Adjust tracking for drupal7 issue related to Phar Stream Wrapper interceptor

Upstream from drupal considers only CVE-2019-11831 to affect Drupal
project for the Phar Stream Wrapper issue.

Thus move tracking of source package src:drupal7 to the CVE-2019-11831
and mark CVE-2019-11830 as NFU for phar-stream-wrapper.