From 6f69eed169776dd0e4be803b6a89d5dc52f74d4d Mon Sep 17 00:00:00 2001
From: xh <xingheyd@163.com>
Date: Tue, 29 Oct 2024 05:52:47 +0000
Subject: [PATCH] fix CVE-2024-45802

(cherry picked from commit 2c95ba818b592c60647ee9b85e5feba9ff9d7447)
---
 squid.spec | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/squid.spec b/squid.spec
index 24efd31..41c0c00 100644
--- a/squid.spec
+++ b/squid.spec
@@ -2,7 +2,7 @@
 
 Name:     squid
 Version:  4.9
-Release:  26
+Release:  27
 Summary:  The Squid proxy caching server
 Epoch:    7
 License:  GPLv2+ and (LGPLv2+ and MIT and BSD and Public Domain)
@@ -106,7 +106,7 @@ LDFLAGS="$RPM_LD_FLAGS -pie -Wl,-z,relro -Wl,-z,now -Wl,--warn-shared-textrel"
    --enable-linux-netfilter --enable-removal-policies="heap,lru" \
    --enable-snmp --enable-ssl --enable-ssl-crtd \
    --enable-storeio="aufs,diskd,ufs,rock" --enable-diskio --enable-wccpv2 \
-   --enable-esi --enable-ecap --with-aio --with-default-user="squid" \
+   --disable-esi --enable-ecap --with-aio --with-default-user="squid" \
    --with-dl --with-openssl --with-pthreads --disable-arch-native \
    --with-pic --disable-security-cert-validators \
    --with-tdb
@@ -252,6 +252,12 @@ fi
     chgrp squid /var/cache/samba/winbindd_privileged >/dev/null 2>&1 || :
 
 %changelog
+* Tue Oct 29 2024 xinghe <xinghe2@h-partners.com> - 7:4.9-27
+- Type:cves
+- ID:CVE-2024-45802
+- SUG:NA
+- DESC:fix CVE-2024-45802
+
 * Thu Sep 19 2024 xinghe <xinghe2@h-partners.com> - 7:4.9-26
 - Type:cves
 - ID:CVE-2024-25111