CVE-2019-1490{4,5}: Move status from undetermined to unfixed

Both issues have low impact according to the maintainer.

Surpsisingly both have missleading fixed status information in the Red
Hat reports; Maintainer will further check the status.

Thanks: Lee Garrett