Added CVE numbers to vulnerability list

Author: hsbt

en/news/_posts/2017-08-29-multiple-vulnerabilities-in-rubygems.md

@@ -15,10 +15,10 @@ It is [reported at the official blog of RubyGems](http://blog.rubygems.org/2017/
 
 The following vulnerabilities have been reported.
 
-* a DNS request hijacking vulnerability
-* an ANSI escape sequence vulnerability
-* a DoS vulnerability in the query command
-* a vulnerability in the gem installer that allowed a malicious gem to overwrite arbitrary files
+* a DNS request hijacking vulnerability. (CVE-2017-0902)
+* an ANSI escape sequence vulnerability. (CVE-2017-0899)
+* a DoS vulnerability in the query command. (CVE-2017-0900)
+* a vulnerability in the gem installer that allowed a malicious gem to overwrite arbitrary files. (CVE-2017-0901)
 
 It is strongly recommended for Ruby users to take one of the following workarounds as soon as possible.
 

ja/news/_posts/2017-08-29-multiple-vulnerabilities-in-rubygems.md

@@ -15,10 +15,10 @@ RubyGems の公式ブログにて[報告されています](http://blog.rubygems
 
 以下の脆弱性が報告されています。
 
-* a DNS request hijacking vulnerability
-* an ANSI escape sequence vulnerability
-* a DoS vulnerability in the query command
-* a vulnerability in the gem installer that allowed a malicious gem to overwrite arbitrary files
+* a DNS request hijacking vulnerability. (CVE-2017-0902)
+* an ANSI escape sequence vulnerability. (CVE-2017-0899)
+* a DoS vulnerability in the query command. (CVE-2017-0900)
+* a vulnerability in the gem installer that allowed a malicious gem to overwrite arbitrary files. (CVE-2017-0901)
 
 Ruby ユーザには、以下に示すいずれかの対策を速やかに行うことを強く推奨します。
 

zh_cn/news/_posts/2017-08-29-multiple-vulnerabilities-in-rubygems.md

@@ -14,10 +14,10 @@ Ruby 自带的 RubyGems 发现了多个漏洞。RubyGems 官方博客[对此有
 
 发现的漏洞有：
 
-* DNS 请求劫持漏洞
-* ANSI 转义序列漏洞
-* `query` 命令中的 DoS 漏洞
-* gem 安装程序中的一个漏洞，能让恶意 gem 覆盖任意文件
+* DNS 请求劫持漏洞 (CVE-2017-0902)
+* ANSI 转义序列漏洞 (CVE-2017-0899)
+* `query` 命令中的 DoS 漏洞 CVE-2017-0900)
+* gem 安装程序中的一个漏洞，能让恶意 gem 覆盖任意文件 (CVE-2017-0901)
 
 强烈建议 Ruby 用户采用下述临时方案规避这些漏洞。