Nginx · Njs · CVE-2019-11837
**Name of the Vulnerable Software and Affected Versions**
njs versions prior to 0.3.2
**Description**
The issue is related to a segmentation fault in String.prototype.toBytes for negative arguments. It is connected to the functions nxt utf8 next in nxt/nxt utf8.h and njs string offset in njs/njs string.c. This problem is found in njs, which is used in NGINX.
**Recommendations**
For versions prior to 0.3.2, update to version 0.3.2 or later to resolve the issue.