There is a new pull request by ndowens against master on the void-packages repository

https://github.com/ndowens/void-packages nginx
https://github.com/void-linux/void-packages/pull/18159

nginx: update to 1.17.7.
Version 1.17.7 includes fix for CVE-2019-20372

A patch file from https://github.com/void-linux/void-packages/pull/18159.patch is attached