See the post here: http://groups.google.com/groups?hl=en&selm=fa.eaen1uv.fgs9oi%40ifi.uio.no And the patch here: http://groups.google.com/groups?hl=en&selm=fa.ecet3ev.cgm88j%40ifi.uio.no The latest cvs package - cvs-1.11.1p1-7.i386.rpm - is affected by this problem. How reproducible: Always Steps to Reproduce: - Set up a CVS pserver - Create a "writers" file in CVSROOT - Log in with a user name not listed in "writers" - Notice that you can create tags, even though you should only have read-only access
This seems like a really bad bug for people who depend on cvs tags and have public anoncvs. Is this serious enough to warrant an errata?
Its in 7.3