bug in sshd / tcp_wrapper

Hello,

There is bug in sshd / tcp_wrapper - RHEL6

When i set some host in /etc/hosts.allow this should stop to moves to next step and checks /etc/hosts.deny but it doesnt work.
While i run nessus scanner from IP 10.176.X.Y I can see that it appears in /etc/hosts.deny:

cat /etc/hosts.deny | grep -v "#"
ALL:10.176.X.Y

but there was i set:

cat /etc/hosts.allow | grep -v "#"
ALL : 10.176.X.Y

Version-Release number of selected component (if applicable):

cat /etc/redhat-release
Red Hat Enterprise Linux Server release 6.10 (Santiago)
rpm -qa | grep ssh
openssh-5.3p1-124.el6_10.x86_64
openssh-clients-5.3p1-124.el6_10.x86_64
libssh2-1.4.2-3.el6_10.1.x86_64
openssh-server-5.3p1-124.el6_10.x86_64
ldd which sshd | grep wrap
libwrap.so.0 => /lib64/libwrap.so.0 (0x00007f8f5d53d000)

Where are you experiencing the behavior? What environment?
PROD

When does the behavior occur? Frequency? Repeatedly? At certain times?
ALL the time