Bogofilter security information

These bogofilter vulnerabilities became known to date (newest first; bogofilter 1.2.3 fixes all of these):

• bogofilter-SA-2012-01/CVE-2012-5468: bogofilter/bogolexer heap buffer overrun with base64 input that decodes to invalid multi-byte characters (versions up to and including 1.2.2).
• bogofilter-SA-2010-01/CVE-2010-2494: bogofilter/bogolexer heap buffer underrun (1 byte) with invalid base64 input (versions up to and including 1.2.1).
• bogofilter-SA-2005-02/CVE-2005-4592: bogofilter/bogolexer heap buffer overrun with words > 16 kBytes (version 0.96.2).
• bogofilter-SA-2005-01/CVE-2005-4591: bogofilter/bogolexer heap buffer overrun with invalid input sequences (0.93.5 ≤ versions ≤ 0.96.2).
• bogofilter-SA-2004-01/CVE-2004-1007: rfc2047crash: RFC-2047 decoding vulnerability (0.17.4 ≤ versions ≤ 0.92.7).
• bogofilter-SA-2002-01: bogopass: contributed script insecure temporary file handling (version 0.9.0.4).