aws – is Openssh 7.4p1 (CentOS) up to date with remediating vulnerabilities?

Currently using Amazon Linux 2, and our VA tool is stating that it has found multiple vulnerabilites with openSSH7.4p1, stating that the vulnerabilities have been patched with a later version of OpenSSH. The issue that i find is that when I try to run a yum update for openssh, it comes back with the message that there are no packages for update. So, the question that I have is this: Does OpenSSH 7.4p1 have any vulnerabilities as of May 16,2023?

CVEs in question:
CVE-2020-15778
CVE-2021-41617
CVE-2019-6109
CVE-2019-6110
and more.