According to Ubuntu's advisory, Horde 3 includes affected XML-RPC code. Not sure it affects our package though, maybe it makes use of PEAR depends ?
AFAICT the xmlrpc code in Horde is of a different brand. If it's affected, it's certainly not by the same vulnerability.