core: Protect against a theoretical integer overflow in parsetlv.c

* src/parsetlv.c (_gpgme_parse_tlv): Detect integer overflow.

Although there is no concrete case where we use for example
(to.nhdr+ti.length), it feels safer to protect against this anyway.