Python · Python · CVE-2026-3276
**Name of the Vulnerable Software and Affected Versions**
Python (affected versions not specified)
**Description**
The `unicodedata.normalize()` function can consume excessive CPU time when processing specially crafted Unicode input. This occurs when the input contains long sequences of combining characters with alternating Canonical Combining Class values, affecting all normalization forms.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.