Project 'GNOME/libcroco' was moved to 'Archive/libcroco'. Please update any links and bookmarks that may still have the old path.
(CVE-2021-39359) gda-web-provider.c does not perform TLS certificate verification
gda-web-provider.c uses soup_session_sync_new() but does not appear to have any code to enable TLS certificate verification. This looks like the same vulnerability as libgrss#4.