CVE-2020-27748 vulnerability patch blocks desktop context menu "send to" functionality

[AndrShat]

Issue
CVE-2020-27748 vulnerability patch blocks desktop context menu "send to" functionality for Mint 18,19,20 Mate and Cinnamon desktops.

Patch description:
SECURITY UPDATE: local file inclusion vulnerability
- debian/patches/CVE-2020-27748.patch: remove attachment handling from
mailto in scripts/xdg-email.in.
- CVE-2020-27748

Steps to reproduce
When one right-clicks the file on the desktop and chooses "send to" menu item the email is generated but with no attachment ([https://forums.linuxmint.com/viewtopic.php?p=1927628#p1927628]).
The problem is reproducible with Mint 18 Mate, Mint 19 Cinnamon, Mint 20 Mate, Mint 20 Cinnamon installed in default configuration with Thunderbird email client. The patch does not affect XFCE desktop editions because they do not have such a desktop menu item. Desktop context menu item "send to" uses "xdg-email --attach filename" command in Mint distribution
The patch does not affect Ubuntu 20.04.1 LTS also because it uses the "nautilus-sendto" command in the same situation.

Fixing
For Cinnamon desktop the problem can be fixed by installing the nautilus-sendto package and changing one line in file /usr/share/nemo/actions/send-by-mail.py:
command = ['xdg-email'] + list(chain.from_iterable(('--attach', arg) for arg in args.filelist.split('/#/')))
change to
command = ['nautilus-sendto'] + list(chain.from_iterable((' ', arg) for arg in args.filelist.split('/#/')))

Summary:
New vulnerability patch breaks popular user's function "send to" for the Mint editions Mate and Cinnamon, releases 18,19,20. For MInt 20 Cinnamon edition the issue can be fixed up by using the nautilus-sendto command instead of xdg-email (as in Ubuntu 20.04.1) and changing one line in /usr/share/nemo/actions/send-by-mail.py file.

Thank you.

[mtwebster]

This has been removed from nemo for 4.8:
linuxmint/nemo#2574