From d06ae0fff7635bd914b2c3996f93680a13064976 Mon Sep 17 00:00:00 2001
From: =?utf8?q?G=C3=BCnther=20Noack?= <gnoack@google.com>
Date: Thu, 1 May 2014 13:33:11 +0200
Subject: [PATCH] Avoid out-of-bounds write in SSL_get_shared_ciphers

PR: 3317
---
 ssl/ssl_lib.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c
index 26fbe87fbf..adb32351ca 100644
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c
@@ -1256,6 +1256,9 @@ char *SSL_get_shared_ciphers(const SSL *s,char *buf,int len)
 		(len < 2))
 		return(NULL);
 
+	if (sk_SSL_CIPHER_num(sk) == 0)
+		return NULL;
+
 	p=buf;
 	sk=s->session->ciphers;
 	for (i=0; i<sk_SSL_CIPHER_num(sk); i++)
-- 
2.25.1