An alternative way to accept the risk of having vulnerable but not running kernel versions on the system is now available: