security/botan2: update to 2.19.3 security release (+)

A malicious OCSP responder could forge OCSP responses due to a failure
to validate that an embedded certificate was issued by the end-entity
issuing certificate authority.

Security: CVE-2022-43705
MFH: 2022Q4
(cherry picked from commit 5616c284b3db74c319aaf362204bd48877629f55)