OxygenOS 5.1.7 update for the OnePlus 6 fixes bootloader vulnerability
Following a slew of updates for the OnePlus 6 since its launch, OxygenOS 5.1.7 is the first to offer strictly bug fixes and security enhancements. The first big fix for this update pertains to the bootloader vulnerability uncovered by a security researcher last week. It has been patched with an updated bootloader, so users are advised to install this update as soon as possible. The vulnerability allowed an attacker, just with physical access to your device and a computer at hand, to boot any kernel image that they want without even needing to have USB debugging left on. It’s a very dangerous bug and it’s great that it has been fixed so quickly. There are some other changes too.
Indian users will have to wait for the update. The company has announced that because of a problem with the previous update (OxygenOS 5.1.6) in India, they will receive OxygenOS 5.1.8 next week, which contains everything from 5.1.6, 5.1.7, and a bugfix for what was causing the instability issues. Users looking to install this update can set up a VPN and connect to Germany, as that is one of the regions to get OnePlus updates first. Otherwise, you’ll have to wait for the rollout to reach your OnePlus 6.
Do not disturb scheduling has also been fixed as you can see, as previously you could only set one time at a time. Now it seems that, hopefully, users will be able to set more than one at a time for different days. Then there’s just general bug fixes and improvements, so nothing too special there.
As stated previously, the update is in a staged rollout status so that if any problems arise, OnePlus can pull the plug before it reaches too many users. With such a low-level update as this as well, installing a new bootloader, it might be in your best interest to wait and see if any problems arise for other people first.
Source: OnePlus Forums