Update status for CVE-2014-0193

Since the fix went upstream in 3.9.1 and the fix actually entered
unstable's version with the 3.9.9.Final-1 move the tracking there. It
got fixed before then afterwards the source was removed from the
archive.