Start tracking still openssl under CVE-2018-5407

The issue itself is not an issue in software. Still OpenSSL project is
particularly affected by the issue and adds respective
mitigations/fixes.

As such start tracking for openssl and openss1.0 the fixes for inclusion
in a future DSA.

OpenSSL report: https://www.openssl.org/news/secadv/20181112.txt