CVE list: Show only the currently running kernel meta-package

[a-martynovich]

Hide all packages named as linux-* except for kernel_deb_metapackage and kernel_headers_deb_metapacakage received from agent.
Requires WoTTsecurity/agent#268

[vpetersson]

Related to #715

[a-martynovich]

@rptrchv If you have a chance to take this task, here's what needs to be done.

1. Make a list of all kernel meta-packages. Ubuntu CVE tracker has a somewhat full list, but we can go further and look at Ubuntu source packages (look for linux-meta*), then for every linux-meta* find a kernel meta-package. Examples: linux, linux-aws, linux-gcp, linux-oracle. I don't know if the same is true for Debian, need to look further.
2. Among the device's packages find a package whose name is in the list of kernel meta-packages and whose version matches Device.kernel_deb_package.
3. In CVE view: for all Ubuntu and Debian hide all packages whose names match the regex linux-* except for the package found above.

[a-martynovich]

For Debian it's different. Packages like linux-image-<version>-<platform> will be considered vulnerable, but the meta-package which should be shown is linux-image-<platform> (because it can be upgraded). Their versions don't match. The list of kernel meta-packages is also different.

So... let's limit this task to Ubuntu for now. I don't know how to write the logic for Debian yet.