Dear colleagues,Attached is a patch to mark CVE-2018-1384{3,4,5} as fixed in htslib 1.9-1.I also submitted a pull request https://salsa.debian.org/security-tracker-team/security-tracker/merge_requests/29 as I didn't know which method is preferred.This is my first time interacting with the security-team/CVEs; please let me know if I'm not doing this correctly or could do it better.Thanks!--Direktorius, VšĮ "Darbo eigos", Vilnius, LithuaniaDebian Maintainer, Med team