ELA-1132-1 php-horde-mime-viewer security update

XSS vulnerability

2024-07-17
Packagephp-horde-mime-viewer
Version2.0.7-2+deb8u1 (jessie)
Related CVEs CVE-2022-26874


A Cross-Site Scripting (XSS) vulnerability was discovered in php-horde-mime-viewer, a PHP library for parsing and displaying email messages encoded in the MIME (or “Multipurpose Internet Mail Extensions”) format.



For Debian 8 jessie, these problems have been fixed in version 2.0.7-2+deb8u1.

We recommend that you upgrade your php-horde-mime-viewer packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.