Check if jBCrypt contains vulnerability CVE-2011-2483; add support for $2y$ prefix.

[boughtonp]

There was a vulnerability in Openwall's crypt_blowfish implementation (used by Linux and PHP) - for details see: http://www.openwall.com/lists/announce/2011/07/17/1

Need to verify whether this issue affects the jBCrypt implementation used by cfPassphrase (and if so, add appropriate fix).

In either case, support for $2y$ prefix (and potentially $2x$ prefix) should be added.