The bug was fixed in SVN already.
This bug is supposed to be fixed in 2.0.1.GA. Here is the JIRA link.
I know that's what I said. It was supposed to be fixed in 2.0.1.CR3!!! and I see the bug and I have 2.0.1.GA.
Anyone experiencing/noticing the same problem with 2.0.1.GA?
Yes. I am facing same problem with 2.0.1.GA.
Can you describe exactly what the problem is? Just remember, the 'bug' was not that the authenticate method was called twice during a failed login (this is expected behaviour), the bug was simply dealing with some incorrect logic in Identity during the authentication process.