Fix parsing of version field in SSLv2 client hello

It turns out that, for probably a long time, we have reported an
incorrect version when parsing an SSLv2 client hello. We always reported
this as SSLv2, no matter which version the client hello actually
contained.

This bug probably went unnoticed for a long time, as SSLv2 is
essentially unused nowadays, and as this field does not show up in the
default logs.

This was found due to a baseline difference when writing the Spicy SSL
analyzer.

testing/external/commit-hash.zeek-testing-private

@@ -1 +1 @@
-2a6b523ed423a550cc897cb2cb6a2d6e0cdaea22
+4e30d6b89edf12d99e1165fd5c5e193d1320e371