diff --git a/pkg/client/unversioned/request.go b/pkg/client/unversioned/request.go
index cb0e8a12bd5..3baa5f29ed8 100644
--- a/pkg/client/unversioned/request.go
+++ b/pkg/client/unversioned/request.go
@@ -643,6 +643,7 @@ func (r *Request) Watch() (watch.Interface, error) {
 		return nil, err
 	}
 	if resp.StatusCode != http.StatusOK {
+		defer resp.Body.Close()
 		if result := r.transformResponse(resp, req); result.err != nil {
 			return nil, result.err
 		}
diff --git a/pkg/client/unversioned/request_test.go b/pkg/client/unversioned/request_test.go
index e0823a7909d..2b5bf6d2977 100644
--- a/pkg/client/unversioned/request_test.go
+++ b/pkg/client/unversioned/request_test.go
@@ -477,7 +477,10 @@ func TestRequestWatch(t *testing.T) {
 			Request: &Request{
 				content: ContentConfig{GroupVersion: testapi.Default.GroupVersion(), Codec: testapi.Default.Codec()},
 				client: clientFunc(func(req *http.Request) (*http.Response, error) {
-					return &http.Response{StatusCode: http.StatusForbidden}, nil
+					return &http.Response{
+						StatusCode: http.StatusForbidden,
+						Body:       ioutil.NopCloser(bytes.NewReader([]byte{})),
+					}, nil
 				}),
 				baseURL: &url.URL{},
 			},
@@ -490,7 +493,10 @@ func TestRequestWatch(t *testing.T) {
 			Request: &Request{
 				content: ContentConfig{GroupVersion: testapi.Default.GroupVersion(), Codec: testapi.Default.Codec()},
 				client: clientFunc(func(req *http.Request) (*http.Response, error) {
-					return &http.Response{StatusCode: http.StatusUnauthorized}, nil
+					return &http.Response{
+						StatusCode: http.StatusUnauthorized,
+						Body:       ioutil.NopCloser(bytes.NewReader([]byte{})),
+					}, nil
 				}),
 				baseURL: &url.URL{},
 			},