Add information for CVE-2018-1714{2,3}/golang-golang-x-net-dev

Further investigation needs to be done to see if the issues are only
introduced with the mentioned adding "in template" insertion mode
support. If so the vulnerable code would be introduced later than in any
version currently in sid, testing, stretch and jessie.