False positive reported for CVE-2022-21511 & CVE-2022-21510

[navzen2000]

Is this a request for help?:

---

Is this a BUG REPORT or a FEATURE REQUEST? (choose one): BUG

Version of Anchore Engine and Anchore CLI if applicable: 1.1.0

What happened: CVE-2022-21511,CVE-2022-21510 got reported for ojdbc.jar

What did you expect to happen:

Any relevant log output from /var/log/anchore:

What docker images are you using:

How to reproduce the issue:

Anything else we need to know: