Hello, I am on 6.6.2 and this issue still seems to persist.
Just guessing here, but it appears to only be comparing the unmasked parts of the passwords, so regardless of the rest of the discrepancies if the first two characters match, it is "identical"