Add patched version for CVE-2018-1000544 (#347)

severinkaelin · reedloden · commit 0ff419ea2f2a · 2018-08-31T10:07:49.000-07:00
diff --git a/gems/rubyzip/CVE-2018-1000544.yml b/gems/rubyzip/CVE-2018-1000544.yml
@@ -10,6 +10,8 @@ description: |
   If a site allows uploading of .zip files, an attacker can upload a malicious file
   which contains symlinks or files with absolute pathnames "../" to write arbitrary
   files to the filesystem.
+patched_versions:
+  - ">= 1.2.2"
 related:
   cve:
     - 2017-5946
