security: fix CVE-2022-2879 [1.19 backport]

[gopherbot]

@rolandshoemaker requested issue #54853 to be considered for backport to the next 1.19 minor release.

@gopherbot please open backport issues.

[dmitshur]

Approved as a security fix.

[gopherbot]

Change https://go.dev/cl/438498 mentions this issue: [release-branch.go1.19] archive/tar: limit size of headers

[gopherbot]

Closed by merging 4fa773c to release-branch.go1.19.