diff --git a/squid.spec b/squid.spec
index e323e944baa01b072345c87f2ddfc7c8a675877c..e10c23f49def784b608f0e292480fa6dd9f7f5a2 100644
--- a/squid.spec
+++ b/squid.spec
@@ -2,7 +2,7 @@
 
 Name:     squid
 Version:  4.9
-Release:  22
+Release:  23
 Summary:  The Squid proxy caching server
 Epoch:    7
 License:  GPLv2+ and (LGPLv2+ and MIT and BSD and Public Domain)
@@ -103,7 +103,7 @@ LDFLAGS="$RPM_LD_FLAGS -pie -Wl,-z,relro -Wl,-z,now -Wl,--warn-shared-textrel"
    --enable-linux-netfilter --enable-removal-policies="heap,lru" \
    --enable-snmp --enable-ssl --enable-ssl-crtd \
    --enable-storeio="aufs,diskd,ufs,rock" --enable-diskio --enable-wccpv2 \
-   --enable-esi --enable-ecap --with-aio --with-default-user="squid" \
+   --disable-esi --enable-ecap --with-aio --with-default-user="squid" \
    --with-dl --with-openssl --with-pthreads --disable-arch-native \
    --with-pic --disable-security-cert-validators \
    --with-tdb
@@ -241,6 +241,12 @@ fi
     chgrp squid /var/cache/samba/winbindd_privileged >/dev/null 2>&1 || :
 
 %changelog
+* Tue Oct 29 2024 xinghe <xinghe2@h-partners.com> - 7:4.9-23
+- Type:cves
+- ID:CVE-2024-45802
+- SUG:NA
+- DESC:fix CVE-2024-45802
+
 * Thu Sep 19 2024 xinghe <xinghe2@h-partners.com> - 7:4.9-22
 - Type:cves
 - ID:CVE-2024-25111