An FR-GV-205 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Buffer over-read in fr_dhcp_decode_options()" and a denial of service.
https://access.redhat.com/errata/RHSA-2017:1759
http://www.securitytracker.com/id/1038914
http://www.securityfocus.com/bid/99912