Track sudo fixes via the new upstream version in unstable

Furthermore demote the two disupted CVEs to unimportant. They are quite
far-fetched and upstream introduded in upstream 1.8.30 new configuration
options to handle those interpretations. In the case of CVE-2019-19234
actually only for the shell.