Mark some questionable Apple CVE assignments as NFU

 No point in investigating this further, we can only assume that Apple staff
 is stupid and assigned internal ID duplicates to otherwise public issues
 They can prove us wrong by providing proper commit references!