Adjust no-dsa reasoning for CVE-2018-15746

seccomp support is enabled earlier already. But only in the version in
unstable it is enabled by default already. Given it is not enabled by
default but supported in stretch we can mark it as no-dsa and postpone
possibly a fix for later update.