iDEFENSE has discovered an information disclosure issue with the cvs
More information here:
This issue should also affect RHEL2.1
This issue was actually fixed by the Krahmer/Esser backported patches
included in our last security update on June9th. Therefore Red Hat
Enterprise Linux is not vulnerable to this issue.