Gentoo Security Advisory GLSA 200606-28 (horde)

Summary
The remote host is missing updates announced in advisory GLSA 200606-28.
Solution
All horde users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-apps/horde-3.1.1-r1' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200606-28 http://bugs.gentoo.org/show_bug.cgi?id=136830
Insight
The Horde Web Application Framework is vulnerable to a cross-site scripting vulnerability.