diff --git a/squid.spec b/squid.spec
index 24efd315d18a49ad1318f5804867e280d29c8a87..41c0c0053da8a6b4fdf46b5045c27a63e1261efe 100644
--- a/squid.spec
+++ b/squid.spec
@@ -2,7 +2,7 @@
 
 Name:     squid
 Version:  4.9
-Release:  26
+Release:  27
 Summary:  The Squid proxy caching server
 Epoch:    7
 License:  GPLv2+ and (LGPLv2+ and MIT and BSD and Public Domain)
@@ -106,7 +106,7 @@ LDFLAGS="$RPM_LD_FLAGS -pie -Wl,-z,relro -Wl,-z,now -Wl,--warn-shared-textrel"
    --enable-linux-netfilter --enable-removal-policies="heap,lru" \
    --enable-snmp --enable-ssl --enable-ssl-crtd \
    --enable-storeio="aufs,diskd,ufs,rock" --enable-diskio --enable-wccpv2 \
-   --enable-esi --enable-ecap --with-aio --with-default-user="squid" \
+   --disable-esi --enable-ecap --with-aio --with-default-user="squid" \
    --with-dl --with-openssl --with-pthreads --disable-arch-native \
    --with-pic --disable-security-cert-validators \
    --with-tdb
@@ -252,6 +252,12 @@ fi
     chgrp squid /var/cache/samba/winbindd_privileged >/dev/null 2>&1 || :
 
 %changelog
+* Tue Oct 29 2024 xinghe <xinghe2@h-partners.com> - 7:4.9-27
+- Type:cves
+- ID:CVE-2024-45802
+- SUG:NA
+- DESC:fix CVE-2024-45802
+
 * Thu Sep 19 2024 xinghe <xinghe2@h-partners.com> - 7:4.9-26
 - Type:cves
 - ID:CVE-2024-25111