Investigating a supposed FN for a customer, we noticed that you do not report the vuln CVE-2022-4492 for the pkg io.undertow:undertow-core - 2.2.5.Final-redhat-00001 here (https://access.redhat.com/security/cve/cve-2022-4492). Other feeds (https://github.com/advisories/GHSA-pfcc-3g6r-8rg8) report the vulnerability instead. Are we to understand that the vulnerability is fixed in the redhat build or is it really a FN?