> For the oldstable distribution (jessie), this problem will be fixed in a separate update.
You can check https://security-tracker.debian.org/tracker/CVE-2017-5754 whether the KPTI patch has been released for jessie.