Zmp%v0hkCf9piN>LeM51(kEf38Ta;MrS{tJd=O^boLBntMC~>%Pe2N#N?UW>zftI=vep3!h}6f0Cdc5M z>N|BB{x95Qkf&mw5(oZiTr81N*6g!bHNd9J`KSJ089E=+*~ff=K8osp`}9l}m2Tjy zm!cIBt;r)MBqCvb^FCXtB?*=#T| zRU;O8s&VO~``78-~#nn}U z3Vsm+pwF0c3Jqh3m(R*cm+mO~J6m{`c4D0Ls6rmbxhJ8DEVWJ$l?ztc#<^cH5mB1>9Y?)%*i?3DG3DxmL`y6# zl4fu&9m*}Xc+Bq@yiLuJCyGJl4(YxvO^m4&>A9RNuE#CY24fgx3wCAtg?Doo>0cWnaRBN+WcaE{(F(Y5UU#R35+m}5HAII3Q- zjR(>4D4}+2DE=3kfTN?MAF&25j0!1NVgyApCM)he{Con6EKR_t1rx@KgiS7t<4=-t zv4ZaH;}flysLe-F2AhlpBurk(uMkQAj7>N8jxoyH46+_s-d=>sZnJ+MLm`^jB9B(! z#O9|kce#FFRQ4ETmMFpnw_XO~zJ5^dW)S4dY(~M(`{TFWDGV>!Jn5SiyK2QqpxXOP zOtAvYW}4Nd`pie}N&GusRia^=)$l{9bNnwPK7P+z|5=RKCon@WXUk+RZ^_H?c*Z$Y z2otq;mPd8?Ut;|&IXEDDBd4IGF&U-B9dGpv@!%+ zb-c)xkqnU~rj+aU!k0f>q*sXu1hH7Af*dHy&&q-o#nGcpOS!$JF0CEz*|dC8n16EV zJ_wi^yj;ID`*Utyfmc;8))}{+Ff}4vpzu<;tLJ1bwQ?I*g%z79I%TSQM;a!y z5)EO5XB1LS6R$5moXT#M5orFv^n2gr>z#3Vw7z+|W#pcAb1e#Qo@m*6%UO1zKF)9* zgNjN9rJW)97%fe^tTCPz>o`0-^zu46TjKP!I$8XE=}mNr))P=rMD*bk&^|fKb$3qE zBI_^LU0tNJ!Q^cOs+Lq%9tM6gJS}h%;T4Vw7_*tV6lMn`B8Jc$CL!u|#0Ycaxr&lT zWuz;9X3c|EnVKVe%U_yC;J~s12mHIR+;Y|F$rJF70Df!$VoY-*j4D&UimcL#@mibV z^94E=e{a$L=tnGmS!W#K0>P{+-*vf@pB(j5Mi;^Y&jvh96PgoAn3Y2~UO~E?@0-*spWzDwaWa6u=qx=3g5)iGYt=hf8XMnrf{J zlc)=m9Cy{5-H!UpgJhm&X`Ig2=NVg)C%42@-L2$TD#g7@)j*f>7P{qNFhQZNd8&iA zE#c?$OLR2>f5l0T=7{`_lZUGKceYmlN^^pfx%hImK*@)M!W`2Xk5%P-=SSk@wEb0Z z>c2UmaB@Bfc^bRM3-vcA8LKz7|))bD{DTonV$!iY$emx`k5T^xY zki$ia4NoDqhxEj)d>GRd;Dqf3{D#MZF?=d~i6|gN!c=G@7@Lgi7~?#T5d*Cec?M_^ zE?DDlae~?O_SB(pls5|z*upm*?bSY&RaAMWI_Ob(*-B9^qI5>q(u(?krsq0`BW_CNuRIY zo{@u#XE96*(k)}jFAo zbzQitVK6~f+Mra7TVdBui@EY$R}%lBB|yw02QyoGOTvQ5wALaO0|en_*Ac9p{Ot1scgK0j%ROBscoyfgPC?raAhv{39lmIp8NIf8V1sB z_KY&2Tr~g|DUzf*5+%>VWl|20702dyFj+T*t~KFnv*&%V2{ZHFO}K?o|6ZAfHFid$ zGQkX&{{SR&j-kHu#WXg|NKe_Dy4)%vLV`z_yRJjiRV+^B9r`>484-qR z7|&Cq%`@FDEHr=Vf+S50F5n_ydDq_;clbC#S&(j3fL-^g}R8z*iHr)I-?pUG&g9$3 zAx7(>H5Z3h%F$KY1?7TdZ~VOxk$8nnk3MHSIR{o|-%KRZ(>xe~PdNHWDEy>&v4zsP zOp&03KIami$qviF6{R1wyFv6e?#On)9?ozKYS&K2PH-0`q?+MXs?57AGy%iW-e_pN z^nu6pv1O}MPamK6nOIFUZPTPzy!@EO$iTf5S7Ae!2D50sQ`Ni!@;4T10&=@ zg$@!Oy`Md$O#y@6Ib{sM}t7t-bWB zZgXxYlj$VJr9f87WN|tdW*@r1nGP=yr<*Jj2Bm z&KF$fI7_2DTN?_8rnRB*ybm=(1Ha3~QKmk>$>MMlgx{Bq;mMPZj3!IVqc;&um*2f% zLYZiiVKCz++$2{)T_TjBgo$hzQ3guJ_AgTy>jLYovpjp#DymyYTKbBnAwdxh6wQZr zst_JS2qpkQx|YnI(^Zn@NM6bO@czxYObux42y6;oe$R-vAhB`a_8vu;Zr?4!sL(D>RB3Uq!C){r z7?1hCgTcW4ceHn~|Cix-xIf%G*c%-l{$(&4jP?hA0fRg4tM@5r4#{5zw{FYr+#lq* zzV3h5;roORw7}ICc{VzY3zQL@hzK2vGM{diinv&UIHW(7j6?)UnHRQ9u4+pxz0P<2 zFJC&>*V?Bj5CwXR3BL7E1rSg&qAs&a`W~iTapDu(Wi?H@;kee7b^LthAK|i zRf5+5^z52Kxouzh%a=~K+wH&%OJ!#Q4D9-=(G=xy*tx_>Gyyd$s;y+oYIPb>7c=plVe}hFFyrw#7_+J>8a;37g7;3Q=L5jPI?HH(HI(OD4BPALn*Nt= zQcQW1qX2+`yKkbz$b#RrCBqzR4!}yATm!`@V}Ke;0A`NmIsj!E1HhgHfO3LEbC~@^ z*POOl4M$fRcHYb5bS28mpQU0glN@G+ej^$>Xt1G?A$oO^KO7DBob|uIcd+-k{vYDu>;FAp$xf&^y%w#=@U*_j-s*(~bmbDP|ChR|h<{8Y-ElK?zzl*<`E~|1F*>|JTv)9*X~u zMhC9^w?7_?9{K-6JdO4r#?)*J5I4ti0y)>$>pWH;d78A1*+-LI;5DvDGleiwXbk)& zlvd`OTi8}q1@38VY((l3nGE-6@ya~?FSv~BVQJoIx&qV)phl6Ny3*rCvk6Hv5T}7h zJ)Q=Z%D6<32z>Vwrg=)%GQfwS!W-@R$_l_bT^2`zr#XLPOik0|^i@;1yj< z@CLyEP#NyJ=6plmW5ZxK`P`m#YwWW$Ird_Z&!^K20&5!gwP z0j~tITltd4F;3e`}ezi_l=Xtu>A~F`x&Np;7D4W== zj5E;n1(k|Zm+NZ-trp}+OvHg}mf&N6er@XMPD((J7G#bhb~UsNgSRmBZD&(d>SdNj=Y}bvv9m_m z8l&BY@}dUAT`I%1mOFzD##CERDrSz`89B^7yG3W%KNsr^NwLp(G10sFn8ao{0W)b& z3371?Bblo&cY^5EvV6l$)-ndj8^E4eN_bXd4KOb&@Q{AJG603SRn)OAu{o7>^!blx zQI{B&u>cz}V_jB}@B$alRhICW!nP>wMQ@cQ?eKCV9&9mes%rZ|Q#IP5=3YAA0yR~& zJ!-1P2GqVUa2%EXnM;_NsQB!^%6ZY;+6JHoXzB0X>@>a#Z3pzKk2()havX+fk>pO< zneR}?H&8Qxe)W~*G#EHXto3@lS+Ft+Kzf%l0b)~wmQzFa@-MPksb4C7R? zKu`0+WK@ObS=IGRwwI+OhjA@dRT17+ODdiJ_qPam>y8p31a`pf5-rghse~@RZ_#ZHi zjs4;0GS$tUI)Vxz*JC2)l<8Q8O)D_}4vUSr`5(&EU2ou&0GUL7yXpHLClOBOkF&U4GbD|X3i#cu@w=1&Hthd{{egS_J3br^ANT)k5P6!F&h*U8U@ z?MA`5NxTnLw zO+?w`?Rl<9a+9-X11-AFo*Rg<;_Rt$xF=sv1NBOiO|G7*p6Tl84C(LZ>ZyD1=;?Wr zr*{8`LeaVlF<_JYe^@#HIT(*0?|(nYW61xee!aCGU^_2VZFhEwp3JD-tT$LD0o7@fA8XfROmG^h*lfJEo>mvH?^prxtpCz8;*NBH4eNirHyXO~|KY*G zpy?($z403}$-Ez4%$8V@CySgw7obyiFryrRM9h zx;vujvWSu5Ab5{p^b5f`ddEF{cENAp*CI8;z?5P8EzovafAuh~4d*4!J&ONjwRd!M z^dk;@t@s>21vFtE3cwEV`6RK44CZke9$R(xmwT}<)6%Ttm6g*$%VxSrAfXxz5A ziAJzV{vQpU_#dO;Xngo6|3AbdvMWq$LCj39o zx4b#_f90Nz#|x2M#{GD^6t;mHf+ z;@i`u#qKpD>5^}e*2NbCre)vM_F$u@RpbKRXxAL13c!kCwf`M>EpZoz8dkDnWpzc% zEMHr_mnWocy6(U%Gc1+XaOW043BT$z>g$0qr?Q^d($!pwU-tCL5?ggZ__dwucv>~H zC_y(*q3NhBuispvwLVOdlpBB`Cj|;Xz>|)j!F&;bpvzwKOiMvn&^%oRAXpi=Nep(I zhAgVC0cFiMhN*FN)tzGa57aiosTr{5!>hpM2_679J+EqcT2*beNWATCHyi4raNF6a z3m|gs4R5p&PTgQOh8wEPhJ?`n4!lG;B1^{8`Q12?`^!2f{r`zn=K8o)kkKksb{r#& zj@e8b3vbr}$+L>Lp-Fyk$ojx>G~r3z;^Q;$bdl2Bj2$JR^L*R2XM8(Cqu`Z$BAf7F z*Pu>Gt)ee_JOYMCpgXf$bCA|{Eo=<$)U+0i;7+$#3w3}0-g3~N^=T>pOZnnv2LhY? ze+~~1T={=Ec$EJiLQfK?DorZEtsez-Gku*=kG@gKqld}#ab86B_J!n>vA6|(l#{MpKLD21T$$xMfvRcy4Wmfz+u?Y3LGEeolu)&76WD*+q!|Kad(&&~fm9z5p%e2_=)|L-!C{Csu_ zLV_6CU>H+rW}$lb7a`xa*!?R;q3#2${&JpcVCgxKy+h>a_Bd1!H+86SN62x|6-%QKmNbx>VJdr=<)u?gFKr5OLO)PK{G^9 z65?bI<~T2fn_Wi<1USi4;{ZjN&9^w+@mt&iEA3u6JwW zUz_;Pe;vBc+0QQ4#^`6)uuXnj+x!3s zVFsr-#yM6FQ!t8@msA&=zPk8${POMV)6N$5K_mR-AJICfspqb2gXVbLzh#gSFiav5 zp`t&%?(x~o|8=Ksd>Lc|{~sLgd+a}t_dg!w zsq_CbBl$k0^H&+vx8C)u5-Qm5_@%pWFJ521ZSJ0ZzRIy_^!VCJ7_VFZD(*9v|73L4 z`;!00<6&j}A3Vl?e~?GZe>$qTnC~rZzB;hD5k9+q0sF#`*P3ikIK;OwyZJq>u4>S- z*=}XARqblj*Kiq6z;EJ2hb!(%0$k*I_A%yOe;+e`ns_vLK9C>hBn$12;tQ8`&HErT z93#=me!k55`a5sfe|yXw-8j9(N*)ShjFMadFGy_XNp-Jkgal?tF8#_4i~9EFw7l!^ z&vg1x&r;91+K|H>hcvc*7aZa=gz+M!xqji=6P^~OH;M^x%HN!*oEZ;r?PEA<<^ZZtBjeQv~d)nhyJi$2Q3l1W-pK~QmQQJqo6 zB&3SFNIgv3aisc*AQ-(%;`IdN#0+(JL(iNRzBrBZ`^T|={Mnz)`@f#l`?CKG5BCn; z{eSN<{@=qqb@m@K$<#yIf69DQTd0qI`;V#7-o5?DC+6I<{iht8t#ABkwY>hWUsy05E#&Q5>t7yfRny>90Jw{-q#VgKJ7RrJ5X z=<)u?gFKD?KZ1Dg$nnR!=(_yyO&a)aVb^<<7jO8~t^ZY)^gr_KmG>V1aX1(a-1v{9 z!_njVe~70}{*%d1A5!$=2~Z8GZ=1xb*E;!SkY*?mxm0hQinRm*`~r$@>AuiDQ)|O4jgTB0l|qV;SlC&uZ>|e4M9=|I202|0u}x-t_E4Z^jCiL9sbHs8_s^MQf-cYtqQjb_OONHw|aB_U*{j+zI*xM&8sa=joIk^ zF%OIx{oK`Au^ff_KPIj@WMJ)I;y6CP!g;u`Tl?Yl`&Yjlzj)y@%7niY-1*xy}st+mW*OM@{LQ) zlg^zl17*Cp2TnHTRrR-0PGk6!~Wx&Rp2ex1G{b??_}@~ zJcEDWjQ;Q@qhC*@DFHh^^c34IC?b5h?>3jqAf;C+iNwgDWc33{m%>*;$Z;}BDA=5t z)3M1a9&aFD^@lLL9!x)-(xB0!3rJAZ(*@Nq3S`9B`ir8D&BK}|Z7HevUoc@u)okPM zz{a6v;|4pB zQ?89A$f>f8EolGXxnm6yZ*FZ5DwUG+S7*oXk1yW6w=4$#5j>iVswSg9q|NB>uiv~m z|K;_?$xqe{b2q?R^U0W-Pi(upY)pG0(oUv;?Dw~P9T{}npfUtz4A@ZZAhPIJGiBoj{f0LgM^MI5XAAe(K_ zUH4AITbQZZB`Bj*CC6;fzQj<nnTBrf0N%|1hl8vNgwYw`lj z4I8LR0ah`%>I4;{x?^U2D&x|gm)V-@=F%M@2cODF+20#R%!5L8;5>y|wBXKqr8Sko zj18p=kEitTT=2J3*U8KudU)kM#FZpq2k7puHK&-K=WrT(*Pdzn(pl+L1$mJ{!C6Mp z6=8!yGbm^yko^pRebLfdHz%wsr9e;vs?@yk=k7PGPjyhLDb+QT!Jkp|7DrKxt{@Q{ zA@JiSZgBqKR#5BK@hEWsi!9LsP^C?aNw5~JB-9*w710-#<>49N1o@wwCM#v#!K+{w zTozMA5|kqvk|+SXHcq8=uO&JfmD@I4%3-!l=1k+VZU)_HS$bz=x#eUm+s(tWX$qFN z82$S8YX^Rd=Bi`va9Ypw@3OZ`>xE{eo5sseu~k@lEZD3xEuw}7sjso!N`GB-#^aOV zWrJlM$q0oKBt@qh70BFszd8k|qTU2KfoO&=b)QRW>fy9c(jw<+y>hb7Qk>*8FkIiL z@xe?hb%mzZUUEo2M;$&urez+_%=~)bD>5_cL~- zTup5rSHksau9wF~YS?O30J?xDF`XD0`!x_rxeWehvOpF_lRsQMav+Ix@q@l@|UT4AAyacMP{GqCauznHPIb)K8nGYN}4&&p}#`De}WiN=wL z$W3d^p1$3q1$&>g+pX5fr10vIY3=;F7Ex64M0>G#p_zt$r6t~^ijRqrQI-F;BxMgy z7UhaD&(z5XA9Eg2(o6Uzt!uvEd}p;Ucsi)->yi_m5j4Y}0|A_U_JOTn2EY`CmnexQ z*2~RE0F|TJt!QpgYM?810Z-{%tqMR=ET@Qw>Sc1oNg#=+=xbNjR;tc^{%Lsqv0 zx3i-Cai4noU$zSGBKSj_{J#Sy{?~B-VE-}x`-41N+yBngA#g6@zMRAmFYm<~n5~R- zP##mA8UDZs8_{g5tFhF%ut2S?&OQjX&V-+4Wg7c-rpmi9?MWy}nu8tmtG{H>4V(n| z3fZbLOMPi<(jA1dH`>6F5=%I6TJ;wzp)uu4=uKXdbI+OlN|kEP9H*4%wh781PPRPN zF}f)0D`jPY;$@F6`s&=jn{fxTU;-`?%6x&gZ?BFtNs%{AMs5V0)h3cw@LAVYbfc}lo@p`lk%{4cA4qoboA zao{S5m4T9=1Y-)o4iGj}gJ%TgvYp526vhE~YT7Fdk`c}}B~g~YEmVzSzI$SK<|$IY z|0}WhzR&*#hr>g6|9?FHd#GpY{a+oZ+{cbDNv?6%H`T-2?D(#lxz%ppF_qEZYsFhW)5P(dONH-Y zGFQhzbzdiS>$VPBEs1ySsoFFdb={zdGTwGP6L|(j8Rw-f(E2Jg0~MZlUeMxG-KhBC zv>B3Gj)F9?Q=33upKa?!SLt?EOk+$Jr)kdAi1l$4F@C5>qVB6Ty3HW0#`!+x*z4II z^vp1WTRWqLGJ9p_!s0e&%bM9UO`0N0l5Otnl`oAQ;;DI!$7)S)C-z4kUV^b1yAa=G z0)D((^YOg)>&3~Lak#ABPr${=S;uDqE=!c1_aN&Yqj(`$ZIl&C>A*8SJ6trgSnX*V zaqBYMoP?D{>`)xJM1I`e)tywYj4r5G#?I;2*?lxEj@uJdyDRP1eP-Lpu3YOe3iFgq zd>lf2s#&G>XSpWp{ZZ@Ira43Pa+hxHO|uwQXS3h1pVkVIuaZcdQ{S~1Ss5ByOesD{0E$W!n2h>!n4u- z^HHd1x3L0ky8p9R@&7(N+<(0P{U8sw|GYOHY*B7YCSPK**8)~?C+_~qvv zWt2Hh1>5G9GKC-;US)>*pWqw%Kf(VAv^xUZY3dzT38IW83n#}-V`g{Q88h2yn$-x@ zWbJD4OVETfpc01{atOB>Kqf?~`j!Ds!@NXm>LC6bm|;Tmdf#aS;GNjU{|rx+|Es%d zw9i>TyhY+K`E20-j|{6z;Xhc==PNCVs?OQ1(%FZam&I`YqLA zR)yPcjq)&G@b~@loov_vrH|`*A1r$Wd*kW{*QP(|oVZ?~iU`>2i!3%Z1*RkL9=-rO zrI#Wr^t9I7l9%_xaK5>!rBm7-(i%rFg?z>Lu^iGDU`OmeqR_7J`m2T6q@tQJMEKU} zzZGLmhR-9oTEBV~#$S2YqmVt7CkJBrF4FXpL5$P%vdBQN8U`THmv{rS-Jq-yl>IUs zyjjO=&u)j#bV*Y-)GuFn%eeztWk9mmoI4nh&BgGdsg7zyT{WnVkGW=cBnzk(6E}Iy z9$9jtgU}7&G?16HhVZrEt_0(|!!&c-=w)Fm(X@`HY}=O4fK}Uw=MbZzq0HZiubDHS z{nD0S^;gM7gF35)71T&0X3krcd*-&cOrvMzUf?} zkZ=spmhD-4+l#TaTyt#ene$C~jEljuz7-^{+;Eum``@f4->if`o@BM_eYq}DQqw6x>qy7Dwx`i{qZ@DpMJLMMRIXp`di|=T`%6V^};{cPC(?;`xq#`wR(iv924G5_BKJ?i|2V6;MjvD5wxN|l!p0G{Cx<_KUaBfk{{ zMfHb24v#h*UR&&C9m5piVXtSpuGlD2e^3waiYpRUuhZs+nPg(~f9eWxCa|f4b4N_|wng`z46TZ5k z1c8AaBQw4C`!=I;L^q9;*tE7EDr2+z>c;AZL$k$F)=L!N1mMpnS)qjtZVGqh8{hYC~@MrIpU>~(>yl1 zIjeow$G&A<(?z<1v0jym=6LmVihl+)81;>3lrQ6lW@j#X%%ywH~G&LCm?tRf*ZiD zv7@#fgDt!NJFv;7^>4+tx&;H+=>InwRQ&&jkNMvo<KM;4tv9+z+;WuIHEl} zl!L@zigIW*=~Xoa!(X8AQV#~rMSJV*hNBGj*>%o(+jYr`lDFGDg7Ve@DSV+*A0^D2 zKTZ5!-pIJM1#lDpA5`ss`+JZ6e-HAQ@}In~yq)N$&N$fOQ}ItY{WPTT949{&?B&x_d%e+EG} z@Jr#H6CN=KK#jqyh~qW*wSY06VYX3Z8K00|=NBZP^YS@sgG~+vQxw92B0$q6;tHJL z>S7va7{!seaunkw&QT=N%MoGKVLX)WF|i znG1M|KtUOv6hMx=#I~7aN+%(MY?4O5B2Rh`F$F)!L=bmGYZY)+daD$1XioKRGu_#l z@!Wc~?OA9i!X?M0)-8cq=6%DTR?oe>Bxi{R&TTM>iN8#x0lQKemz{g9+c4VRF4HQa zSc9TkyOjv!N;F8E@k1#)GV2kHau6lAN&w#zC5ULajQd&gwPHwsygu2nuG+o}$%?k)Yy2xLXG` zv4cuhNLL3)()TG^0;)BbST|(T43T&ZLdb|h5sBI}(B= zJ~~-W`priui_`T|AH_PRpqG`;*LE18dcY7Z(}bcLxcuum+8Qj)VUA`+%mMo#pUVP1 z*xiO}wK;%b1!Eimx6Pez=x$Jlk&i3aZqRIA13{Dj7X&^2Uw!{20JC4CWYd=SYm}6$ zwB!Ok#syj}1d}C-dpEb^5K8`QlK&~ni`!@a+hXQW8;qe;lC*MNP0Hl%XU-Nr?Fk6$Pe;lYeq+N>i%@MVQ{IK@Oo+TT4hV zjHb70O~P>7Yh}1;TK_5l=_{rldk5`)zc5+x{0 zlaUb11T~R#y=$yhP((accG4xzON~#|bOWF-S+AqA_OhTk9|@)%T@jok7b~+l3zYT= z?17-XTA{G9TJlLA9S*1e9pD8)mPW^=Gr=27a}kiselLc;ye?^edx^tbhg2y`*;(&B z%@_bnH%AX>AvlXkHY$}jG8IlRNm4$xykq{By)F1K(er7Sw}x7_xmz=?!ia7Ssd!Zx zP4T+bKpL`TT*9v#O9OE0VT|FlI*OHMUGNQKXjBG)I>NDsF@{s`D3&$7MC$!)kFK}K zwj&MOkZyfT?S{Ur?_EOXropH}s?JS`mtGcW( zc>x%U2m1%l4O}@v%TD(0JhiQIS$hJ(Xe+`@D@#ffm`5awJM$2Ekl_Gy!pX_1xW7N$uEbDO@c88^nx zz_ekBRtW~7|C`L8w+#!Lr_0*UocGm!jn)ZV z;;{C+YWgKfv!=FdzN^M-K9{Zg3p9ve)=f1SMKwKsaRUHuP}EisBG!SLj<-a@22qEF z9`d^GTlDavb-gXxbNXr%L1T;FF6#A3@Jhu97XeWmUgvU9mleu%3PxOzY7Q?EIaTM( zER%8Vf*o*)ljt=!0+iuf>@p^(oytYg7hpITjTyJpJkkrr3eu{2{X)q5HC#k$7dHA? zBjWPw&2i3djO|8lSne1aVjWYGOd)VtWHm5vvp{LCwK`F<9J`C{>-+w~QLMHK`&_sfy%mPn zx4WL{_y5!9-u;hEuFOh;>aF2&TX(<>{=a*Bhfe(G(eUu#G5*JcJdOF^^96D;z_T~Y zv`9=I1OAy#MH+Za0V$Hs6wOki?#b}W#c|B7=M7oI3`ZK9;Ecd*+|pv5Bvx%}GsZ{BnOAc*qx z%{ntLH>@b+^;gqG&@$ODBU_k6qRB1@`cs_r=^{|SyP^IQg^Lt?du*xaVM+)Jb2j59 zZ|(KI{g3PGY9a<0MeOq`Q^}crz%kNv$CJONxyT3MsUk1-V9JXJfaj?V7wJ_3y6?gM z!Sl)f!E?}GWl3MP@E;&tEYpa6pa0)0`y2S}Hz4{X%FG~E$?R5HBBR7UT#GwN7fh~$I01UP)s>?N;KaSzYFtdJm*W_?69r93aRy`9oIivw z-%>6qFHKJP)oJDR;0h=^PB;f6+K*i)hx1)K01$tFR>bjH8sl(ni9@1JrazW4fhAK& zxxgbNNT#MNYLv@+x}S_`veqo7Wo5OyzHX3BHtC8Mj*!eHt7d=Q1$K9bo9nkwFHmkF ztW{cx@eGCQP}wi^&)Y-JnKYLOWoL;fWdx-+C*$MW^4r81+UYO%qlHR3xzTgOBfD9l!ke?)1%neSH7!-G$wcU>Nv)kfh{wiPq{2 z!c{2a+z^VZch3YTC6KoLpv{`a4>`N3*gT zU;X-hS=Y$aQ})P$AyjC$kMdEeaO&zZ)V)>BLlapsRH^J7#Lf4c5I4(ii?~&HGvdxW zIjz4bmRB;o=auR{-#Cjve4Mfh}8QJC!0I(wLG0~A5O7MP$21itQ35zvVrkEJuPgc(&e05n2NsUty;UxuN7 z8B-`GN>;ub~l>^!k4fMKE%jICx zY7=jb)Y77X`UO~p=q4?$ypXx|cRZuH>q7I$drz&!=NU|E_h`bdT$Xau9mw@cy7L1i zE46D>Ph#Xp+cXO#D>vA27wA_dC${)-S;xzMOTO zMr%yfRks?Vuwk?F#WU>Hm|Z-M`n`pNiBBtc3A%I~YppSARFwHt(qRAC}?ADq;(3HN7z4oWupq5%~cV zn*W0H#ZRK7Ba78ksBU|9RM#kxiG_NpNVw+t!YLAw6(YW`6hRU$#2&2Qde5_~ZSm2N zKW=Z^^kdA+8ZRc`AOCxYO_|*XK>gaj5#vvBsCurhwj?r5RH;+ApIew?=LCl63=zzE zMVdssl2PKvN`V^sXY5xWn`nWoNqVg~%+#=+En?*1ycUX?qRT?n6cV30pDYi2%L1Zq zvs}vDikE0j>l*kC6bb$n{03-Ba-KzN*RhV2r&lUfVht$UHfdt%sI-dp$z+wDT=rl z0pl79@fN736X|$hO>pn-XRy(d)r5IDk>1bSPp1#erb*pOyLJ_8`L^6A%63}s@y9WS zR4{Af=j~;qB#n?xrt;-W$NYVJ=y1k`UcPqK-?xXFr&$`O^YwW~5R6XJgysZd=_XVA z@h;kp5h(*A7(cg!{iwwM37!`EKgn+y19pS{KRg^)@;~m69`*kRdAMQoj9+Kd3ct#8 zU@819)O~LGHBxlwi?OkNTiAb_!pS|MeIMzQw zxCZi_sNLQ6@Is^xK%ZIdK4GG^aG+NQYsL-lYjtZ)_rvHc@5NJn=g=J>+p)?xjJqz+ zTFrZcI~6aV@}pr%wj=GoD~NFDryxqXoJEU_4-0EAl6~P<1T?T7*wH1xH}skD35ekQ zB1DY0dBfFOia)G?=%N9qw1kUmg_fR@ku*=kG`8MyuMhOA@iqAA;^Hjet{v6)=e`dY zC%n8k8If-%;Ns-0a)MKSWr$Z1s@}$|2WoB0ca(8`GymsjBlnsAd+*?IRLTFn|Cs;r zK_0>X`5Xh0X%MFgh|@U^+i`t)bf)jyWCSlES*yH=QV(~TeMLQyA9}L7&T(tPRF}Ae zvN?Iv*KE<;fQ)+59$*)i`$kn+iXo*Xx}sQ#+m1M(lV64PxK)n=6&BsWV|UlPh@bM& zy;x@=uNCJyIxU0T9C(paxgD~S$nMG5L{lpBjWz1St>aGaPcmv z6!wgq*?P(GeXTetv1%al&A%C4%SZt#!ONVUsU6U0!`bTGFYJRK&tQ?~*^eln1io2w zODkz2<9@H-tOC`uOx&TVxDM9=py2{Bfu{t)k*$SLJKDStd6=E2;bn6#8i&-Hb3;7w zw5G>^i!-tV-pU($vpw`|Gh81jDX9Ex5XLW24AZA>Fu#yw9V&^)XPJQFz!f-V*W z(M1|ZRoHHcmVk4-L}`)NqHKR}2{f~<`7TWBvmathJ;MLz-R%Dx2KjHa zH`sUYe-93akMiF`JX}TnS(ttsEC986UTU4TTy?*FIB3(BFJir=9H=F6l-C9)FG?-7 z&le$YY1cID;g^9jZkzJ_{uSYwKR6dF!&b;ef<|p)OGX>1HN=Z3{(ofTS6m zb3?W$=)Tg zJ2=>T-2Wfq;r5@+`+qB2kUm#-?AMARnmc{H0H8Ih@^y`=+vJiZ+je($6OP#6jUZ4; z*|g`2vwEOc4-h@TBkvoc(+vO!ZE)ZVwY*Hgacw+2KZnx=LJBsoG_X z{_QxKvfIo`ZF{@bYd?v5u2eA&+yz38AX?Y9JHWG)2&-ZfLK|!NgwpalhpL?aT#6;a zXcw|SwTq~3(LSV5_AzH|fdDPDeEkv=dwr?5R`?}b(lbFVQG|<%rLa8A)8GP8GVn;x z%`H&;FZ2d4v3siLZA2ILwZng^vJ~9l4q4}P6$m zh3SNvR6j*)nUc}Vi=kS{mGt54r22DX?^LM^9UKwxwD=7JwYewa9Km8R%4yClEToZh zaj@X?a`IgU_GXr^pdeDqdnAi?mb*JQ;@#r$%KxTgaQ~xBFa26(m)>3z*dYJ!4~NzG zkHg3O?+@~L;yxJe*mkBRu~qk*RRDVL5x>CSRIAy4?=UunZA2 z0jpu>5+~6Fh)YPFCCXt0bIACl$RcDMZ8{>L$};4+i6AyD*?ve+L`AQnX-3crr-ks7 zO4G|C1Hoz-fIuMN^p9pREIY{o1&XCSjizUiQh7qIUXnD;?bo6^O7Ju=C=bphq!(ZZ z2p!8P)?@WG3SC7S0oVnFjlw;qT49nN4CS!f@8JU5?BRC#nG)> z+vO0lCB!c)oEA&4KkyHYw~)8D3NRlTl!W&6@%oOHt@&zNTW~>QITrf3_1AdP?|-wJ ze6#w`Z&qE|%4BbEaKKIO?gEqlexQhmOYRbBd#%>gdI@tlg%klb|CL@ABu-LFx5M)P zQ5rAP2)&SD5+5AvEQUDAQj#-9=Ah1b8OOAqp*6y-gSkDpe@4^Lfy7_YUt@8_i;uB~ z2JT{%gmCySgTEH2bM1{6FCpokoav>wV=N8;7X{QCb-mtNnj@@~KVYlq0*X-;vpEhdx`DHtP4aPz}6%ip=8~ z%pdk?q5r9yp|2C1-{=@<)BTUpLB;=LZ}@os<3S#e{-^Z2ERCp2MW^lt15Fxhuz)KB zAc#;5*C+yP99yb+mAl4UYk4Jvz&JB1BQ|LGo|B{UYnQcNMwtz)Sdyxc8v@^sfbW(Q zQSgJhsHI#u|CAOa0LjNaA@XcD_&IgSwT4bzb$uHqsD!R@{-2yMv89))i;5Kgw8`_?F?HHpc%y7**o` zjUVGbJ5@AAPIngrn4L*X@rhd9cMp-SJM6_S#POxi`~i43Ut8F-33)$d0Dd``P!P0FdAVdNA%x zW;XgGu|%*?C=}|2LScnPxP18`&4?t{90vs(2Q zT^Uh5E^OT_yOI zWaem1_g`r)x6IxrOk6%^aM#_kvX^qecA`Y_LCZ(1<*PuWR5uj zzZ?Qpy-|YNP)D&z0;Vi7^zX^P6G0E3kCa6fc^I-)$`X=@d@jfbk>NLzX<^B1o?-f79P0Z z<(lBR*j8Pt!RweRkDjr+@eBh(niRJvX^C}e^i)hEyrnzN~)6~0P&q$UK zLAXa*FMsJwowh6pT~!)iWUA5j$%$o~hPw&WfX|btj&1T^TWPD!_5I_eRjJ0hgRtbJ?=$2H8|GU7HJF>d>k^?tY`8&-|X( z4;M?E3G1Tn--}xHzV+y9H<>lHY9_=EQfzzm*M_=>=B|%sFcnfAyBl)gM^r0~{xlSI zRC#W?5GOCuU{OHT^aFQHS%l;qxldAq7jK13c zpXGCq{+BK&S7i~`L{%!*xAPTFwRiN6;{`cuvIYu={c|Mgd7M~`(K5LNKw_ynb3+Q`1OXr!u+yU19wh&L!B5`8I@A|x2X4~#~2Dsn_& z`z>S9THVD+k_VcxWJMC;9sMUw<_s-`NcmZ>7qO6gGb$3iqF%^Wz2a8?-jY3b1?#Or zW(%A|UENDp_R_Ul+PS}9hEV$Y`D`C8|Gg!NR}?n-pT3XX@!x9vr$6z(*8lx1pJ(U_ z3qi63qN|Dn(BqOMXtt(tB&AY{!+Y3+IC_TQq?o?>nIpa=ag3yIr*b}MvN%B*iLsy$ z1d57VzvCo2dWI6B?{IpaW@Ju3kVq9a`u~qT1UE&o1m2V=p_F7OrU~(mycairy%8)U zN6*j&uq^uN;s!-D<44|tiXQx{&_D8K|HyjqulZrQ=*fS~SN@Rn3P3X)-mg>8ef;PT z9)C=a{@~5<{m~yhv66qYj4qD;@PCe;p`UODN2xAfyyQn-nz6r;P#k$QBDklTXY6lB z-UAO=M0)=U0#vX6i&y7we|Y)&#~-{^^yGbPU;o2?zjps~e=z=9|LwDUo}r5+P8K9) zi$Bh?Z;y_S{)k~m|4-W5>YjR2Z_@epk3IbD(X(gI(0lv$U!EIVWI@GpJp(I5WNV`C zitphx<&biPGt#qO9DAN;!#PIJ`+h&@20?e=A0Nq%BxZ889{oWdD@6%Qx-0xQmZ9hG zp9RDIe!Wx9*M#?E`{Uyy#{fr;0gl=Za9AGT$QodOY6kc{{UC>j)uljii3`FgBXGtL zCy}%nGa`r1<|rhY=yJW$&k{ovMT-7`r0BazF?5h(*p?K7GAV{ODNZY-NTs^aX%42C zwNwH3By-_AaNs*=i*LV-@4&`)upe&@PWPjhnUKNh&^;l2#{l=6^M(Nis~F5}}Y~83{$a(WBpQ*%YH6xkn#3Mjx~tysDXsZcsV^;-= zfdcxPcUUox1mBYk@eLPb#a-iQHipJ+jiGVb7#f$1q2P2+?K3)1`;460XY8<^#%-;q zaoKtrm#n8?yypOihncg3q0^ilJFKU1TkC0DmeAvp^%RWu9N=Jl*Z>D(_W+xv@VKoM z9+#!?xFm&(0hXn3yn*clear}48KmxCgWDwY-6dFs=|lL97CD0hwb8(-jm8d1JZ>wA zN8Y4N2fvvPmbf+kijI$=7;ju|%gEtUkJ`G_qq0jqD!J6bu*R2ROtADJ5#)e)8@!6u zlpN?v4#1Uk@%e!+`arqpIi{kf;+knWcF=OaRn|buQJI!wo0c^bT28$xgL9syYTW*T z7KZP%Fh&klI%=y*M`cwyDyh<7&)CbrKaflOEnL!{9wrU@)A4ad49)2WlHXCr(Rc5ocEzkwK14v4jtqewk5~F3#K+bhCAqS9z|yQb=U#U%3_W%dd+b3 z9gcAlk_??oy6E8_W&-xzky43ms+ws4t6Lfy zQNmfOLZmbSm7qv)m|4^xI~`YvuZsjN&Dwz%j4C833|qh3cY5bK!>DJKZVsfR^iiZv zU`BL7xR4YYPX?3uaIB~?Jdh!V1KUVcoTYn!%&6z^)3E|RIB-b~wk@e<8(ThTP3mEV z)T6yfU0G6t1NmvNjh~vWT=}5QAO+!~JMac&jVYno1NAG*N*!WWkz1)POGg>NT2~oy zmh}tT!@72iB}g4d015>MQYhF)p=KLeK4{Gb{R(vk7IlJYjSa3;N=f%+7}Jy!l;TXF z{t3bnPGN6C3Lx;^<(JTG-2*Lx$zkg)m<-%bS#aP+L7+AYnj-XSwp1P^WeIFb2rS5a z9mkvq=WH|^{PIET*$67L(YI%#x)*)H(hVvflJRQ$pn{=rN#jUWxpu^nWzVj`w6xd< zUQk_lLGxg=Z6+03eyq$aDy83QgOb*&nl)IG2@^}$M&W2dA4sCMl7a)bQ3CfiiX4oK zKCMmHX@xw#O`b_*uK(AX3zTN;fkp)B{9-luaJga;nq#WA)9_lblw>QaDhDb`j1Kc? zf|1js8F(%ewzUOYF<_@Q8S3$B>DfKtOv)6^7RsX$8NsWVCIm$@w9aCV@B&juL~h`@ zY}D2!YQ;i5t&XA@4VM+!+K8;!kdsDY=1b0m3@mN7&SFzw-$>fwVGdw0bUJ_oMhqn7(Wl(saOL? zTyoGhE;%U2B?q2us`*nV8ZNV_wN+FxiU#|k;j#zXn*(Ju`um~b)Z}f^sOs_k&~Pct zmin?^ofLl`H2RK7>9?JfetA;*s>MOpTx|HGD4^l=1NQ!NYg?b$)BV&ae1&zU9~XQmFDU3TbtZ|+2r;ulY2WR%_gtk&g9i`iJ)w`_=VjoaXEG3(rmc; zZ4FnyY`FS`;VRJ>JJD!1T>Z9&t6w%;{lakFjz+UN>9;i}{pzHQ_d}!E4)WXDL4Mf| z@(VjiqT%u;e1{$6x3hzCJ{^{E8SICPOOCV`BV{!D`=QaSY5caD#xH9cztA+>(Qt{f zR+22AnF^QqyK$LFl$*F!J!pf?q@wo}Bny=yxktw`R`{ME$l9+4D>xAx$~P@CwoVay zOh{JF-Jebm^3SGIhkG`0sohCywL7V(-APsLHe@+9xoFeF_MfM&?dOS0oljb;^GQXW zPpaxXa2(Hgq#0SPaTXzxJfH`hakL-;sWjNelo8dH3;R~f7vA(M*xL)(N}W>JC+mBH za2%tbuHNc=L9WiuKN1wNtxMIl#dSL_xXxb*Ab#pi#f|AJzOJfGL|N7jipK1K$%qRq}uTGm{{z{ zEzfVw$%moa^>~=kv^hRLao9VPw)W1XZ0}4e_D;j3sf~(KgUPK7%lw>?e4PXr2Ua(d^Q~t(9;^2M-%bvt9EXmL4!w*#V`Ha!L~rn0fgQd&vo= zcj6T>56j1xs&owK?Q)f7>;W>I;4gxrL`|$*BD%g3qzv;-BJc;QXYZhFzo{$PZ{jeu zCv8n_`C`RzDA^751Q(EUE0z%*z+SFr1<8TXKfJoQMk|_SdTK`p9iEwvPOH16TC_&% zG^U|s9V3ZM0Vz0&SFz|^_HMqUpOoc15P6n%0a04I4C`2I&x%(OdLMWq^*xL zDf>8+ijPw#<`O>;P^8il!jM*Zg~d{xSzHpWU*|L?rusV^7SFXa5aTdOFd9^u6Ie4_ zC+GYvOQ1ZHV3rK3rn?Gruo5ztD-&~=gE89TV7P3(R;J$A3x?I1u}wWcPu8&6^qO#y ztwSLdp=NfPP?gGUCCC<}Dp)z9M(Z7Ro@?ql&ZS1sKoj+#B~i**6ADx#S#lM{G9kyF zA0NIyXYO+hVViupDQA82pM5%Fot4{<9H*P zghYxYhZ#n2-tV7XIpyEuqvpAH{qp?9o0q>w@t-~FKaTpf`agbu__hAe=lDEBm--L` z+~;-l{W?)udNG}4INN}oaht8lh0br=)!>H0As7@h2-ipxrFe?Y(^NSU`um)Loq!Ri zD;nd>l>RzFVo7=4$0O!Yj|>!NM&QWB3e!Z81k3J1#s!)Y@kofeAx23J6-$zalUB(h z+aMe+DS416E*Op_jx!=f)Qju?@}y)#*XkZTDa!bfb?e0$y8HG|fftNDzw6&Y(-)R( zKRWt|u8Z=JAK?ZX^b!3;GHI)$k4GQ7*5_mCKlv9xyvz@)!8m|SM@LY0jdFz1D-y5J zYfTn)cC)BkdHd?}23@>5zrID6H|Xt;x9H8w^S8I?_DA&HOLY16=Jx#c>z6Oki_7bm z7q_qf3wpd!r&W)Ry68%kund4yLkJA>{m=BCx*#7Pbj% z8hj*sAQ9@K+cInG)ZKqEy`<&;lEka7cI=;A32c}DlVK2yEAoFZ=zp#M_*p(uhN&!I zDOtLzB=6CY#n+UhG@~n=(RibZLP{YF=H3SQ|LysW&K8!-+dF#29?1jAPS7LKXIoWU z9LHMzTNemHuc{{xT_#HGM=V@JO(F?_uE1L|KS^<65|{OrUNiy8pvyUGp$H-q*0vl0 zMA&DWLNCb|02#sZykCwJQq(YjI3`=rP-z82nUCntL`wJDO)90kp`QFp#kg%*Ul;P- zk`6ffXnBbjMU>>Dj*6m>=>n zmpEKDd!u~G)^Vg_3{-Fk%iNQVr_@YQwjsm`nyGyX4{5BWe`nz-Mfr?KW&RN)qY3@M z3=|bZC1>DRzTagD_heJ4aTI(NwOD5)LQuC@aRVS!bn1mHQbIVZ_HRcfOIR2?BF95g zBUvDfB(ScArjUZ@MHmv!RY_0}U5Y&r{GMehVn~xYJIQsZK<_21MJ&{s)0AztykbyA zY@KyM3Tu6&9Wae~R}-xF%tH9MnJS(Nl11nvnlUCRaW}^?Cz6d`>iF3@N$TS-_=4(t z_E_ZX;-QI2;Sl@AE?JEpa7JaHYDdWK4j9%6{x#(ia;*Nld;g2lJy#9znW=QO`huz3IrDqM@>$5bst zB@w0ZtC$U=AE-c9f$`Y}4*lx_R#-}5hf|3p`W3aFcV8_;&4U~C*lO?oN0t4BC3d2nvsx1a68jJ zsObwI>!`i_Ksg+m(z}y-;^i+@3fvl>0g(?WY)4V>HD*L&!zCk|1y9f&jsBW(e78k1 zc{EvMg!4VtB2JKQY{hh|Ldn&QK4#s}jWliTUhWczW5dr05t0mf2@)!nuzasrw5KX*!22MXo@2O6 zpj*(}iSxXtsw}r5KanKQ`#MmL=kM()#nX(f1g7y5uu2ZfVwK#uh}lA4Q@Nz6#1!n@ znBCLE*~D~o5S!%K?P3!PdOJ4Bd#bXD4f%=KB=74$Hp$;RkWD<8$12{EJyI-|T+QhM z&JN0Mlzegkx~C0VOoDoM{aONg4K0dSAJSxRF0B~iIgkEy^)?s(UzDMn=d^Vn(&V@@ zY)>KhJ&j43BRhHpbk3v#Jn5MI(#~0@_mCz%^KPejBt5y#Sx3U^oOBWf%EP=b)WaMM zaQu~a7_qLqO8-GrYJ?%1;w;#dRYrvIKP3zNboJJA568=Qc+0xBguF!J=Oqo7>XHS` zTk=ig(#^E0EIVwjzO*xI^#|0j)VpGqQhOXl(rQ%w!kfb6crWP)59dx`^%=@SXD-yc_LkTr;p!bu^Cgs71XE1ca7 z%v*DkB`WG&m0}l}wCDxJ>Kf;eC5h}+k5_heqwUk@uvXwwkS;z}mxAb`5V`~!q8yQg ztryEGBGp8Mt-?|2Ez`Lb5-}sL!76tpYD>mswAHL)*@0~Cp`UO}Bg5(72AP*mkeLyd zS?Rpc>3mKTDmD$P;00Wa#fv5(OSs4|O$5r;5WIN*J|pvAis<)!z6L$YKtlIImV_h~ zyvM^OiPmsQ6nRi#q@MIZ7fCl|Q8!@`={+-jb#W4PaUy8f{Gx?)oYI7-OZgq#rJ8JI zt^$acuH*QM#WbwAvzPO?Ok64NtVZ*5)rDFS5&}v!hzj(~-mOkm=5u5hRM{Qkm+z1%=`1GPx=uVhr@Z_5AbL_eo@0IJj<<2Vn=S=j8XyCj#+Gvw3%b7-5kI* z7VtefZtAR&hx(pxc&L9m8sO7e6rB0?pBlpELy2V zJ;`@gblbGl#;j7UvrS?2S~2o_vdK4}wKn=jf%rz_l^)&-^bYH6nJ4P-t7RMyp zLCP(y8_g~7N3G(N7I1AS7o|IUrV?Jfdgs=u_F6&gUBJ0&{J@9q5 zATHu%vyETj8q5mY%hX;lkh&u7*(| zv2-VuCBhY{^-Olo-m8b5vkuhf?40OJ#LqfG=eJ)@I-KAvToRtoi`jTXFW%nBS&_rx zC%H{&Qm$0BPt^@t;SI_NXYm6;36B}OU#BLr&k}XW!HQ~dBG#$q-YDS>hNxbvFHDw! zV5oBuuel)E_cY_8gXkQ>EN}B|1O!?dmQktc&r~d5sg_M|Nfo6qQA$et*RN@E&)p_K zPpf}*Ojs4F(oqI?e7Cq`=pb)Xztz<{CNx>}bX=f|Q*{hRPIXr|>^)PFbGXBJNzBj3 zdW=m`qBoc(&3Jq0wq`Wlz+omME6&jQF}nTlGxYBE0s+VnH}8FSjIPdaZhn4ohQ9gr zSL9vmV)KyW_uFsZpo^jbd`R-}ea2R2=7xCBGjjpI*VMatc$>y9JAot*kc6V&Z)~%O z*$l_td>zMfapY$C7Ii@qK{EomU zjH9TlyYC7HkrN`qE@04oq+$twcCo^{cbt#ZEZzn>|6HWf+bxTu{u{PdHH&kpBN)1K zh>N?t%UZNf&((PxvquxFgpe-zAXg+6#cNuG0xY`C`PML-J!`tnpDw*=x5;0u`o^U< zjMr-R*LQlEk^yyNveVHl8n*Q_SC}T>7&xAdswW?5zvFxQfkba;6vgBbXM{JnA-T}b zuW-i6CU?45@?HIEa~B8sggG^pp=P44rlKr&N}AS=@^NuutW>sU#N z(jZIT`@g^+WxE)dwM#zWRT>j7W+9HjK$c72h`egpK=W^kd7j|c+#PIbnm?M7L9Sr0 z=SjfV_oS{sQ9wVJz~zxNdlDv)6wxNn{@XvHzzc?5f1i#_{)|fw8hxfX-=xq$>-^xg zmJ^h#&A0=4g`;wN_X@4|?p1#&iu!Ib0qnLaZ^xv}=AGn1N}rD4w%H5EBBpg5R?V_N zZHg6Z<6l@3)P}sv2r30il^R{orTMdi?6rr3hQyK^ zD%%3)9zBP-W*%F20@U|~bR%z_HThFvIYa{-jT1yL-{|x#FsJ0wK#!1T@$UNdjcmH+ z#LD5419=ycd8)5+*`x(gv=`D?c4h-3VraYQ0eb zbGRX18C(ry;r1Mi8jHw{xl7s+YS8%#TiJb&G!h$3yWLxpI1$Da!j_GUU+Tui_fbkR z&XS&P+*J_w>#)|zt`!hWhW>Ce8%?57Fc}Pk;b71o;b=0Lj{1Q=9uEBeh>Su$#oI}Xw5hwagGn98pka-co#knVinW)2K`SYuvF3OIT zC7>D*nzJk3CCDX44db- zfSAE#(Qd&y>GRYdEIeH3hNSv*Rx)g`RoG4&$dZm1$mHp;Af#^Dk&~vNn zV^~QFXtIuD>5tVfT$3&Hip(0z>oK2JcyM8|R7s z^VQV}N*}@#L{_QTyr9{Mb|g=Vq?D7QwwBZ*Y8#;$&lOHhgw3U&Uh2ne4u>pFp3^En zn6wq@zmN2^2c-yAS3;|eYTI4mv~Jj2%CDfKrnyS4H)3x$2EVs(1*YlhN#2Js6qh-; z!h-g1!4UR%KI2Sy3V?*_OrcinrDo$N-Jfg^ggt0OP>JrIuI8(E_iWT)^DiO~dof5Z zlGMyjQ_Bq9$jPMmD*p&s1-CmuFw#I$+Abvlmqrq$ri)dmcW<2B6h zof+bt8;^#CVgkLDbpj|Hv`X?$I1yJ?o%n_|d2RyiV650h<<+iqxMYuss%{Mz<~4Su zl=0roe^cBf{(06wfnUz38i(IyK{RytWv>eh;V)r%Sm^xjtHkQ7yjXGudGaNrEYyPx zOh)ld2P%t4$Y5NA^~mZvOPQUn*)^cdOuTw*V`s{2Lfil@Ym3YSnP7Ijsq~mn~iC z_jfkm_!4Ijm}`zy=9#O;oim+C&s@Hm*8(inO6Q-XJD{(KW_8`6u=Q3XqU*+BpV?>E zEd)cIH)O@KO{d^DjKnIPbM*ZB{7rX;!+R2`@a2XJvO2cCXqY=4Dls6JSRnb9-Wgy~ zLlj2i$>~3cN!o9UOG*HDH}oGw;rJckqKsmGhvo!Bwc~}H0yv1N&o6G+8Um8s>|Y`X zGC}e%0780Hnxb|51X;OH0=1rVkXB@sGF7BO)2*rRrWrI7^#x5Mp!&s5qPjfToon}n ztzC`om%n%oqF?gFXKUwy@-J}Svvu+>vf?$eU+UC<@{yD$JV%nU=zRBS!g8yYrwC1z zoRmecT?hOml=4x%+FOU8_On3TxCDKHB>st6N2@(}x?Q$fnuA1{Bs=c^UBxY13ctv|f``vvt z!LMaU1Vb+$!SEQdDx#%!dY;N{TUvfPDj&l7~wDsrom*~pZ0No zKA%TEp5ZVev-*+t8d7;?L`E5`plyk=x+R+tr(ts?pH`-?+ubL2EHJ+ZC8m}R92m*< zpY?l8A4ozt?@Gss!e3B6Z=H4(Y9`nWUp&*?h45?hJZ-?d0gh+3#2P$4P?J=7!Yb}U zb$$coOVIFoDmLcw9|Kj9t*N`6B@I1;3FLK>4hEX*zvkuCyujWIS00+AxSG=SQdzx!st| z>t1d#C2c@04astu%$gZl>fwMYN#?~}9o9RkS4Zl5gTj)W`hGACM`RdGPoqJ9Gzj|R zc^LZP)Q@ICFq@8pD4P3t5ca43crqT(hvOiaO#B(avuNJmg^;l$vl({stqFc0eIECk z#p?Kq_5C}VMCLTDgyn_Bv+W*j-N&@MX@aNw`UJ4su+`7D`o!mTcY06gp8&Ri*CO-x zkg0>xdkz$@;n_Ci_*&nH+fY?1ictPoZ0QZtbx%r>b|u{f<+ zPxMvh>o`JiUJz0b9w?{!AUaMqGZt-B=VlhI9e!Phb53KeL$?&~y!*8ScO_h9^nu1? zL0<9@$H0M|Gg!JO9lNHEoY{JDo|8^$-jDLv%uePtW8(WfY-`H@+IOC+-wug$HJoiT zhk5rZMPN*)T|v{l-KP~IFvpT@L|s(^%JyVkT;}7ff_ma?dS^eX%=KPmzOfHj(`3%F zl@e|>LMxzcsk{^--9}}A-j?9%Ecq6Y35&>;iTeLW{&9P8bqCXZ_wL2jorjc9 zCx6i1U5XzQgwgHARn7?V>4J!2rP4%@Os=1I*RSCztZS>f)V4thoGpmh#ks}(CRY23 z8y(U4oMa{O1O$LviiNs##8jPvC*UyN6#(zx42G%St=&bNzl?a&8AFBWw|vOTe&AgS zfMF8gY_`^ixF-183F673Hm^W&vpJGVPFq^*#<j3FTpgyloXq{m6xL>OKU$XL$*T<6mk6T1kI!L0l=CWwQ+;iCAd25hg-kxKaF4w!pvP zc5g`cmS4f}m{B1};(dm(cY`gXcUDllOd_eC2wJko{fAeqALAKDO=VHzi6S3p1GC5^+ubk84T@!WQuMEe3t|KZgKa6*$Gw&J8*LIHm}~&P)E^m^s`cb z_slMkduNr9rAb5|Xtc($bV=@&>>{cn4Hr1S$1lIuVrwA#XPS{8;PQ(tk?b<4cA@N| zqvlw4rH@^~Z0nw*UjFLNP8&L^2ebpv_xgT6@TbAh#I*;L>2xrh;_1wvhU3%ed>)eF z2oFONkuaPLMtDA)&%&u6kU + +### [redis-1.0.22](https://github.com/truecharts/apps/compare/redis-1.0.21...redis-1.0.22) (2021-12-03) + +#### Chore + +* bump common on dependency train ([#1452](https://github.com/truecharts/apps/issues/1452)) + + + ### [redis-1.0.21](https://github.com/truecharts/apps/compare/redis-1.0.20...redis-1.0.21) (2021-12-03) @@ -88,12 +97,3 @@ ### [redis-1.0.10](https://github.com/truecharts/apps/compare/redis-1.0.9...redis-1.0.10) (2021-11-22) -#### Chore - -* update non-major ([#1380](https://github.com/truecharts/apps/issues/1380)) - - - - -### [redis-1.0.8](https://github.com/truecharts/apps/compare/redis-1.0.7...redis-1.0.8) (2021-11-18) - diff --git a/dependency/redis/1.0.21/CONFIG.md b/dependency/redis/1.0.22/CONFIG.md similarity index 100% rename from dependency/redis/1.0.21/CONFIG.md rename to dependency/redis/1.0.22/CONFIG.md diff --git a/dependency/redis/1.0.22/Chart.lock b/dependency/redis/1.0.22/Chart.lock new file mode 100644 index 0000000000..49dea47271 --- /dev/null +++ b/dependency/redis/1.0.22/Chart.lock @@ -0,0 +1,6 @@ +dependencies: +- name: common + repository: https://truecharts.org + version: 8.9.10 +digest: sha256:76ef16a78cbfe53b0be5d9fac03039063f57b2b43f927e4cbfed13be1c939fcc +generated: "2021-12-03T19:51:06.979294002Z" diff --git a/dependency/redis/1.0.21/Chart.yaml b/dependency/redis/1.0.22/Chart.yaml similarity index 95% rename from dependency/redis/1.0.21/Chart.yaml rename to dependency/redis/1.0.22/Chart.yaml index a920fb355c..a58368151e 100644 --- a/dependency/redis/1.0.21/Chart.yaml +++ b/dependency/redis/1.0.22/Chart.yaml @@ -3,7 +3,7 @@ appVersion: "6.2.6" dependencies: - name: common repository: https://truecharts.org - version: 8.9.7 + version: 8.9.10 deprecated: false description: Open source, advanced key-value store. home: https://github.com/truecharts/apps/tree/master/stable/redis @@ -22,7 +22,7 @@ sources: - https://github.com/bitnami/bitnami-docker-redis - http://redis.io/ type: application -version: 1.0.21 +version: 1.0.22 annotations: truecharts.org/catagories: | - database diff --git a/dependency/redis/1.0.21/README.md b/dependency/redis/1.0.22/README.md similarity index 96% rename from dependency/redis/1.0.21/README.md rename to dependency/redis/1.0.22/README.md index 5b2e2cbcd0..5f78b02f5f 100644 --- a/dependency/redis/1.0.21/README.md +++ b/dependency/redis/1.0.22/README.md @@ -18,7 +18,7 @@ Kubernetes: `>=1.16.0-0` | Repository | Name | Version | |------------|------|---------| -| https://truecharts.org | common | 8.9.7 | +| https://truecharts.org | common | 8.9.10 | ## Installing the Chart diff --git a/dependency/redis/1.0.21/app-readme.md b/dependency/redis/1.0.22/app-readme.md similarity index 100% rename from dependency/redis/1.0.21/app-readme.md rename to dependency/redis/1.0.22/app-readme.md diff --git a/dependency/redis/1.0.22/charts/common-8.9.10.tgz b/dependency/redis/1.0.22/charts/common-8.9.10.tgz new file mode 100644 index 0000000000000000000000000000000000000000..635c25c8f45a30bba38761caeb6173c2890bb31d GIT binary patch literal 37602 zcmV)!K#;#5iwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0POw!ciT3yFplrf`YZ4->9=;D=+&~E=x+A8u9LPon>aqP(|+&W zdyfN=kcBlxummYb>*jy|9J~?$L5lKQ)2(@S8;b-617I+i84PAZvRsm+f3$#E-dn?E z{Fl3b27|$1G9L4P2ZMq8?_jbw{L64W+#ii6lY{-qUk1a`{$ThQFt`U?Do;UknEhpN z>$cp^{Xrg>;-67QF-fLiHR`}L)jwmHBbs+2M8gcHIe+&J z;siuH3$jF0u*mb2PW$}}oG*%5FC@!;o)swMW%@8pX+O^p>MtS9QP!951u1rL$Qn{0 z;0oq2qdfttpePGTlA|Q&P>cS-WIPxg?C*Cj(fW#H5uJ9rplqzuRhV}9i%u8FW-f~v z(p~-bZ!d?v;iNa{4!-RyAx?6L6O?gaXbEvV1vr_L|11IbNOsWyAc3sE#sC0NWO0eU zQ$ZA$806~|O%-~bmBQtD??rDo=seK;%k{s4ae?SPF@VPPKOBtqMk9CqAM71GuK$O4 zo`7x_yiZZ`^T{!wDGKo%hae=$9A6X}WNW?i1pH@&=CFu!R`?VlFheo9>W~yAt2BAD zgcoSq0f56gT~VtoT#!Sy zAai)3IM;vD1sv^9rn7Jl?oVc;aQI>$j%VW#?T3?t`D_r51~2A&&j)*x{m~H3qP^iH znvdW?G!GX%WXDB{2@y9l(E`@E=p~W`0calMGSTp$>=k3(nAw z1+OANLY=%OTe=TR<}hdNu3~dZWQ;ICwD}tMQ(Pql4!tI)G@rKi(hB zN6+`3kHdWwJs-~ZUrhF*K{SfsY&Lo^*?ayXoV=LrhtX`fhxUe}$pD6JaM)_7(~K;0 zh~sTXTGgu`XbrjLIIHrTVOgU*>WzCtHN4OFW+6h+XaXmD&u63IFq-VoCg}Mf8pFN4 zXfTYz=cC#4A)4$BqWuH({Q2H&{9*vZLAZZ_=HnJ^Z#B9J%ISiTeB04g_3B4gLvA^` zs{CeH^~_>_upjM>_Xa3B2#3*lZ;qnj^Jo?ghX)6}lXzUA;5Ra!x`NO-R| z9Q6ijlt<6^_u%tc6g@{MdJzs@%))3q8x97u7twfzMuTuXf_sC5*^6ix&LA4X(O^6} zn4lNq=kpgKYS;c&WDMgJCurND7Pab!`A|S@Il=smH(n3}YMt!ZlM0 zV8#$kW3pbNB!31Xh?XRwC18w7coU_a}bJGS=bu6DB?YYF@Q-zawwpagyT`x z=^G&Xx~&c{YrVxZpMrni(78#Zfp0rvfDg4>e%1jXKh0*z30PptI6R2)66bu@#fP87`?u`% z6zp|6*xEV-Q!RH0d%Lhpm7L#xU(1r^hNpO;B)R1hCeaSv)ht-;b&MLhfvF=4@fB4C z0kaF*P?>$^H9IZYS4yHzN}@v#i}EaH?^5nOF&b;r0$;ga1Z`FzYreI)OnbEa490?L zpmG>R0D_-LhX2KeGX^Il0*6ITXb5AJIfBVwBTV`3^tTR_WpKiYL+@H*$74j3U7&o* z$fjH|k~c1K@`)YQWH5{1^fzmn!Dm*b@3V?*nE}0%;i(Nm)F*=FoV`usE*k1x>v}EHYyUYZ7R!3~jXY7~Q7rm7bQ?sZjjCnor zW~(YVG3xLdAE}VdSnpDj7O~(1l*x@bxWf5@cUnq;Yf?z1c+IBgdj#MW(@{36~02FvFZydf-g5M@1p5 zho|c#ho6qHao}E>7koTZ*!*mp?Pq_(Z6_9>0I} z`uzCt-Rr4T3FjEa(FZhFzvY_~m@lS$9rO|sAvOw~j+#{^{|S@PJDBqNqP99nWna2W zn0BRT*p=(8QdGRw#k$~#Gb)f~m}EF#gD{3v2-^{!&r!xmI%n*d6ZcFQX=u1WQNaX6 zRqu#ZJLXM*CxEVLj+R~4mu{Hh9EUJg5@#HfE2`E!lPI8MmL*h$ zlM9rQf_6(p>Y$^~Y(jAk7KCyEl#zYTHbC`4X)V7jP$GpK_UTw~d9Z|+h^cc(@G7PP zCR8z80zS!Y?FXFEoGqE3MBPsv1Bl)lctfuY{vVjt1AymN+n9=qoV^7#E%|CODX!Pi zi1N`ht1Cq2TT_M zf7eTmK`m0saS=N;BYn;N7-1^ShPToY{7Wh}!7z}br7&nyX>y?mX5j*v+m6_*`*Ne^ zXiL$RAx-9f9?c0|N*R=~=YRYoL-YUr-<<}g5t1ZCX-@m9URMePIJsaS6UIyoK0>>) zVE>8OcW`pi%@;_$-tCC(;Z*#5i<3)g6U-4zm<~};#I*uOgA|1YUw0(Q(dWDu!W7PM zjB}=tkRqo{cb0m^|SuB(O4j97DG%!;prF`lDv9mc4xXS#rCjgZE7n5+R#aDJpp zQ!X?ENI`_TvlGnL0Ox2)d*C$;7j|i->n`950nFINRRS&%m+F{e>cC*1gtQQ$9A!(K zh%S&ULRk;|gknQ10b#iSdL0|dnw}W;m9TY(e3hE|)r4gU%ZuwtMrNpT3e@ekVL(D^ zQFVnZqVYA}$9RPjL}`~%D&~LD9AK0D_;+&Q4?tmJqWti_e&ifoM5h-&0VPC$VLmU?wI$LCjGKATe($*e9d?Q-d%gj&g`t!X|yN3Qq z?%R;NJ#2SO?|$H48^NE7Jz;BdmwSny*r^Hhj!9j@ekAm52;CgCJ0^1<=(`|tmzYQL z{SzipVhWZBCKNE$9#R0o5`MikzeF?H$_H+p>f0mktRhL>mLExDlYlh;{BvQNL$FsM^* z+4w8TCIL=LN)y(8kRT-JPK^Zu7a0uEyolrV17Xi`=dGSp_6t{kG;|-urnWjlp~`w8 zPpp0V=?1`u9u%Zb1*1q9{27{@ZyPEcQza>0;uvPir2j1=$!`^yjaX0l2{cYBds+4H zN7nFcX=UAa@KT+D@ZAS58Jg-ic8Bi~I1!r$ea5yUZhFtdUaz-nFlT<0!FGtHaCm_U z7%DK&48tTpEFnp}E5!P;`U5SG$nKF6O0c(u2Qsl(J72-^Y9 z15)oo@*qp>1nN{vo*X*9N~$MpUB#mh8CJ8ub$W-x|Hh_c;hfc^Yl{(PqF zoo`N_fnyS(6O!e|My|gKvx?VSt;V;j*1Jn~;3Oj}*6A826tMv;;hGV4hJGz@CRm~O zWZ&a(c0;soo@}fzr<=iNFQQOFoH{9A%7@K7M%1zjCfx9!nU#7YI)|bf-(&tXXnI?(W39 z>gY=1%+6w;yw~EGcY%O$F2TR_?AiTPg8sy2O!}*%NGb!yH0T`xC)%}CSWFEK0Vgy^ zFal(5w8Kh&N_i7}HhOG^<(WMjp-3)0b>dIO)R~(PS4v9UORQabu|s5w%%JtfiyLJTrLCS@HgSDM0fS`nk9zXfAkV)Qfk@JEgsNr-r~{r`oTlk(bJC#P*P7qvwh#bfdeqB*`a zzg#}2;($1XAyTfBu*eD9+(RgoEq?sXeaa|+i6Lf{{zxWF#spxRBBswV`0TfAx@=3k z50y2=N7>#9p9UPS%W<_%U^TAgy4ay8<<6G77CH<^QsjWUp2#!#rD`1|QMaISSDd?J zD>+J+two%4XOQC17;0lp{#%Ut(j+T&V)}K8_G&A!w+^-FxEIb8Bo{dOTvIfUX%~jv z>6R^^;18}W+_9RWlt?+C+&!rcqk95A2;kIoV&P#iUho1YK<$_m@QIRB@Z^cJGcE|t z%U#jjVfdGFkqXp*B9z|`;7HkL%xb?(A*INWe;Ayp*l)YiAFdaZ5XPm<;v$v8d{H9B z0F=@w`&8;5C1xiuU-Upblz_He_pNurg2?xZh)J(Zz%ycyfWN&2!`^V*9aJElalQS7 zU*EGn8b+K-OKQ`yj5lKU)26kO6j(D36yYJ(8ZsA<+d($e7e|~rdwc4VOAmZc@`ZHY z<6e@CJqpTVGmvJ4yR<@kcEo(-F*Ue>b`BKeYf()%kEwx?a^jcHyIhNa+@DCF8Q6PT zh_W2dxpi1G8Nlz79HA_?&VFq2f1)VON5rnUnKD|TIUC^yLHMI|my&lI*bY>(71jqN zyo=a2C$ML5mZV5>w#j}x{T@V!i|)6Rsts(blC@}|R6gU7~ z3`8)8Km~wu__6jiXZ2V?OWc?fG6gf3HBs8FsjTH3N-wG!2c!}oeZ(dmXDhf`XV(0n zjrJOku3Hm?*%Iq?9bMe1kjXFQ*~D`4^N}R^e?vR5?sTjdmeb!l5wAK)#$iF_Tye@M zF^$p5&qvSXpFf>E1L-P!2GBCi*ROE)Ozw5h%GLIa?^8_nVdNo>$c=-9bY*H(bCQMn z-fPP5HnYAML;nkoV=nb@l_^>4fCQP;$Au=x;2i5absGLJ++>gwu}_Hue-al2m(5|5t|2Ihmj53v@23|LxN=SyZ}#vy$I-zm>ZuHCvh$xxGrn`*#c@(I7`o zTxtMMfOJVTW=DxVla5)Yf@xg4${Ekqcr7(B>ATb`N)kIpDX~Mdd78N2xu|u3g@1LDzel% zK~yeSWgF*y#hHlM#P2xjrNgGOON$v-A0%30ab+Zh7t*2JVvC3Tj=?)(hCERWGIvP# zU1?$@Ql#f{vbY|%BoWd}s5HXQq$`%3J~6Km%Knc8x|MNU!04A4b_Ir1U6$xFET}Mz zL*2D0_<&&aONMjwo{6qy_s%}0INNRZ?_(%LQ(NTG3Y^&d6y`41?~BSFgUk{|xZu{yK-||4 z%H0fte3{NE*!ghyt~-O_C7UOGvtn1R7ztE+pNT0}fZ0s5x>TR}$UTXF=c`IIY_l4E zD0Pbeg~Z42dFwxm5&Hz@2Si_P*B<*f;3hzi^&DOA#JQ+)@RipspEmELohwGObL%!EXSsCrdjD5PIJCYzrqQY zv-|HixevGWvm%++DZ(w5epV!pbkUwJbTkTi*`CY+EH%=l42*HRsb}Drh}k^#tW-Bb zs|}N{a5I%wru%b=SXvZVnX1Cq(}yCGTq3kG1Y32y$d!>4WlKyc*X@Nbf4Cr5i3kL- zSQ0@F6y+yn!HVMO(Wa%`-cpy=4)<(YJ}JyUxpW@{ObuSHUzz;$*8oDh3iyq%S87sJt#QeJvv%ED_(r~S%nHTIXRp_t=vNJ4;e_&Ie z(ck+s_`Tw0Dq)fnGx4(onWB(ed2V5gP`pLh9Ks?*X<^ktngRlOq(6IzLeFv2qmDW{3o7axvgx5@}Ke_;B( zZ}RodxI9|lJl!&KPrJDmg*Q*MY`x_yyHFozxQ;nTA|plGU#`2lNN0n|+Xz%GsjNH<{A74q z;3UE;92GETGjl1-4oE}{p*c)K)a!^5=EidsC5_5RSNzPH2dy$SNA{M#G>yQ4Wd#oS zcVW5Zs?(Dv;C%-8u>puN&5basO!+F(N-M@|ZHCVm=v4f@Mf;;4vG`@3afAy5)2@8i zL_jQ@Ty)V&9K-h^rT8M@VM3VR+kcYq#0cW@ z)ozFVI<>B18FWVhoO5sfwSkie__%erq&BFj*19l>x-iLcSH0QosJ}c&<|HLCxmcg3 zY)Ky75>s`zl3%G5_bOEbUCLYNmV?0rg}Uac4&JtepHDB*)fD^{Cpo%6+21&MsEU7Q zYxS=*&v0@fzFaL(@-d+>$8^qPRXN}Jk$5?6e-)hiZ%!zjoDV`yVtM0)-oc!4n0$Up zxO@zBBTh6(CZ8Y17*eDiU!>HAl03uWZ6D=fU-+}J(MnUs_TQW+M@Ugfg>1W%P+c&J zx)OnIPB;ysJnV8Dx{TxTKf6$1-rwyQ{m}D@(MFv2R7kuYRU;do6zjNnRMbKv*u8Oev36qG>@7X%xgLTnG|iCg(FrUc-G?FIaX z$AU3@Dtw73$clui&_*ye8P_q!c^)GMS|jod&>~#0#^2!tv+3=rL*a<%b79pFqgs)O zzKT(tlQY5Hoi148Z8011;O; zv0=ptECm#;PzGbRG`dU)W<{xX#MSYiB7UAPeI6QptzZ<%XnY%5)*fCzpB&5Pd*Dsp zqG=!#0`QwIIGK}Y(jq{L9Q=b68B_A9Sj^KtU%kD{=d=s+?t(1&>gbaq>z1){RiebM zN^B^HqyI!_@#?P9#BUffLcVqYSf%FGAX8Rm{p6W8d|5W6L&r0n1&w6D%pj&SY{-J< zU7Y4jbD~`RZBf}^se6ipg9s%#hQfnN1|n2;9oE>Xbpf5Px-Q(+Fqj}KZBQ!4t*~p8 z;zIc@D_K#SS%5BEIx1b_I6l3?dAKkRi_m8tXKGSPhXltVM4>;Bi{nax~?;*yGtiaYm#wtzN|9cDt`86S2N446%b5rW} z#?*>Am5o=>@$3yM^=)-`FjJ5TuFT~=;Z-EubHBb_!$7*to>3;3s|LWziX^FyM9H&o znUuq0#j!aaOx6vdYfbpt?0Fw-!py>V6K-MDzgMPVjh)e`OfbXcKLE1}j-kHu#WXg| zNKe_Dy4)%vLV`z_yRJjiRV*g*4t-8Qnu$iN$xwho9;8-ujOVG*=9z967Mj0wK|&IP z3%CdvUjpe)+wZL?YteL>G({Jw<^YcV0_J*Nnef2&{{>2HlyjN68I<`!xZ9|3v4m-= z0=9}}p)O)Fwv)nz&Zvennj17_*yA{CiPtNfiJ)etP$XQ&#p^0K3I>p#?_4|A0uQh9J)~$d?xKW^ zVC2^BiD2S0!UNW;b;g87?jFl^JK5$XVp{qoqKuA0Cc>$3Ax7(>H5Z51%F$KY1?7Td zZ~VOxk$8nnk3Oe7IR{o|-&7>h(>xe~PdGZyDEy>&v4zs9Op&03KIami$qviF6{R1w zyFv6e?#On)9?ozKYS&K2PH-0`q?+MXs?57AGzG)a-e_pN^nu6pv1O}MPamK z6nOIFUZPTPz!{oPn-U(}AS#8`fcc}0QUUfR!@+@|10&=@g$@!Oyh_y$#iPtQXng3vY1>5 zvkzV1REHOc$tB)GP-~W#RQpZRlE$&Es07+eN*cCTOuC^|RA$t^iA>~Vn|=t1$QWUt zJXDG)#tkw-U>`rcWxak&E;0YWh{JZaIMcVvIqh8N>tjL!khN^svKKK?w}bShaVg}m z3jObTtbkWvmmN2<3kNuXtK0CdK1BP`P~~Pl!+!826Jx0O>z~~B|<4m zn8=0^WuRni|1yQKF0kG@k*OJ+Dx=Kin z|{=r|s;Ewz1eF~=j|7CFNw%pGBL7waD{&yX|59mM&TrH7jpR>3? zX@(OKfn!nT%T0-hdnJfN`b)`3LrmXSd0)%qskTJY>wMS$@}+Zqt$l_9QJ}X-VF0>c z*cQyb;yLL3ETje__ij(J9a&HmeY!{?zmq$Csgi4IsN(coC2$Qu&#ozy*Y=gaeCc$% z-40B#RA#2Yz^=a<%}@@9olBfVQ&6*_I!ly8;q;^YB(JZ_PH^<3)}|44F%#bzM!$gs zGajCUF{`Sg&GV+tc<*HTJpe4M)0FmCLwSD1u)V&n>3``4#gsES3IG_m`zA_^Eci`Z zD$KFw0IamgHBgK)2B@I~VCGP+15lPR0PINsD9>{dWhQoMz=ug> zDl9Ut^>=+!W^nc|o{Lj%SRS|;TFT=CCB`&DW2)+@3Gt82TB_?`-+{O@F0f(!4@bj2 zXZ`Q*9gH5=|3f@{{eR#q*$D-w7lR5~rTj_+8>n5tnttk*u?Tf;#KeO}8`jFpU~+-L zQ&!;_cv@c0nZDFQLiy4bZpzXXRY8jUx`2ShfErD7zkKQF(*5s593bPo&5WN^31=s+ zn(zTC8(2=PwIH#f#5x#U;!=wI}r|ZHj8@t z+$MLOA#@odKXo$aBmhqvy&Nt*eHVk%? z&+SRK#y%y{VRg(K#@zvC7;tRby~PkcchPV$e(R8O8)Pf!nwc-XazjZaDTzFj_$VaY z+vC~)bf zi8yf05_}BMuT4GOAsOh=BD+AKS0r!+aSUfM(nDZ1F!hKOMy0a-CH(xcd@m-yL5{E? z3T#YRr|eA&D4yf6aL` zv5c?HN|U_RCWsp`a^#-M43=Z)BZel-Hy;6^EdPnb5y}Fi9q+KYgn+WVCvN2#XFuL9 zH3?z<^P!I9Re6ymm4I$;GFlngZ3CYwmtVFMsq2qVX%R@0ek9h$DhinsURWN zxb3#6)_7&bb6^>wOevba1VPXS_iCFC_MGW0ApJX9mlXpwgu7+$)MPlllL);pYxlrtD$8WyoI4}JDZ|XFH;ho8m5HC&KhNFjCLE!iy91fsSMXz?hG~< zQ*Aw|m^p4|RMKdv{>2 z@_+5#_)z{Id*l64#s6dc$p0VY;r#y;g(QiX#AY}FGigr=axsCC%*B^GLGo%@zTqZo z83W`EUr($gJg>0^n3olJ$i7|~V8Yxg>R6Z9oXR@-{KvDXOAO0ce~p;2E~`j)fs5xV zO?b>;Ta@;qw@Qud(YI=ZYB<`*ejmX*}ky1cgZ^+3%cF=$qXX)0Nur+HyAszURu>iQ+yOG%c) zxE8Cb2yd$;mCpbBTLe7v-zt3A`(MM+;K05AH5xtM|9Ft6a{uF`4E85;%kX3cH@ywQ z_dWk%P`U~?9ssEmgOi_+O!KOl`MheQWTo})xPyKLJK8~nqr<-oHq2k_%A*`!%}j6X zo_jns+BMFQ7;;_rgos0|ly808quP>d<`+i?{zIQ_to=qyfv4TJXFp_)H&t#0d-2gV-|JWb7`u})u{K)?w3z2aIE5fB3mfWpk&FphC#?n20%L zI+kJ63e3O5BIjXBxM!1L4HhP38BFs7iP2Z&ILZ;XT}Ep>n_4-H*0r#;zh{M8S7Guz zGwd_}Lz%kk4V)4nlgMv3ec$6G!pX(sEN<6KMq(rb!N3&%n2{oF82OG03S+LDt&cK&`s9=BTm;3{0pGM;fA)k-pd zJUy|x{|jCGE+v2s`~P5n;GX}E4@QH>{r@2zx&I?@>dA;GH}U$dTG?$po3ZBE0`Tv{ zr-irt`xO3Kpy~!D?NW?I@dRV9BzjHD{@+b~@vVQ(Xdll1cQhVU&i@7nkL&+Io{IfP zB}=-Yy+<38n;d{u5canIzbf*(VF6OF9RE5+yfyxH^0Q&PQE+Y&??ctCiS|+Y2wTmz z_Yqc|Y3n0w_wJtJgXjsin`>((Dywhn`Pnf%Kh?Q3wTN{SQ8sydo+^^u|Zh z24bu@dukl+$=B0Bz0zcptEZ}Gx_UZ8`un+h>K;6Ldfw!z-T$FbwC+L-*d+fSRL*}U zND$^yY7q*e;LV+G5fGwXbcan5BYG*!a?G>DNZ8(Z54u$C3^oJ3e!xHsa)UnJ za=AChZ>TK0x-bi#Ko7Oc?lJO0Icux($oWi3EG5r!e1=wGZffbix+dkZ@`>C`q;rj< z&#yvLT=dlP6)*;%TOk-T?}GxQ2hbcZAoJb4BN4Jv?{!(-9no}I#7J=vd_XYzCBr#- z&pmv0!EfN#f|y}o%CP+wXgh7cdKlM+7bVU;ivMM`_u|EiA93Jo#pn1bpb7I(0Cs@S zCy7mDa1oOkj05nr;ye5AVv7G=o{Ic0-0}Oy^^E?xaogf18o?&{e>8OBe~gBs{mG;J z{}7Lm|CQ*U6BX6pxt>Fkjtcv)mT({7L|zL;r4_#>{6Ej9ygBxN<(`hm3#k4Ekh1ml zzXOM9%J_ksYPHNEC{6ewz(+vYyz|)m(~S_VmdTTXjJAwVmpCS~asMK{rpK>8LEP-&~@#K1`96 z8-O6s3KW2VClx<|`62*8m%ZkhmV&ULIavlESQ)rU40fA_EUK;nWz9E+sd07HonrV8 z)HcGY8L;NVtH9+69soBzuWET(Rc*CMyzOo`8|tEP+u5iKAad;uZ?q9k-C#C`8>-BP zgwX#Eyh1t3mW-$KyKy4-mvv71{}ZXo^>L{nqgANvI7S#9vzay)-mU|ZXAN&dll<^KnH^!cA9 zBDjgGU>OY6*Ej5AFGDGzI49W}eEBkMD44?w z@a0P&V4f6lEP`=3)=0Zfs*7=hb~Veom0?}}ly1|54oX(jjvW9J_Aozd?2fRzw~r?Wp>hU8sfYBw4)#yR0v8^XZx(3hH^`(fuojY zBqt$>r{L`9qyw`HYSKwPXjYORUWq8i{w{Sv(Cu=`fc<$ZR0G*kEdUu-=@rgQ8(%-L zZiG~XGsBcCl$3W&uaQ>gJi|+F#4|q$zgxrCw&$5gJO?CeK=uOXr5e|^-1m^8$+&Il zQ|&WclBCw_#G!yv;ijOU5t8?NlrH)>I?pH+cJN{*KFfF44R>s+*l1HNzs+IVZMSq= z7E)KM{r{F%0ygab!{Nc6oBw+}c+CI#AdlYv-=`?~`Q#Xc8DeCEVN9i&h3eg3gnZj# z_pca*x(~3DZ+aO)J3us@0d~#Bes}j08g+hqFe=v-1RL3~XW1~^eML$G(TyR>q2IU# zKdO9R+0%;ui;epJ`2U`({|&}_kM}_6JZ~%dVjR1j{mFRdbc+IwTb^cuE_uUdyoGA5AtaK zuR}N9*7&CbIeJZh>Z{N2r@n14``N|X82#)Tw#jd6n;!rnOyLa2ILFFi3PzFglInuv z*JtO4uim{m?rdQnG{Rs05v_xodhW_LXpYDITLu{c!z2CNwHbyb6w&2}q`t!h`JzJ|+q3VstO zI$UvA65t}w)AN{n{hg=$H1WmY`9OZW$kNdMD86u6*Srrh$1xI}?B~n0ufOw#{kO;5 z(T&L^R`O67W0d3yc#*|+o>cd$Mwr1A$)#VpVNu`S1ugG7{FBVi^(^(As|`8KacIM5 zb%ev1bHO1dA&eJ<=K8IB?FF#LeC@F3{5*yE;{06d8teyG7;3H%{K-rht@!`_>i?sW zNB@7!|MW0VmH*#X|2MaSs{XGzu}A+`-!|y~cCj}4zg^>&`u`S6y|K^z5tVvP5_hH4 zo8xi+O8o|}8;wkBpBu4V_1Mn*vXAnxWRjLt5L6snRA*E%38~^PQV-L19I1ZF5RBd@ z@p=mK%nWsRL(iNRzBrBZ`^T|={Mnz)`@f#l`?CKG5B3h+{eSN<{@=qqb@m@K$<#yI zf69DQTd0qI`;V#7-o5?DC+6I<{iht8t#ABkwY>hWUsy05E#&Q5>t7yfRny>90Jw{-q#VgKJ7RrJ5X-sAm`2YDL(e+2Q~k>ihd z(RKOZn>6s7VoLmG>V1aX1(aD*3+$!^idi5Ko=_CzGE(r0B;J zpc+!&Hi=cQb@I!Aq$m-&RBxP$wFCkD0*Y?z3TNn|fZ44wznVZi4R%^d9IG@@vW5o} z@#zN~%ShLMR&)2`<2+6LUoM0GxggVf)BlGDV^{tgO&;@qJ;+nX|J8LMG4()g0#Jvr za8&9T(;SewSGDfIB;qxp=XMd}q{99@$D0oqG-vj!{6t-1x(|(Cw*7z#zwYhU`aZp7 zU?0_2de^~x9`~BB>uJUR?>GL#-oeD>|HI+rQU8CCr*i-Ew#UC7E?J)b%8$OoU-@an z*{@Zq&C#z_;da3uws8DbZ%+T~^!(lXS0CTL-s04ljou&gz?jj`U7Z!nQMmtO;+jJS z*8U}q`{TeU^5Ol*v)AWCtHkhN)EiEEgWjM&90mSF z*J3bhh~l$w#yb{S>*@KMlhxS9Of-9a&BZMl#dhQymzpWpQ{o>G9|n`M`cw5?=GCXG ziAYJKOL$M>H}tI@_DcYEjDTVP@y#mmmg|9Cw~u!+_!H0IPn^*o-emOasgz`3$A_L` zy9GrVU+%lj+R5|R|No=6A78zGb^QA5m-iq3etQ1q(^HZEWVrvkxc9G~P5vJTuKYJV7>pnFzXy35 z^S?qT`zwr<6aG7x-f8Yvm1M#RA0S!oyoh6!A7rx)y6fI)cn4Eey98yFs^pmM*_Rkf zc}ix)@A>mwm{;=6@4f1s2)pH%4Y~e3j)zuqehI=((Xy-F_srM68yRYBti&sP|FXX~ zz%!WFO@lZ%jd8GdlUY~c?WWVMW5*lv=_+t{m_%0$Mx_Pzx-6TgG1yVyb}b`j-3HQb z|ETBxD$~&I9l)FU|8OvN@Ba@c`{T#>e-H9(&HvxX#8LOb{dJ0=yWss2*p{5%%!_qv zzV9a4`U<$dIVx42Z+>mT@eKr@rWszsY<((oeNA723&RGgQh-$qt~x=5sP33qpUSwj zr)9S0y18^m$ib&FQug9XL;+7A?55UTIBbFk?gM!s97DJQw`!)O9lRhaO&e z4{;?4*a5n`Yt1R9r#YO(-nD1izI0YPRY6{4P;iz}bd|9|p(zx!5y*Z9z`kf{t(zm( zl~N$60aa?=_;dFg)~7ls)s*U*$>7f@dWWMZMprNs93k-ICT?*4;8sxU*6}ED0E;Zq z0#Kz*i%GB+tt8YOdKJ-^mgV6Y-~{=foF*$}-NCD17hD!IlqD!fG|Zv^?Akb$*1eYK zXjE?7a4Cn`GMO`t%eonKr)BA#k>!??v1~UF%cdz<-eUCY+pit?Et;#2xx;Ba)4$8! zF0B`um2Mg@KgCvI>9Jt5(zJ*g8l=9)b}RjL)ftaZf|m`JbtEGcN{|$tYE&R|@BQi& zpo)4EwNdRRQP% zp2T!&WbD^KbY+?7v?L_J11B*JwZ|1xPu_nkxL}EV36q8}Mn_1cPXnNm-@svS=KmbQ zHOOO;;*>G$0Dle<&!OsT>}l@<;>T0H4`_wig7tD;JO{lJomv$65E$k3VE7rUXGZmp ztcXjiv7CXGXZXd8m96vKw4O;=@jCra~M);WXh>~8yH)&n- z1?M}fea6#4U0;`+@FYWX{5cT7*=HZv3T6PzV0ej=XllLOj08|Qn%#=#2BikNQWx-) z&ef^_B*k)uGEu!uj#%l3CD}L_9dB-*mV~vjDR;=~mf&_)v_I}sZ~seI;avoOXp{eU z;KctL?oTF<@!uch+1mbhq7H#`5%=XNhIn}|*1&XSq=WL9>df#5M%ajETV0K%&V>bP zZFTlRuyrQXvrS2qqd|WSvsUT6c3gCH~mmZS*aX6j>tyn8R>ev#P_&-Az&LiO%Ipu`r5n>u8e&aYOg=% zC`%weZw^dUICaTV{53L4+SYF4L-i2D+uECxU_;5b1V-P(7$zagn(=bU)~Kk)!G32U z?>14=}k<$3b;pr*-SL4q7dVckQX# zG#Pc>polWwb~qP#21Oa?r7h6}G_g~gK;E2e>qS@T zc3RA0Oc%!_XKKXyFp3yIR3uUN)f(Mq5LV-SA9L*WY!7;7n8B@`(L$NMGIL>Z8?$B2 z?3pG_ktNACclOGc#t!k+yvAd-rneLOBM&dZ*o<9>Z!!Tt-mUp~TKo0v=)^c&R_~|a z?C7N9vjCSR%FcU`b&pZJ5Ue)J3Z-=58J`_4npv#&m_*#V%r+-sWf40RM=p^ccXxFs z)hnY5>Xor``gL|6O^f691l8_JyLF%0HnJ<%dW^!HWK$o95T9yRsr^~5$$Ed(y0vM} zP`%uxTYK9qhSk~ZH|(diLgect66e%+Ek;&`h88o5)I}Sp8IQgrh*R&5sJ32%*KEmc zn)r=q+Q)NBX7YSs9-Y*$A^!liKuW&>=b!Lw<&W@ewEvt7740@wpiTFG_A3702M7C) z_rD+H;r5>oC@-=^CfndDCuar1<|AWx+jgJUwj5W(H_R830iAFTHGL_ps^xb-U+YQ2!Hr zL;olEKY?~fU^`8{!)k^oW68qFanqRD9d^ddcA9220ySB?TKp0;;S8w6;iVkHZ3d7D zQL4UWfYUH9(V9Al{|4qbqj|mWv;pu=Y~z21r^^4;T{YV0tRLPY@t1ry@c%L6`R@JC zgU9p#2YGxPTwnYZ^B(Fss6Cw?=uGFZla@`A#J@U`Vwzowi}c+g0f$RgE#A#?b+?nnJ#I{hWh18Z#j1$ zs|-l?nsWyOvbh*uHq}v$sH+Cm@iEuTj${GVV&W#R*&|C%bP&1$oCfle))2lH+?8N_ zcbH~w8@()SC7RaJlx^Gc8L(;_@f>0_G?e-q@ilYevtQcstNtpvXi#Uhu!0(C#LRiC za?jlMmZ>yGYXcksou5Zr{v0ah)2Xbj?%Wzgp*g0fx}R9Q&2dg=f|U%>SIhz1?RGoc z2LuoR9si|m&S@)dTN#OCX|Bp(5*^0r0v;Djux~ooC?p&Mv}JqN-u7Z_E!P~|dggpn z9^+#0tZzjYS8g~=`~7cL({EP7A5Wnm8WrH5%4yjc-ltg=s>uH_p7leN<^6N^-_zSg z{uR$A|KH(g=*s`2y~q6j5Ayirf0X4`@LuKZqA#|zc6QNQvmFivW%*Aej;u(Rh96H| zVcS2(mwZOL!g%ir1y-TDMjWqMb$h6`czKs-*Lw=w4m}&Uo3(2BDcM_AY5HTSd9aijr zlgIpj5A>+>pA4fF0*syZ=TNG=i~#T)hcHI~QyKZK$WT;&_~YHny zvb%BJn7y25WT~S`bFr?mXB&F-RHDR*20G=;o~UT_5|FbxjxP3dVX>Dw^Zf zd*(=1d73OF7ZF=~4b1IPIQ*I)zx=m=OaL^@X!q&=GnkAj@qZ`d$Nc{f^6(rhN8+BA zdBHPh#pA^l()pA zTCs|k&uMQp?1c&Lg-JMPy0nV9&YS!v!3hYSf#3$PYwW0P$6(9u{|;=jY5iNVt!}{p zHv0dK1{MFm(PRF%2YEz}r8p*6;P1r@NgJ8W_(FsoG(t(QcIkTqpk0=rO!qY9N!&X! zD;e$fRQqbB8i1U8i;mz63?D|ArWr{y%!HTH?#JEj+~~Di^~wzER(48Uj}0Wt!O2CB zF(gd-t6^ZzGkfad zgyt{_k=--X&Fqo8{<}U+{9lmHy~lqU9~`*y|71LT^#6E}hx4h|pHnDvtn#ZIWG=$D zFfyoRPbOnATm?k@qhr&H!o8(pxO)8TL`|}MIy|6Wf*pOg+4EVc4dRpK%duN~Z=}>p z`1Zj0o^C}!wA?~GP4n~etVlvI+2eoWzZNjY zbIdl1H02Z0>->TQbY4DZZLrCqV1`0iPy{GhBCfy*t}do=j!_(mD@QS2;v7XHT`s0z zXSU{3{Ob6WmBq;gPtdsA>%5tROzZ#xh|J+hB{lGOSmpwrAy80;Ck2orFR^VVnbJwf zAe*GougH_$LrlRBG7-cb(OLyumEI~v9GX+T+e~+MW<0lEZF?5liEznrsdYj#%1ST>o$zGx68DODAu5;)@~&Nxe^T$XZ%pgj*PrH znaedJN^$9I19Oyeu45}OI%;qn`FAOqW+;uhfBpXrKyV&x&tFupT(&Mn*26F)MUpd? zz&J>APpDPr*jc@X+14)D6G6eO*;BMyF%nc<2zTqCCU#KC3hC+qN%}rTOF*>-6YGX7 zNl_NBK?oU9C?ZjNCQ0&)#4*Zv0GLe#qD!BxQ;#9V$VVs3Nx%6Br7>AA^--*23VK!f zd~Jsjss{|wk|Y$>z~x_0(biyT4s$dwVh-2``BWD0!R|I(tIYufD;VPlxNYuyLwAEZ zjC@?Vc7tZ~8VH*FzaZ%G|LXfM0hs?9C7ZUqU!$a4r6m{WF)q+*A($*t+`G9Qhfwlg zll)InUfe$W=jQXjgK;JP<9Pq^{O>^?56SXrH$1=l-+^~1yAbOjCLxUF7APGhl{e>;a>x!y+daC_x!pc`2d!MTY3FF-Re$S0sxlzdw#pgrX+c z5lT@Kp(MoohKd5y!^uCnHKnQ53`LmUszDB+Ra;A#VHnMB)tZFiw%5vV)3p9o0Lc5b z|BglnL-+iDG8sI^|9FsxOEPISZ8b3G9KOyjr2Kv0Cy;9vu#+{~h23 zK}w>-(wX2brnv~nWxp3gUtX6qzrDg?u0yJnrR=Qto@NYyrJJJ%v=E%dBpa2=8<`3x zm?VUcE$^7WWp4{UO!R!(<*lKXZSK~Lt1zNlLn>ZXMpL|QHIRmE8JFf67#fv9ppJ0tVT|F-JBnpZFOhmb+oS6(vh7I2Hl$nMQoErq>-!1Wk55y( zZRZ5m(6^1zh6!@1-ThKGE%!tFUijP2L)(?$ZLE>0cvgYctQ>0*#i-;dWfFjLoO!|u zkxWF6uvo|_tB&b)HBTGP(XuAd32&on0kmR2#F*yXytJc|pcz-WcJ1f`{JwgQmc7JE zY-Sqgs^71xm+ws$CwnRCi_W;`tM(X1XoWWq--balfNU5aQSvJvp^{`g+ozGNMg#NQ z_AK{HGgF1hUlQ?tx7bO0nl_fD9&9`Kj2a40n~h9Lz-qNqG(d01qVi?R zW39PO)^x$%Pk8Mn9K1O5F|FMxoW`{9Tg6=mov0;(irD0Sda$W)u{8-W8znI>%p1(L zl?A{>*V?Wsv%Fzzk`wF`&#V?&OszGs(gClWP8FHT+^leNaih)31pakzRH}z9*f2w= z!iLqTX+TXZSQfTsQC|&mSDq~FWxdsJ+pIl>bGvm{ZR@VsZ4KnRW3{pYADgXd`vxr5 zXk>f#suqgFTCLajKDBqoPOI?lgq2FL9yVHSa61-SLT=AKU-NO~mrikvE>Hw`P&1sb znWlg~=iq9A5>uYV^61#$tkz+vsC^`A_YA<5(>0HrThDJ?$ULU21ReO?s3m>!UQ)P1 zfEH;Qqa{jm82^}&BBdZFfS)%lL^Kw4x6OxP22gr8BR~Gb*zM48P8h}wX?*7g36gfj$6z=(sKqTL z%Nb6DD~B-W!Z@xWY_(6Dq)dynB)5|+66n{5+~6cZUiX9x7cM& zP&<{2qA$U4Fd8#%sd=OqiWQ_)_4=id_iMO_)GloF(?-PQ*PG*<-Wc1B+_2m+G{icl zB$-0svdC&+-e!T)Tx)frWXT6DIa0p1IE#a&1w(N&7YKiE^9Gj(T3dDHn$kZ)a+NXDZ3k6wgjUn&`_#6t8W=s?8}Pt6vfa_*lS zq^qz>AGPp)I@thjL1=yg^MxIfyGK!eg0dy%2^Z-phgAc}E*fmATj9nEgT_WmG;7P> zXr0>gwknhRpDA~=hn&FHh*tKA4Y-N1+JKlR5_&5PuWxrf)9?SM&%OKSOs-5zg6gf| za$9%64gSA-dk0SZ=h5)s;4%KkgFKD--}41>GQhJpOHw2zj{*NAGm!=!Q;-!&XNKk^ zQ}<-}<>ENz*7Js}VTL1(O>jnFHg0LLP7#sF@`O@ji@W##%cL2akcp>k9 z%bvqH#R+=D-uE(;5{h$@t-+Ts)0#p#)LDhCDUlKQi{y}gq$rz$0e?{%q^CkE=Wk&g zldBW;=`{_Zpd7P|DIln{nM@#2e*@43hi~6@0LT#K>6>+CUT#=X$m_4BiJ)b&VMewv ziA0lK5cFp_>C;7^es@FtCkht?e0ylA=OM{56y|KkP2Sq;efuBR*VRM}FpAjcRjQIR z{eWYn>5eCVCAr84;i)1o_F&432Y~0P4Hx7p0o@N^fAV~~KY0%Nt2F7W7XAZ-izSKJ z_ly5~Wq$*|{RTvzM436nDw*9XO=OhVXZ+UbniOo}6V}h;A5K?eaCr2V{y*MHF_a=C z7F&Vm&%o0~$}L(hfg9K|;*)&f%NLP{Azk(aM-qt@sEX*|^r0T>DwHo@n(^PzuP%0;3vpW3rqXF9X_WbH&*ZMw-}tyX=b-m%g#@z1oF z*&pSL5+1&DWRtFF;Rv$}$*S33cY)pA;pX}+)C-hb2y2yAVmwFTI#l)x{qy#ab0*Ct zLfKg&N*O`v&B^%quKYGNhIV`41~GcT8+7b5ZJ=Z|wRY^2AK$!^^v11;))HvYwyb4T zg8T8q`;RB*cMI|^pk3?e8#}dT$PB^geG;!f5Rx-ljIL>pmRu66t-^GiW0J5cpdx{t zPR>8PK74il{`l>Goqu@${><)2Fbw=YNK*2;L~C^hVJfI7SsCdzP034!<#q=vPh$n< zsb^TWY@7e}Lq?YEFkmH1HSO9APA)S}{T;18pm|x1uYUc$tZQWIDSKqW5Gu6WNBO8! zICXUy>fWm6p^2;*s#JCk;^zBJh?`}%Mck^p8FA;GoYvnI%PSe)^GbD}Z=6LaC|PmO z0Gmh*uR+UvB0tIgs$ZtVphZqraSvrX5S%fn?pZRJL~tUa9nlnpc)sQh_5}#09in7~ zGmvht`?muy*yOaqqsqFpAQUOFH2B7C~4C`|Tgojpvp0V+ek z7C1u@2z=e6BA^pL9wT$Ggeg@u05n2NsUty;UxuN78B-`GN>;ub~l>^!k4fMKE%Vn}@wTZVzYH86x{Q|5)bdwfWUdY_~ zJD$u*cl%W9l^Jg7;igm*5rKIzlc zlM!hA@-yd*)gaL&6w_!{0+ST%v#1%Z)QQqfNM~e*{8($3u>N-)AOa|~_?ahn_bb#d{P<~V=6akOf$9?1~PO-n~BLrU5^rR>O zX@|7(RgLM}Zzq3xa|8LKq3w_IY_$KSB)V+`m<{K@lR+i^)4_26G5+g=Ji`9hIa~1X z7{Z)~b4-#3`(Llq$^e*>$c+DDiNo5|CQ`6+4&%OSw8m6jb*mu?8#X&%Ji}g%*~R0i z&zoy+l&bS9wwuW?;Q(VusS3VbdD-4tM8gG&iWp@Imi3}NoCTrzu}ICpN*F)4gQ28; z^><@!^PWmVODmWDVHtj`BDSzr(+dO6QC!d*Wk2AI=D*;4@slX&$YM1Ws@t9&)ip|F zVxb-p3D-PdI7Omtg)-k)ieMHl#2&2Qde5_~ZSm2NKW=Z^^kdA+8ZV~cAOCxYO_|*X zK>gaj5#vvBsCufdwj?r5RH;+ApIew?FESXS6O>`jD@YRYN=AtvD+OxkpRr$kY@!9S zCh4`}FjK>Nwuq63^I9loiY^OPQ%HR3e6l?7EenXc&2lMoD_){Ct!v;nP$c+Q@Ef2c z%Xt>9UB^07o?fX`i8Y{X+oYj6mmq8x98h(`DI1f)L90M3`nfwWF98%c=-dwmbf1bW zDL;+Djn-Fn(?c`%#Ji6Fe>S z|17^{4A>3&|L|a3$^W>&_o)9r$ioerC;U2_R`^w(154p=q3(0buaTldUyP0I+rs|a z6i)65?fYn_jIhOlR9@?o7xEgmdS24nSporTD`Nh%Op%N=vx7 zR%q!dX-0AqlGu97y*|*d#@FDdv$KX`5Xh0X%LeH#N+~p?YO=? zI@9-U(hM(QwpMu&r5^4w`-*xZKlEgEo#WPosV;E`WpnbTui2ux0U7nAJ-{w3_l>Hu z6hlf&bVacew;gdnC%+2oajPB$DlEE#$L_9o5kKXld$vwRUMtRZbXo?vIq)LKayw*y zTi2Jw#G33+6sqj5PIG2!>T?hn>cRk2DoQ&uCnn3QR5mH@?Yk+U#5bCv(B}d%vi4ZV zA-41+a!A0M_-@6Up+t$_o9KGHN5uV2vs7^S@$7w2DeM_Jv-OhW`&w~QV%0$8n}0L9 zmXQKff|ofxQ#+v1hO^bVU)Tpfp1~r|(;rbj4SciamR8b4%KcuySp}+RsklQ^aUHG$ zK*I%M0#6BoBU=lhcC>jP@-RIm;bn6#8i&-Hb3;7ww5G>^i!-tV-pU($vpw{5Gh81j zDX9Ex5XP@i4AZA>Fu#yw9V&^)XPJQF#K44o}9L>DBEs<7P>Edl3viAa&xqHKR} z2{g5>`7TWBvmathJ;MLz-R%Dx2KjHaH`sUYe-8(PNBQp|9vB0`9U z%*=3}mQ(;R1*Ik_rD2m5f?$Vdt=xFK5%*H!YFLH2cKf!bM#&hfFt0?ovugPYR4IusEMBx+R~4dR-)jj+wdu;@ zyjCsURKISTriO`nJe|0kr{(^CD+ADm{eQfFaNyqm9UP1v_y31@xcz7I{@=d|hMeHo0WUw%wiGgd;Y1BM6jIwpZb?3R1esJN{`!vanJ8jA@RO z3(n|mHrM|S9L860O+lKWIm!S`fL$EVbs!yzavlBMMe}7-lN)kw_rC-0^99PTFhxM1 z!IQ!xaPsq!Fx5NFx;;#M*~p#!WrrIP>MC(jrD~Tk`nTg`%5F0&we9Uzul*$Mxl+YA za2E(Uf@oda?f}n8Caj802yLw46H3eL9IA5ub19Yxqg}}U)GngBMf;FK*~gr<1p>58 z^Yts7+3QQawZbpilAZ}_i6UH7EQRG^o(30)l7UBhZf=3%f1$T{iQQ8@ZzH;}uO0qV zm7O}>^;k5=)sZAwb-jqu)YpZA-MS*;qEBE&Onypc|3qP~S(?7?r>WQ|z|ZoK2=8UG zVy>q#QdeYbHC_U!ZCTzHGu}J}6_u>9)A|5V{1)_CvVQ}z*GepgM${62A8)E_OP*D_ zk$cNK66t!zt7$b#!X|)hl(ibbe@qQ>^!Vva>P6$mh3SNvR6j*)sglvli=kS{mGt54 zr22DX?^LNX9UKwxwD=7JwYewa9Km8R%4yClEToZBaj@X?a`IgU_GXr^pdeDqdnAi? zmb*JQ;@#r$%KxTgaQ|GUmwqF&OK-0UY>@x=hr??8$I)Z{_Xl}A@gLP)MhYO4;3Kls z*~z&T3MI72n6{9sl|cavGeRjS(uflgif~SqT*=)=YW0T=nasRIAy4?;;u?!J31*>7_5+~6Vh)YPFCCXt0bIACl z$RcDMZ8{>L$};4+i6AyD*?yRzh>BiCvou31ObX#AMaX55f?zcaKp+rs`bSe3mYw8) z0>x6EMza%0sXQT9FEc`N`?ctf5? zC^TY&m+iL!#tJtm-gn^jk~GTqx7Ot{J2U10Lx zj}&F%lDkCOUaK{=UcnsBAVomUf2Eg27AJ(#?XdiRl*UUEp_ejD;)7$I#tsK@iF$$z+H@z5Dwp`@Ye!$uD$W%B_!RG z6TK97jKv`!>czPk%m=wVG$>=ev<22HvKRz>J{X9trs4)|usMH-b{Nfi+G#%PS!S z#+gwWu|dQ4oE(*3yR7vx%4}f8l2nD<5cqZke7Bs4f*;gHE&Uo}*ZafP7fFs|kY1c) znjsjiLH8r@_S^VVZ-HOFfbK#ZABYM4^5s83L;#HuO2G)Q9|;P4F?Zk0k4b)#A&Qdx zaj&`eXDj}HLj&L@``_N!wf~KV2aoqZ9_0DD?0?qAaAOmovpKZf9UjsUco#OncILnI z;y#Rj#umEC{wEP=3r+sn1lH5|2Gd;)x)o?{<6D6B;eBJnpdK@Ck-GjjTLw4wQ?+^n z^I!?vRGf{s`{TWlr8_r^56v31x9*LNhHY`LHy{2Eec5PAY~+b|V@PZRvCfw047#6G z?ry+ZSQQNw$LQG&ZHqo&sR>FiwJktxX3^KmZln5f z0A8(6fd0J{KHmE6b-ofzz1nv-8Xj+{NeiVSHwUC>6eF^4<(y|z??W9`+?XBUrm1%F&##WN-Z5!H3 ze)Tu@C_Vj2AFupZK0_%Z&|!#w={{|Yas;tmLo5o7u< zmuy(V1)7S>U_6pt=L5=%ECCQuGS5LmB6O%CreIPA=YDBt*Y{ z{TYP?zee5xperxvp(I4=WOfPjaPj(cnjsNp+dQ#VN!fZ<0BH7*l!?+Ln}Roq@mh3q z`v0-_w%u*q$b#_m_3AI&FL>y?CswZ5>}K;-XC`MA*@?B+cC?b5oI9SJ5!elq7&RL` z4Nx*C&i?j2C;;8)7f>Xvcrvrrhs06?g+ifFZzvQR)mwCBMD@7}sd$64^;x*aZIcH= z7fW%9f{Hk=t>Y5s@h7dL1n}FgqZ&bWF;`P|Uq-u1@D0h$)tc@<(^_s>y-!%UV$I}c z@1Ty_Ex*YMcB=1Hk-s5xaSg__FNEzTH9QNTby3J%a{_+Z2de5(f!b0>u}uPIEH?D- z$$zJU?!O)xi)->QVyld$Bo)P4kPjlqZzR*cHjbuwtf2Mw*2|PM~xfH#ck(RCN>t)j_XYe%N%E!cekFAJSBo~kFs9T=~UgeED78guC+E- z`x~vzMX6(?Un|h1Ioh7gbPSxDctk~RN_nQK))KjBKsE)?|4WM7DnZNxF?;H0@kbx*hF8c)#fwBbH|yR~e#1Gn1F8?82EbCd14#dg_XTej4b z?WWITYN(N(z|ydE;nNu!)|P(E&iLH^-!}grax*{C_y7NPssA5@HUED!^2cBN|IhKW zoBwai2C*b4%cV18Yp0s9q2nsPyKe7t2jva)$? zQ3?s{T$kX){jGmou9|72e&1yYD_A`t1&P!xSjaWhjyNt)I{6kdHE8?f#IjAp#|hMe z&y%Q*ZSr4RX}`7n_lIG<{{Lv?f2sfWS$_7A|Nm7Ok%$YN#?t9hEaGHd%|WKQRkz=H zfZn?IwOuV3NI{mOm}Cjts6xwJyC1eY0f`FyKB~5O49|)`vK`d|=4%(`|LB$7?PuHm z=Yr*Mr|A;~z$5#=9}b4~^B+I>Qvdn0{OoW4*&6s-aR`FviQBZPVIg=>qg0_*<)n5q z&@Mz)8iQ!7rmT%sJe2Vt`U4=TUW>9T!Py@Ri;%5FwzeM|DH3WL?F)zVIr$svbUW21 z)nbtb?jKR-&z(PaIxQY1K)F6Yd;PNer|+(7&`_<|nt@iH{L>Fz-JuI~fMSJ6TVmBz zfaCh;t)N{Kt~jsev1K(3vZ-Q*HV?owq18uxyhqEJ#XGMb&X+hB))AJ6 zGHYwqPKZZHv90SbEp-pgTOaLUYNR@LH{`&Ns8JgIX(;Nb^4#_yPEn%4qJXOD2kw~0 zr)wv){PU>df5^`^{V%fQUcV{&Nfy9k_W#Hq*Y$rm`eOfomY==!zjQ&lDvP)#s#39j zov(DNy`y&=FUV<|HBd5?a%W3}0RG%=3c#Osc9)w&)C8iOUghyaHJMr@USx^+VnXhy zwZ>?*%X81f_tjne`u-0_qc8jabNuYF|9?{K zfbfj11zL0Y@0=xx{J+49Z5zMfB;Ec7FSdk#uNV{C_IN8a+en8a!g>t%Bg)BweE5#0 zG3s>lKmR%Y&;R(ym$*M1ovQN5Kb>8@y?FcmDY`0Wg<>K|BuI>&|MCm6qsO`qh${GT ze1bACZRFTmG*VT^UF0lXBpZ|yiM|v{F%k^ndq(3X6*;1C{FbwLt=?iJ={?O^x+1CY zj{cLTbB2~eWc;+(i&@0I85JpBQ7>YvUiqqjZ^<6Ig7wxQvjtA$t{$Z;N9kHE?cCqr zhfwVkN?)=KmBp=rT*_{`FVyeu@EFrA-bwK06i>8ie_t? z#8N6{IJ$!~h@)o+Zi?xbpE=@7k|ap_b}HwCri&AllLQNTPoSu{^>>`cN6%17^czmk zvz*N72NJ8oM*sh@hv20smO@X763R%95}Fe4$a``9mutata`X(H1IwZx&#zHTbAIG4 zsOZ6e75Ycs?C*IG{%iiQT=e9B%&+`D?UjILIJ#SBp!@jI*B*b!j=uJ0`0nUyPpss> zSxy&6U;m$@XXr$xt@U?BJwp+uf_LpmT^eB!a3>bo`P`E z4ZY9{JkP5@J4Vm@en032{jMJ#A34yOILnk<>PH<>Vus<~u{EmK*)5GfJD|o30VU!cN zNQ={0Iz~B>Q)hD&kz91S&Sqh$A&MeJe@{~M-J}>eNHI8+6k(MV1Dh0+8Ywbq6X{$Y zQ?XszId>#?;Tt;e-HrWQ@anzu}_rds-~ z6VwZ$1$zBd0WBmKsyHHvQN;3`L?YSf+3&V(%GnRyvkzSA_0ZY-HN|SrzQ618?xx$z z3Ht5{y6lI8%!i3LsV}eJI>GM<7IJTR z?Ta@#bn(X3#hX+YFQ_kGiM@LGsX$jJA4xT#XTm+be0vI}u~RUO9m_X9bos{B4_$O^OxHRL+;m{>r_rI-)2M1ajVjhtFxqi~gZ<3eaNsm&M-J<0bg1<-s!Hfl#d->cJ5Deh?Ki=2 zJgP|Ha)MPUoNVBXOy8vgR|cs^2I0xn;s_OXVRj#VrA1D-r#1?m z+GymE#G^wc@v!QIk1CSbqJt%FjlZIUz$n2Rm)kOQxYWZ#UFu=gr5;vX>R`~|%P1jO z`j7|`oxBZRC2C3bbR|P@C0%^Jr;8pc7rnq#G*nzWEk_Po?zYQXXgRFXa%9u8VM5EL zSGAtbvP{j}-_yeIofgK>p-P8`s?uRql@2SaG}tlr68d{`iNA$Q`qTZSVShS0u8E;J z{eW_vKnKAS)mEL>(3A@d=esTvw`=*~p;~@e)$+rNmiH%3E1okDpDN5uobRQhA5r80CV^5LP1d{|ZF!-^vJo0iJ8 z@{Bj=`*#k$SC>`7*n|+9jBrhkJ*D5oX$uY<XXYBr$SL@<97I^ny`slH=A%YKy{h zXHXh5RkAmL-7SrcIOQx;AyS%xN>C)&&n)VXoQ|u+*F}N@&DzilhBXqDhOOW2JH2zA zM%T0IlLt~#`Y2Y{jAObWTu2Iy#^HEA7%6J(c>>vo6Ubsz#aVg;NdJ2de>zsc!#%fD zxNS?d+t~8M!K5D4NIl$%)U_=Y?#WN#HhyZia^;6lN>uP`6CKzS^=sQo-PBi+Td6H8 z_jSNpS81P?^$Xg=dRvdBNZq*s3I%&oDA-1!b{krLIG7FkHR^;Gb%JSw4K7vQRQF|+ z(2Nt5;as5p3BobX;A}z)An@JgFOkVl0a^s({q|ch4&6>!u;)QRpbiS!BJ^stRI)H- zDI7`&EXaJFB%BE6YP1{t^25Qa5!6f8&tgs<~7bi1w+x2Cb25z?uaAH zkzJEH&|(k0puX{f_Q`15Oe(bE?xfjNO20KGC9PGpYOp0!CYErF!qI}>lT;lg1$!Q& z1ny&$(3M3M9+*WXdroWQ@on;qYis?#)?A=0XZJKFNGH*&$w$i-i_siYb)1IRf@LIM zQB@vOQDV5CM-vR49!=;-;0g~-;0nE(0XwzH(2Q40&+Z=QQl@COP#%rQ30@^MB`BVu zb)Im97nnLCa-kz5Dm*kJD)ed=>ZCr4b~Id8={1~+^JZhBQ6;p8kY>KammoLO*Mb&M8jnk9c&fVjG}NiG+g$;;pRXUjs9+E zI5qj9Xw>!iZfLj^=7IXMUtbh|7c}~gMd=^9DE;c9^s9?9aH7$^DE&hhrC(i?esxjY zXtXa%|IkGV>eTReK_hTbBRG^AL6sUol^U*G^uR%l;81G#UJzFC@OQz(clmYx!G4`z z^Xq)euk)uW!PkLG`+o5cc53{ZQ{!7s%_FF^FOPq)$?aE7Zr?Jww`0<7^7@CFygDus zR4o_3w0k8k6DKb1hO2+5;p$fnSHCn|B^o0q8tsOwf2iT=R}ELcG+ei%(QZ!qhnkaq zeNjfcq0w#!`G?v;e$@{0OFKxS;qoSYhaKb}W(O5~I;i3j?uLs?jvOvVs%Z3gL!({O z_=jp5zp82cQqycl!zIc-d`A#u z?bm}9oCppz$`(0WXNWzdB(LV~Pp5nNXVa;}JsZ2!?)YG}JFcnSab4}UWI46DXw&`9 zpQoPkrI;F5r*LUjf-;bAXb-o~11tJ~@idp)VfCGc)8zPPoTMNYI`ew3oN^O#0 ze6Ue7t{OGtx>3`Zk$J%widw+c#&x>pBrawL@%v)OsW&%KrNx}(k{+%Zwi!#~Lye_z z)j%27?4-u@^qg4Y$St>SZt7|1c0C^DG;5EKj~({T_)vRiT(x(`HG8LJ(bPf3eU{cU zcU<_k8Ajtn4Wn_@FdEkkBfz&EjkX9F{QXcg230hM+sLM64^C4i;JVOj_1tx1}VdQlM4KS>ebsT z+i&Vh_8U7)?eU?ew(M9l94dB0GrzZ86WE7jH^D*xaQ+DiMho01Qe;XgfOI4UShFScNUjK>(@C=hgle+T&#r5<=VpR=U@!CI2bNl?;uleR9O-+ivB>pGX3K?_aPhXaXH&6-f4 zTFFwVD3%L3_u~5S-Gq0s=q{N~mr!Jq6W_0($8_MhaHz3tpZTFF7OJaXnR;0DXZ&XV zj#m46j)HK3>{tBNtoO>Bn7Rs&Xat?JK77Ha^+`Jxyjme(o#~t8IDzm&C7&xMa0wY| zz~D%%aguB#laN@EWIw|Q?)&}b^?wuzdRH&cUc7nvTNHoVq5kKvUw{9j?}y=+`cI$Z z=NY=t`Tg*o+tGLHR3)$_be7|M11k6?Uz2m4`t?|YYYO*6P{JURA+>k;6`f_7va$8= za|S9DBTiQ|!MQ2@c7nu`@?wk!%%L6~=#-qmZG;u3sURtq!$ph>G$Z1H5cNWk+E6OY zB5ew-twg>-I9gJ2FHu}DoJbsJMDE@fSO4wFO^>eBJBV_Z^CRoklT&p2%^w3V7#KBXi1_wuwdW+ZB3)QuG}I5E!H$9yp&<3;PP0$ z=&f+N#!2sgLyv3OOlt(O&%hs{_gSS}p#E<;)=G9L(BA1=ykO-sqAW`>`y(xL!kyGLh9 zg0ARdDY&$SNPbUZ)I~Q{*4A0A{|rU{tRF4^mn2zrwa@$HN?^PE9}j}zs3!lzF#PiV z|7ZD;GE61NO3BhyC7F+oEWV~3WjS5poF*Gp6jTafu!J_i|8LK(bt0|Y-rmtG_CW4Q zeu5r|zV@lw;v~`X-+Dj_MpYwu=pt2OKW5Py%JoPHbOnxt`I8hECZ|_F=|)qK47!}B z7K$J;VQ8|uk_ zsqn8Y>zhKpThReWA1w#!ybK_G)B!{E5#9ds>n-|-t}_zR`3B*1)9Q0^v?Mv)LX$3+ z{FrYL6=cOd^b$wQc1Mjb**b}p`%MLhh{YY*cuLKb6%8VsqL~Wedq`s~T^|ciDavO= zD)WyZ8BJ6KR-mjHD>(xvvVWJQ+>=eE#!>Kd?|U zO`G#C`GV?q7Fp~Z;=YYZ;ePkVE?JK5aZcr!>afHf4j9%6{x#(ia-#ls`~GJ+fKBv#REILGEP1BekM!2ZT#M)}Lda3}O#9xP{=d^fFvV8&z zDqNf6hfHllB@w0ZtC$U=@2Nmmf%(}6?!)WaPFPA|2nSwYzmhEH9@$g3ww0XXruzMD zrz1&tg&zQdfwm*0Z!ssMK?^+fp-WQPGp>X7&`(fHnu(>gaMD5MM4SMfbB&NhMAf&- zauSgkUgz2cHT~dc6SbEgD2Mw*`ruA4y!=a@0yoBIK;%OPCp8p&jTuyP<&u%jh9~Hj z#(&8Ks%oVf$XPct=&z zg7;oBy}fo?%ROq>@Z)n&O2`H3WXG1i`Pyy&;16wh+D5|}1Wz$yhOi&YBaB4G>t zOzDzl5>v2q6Lv@UXA?8fUTjie_ZXX4&<|siVx&5o*pQ!yO^UJhWRs%bo^0a5I@a-) z?2%!yd~jViMH5tJf0HYiLn+z0cB}xwK}87d-mo<=aC1|E>(( zBHgQdpQXpOX?qI6?`T4*9NE!3pmQn};7P|EC3a3bz56WfnZBL!ll0^|ryU8abJ9r} zC=b(LsE-90;P^}JFk)Sjl>VKltN}wd#aVD(sf-BYe@Yhk@$#+bo{m=>epYpD1$l|Y zPfHpt)gv34w`5P_(#^E0tU7G2v9vR5jR(}Q)VpGqN_!l~(rQ%KX5drKucM&sPq0t?kq2uvg&egf2c-kHYAB z3A#EMq8yQwtryEWBK0%+t-?|2Ei5*n=Kr zAfbB^OCypA-s91d#A|pYjNGd*QcrrIi?o}uxSO(=^q!fqx;TxyI2E*O{-T9+lF^i0 z04qAUOEuZbTqO`MTPMjSOK4PcXD{Y&nYdKmS%cBm|Uc5H;wzePm-n7g3Z; z3fV^l&~5urb@1vDIt%VSluhaXPyO=Tz@HAo=>X4Wm`wdKnGR;byg!foq#u(}G?@4O z01s!=u|F7&!~P(Q@Py2QQ9PSO@oXGz#|B21809TC$`AJ>&!rjze@nJ7uA%X{%3T3K z)`IZ}Cu%0e!v4Xq@HbM_#WBL@70c=0W#2@4J?Kn#)No4Aax0VAksCLo)PNnvEVf75 z&N202_TU-|_znZN4c5v-ea|;M)SnDPJekGugpha|`O{ex4`zYy&!+KUM*4m<=;P2I z&!%w@%`gdY-yihHBQhOK=F_Oj(M_}rBS~XT`Yc;{NjG}Vk00TvGJ(s%1LwvJEeoDo zQ4+9dr4scd-&xUZ(^4C=O0~{5rO|7}$nVIeIDFRH=qm-{D~*#^#Z}u+UYQcy7Oy|E zzDl1jwjz?IbbBk<7z^A2uj~a4AYU>SwLrbj9E=?pKk6KEROT%6U69ok_?zgyRv#Xj zxyV_Pko*x+ZfV_WZh=2))orwZYeTuLYS}YIdN>ii7?TxCIT7^{-O)9js;OsZ+SmI# z$<*F(msyo>9~?5FoInDuL`j+oAJJ_f$9TJjs;q2|V#29({xTNxX6Jj#DNA2bE(PFg zx`JT01{6Y&S;4=C+Y+iZTB_zKQSECm)!U@+AhXQNa4x74@s`+2X<`UrP0~Eps=6Yp z>$Va2I$sbM^pcu2;4AzA>7LtwuTy-FX#$*a$PktO)q$jOC&*&sf?H)ow9XbejtMHd zN$34VF*ZMuCNYhTk01@wEAtxDb1k!vAxKrhQUw97^&(u8RzN?bFGxZJX?8C`d*}tQ zs03jipA<{V8#}1Q+Ae0%aZKK6a$7ZR%N@e<3Rl7S;M||%49{pn1tqmD+`)0&Ieq{0 zNhi)(CjSMS`n)_Wg_Cm0uT@{di)@%|Eu^n!9J%k`UC3=+Jz1CNsPw|BaCrZ7MN3-M zSD{^-s(h#M(#wofTdc^ziGC}Gni_O-i1@5iI7@kV{cVxxXlY$IYIZAJ_1V(1cAZ$5 zT*}onY9yBKq_RY~BDG%0&gpygv2)si(v_VP{fPW&C+Ph8^GSyjoJUK-i*+#vZ|KF_ zYq=_NI{c)tDNV|iDuk(qK`XpLIpHk1Cn)6!V|VM!MD|&#^8c-<1}9>jY3_|v-eQRA zz52pr83=|t=gFE2l7B~YE;@+LABbkWmsfiBL}4H3E2UEQ$v zOhwM&4eKQ_e?Hc8Y>N`T!8C2h+e0@Eqv;y%`50Moiq4MF&7V%uyPI?L?J>GMyT1PE z#VPvgmtT-~rR%Umj^D4peud7<2Jl1D`|onL(!U|(d1fu(?+x{CKHg-B%T6HaJtU#% z{;h2m37g@>o3E2ZZjQn%-=Z!^Drin1?OHvwUaC(GjdCr7noMIi+hstUB4(Nx;iR6+ zEDrQE>Ht}?G?Y;$P51R3CzbEo*3^$gkyPYV{k2C#)RQea>Y^3SGKtp3rEHxOuDi4^%ASpIxl*?j091HJi7E&Oen|=61{S7W{^-RXN{6 z>IjBz9pd7)7_t$q(`$8>B<#V&Dj}pxKFA$OMcGY@P=H0ZIo}#)yJt42S#S`8*-4ssuO7_)V+lSc8CoHI0hc#~^T5Q=)w8S*+&M>D@2lg)*C~U5<(;f8r zqsTFt(>wdi-GqaP;u(&J+3R>M*a{08K{m}f7&II#n!@K(fn>-Wu%N-sr7R<9tRSo0 za2T{4g%>#oMNjn+T^9L}Yje}LYOWdlN@jV^NhWnEIj$fgv14nN}AS*L2N#pLC z>sU#J(jZIT`#-}!s&+9jYnOb$t1Ka2!Xli2fh@Pa5qb5nf#%-~^CH2oeK`9qGQbe0P`)~e;0xuYJ{apq!`70 zt&2O!T24@|4&(M16>gF3JSw!_c~t#NS?_j>31GKXc{?U$wiu)kQu=lTx6NL-7BOw& zuxghD>QJoQ8~?D_o)KJkLA!&;{6GIg!Y$ltYeF6c_*}meBz?vozV1pP?7d??{ZWNgUs_ zpf8dpOO$%}=Jj=GJZ=WYH}R1MJpN8=O`%r`nc3(P6GHP8d(S-iV? zeJz`=Ik9rM^)AgOvlFt zY!1>my#gi@=J0Ch594qU`XnAlK|BcOBn~F=EDnP4cs3r9Xf~Qh;dm4T;Vc>iaX5%^ zKlG!4-^YW=aQGNP#s|<2T0zQ3Jb`NSHhIth>Jj5*RK=RqPb@dJFLWbV6RI^x4b1)~ zd2MnHkfj5(H)<><*XF@xN6NB?kN0hOirdntI&v@U_TswMN$GjxKD?Wvn``&9pr30)5Etvxft1 z>H@9rBb+CguG);li#fz`9&oBJIzu^>6q$|)9-2KVZATq5E52X;cwY6kELqip(46HF zX*dTeVGF*Q<9sOh2GC*HpQNRbsuXyzQ%ndiH`c6UKsZHcBsc2W{{-euC3R3|%W7w! zYASe@Ao^|Z4-&P%u=!ualKe$={O0zgh*AlLzUqFZPd&H|eYO_W^|bB~I7#=!cD@?Y zIa*F|42f_pTxqsDo!gUYq=6y{qbrSd=O~>1y~YXC>GXSAWFcdOTjh16HYZh&r5aQ#0u`_?<`DgqjL^M3LGdQVD;lYrot&~%zwBaCl`0*I z2V-teD!D2}XOg#sc=Qt5kT_cr^@t2fI8nghN=x+xD7)u6g^)Xm(Q|9)W7tUwXu3`k z>7+Fuu#u`%0)v}Wa9!OTVYSS_P5$-FwISbWPcdTYUrp5qaH4N3lI+&gJSc4jjQD!i zg^&bIx!C|k)FLjobWz4hIww#=$$??>>^HlQ%%N{n0z>o0sqbm|dgY1!=c~&Tl-)-s zh^#WPc|r3N?OmRfnJOn`Eh?!;)Y(Eio-3T0u$xOiz0{xC9By8k>oTZ^Yi?82r}46_}>07kL-PP+aEV3Jco51Vh;K z`HU;!DF70xGp|~)ms*V<^?0&95O%LqLM6I;y85j?^0QHc6Tz6=@5CU5NKz}SF*yX0 zXXXK8H%6}eC^5M|;2O%-5ty){$3b>q>p zQB3r=wod?sy>>}42q)sws;l0zC(lgO9gG#b2)jC}j+X2pRn?&3fw|V9lrr9#`LD~D zw?EGwDDf*8RpaoRY>1ZOe&74TLiqQvJuGy7^Ic+%RoyHFgFN|`Q5Nc6hNiB5&~8su z;d$C~c*DS})hWH>@feZ}N~Kt2768l@v$A>gXpfAeLPSp}j<_cNoq?4&@ zo2yM1N-g$Qn{M&-*Pm-@S`Vw>ZnpqysQe2UQMDPlO={I}t2wO+xsxqj8}~Oh-}n;e z5SVL^R2J#1#+@^RNY7k$EeZryYK!wv(j72XO!KDhP}q7a64P~Su+JR6>lT8c&Kt5~ z`KD9y8%AQ4%{h90b@rw^!_ggyRrqql1z8>2UNo$o4wV>?ODvG=r4I>M+!BS+cyju8 zVlw&L;*t`;?KS;7Q8<1JxG1BT-=aCeP#t(7mjG^O>Pw9qwuXQtH;0-Cf=rN641kcH zm8NJDKS5UR>p=&vIY=wA%9yI$py}2&cH0V?h58*WBcS@bT}1WRt~&wmceZymy1)O; zYY_cCFMPgs-ZK9ku6w>t|4DYdM)vo*^q+iBsN`<+Jjo8T5&{(x%jt@njWf%OswhAEAWgcEhqLjJd_Ev;iGxR95R~ zHcZOO2>Te6y5nO5HV0{%l6`OB1;&z`gtLf{xIe<9a5C!$K|C7HMr7j010062AH>n5 zKbr((6#DUSOeT|XHkkT2@}uFH%v&tUDniDN%xBoiwXM5jcX^i0oA`wSDEgwJV1hY)ZIJmLCxs1>v22|v zd86AGS0lBO1RbbG^w75iVYu=LVMzfGc35?Oq-G*%ly5Sj;&NKEp6F-5*GY`vLLsCf z+*3~VO?8}ZW-Q*Q!ObdKr~SH6=bR>5hi<9vdHYKT9#go?={-%zg1qDrPJjbDr?7QT zI(E?=xw6gbJtv*a^pA^f=2Y{FG4Wjy!Zr1Q?e{{}-}Z@lwOoEPw|#f2RbWh~#{#HD zyHBfBVD2s3h`P!MRPD*8xGd&b2ld36_0Dlr9qgURd~M&rrsXT_nP7OTb$rDA~|gRx2Bz00%^@YL4B2? z9FT+uMQP|yDKsp<_9s%hhymjP{Ie=FPGo~Zv{%YWRQU*5uU-@bcsdFvtN)5$+*?=Hg+DZ=RH z{IXyK`E@}=xl?H>NG|u!yQ|mm7524NernsK1kM*kJjS`@11MJenj0O{`JChx@dN~b z7k-6$mBf^#f-m4O-j)Dw;XZ~b@U7iNo4<^B(%D0$=(l{x+S%Z327qA^;PSTCq>@Cj z7C1%^>+=4#`~zpz#TC_Krgi~noj5%r2b*K;xnp>x1o#0p3Le=t2L6s4hr92+7D}iH zBNT1xP@30Qv_XDxSvgL&rKGM^$4_;->vJhwXIi)(pHyV+2`b>7lrq;su`;*Ynl}$aV!M)+=E+9J_%OUZ-ABX7CDZ{CCMoq3bQn} zE57=WLTUUono9c`nwaC{l#p1NCuWe8Xj^g z1WCQmF!ye-W%kYzYZqxO)e}KW_OSc(%Kc+J!?>+(>aFyCw66aSC&>&)cQ@=cTks#! zmwC?e+s{iFmT2psS=XR2SK%cDyXB`ohX4@a>4OrgK2{YhV+mVqt~2Q}o)<4MG|@B9 zHn@5m@^*uv9gs}X&4BN6fZr`2hcG9>DtQNPao!Z=U0Mn)I!jFFco0F)^Bb+|{M*VewT7&wx)^bO6N}38QK-r z3-*vo4QH(C1|ZM#T404N&;Jbo0RR7+>`S%)fCB&^kYNh| literal 0 HcmV?d00001 diff --git a/dependency/redis/1.0.21/helm-values.md b/dependency/redis/1.0.22/helm-values.md similarity index 100% rename from dependency/redis/1.0.21/helm-values.md rename to dependency/redis/1.0.22/helm-values.md diff --git a/dependency/redis/1.0.21/ix_values.yaml b/dependency/redis/1.0.22/ix_values.yaml similarity index 100% rename from dependency/redis/1.0.21/ix_values.yaml rename to dependency/redis/1.0.22/ix_values.yaml diff --git a/dependency/redis/1.0.21/questions.yaml b/dependency/redis/1.0.22/questions.yaml similarity index 100% rename from dependency/redis/1.0.21/questions.yaml rename to dependency/redis/1.0.22/questions.yaml diff --git a/dependency/redis/1.0.22/sec-scan.md b/dependency/redis/1.0.22/sec-scan.md new file mode 100644 index 0000000000..6e154a87c6 --- /dev/null +++ b/dependency/redis/1.0.22/sec-scan.md @@ -0,0 +1,892 @@ +# Security Scan + +## Helm-Chart + +##### Scan Results + +``` +2021-12-03T19:51:28.440Z INFO Detected config files: 1 + +redis/templates/common.yaml (kubernetes) +======================================== +Tests: 41 (SUCCESSES: 28, FAILURES: 13, EXCEPTIONS: 0) +Failures: 13 (UNKNOWN: 0, LOW: 6, MEDIUM: 7, HIGH: 0, CRITICAL: 0) + ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +| TYPE | MISCONF ID | CHECK | SEVERITY | MESSAGE | ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +| Kubernetes Security Check | KSV003 | Default capabilities not dropped | LOW | Container 'RELEASE-NAME-redis' of | +| | | | | StatefulSet 'RELEASE-NAME-redis' | +| | | | | should add 'ALL' to | +| | | | | 'securityContext.capabilities.drop' | +| | | | | -->avd.aquasec.com/appshield/ksv003 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV012 | Runs as root user | MEDIUM | Container 'autopermissions' of | +| | | | | StatefulSet 'RELEASE-NAME-redis' should | +| | | | | set 'securityContext.runAsNonRoot' to | +| | | | | true -->avd.aquasec.com/appshield/ksv012 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV013 | Image tag ':latest' used | LOW | Container 'RELEASE-NAME-redis' of | +| | | | | StatefulSet 'RELEASE-NAME-redis' | +| | | | | should specify an image tag | +| | | | | -->avd.aquasec.com/appshield/ksv013 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | StatefulSet 'RELEASE-NAME-redis' | +| | | | | should specify an image tag | +| | | | | -->avd.aquasec.com/appshield/ksv013 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV014 | Root file system is not read-only | | Container 'RELEASE-NAME-redis' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-redis' should set | +| | | | | 'securityContext.readOnlyRootFilesystem' | +| | | | | to true | +| | | | | -->avd.aquasec.com/appshield/ksv014 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' | +| | | | | of StatefulSet | +| | | | | 'RELEASE-NAME-redis' should set | +| | | | | 'securityContext.readOnlyRootFilesystem' | +| | | | | to true | +| | | | | -->avd.aquasec.com/appshield/ksv014 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV019 | Seccomp policies disabled | MEDIUM | Container 'RELEASE-NAME-redis' of | +| | | | | StatefulSet 'RELEASE-NAME-redis' | +| | | | | should specify a seccomp profile | +| | | | | -->avd.aquasec.com/appshield/ksv019 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | StatefulSet 'RELEASE-NAME-redis' | +| | | | | should specify a seccomp profile | +| | | | | -->avd.aquasec.com/appshield/ksv019 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV020 | Runs with low user ID | | Container 'RELEASE-NAME-redis' of | +| | | | | StatefulSet 'RELEASE-NAME-redis' should | +| | | | | set 'securityContext.runAsUser' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv020 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | StatefulSet 'RELEASE-NAME-redis' should | +| | | | | set 'securityContext.runAsUser' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv020 | ++ +------------+-----------------------------------------+ +----------------------------------------------+ +| | KSV021 | Runs with low group ID | | Container 'RELEASE-NAME-redis' of | +| | | | | StatefulSet 'RELEASE-NAME-redis' should | +| | | | | set 'securityContext.runAsGroup' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv021 | ++ + + + +----------------------------------------------+ +| | | | | Container 'autopermissions' of | +| | | | | StatefulSet 'RELEASE-NAME-redis' should | +| | | | | set 'securityContext.runAsGroup' > 10000 | +| | | | | -->avd.aquasec.com/appshield/ksv021 | ++ +------------+-----------------------------------------+----------+----------------------------------------------+ +| | KSV029 | A root primary or supplementary GID set | LOW | StatefulSet 'RELEASE-NAME-redis' should | +| | | | | set 'spec.securityContext.runAsGroup', | +| | | | | 'spec.securityContext.supplementalGroups[*]' | +| | | | | and 'spec.securityContext.fsGroup' | +| | | | | to integer greater than 0 | +| | | | | -->avd.aquasec.com/appshield/ksv029 | ++---------------------------+------------+-----------------------------------------+----------+----------------------------------------------+ +``` + +## Containers + +##### Detected Containers + + tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c + tccr.io/truecharts/redis:v6.2.6@sha256:741dc63de7fed6f7f4fff41ac4b23a40f6850e9fb361e35e2959c71d8f10aeae + +##### Scan Results + +**Container: tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c** + +``` +2021-12-03T19:51:29.491Z INFO Detected OS: alpine +2021-12-03T19:51:29.491Z INFO Detecting Alpine vulnerabilities... +2021-12-03T19:51:29.495Z INFO Number of language-specific files: 0 + +tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c (alpine 3.14.2) +========================================================================================================================= +Total: 22 (UNKNOWN: 0, LOW: 0, MEDIUM: 4, HIGH: 18, CRITICAL: 0) + ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +| busybox | CVE-2021-42378 | HIGH | 1.33.1-r3 | 1.33.1-r6 | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42378 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42379 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42379 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42380 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42380 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42381 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42381 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42382 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42382 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42383 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42383 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42384 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42384 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42385 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42385 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42386 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42386 | ++ +------------------+----------+ +---------------+---------------------------------------+ +| | CVE-2021-42374 | MEDIUM | | 1.33.1-r4 | busybox: out-of-bounds read | +| | | | | | in unlzma applet leads to | +| | | | | | information leak and denial... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42374 | ++ +------------------+ + +---------------+---------------------------------------+ +| | CVE-2021-42375 | | | 1.33.1-r5 | busybox: incorrect handling | +| | | | | | of a special element in | +| | | | | | ash applet leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42375 | ++------------+------------------+----------+ +---------------+---------------------------------------+ +| ssl_client | CVE-2021-42378 | HIGH | | 1.33.1-r6 | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42378 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42379 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42379 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42380 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42380 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42381 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42381 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42382 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42382 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42383 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42383 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42384 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42384 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42385 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42385 | ++ +------------------+ + + +---------------------------------------+ +| | CVE-2021-42386 | | | | busybox: use-after-free in | +| | | | | | awk applet leads to denial | +| | | | | | of service and possibly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42386 | ++ +------------------+----------+ +---------------+---------------------------------------+ +| | CVE-2021-42374 | MEDIUM | | 1.33.1-r4 | busybox: out-of-bounds read | +| | | | | | in unlzma applet leads to | +| | | | | | information leak and denial... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42374 | ++ +------------------+ + +---------------+---------------------------------------+ +| | CVE-2021-42375 | | | 1.33.1-r5 | busybox: incorrect handling | +| | | | | | of a special element in | +| | | | | | ash applet leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-42375 | ++------------+------------------+----------+-------------------+---------------+---------------------------------------+ +``` + +**Container: tccr.io/truecharts/redis:v6.2.6@sha256:741dc63de7fed6f7f4fff41ac4b23a40f6850e9fb361e35e2959c71d8f10aeae** + +``` +2021-12-03T19:51:31.914Z INFO Detected OS: debian +2021-12-03T19:51:31.914Z INFO Detecting Debian vulnerabilities... +2021-12-03T19:51:31.930Z INFO Number of language-specific files: 2 +2021-12-03T19:51:31.930Z INFO Detecting gobinary vulnerabilities... + +tccr.io/truecharts/redis:v6.2.6@sha256:741dc63de7fed6f7f4fff41ac4b23a40f6850e9fb361e35e2959c71d8f10aeae (debian 10.11) +====================================================================================================================== +Total: 142 (UNKNOWN: 0, LOW: 104, MEDIUM: 11, HIGH: 23, CRITICAL: 4) + ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| LIBRARY | VULNERABILITY ID | SEVERITY | INSTALLED VERSION | FIXED VERSION | TITLE | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| apt | CVE-2011-3374 | LOW | 1.8.2.3 | | It was found that apt-key in apt, | +| | | | | | all versions, do not correctly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| bash | CVE-2019-18276 | | 5.0-4 | | bash: when effective UID is not | +| | | | | | equal to its real UID the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-18276 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| bsdutils | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| coreutils | CVE-2016-2781 | | 8.30-3 | | coreutils: Non-privileged | +| | | | | | session can escape to the | +| | | | | | parent session in chroot | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-2781 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-18018 | | | | coreutils: race condition | +| | | | | | vulnerability in chown and chgrp | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-18018 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| curl | CVE-2021-22946 | HIGH | 7.64.0-4+deb10u2 | | curl: Requirement to use | +| | | | | | TLS not properly enforced | +| | | | | | for IMAP, POP3, and... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22946 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22947 | MEDIUM | | | curl: Server responses | +| | | | | | received before STARTTLS | +| | | | | | processed after TLS handshake | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22947 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22898 | LOW | | | curl: TELNET stack | +| | | | | | contents disclosure | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22898 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22922 | | | | curl: Content not matching hash | +| | | | | | in Metalink is not being discarded | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22923 | | | | curl: Metalink download | +| | | | | | sends credentials | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22924 | | | | curl: Bad connection reuse | +| | | | | | due to flawed path name checks | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22924 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| fdisk | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| gcc-8-base | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| gpgv | CVE-2019-14855 | LOW | 2.2.12-1+deb10u1 | | gnupg2: OpenPGP Key Certification | +| | | | | | Forgeries with SHA-1 | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-14855 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libapt-pkg5.0 | CVE-2011-3374 | | 1.8.2.3 | | It was found that apt-key in apt, | +| | | | | | all versions, do not correctly... | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3374 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libblkid1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libc-bin | CVE-2021-33574 | CRITICAL | 2.28-10 | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-35942 | | | | glibc: Arbitrary read in wordexp() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-35942 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2020-1751 | HIGH | | | glibc: array overflow in | +| | | | | | backtrace functions for powerpc | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1751 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-1752 | | | | glibc: use-after-free in glob() | +| | | | | | function when expanding ~user | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1752 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-3326 | | | | glibc: Assertion failure in | +| | | | | | ISO-2022-JP-3 gconv module | +| | | | | | related to combining characters | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-3326 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-25013 | MEDIUM | | | glibc: buffer over-read in | +| | | | | | iconv when processing invalid | +| | | | | | multi-byte input sequences in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-25013 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-10029 | | | | glibc: stack corruption | +| | | | | | from crafted input in cosl, | +| | | | | | sinl, sincosl, and tanl... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-10029 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-27618 | | | | glibc: iconv when processing | +| | | | | | invalid multi-byte input | +| | | | | | sequences fails to advance the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-27618 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2016-10228 | | | | glibc: iconv program can hang | +| | | | | | when invoked with the -c option | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-10228 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19126 | | | | glibc: LD_PREFER_MAP_32BIT_EXEC | +| | | | | | not ignored in setuid binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19126 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-6096 | | | | glibc: signed comparison | +| | | | | | vulnerability in the | +| | | | | | ARMv7 memcpy function | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-6096 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-27645 | | | | glibc: Use-after-free in | +| | | | | | addgetnetgrentX function | +| | | | | | in netgroupcache.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-27645 | ++------------------+------------------+----------+ +---------------+--------------------------------------------------------------+ +| libc6 | CVE-2021-33574 | CRITICAL | | | glibc: mq_notify does | +| | | | | | not handle separately | +| | | | | | allocated thread attributes | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33574 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-35942 | | | | glibc: Arbitrary read in wordexp() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-35942 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2020-1751 | HIGH | | | glibc: array overflow in | +| | | | | | backtrace functions for powerpc | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1751 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-1752 | | | | glibc: use-after-free in glob() | +| | | | | | function when expanding ~user | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-1752 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-3326 | | | | glibc: Assertion failure in | +| | | | | | ISO-2022-JP-3 gconv module | +| | | | | | related to combining characters | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-3326 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-25013 | MEDIUM | | | glibc: buffer over-read in | +| | | | | | iconv when processing invalid | +| | | | | | multi-byte input sequences in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-25013 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-10029 | | | | glibc: stack corruption | +| | | | | | from crafted input in cosl, | +| | | | | | sinl, sincosl, and tanl... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-10029 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-27618 | | | | glibc: iconv when processing | +| | | | | | invalid multi-byte input | +| | | | | | sequences fails to advance the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-27618 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2010-4756 | LOW | | | glibc: glob implementation | +| | | | | | can cause excessive CPU and | +| | | | | | memory consumption due to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-4756 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2016-10228 | | | | glibc: iconv program can hang | +| | | | | | when invoked with the -c option | +| | | | | | -->avd.aquasec.com/nvd/cve-2016-10228 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-20796 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-20796 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010022 | | | | glibc: stack guard protection bypass | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010022 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010023 | | | | glibc: running ldd on malicious ELF | +| | | | | | leads to code execution because of... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010023 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010024 | | | | glibc: ASLR bypass using | +| | | | | | cache of thread stack and heap | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010024 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-1010025 | | | | glibc: information disclosure of heap | +| | | | | | addresses of pthread_created thread | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-1010025 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19126 | | | | glibc: LD_PREFER_MAP_32BIT_EXEC | +| | | | | | not ignored in setuid binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19126 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9192 | | | | glibc: uncontrolled recursion in | +| | | | | | function check_dst_limits_calc_pos_1 | +| | | | | | in posix/regexec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9192 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-6096 | | | | glibc: signed comparison | +| | | | | | vulnerability in the | +| | | | | | ARMv7 memcpy function | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-6096 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-27645 | | | | glibc: Use-after-free in | +| | | | | | addgetnetgrentX function | +| | | | | | in netgroupcache.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-27645 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libcurl4 | CVE-2021-22946 | HIGH | 7.64.0-4+deb10u2 | | curl: Requirement to use | +| | | | | | TLS not properly enforced | +| | | | | | for IMAP, POP3, and... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22946 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22947 | MEDIUM | | | curl: Server responses | +| | | | | | received before STARTTLS | +| | | | | | processed after TLS handshake | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22947 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2021-22898 | LOW | | | curl: TELNET stack | +| | | | | | contents disclosure | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22898 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22922 | | | | curl: Content not matching hash | +| | | | | | in Metalink is not being discarded | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22922 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22923 | | | | curl: Metalink download | +| | | | | | sends credentials | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-22924 | | | | curl: Bad connection reuse | +| | | | | | due to flawed path name checks | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-22924 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libfdisk1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgcc1 | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libgcrypt20 | CVE-2021-33560 | | 1.8.4-5+deb10u1 | | libgcrypt: mishandles ElGamal | +| | | | | | encryption because it lacks | +| | | | | | exponent blinding to address a... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-33560 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-13627 | MEDIUM | | | libgcrypt: ECDSA timing attack | +| | | | | | allowing private key leak | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-13627 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2018-6829 | LOW | | | libgcrypt: ElGamal implementation | +| | | | | | doesn't have semantic security due | +| | | | | | to incorrectly encoded plaintexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-6829 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgmp10 | CVE-2021-43618 | HIGH | 2:6.1.2+dfsg-4 | | gmp: Integer overflow and resultant | +| | | | | | buffer overflow via crafted input | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-43618 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libgnutls30 | CVE-2011-3389 | LOW | 3.6.7-4+deb10u7 | | HTTPS: block-wise chosen-plaintext | +| | | | | | attack against SSL/TLS (BEAST) | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-3389 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libgssapi-krb5-2 | CVE-2004-0971 | | 1.17-3+deb10u3 | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libidn2-0 | CVE-2019-12290 | HIGH | 2.0.5-1+deb10u1 | | GNU libidn2 before 2.2.0 | +| | | | | | fails to perform the roundtrip | +| | | | | | checks specified in... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-12290 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libk5crypto3 | CVE-2004-0971 | LOW | 1.17-3+deb10u3 | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libkrb5-3 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libkrb5support0 | CVE-2004-0971 | | | | security flaw | +| | | | | | -->avd.aquasec.com/nvd/cve-2004-0971 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-5709 | | | | krb5: integer overflow | +| | | | | | in dbentry->n_key_data | +| | | | | | in kadmin/dbutil/dump.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-5709 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libldap-2.4-2 | CVE-2015-3276 | | 2.4.47+dfsg-3+deb10u6 | | openldap: incorrect multi-keyword | +| | | | | | mode cipherstring parsing | +| | | | | | -->avd.aquasec.com/nvd/cve-2015-3276 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-14159 | | | | openldap: Privilege escalation | +| | | | | | via PID file manipulation | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-14159 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-17740 | | | | openldap: | +| | | | | | contrib/slapd-modules/nops/nops.c | +| | | | | | attempts to free stack buffer | +| | | | | | allowing remote attackers to cause... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-17740 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-15719 | | | | openldap: Certificate | +| | | | | | validation incorrectly | +| | | | | | matches name against CN-ID | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-15719 | ++------------------+------------------+ + +---------------+--------------------------------------------------------------+ +| libldap-common | CVE-2015-3276 | | | | openldap: incorrect multi-keyword | +| | | | | | mode cipherstring parsing | +| | | | | | -->avd.aquasec.com/nvd/cve-2015-3276 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-14159 | | | | openldap: Privilege escalation | +| | | | | | via PID file manipulation | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-14159 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-17740 | | | | openldap: | +| | | | | | contrib/slapd-modules/nops/nops.c | +| | | | | | attempts to free stack buffer | +| | | | | | allowing remote attackers to cause... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-17740 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-15719 | | | | openldap: Certificate | +| | | | | | validation incorrectly | +| | | | | | matches name against CN-ID | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-15719 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| liblz4-1 | CVE-2019-17543 | | 1.8.3-1+deb10u1 | | lz4: heap-based buffer | +| | | | | | overflow in LZ4_write32 | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-17543 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libmount1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libncurses6 | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+ + + +---------------+ + +| libncursesw6 | | | | | | +| | | | | | | +| | | | | | | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libnghttp2-14 | CVE-2020-11080 | HIGH | 1.36.0-2+deb10u1 | | nghttp2: overly large SETTINGS | +| | | | | | frames can lead to DoS | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-11080 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libpcre3 | CVE-2020-14155 | MEDIUM | 2:8.39-12 | | pcre: Integer overflow when | +| | | | | | parsing callout numeric arguments | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-14155 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2017-11164 | LOW | | | pcre: OP_KETRMAX feature in the | +| | | | | | match function in pcre_exec.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-11164 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-16231 | | | | pcre: self-recursive call | +| | | | | | in match() in pcre_exec.c | +| | | | | | leads to denial of service... | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-16231 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-7245 | | | | pcre: stack-based buffer overflow | +| | | | | | write in pcre32_copy_substring | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-7245 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2017-7246 | | | | pcre: stack-based buffer overflow | +| | | | | | write in pcre32_copy_substring | +| | | | | | -->avd.aquasec.com/nvd/cve-2017-7246 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20838 | | | | pcre: Buffer over-read in JIT | +| | | | | | when UTF is disabled and \X or... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20838 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libseccomp2 | CVE-2019-9893 | | 2.3.3-4 | | libseccomp: incorrect generation | +| | | | | | of syscall filters in libseccomp | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9893 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsepol1 | CVE-2021-36084 | | 2.8-1 | | libsepol: use-after-free in | +| | | | | | __cil_verify_classperms() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36084 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36085 | | | | libsepol: use-after-free in | +| | | | | | __cil_verify_classperms() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36085 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36086 | | | | libsepol: use-after-free in | +| | | | | | cil_reset_classpermission() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36086 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-36087 | | | | libsepol: heap-based buffer | +| | | | | | overflow in ebitmap_match_any() | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-36087 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsmartcols1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libssh2-1 | CVE-2019-13115 | HIGH | 1.8.0-2.1 | | libssh2: integer overflow in | +| | | | | | kex_method_diffie_hellman_group_exchange_sha256_key_exchange | +| | | | | | in kex.c leads to out-of-bounds write | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-13115 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2019-17498 | LOW | | | libssh2: integer overflow in | +| | | | | | SSH_MSG_DISCONNECT logic in packet.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-17498 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libssl1.1 | CVE-2007-6755 | | 1.1.1d-0+deb10u7 | | Dual_EC_DRBG: weak pseudo | +| | | | | | random number generator | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2010-0928 | | | | openssl: RSA authentication weakness | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libstdc++6 | CVE-2018-12886 | HIGH | 8.3.0-6 | | gcc: spilling of stack | +| | | | | | protection address in cfgexpand.c | +| | | | | | and function.c leads to... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-12886 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-15847 | | | | gcc: POWER9 "DARN" RNG intrinsic | +| | | | | | produces repeated output | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-15847 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libsystemd0 | CVE-2019-3843 | | 241-7~deb10u8 | | systemd: services with DynamicUser | +| | | | | | can create SUID/SGID binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3843 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-3844 | | | | systemd: services with DynamicUser | +| | | | | | can get new privileges and | +| | | | | | create SGID binaries... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3844 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2013-4392 | LOW | | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20386 | | | | systemd: memory leak in button_open() | +| | | | | | in login/logind-button.c when | +| | | | | | udev events are received... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20386 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13776 | | | | systemd: Mishandles numerical | +| | | | | | usernames beginning with decimal | +| | | | | | digits or 0x followed by... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13776 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libtasn1-6 | CVE-2018-1000654 | | 4.13-3 | | libtasn1: Infinite loop in | +| | | | | | _asn1_expand_object_id(ptree) | +| | | | | | leads to memory exhaustion | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-1000654 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libtinfo6 | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| libudev1 | CVE-2019-3843 | HIGH | 241-7~deb10u8 | | systemd: services with DynamicUser | +| | | | | | can create SUID/SGID binaries | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3843 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-3844 | | | | systemd: services with DynamicUser | +| | | | | | can get new privileges and | +| | | | | | create SGID binaries... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-3844 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2013-4392 | LOW | | | systemd: TOCTOU race condition | +| | | | | | when updating file permissions | +| | | | | | and SELinux security contexts... | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4392 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-20386 | | | | systemd: memory leak in button_open() | +| | | | | | in login/logind-button.c when | +| | | | | | udev events are received... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-20386 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13529 | | | | systemd: DHCP FORCERENEW | +| | | | | | authentication not implemented | +| | | | | | can cause a system running the... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13529 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2020-13776 | | | | systemd: Mishandles numerical | +| | | | | | usernames beginning with decimal | +| | | | | | digits or 0x followed by... | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-13776 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| libuuid1 | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| login | CVE-2007-5686 | | 1:4.5-1.1 | | initscripts in rPath Linux 1 | +| | | | | | sets insecure permissions for | +| | | | | | the /var/log/btmp file,... | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | +| | | | | | conditions by copying and | +| | | | | | removing directory trees | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-7169 | | | | shadow-utils: newgidmap | +| | | | | | allows unprivileged user to | +| | | | | | drop supplementary groups | +| | | | | | potentially allowing privilege... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-7169 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19882 | | | | shadow-utils: local users can | +| | | | | | obtain root access because setuid | +| | | | | | programs are misconfigured... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| mount | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| ncurses-base | CVE-2021-39537 | | 6.1+20181013-2+deb10u2 | | ncurses: heap-based buffer overflow | +| | | | | | in _nc_captoinfo() in captoinfo.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-39537 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| openssl | CVE-2007-6755 | | 1.1.1d-0+deb10u7 | | Dual_EC_DRBG: weak pseudo | +| | | | | | random number generator | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-6755 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2010-0928 | | | | openssl: RSA authentication weakness | +| | | | | | -->avd.aquasec.com/nvd/cve-2010-0928 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| passwd | CVE-2007-5686 | | 1:4.5-1.1 | | initscripts in rPath Linux 1 | +| | | | | | sets insecure permissions for | +| | | | | | the /var/log/btmp file,... | +| | | | | | -->avd.aquasec.com/nvd/cve-2007-5686 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2013-4235 | | | | shadow-utils: TOCTOU race | +| | | | | | conditions by copying and | +| | | | | | removing directory trees | +| | | | | | -->avd.aquasec.com/nvd/cve-2013-4235 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2018-7169 | | | | shadow-utils: newgidmap | +| | | | | | allows unprivileged user to | +| | | | | | drop supplementary groups | +| | | | | | potentially allowing privilege... | +| | | | | | -->avd.aquasec.com/nvd/cve-2018-7169 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-19882 | | | | shadow-utils: local users can | +| | | | | | obtain root access because setuid | +| | | | | | programs are misconfigured... | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-19882 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ +| perl-base | CVE-2020-16156 | MEDIUM | 5.28.1-6+deb10u1 | | [Signature Verification Bypass] | +| | | | | | -->avd.aquasec.com/nvd/cve-2020-16156 | ++ +------------------+----------+ +---------------+--------------------------------------------------------------+ +| | CVE-2011-4116 | LOW | | | perl: File::Temp insecure | +| | | | | | temporary file handling | +| | | | | | -->avd.aquasec.com/nvd/cve-2011-4116 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| tar | CVE-2005-2541 | | 1.30+dfsg-6 | | tar: does not properly warn the user | +| | | | | | when extracting setuid or setgid... | +| | | | | | -->avd.aquasec.com/nvd/cve-2005-2541 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2019-9923 | | | | tar: null-pointer dereference | +| | | | | | in pax_decode_header in sparse.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2019-9923 | ++ +------------------+ + +---------------+--------------------------------------------------------------+ +| | CVE-2021-20193 | | | | tar: Memory leak in | +| | | | | | read_header() in list.c | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-20193 | ++------------------+------------------+ +------------------------+---------------+--------------------------------------------------------------+ +| util-linux | CVE-2021-37600 | | 2.33.1-0.1 | | util-linux: integer overflow | +| | | | | | can lead to buffer overflow | +| | | | | | in get_sem_elements() in | +| | | | | | sys-utils/ipcutils.c... | +| | | | | | -->avd.aquasec.com/nvd/cve-2021-37600 | ++------------------+------------------+----------+------------------------+---------------+--------------------------------------------------------------+ + +opt/bitnami/common/bin/gosu (gobinary) +====================================== +Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0) + + +opt/bitnami/common/bin/wait-for-port (gobinary) +=============================================== +Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0) + +``` + diff --git a/dependency/redis/1.0.21/templates/common.yaml b/dependency/redis/1.0.22/templates/common.yaml similarity index 100% rename from dependency/redis/1.0.21/templates/common.yaml rename to dependency/redis/1.0.22/templates/common.yaml diff --git a/dependency/redis/1.0.21/templates/health-configmap.yaml b/dependency/redis/1.0.22/templates/health-configmap.yaml similarity index 100% rename from dependency/redis/1.0.21/templates/health-configmap.yaml rename to dependency/redis/1.0.22/templates/health-configmap.yaml diff --git a/dependency/redis/1.0.21/templates/secret.yaml b/dependency/redis/1.0.22/templates/secret.yaml similarity index 100% rename from dependency/redis/1.0.21/templates/secret.yaml rename to dependency/redis/1.0.22/templates/secret.yaml diff --git a/dependency/redis/1.0.21/values.yaml b/dependency/redis/1.0.22/values.yaml similarity index 100% rename from dependency/redis/1.0.21/values.yaml rename to dependency/redis/1.0.22/values.yaml