Lemur 0.1.4 does not use sufficient entropy in its IV when encrypting AES in CBC mode.