The patch titled fix mem-leak in netfilter has been added to the -mm tree. Its filename is fix-mem-leak-in-netfilter.patch See http://www.zip.com.au/~akpm/linux/patches/stuff/added-to-mm.txt to find out what to do about this From: Jesper Juhl <jesper.juhl@xxxxxxxxx> The Coverity checker spotted that we may leak 'hold' in net/ipv4/netfilter/ipt_recent.c::checkentry() when the following is true : if (!curr_table->status_proc) { ... if(!curr_table) { ... return 0; <-- here we leak. Simply moving an existing vfree(hold); up a bit avoids the possible leak. Signed-off-by: Jesper Juhl <jesper.juhl@xxxxxxxxx> Cc: Patrick McHardy <kaber@xxxxxxxxx> Cc: "David S. Miller" <davem@xxxxxxxxxxxxx> Signed-off-by: Andrew Morton <akpm@xxxxxxxx> --- net/ipv4/netfilter/ipt_recent.c | 2 +- 1 files changed, 1 insertion(+), 1 deletion(-) diff -puN net/ipv4/netfilter/ipt_recent.c~fix-mem-leak-in-netfilter net/ipv4/netfilter/ipt_recent.c --- devel/net/ipv4/netfilter/ipt_recent.c~fix-mem-leak-in-netfilter 2006-05-10 21:56:53.000000000 -0700 +++ devel-akpm/net/ipv4/netfilter/ipt_recent.c 2006-05-10 21:56:53.000000000 -0700 @@ -821,6 +821,7 @@ checkentry(const char *tablename, /* Create our proc 'status' entry. */ curr_table->status_proc = create_proc_entry(curr_table->name, ip_list_perms, proc_net_ipt_recent); if (!curr_table->status_proc) { + vfree(hold); printk(KERN_INFO RECENT_NAME ": checkentry: unable to allocate for /proc entry.\n"); /* Destroy the created table */ spin_lock_bh(&recent_lock); @@ -845,7 +846,6 @@ checkentry(const char *tablename, spin_unlock_bh(&recent_lock); vfree(curr_table->time_info); vfree(curr_table->hash_table); - vfree(hold); vfree(curr_table->table); vfree(curr_table); return 0; _ Patches currently in -mm which might be from jesper.juhl@xxxxxxxxx are origin.patch fix-mem-leak-in-sidewinder-driver.patch git-mtd.patch fix-mem-leak-in-netfilter.patch git-scsi-rc-fixes.patch small-whitespace-cleanup-for-qlogic-driver.patch reduce-nr-of-ptr-derefs-in-fs-jffs2-summaryc.patch oss-cs46xx-cleanup-and-tiny-bugfix.patch i4l-memory-leak-fix-for-sc_ioctl.patch isdn-unsafe-interaction-between-isdn_write-and-isdn_writebuf_stub.patch binfmt_elf-codingstyle-cleanup-and-remove-some-pointless-casts.patch binfnt_elf-remove-more-casts.patch debug-shared-irqs.patch remove-redundant-null-checks-before-free-in-fs.patch remove-redundant-null-checks-before-free-in-kernel.patch remove-redundant-null-checks-before-free-in-drivers.patch - To unsubscribe from this list: send the line "unsubscribe mm-commits" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html