Should I install CTX140814 on my Amazon Elastic Compute Cloud (Amazon EC2) instances running Windows with the Citrix XenServer tools installed?

Citrix released CTX140814 to address a denial-of-service (DoS) vulnerability on Windows virtual machines (VMs) with the XenServer tools installed. This vulnerability is assigned the CVE number CVE-2014-3798: XenServer tools network-based DoS vulnerability. The vulnerability targets a feature known as VLAN tagging, which is used to insert information (tags) into packet headers (frames) on Ethernet networks to identify which virtual local area network (VLAN) the associated packet should be sent to.

Because Amazon EC2 does not use VLAN tagging, this vulnerability does not affect Amazon EC2 Windows instances, and therefore you do not need to install this update. However, it's a best practice to install the latest PV drivers to improve the stability and performance of your EC2 Windows instances. For more information, see How do I upgrade the PV drivers for my Amazon EC2 instance that is running Windows?


Did this page help you? Yes | No

Back to the AWS Support Knowledge Center

Need help? Visit the AWS Support Center

Published: 2016-03-01

Updated: 2018-10-30