CVE-2025-65947

Name of the Vulnerable Software and Affected Versions thread-amount versions prior to 0.2.2

Description The thread-amount tool, used to determine the number of threads in a process, contains resource leaks when obtaining thread counts on Windows and Apple platforms. On Windows, the thread amount function utilizes CreateToolhelp32Snapshot but does not close the returned HANDLE using CloseHandle. Repeated calls to this function increase the process handle count indefinitely, potentially causing system instability or process termination when the handle limit is reached. On Apple platforms, the thread amount function calls task threads (via Mach kernel APIs) which allocates memory for the thread list, but fails to deallocate this memory using vm deallocate. Repeated calls result in a memory leak, potentially leading to process termination by the OOM (Out of Memory) killer.

Recommendations Update to thread-amount version 0.2.2 or later.