Attention #SelfHosters, if you run a GitLab server, it's time to patch it. The critical vulnerability is an arbitrary file write by an authenticated user.

https://about.gitlab.com/releases/2024/01/25/critical-security-release-gitlab-16-8-1-released/

If you never had open registration and only provision accounts to people you know and trust to not attempt to pwn you, this is much less urgent (as usual). You should still patch though.