[features] Features file injection vulnerability

File injection vulnerability in Ruby gem Features 0.3.0 allows remote attackers to inject malicious html in the /tmp directory.

References

• https://nvd.nist.gov/vuln/detail/CVE-2013-4318
• https://security-tracker.debian.org/tracker/CVE-2013-4318
• http://www.openwall.com/lists/oss-security/2013/09/09/10
• https://github.com/advisories/GHSA-42gq-h7xj-33r4