Nginx has the option "ssl_stapling_verify". This option is documented as :
Enables or disables verification of OCSP responses by the server.
For verification to work, the certificate of the server certificate issuer, the root certificate, and all intermediate certificates should be configured as trusted using the ssl_trusted_certificate directive.
It look likes it should prevent malformed responses to client's. But how it works, when verification fails, is not mentioned.