Gitlab Omnibus ships with a vulnerable zlib version 3.3.0 as part of the Ruby 3.3.0 install. Updating to zlib 3.2.3 resolves CVE-2026-27820 cc @gitlab-com/gl-security/product-security/vulnerability-management