In advisory I believe vulnerable versions should be updated.
[1.6.0,1.8.2]
Reason:
According to Patch, I have verified that this vulnerability could not be triggered before 1.6.0.
1.6.0