This patch of 0.9.3 fixes CVE-2018-1320 and is released to maven central
as libthrift 0.9.3-1.  This CVE is fixed specifically in 0.9.3.1 and also
in 0.12.0 or later.  There is no 0.9.3.1 windows compiler distributed here
so use the one from release 0.9.3 as it has not changed.