diff --git a/Gemfile b/Gemfile
index d6a090abf86d19f3a33cb6fcd2fafada4162b1b4..de920ae436d95f9ba76f9ad4adeb7f5cde24279a 100644
--- a/Gemfile
+++ b/Gemfile
@@ -176,7 +176,7 @@ gem "logging-rails", "0.5.0", require: "logging/rails"
 
 # Reading and writing zip files
 
-gem "rubyzip", "1.1.7", require: "zip"
+gem "rubyzip", "1.2.0", require: "zip"
 
 # Prevent occasions where minitest is not bundled in
 # packaged versions of ruby. See following issues/prs:
diff --git a/Gemfile.lock b/Gemfile.lock
index c968d67354ff03e891eeaf3ffc5e86177876b92c..bec70f574750b56c9eacd55bfcc99145ebabb468 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -684,7 +684,7 @@ GEM
       tins (<= 1.6.0)
     ruby-oembed (0.10.0)
     ruby-progressbar (1.7.5)
-    rubyzip (1.1.7)
+    rubyzip (1.2.0)
     safe_yaml (1.0.4)
     sass (3.4.21)
     sass-rails (5.0.4)
@@ -904,7 +904,7 @@ DEPENDENCIES
   rspec-rails (= 3.4.2)
   rubocop (= 0.35.1)
   ruby-oembed (= 0.10.0)
-  rubyzip (= 1.1.7)
+  rubyzip (= 1.2.0)
   sass-rails (= 5.0.4)
   selenium-webdriver (= 2.47.1)
   shoulda-matchers (= 3.1.1)