Update CVE-2019-13354.yml

Note that 0.0.8 was released.

Author: reedloden

gems/strong_password/CVE-2019-13354.yml

@@ -10,7 +10,10 @@ description: |
   malicious actor published v0.0.7 containing malicious code that enables an attacker
   to execute remote code in production.
 
-  Downgrade `strong_password` to v0.0.6 to ensure no malicious code execution is possible.
+  Upgrade `strong_password` to v0.0.8 to ensure no malicious code execution is possible.
+
+patched_versions:
+  - ">= 0.0.8"
 
 unaffected_versions:
   - "!= 0.0.7"