From 403a5b716bc10dbb48217889712ecc914cafd718 Mon Sep 17 00:00:00 2001
From: Frans Saris <franssaris@gmail.com>
Date: Sun, 29 Jan 2017 16:56:29 +0100
Subject: [PATCH] [FOLLOWUP][TASK] Code cleanup for RteHtmlParser

Resolves: #79280
Releases: master
Change-Id: I1d3815cef36d624c910d40eb6d63a3eba4f3f53d
Reviewed-on: https://review.typo3.org/51455
Tested-by: TYPO3com <no-reply@typo3.com>
Reviewed-by: Benni Mack <benni@typo3.org>
Tested-by: Benni Mack <benni@typo3.org>
Reviewed-by: Susanne Moog <susanne.moog@typo3.org>
Tested-by: Susanne Moog <susanne.moog@typo3.org>
---
 typo3/sysext/core/Classes/Html/RteHtmlParser.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/typo3/sysext/core/Classes/Html/RteHtmlParser.php b/typo3/sysext/core/Classes/Html/RteHtmlParser.php
index d715ceea0d61..793505bea36e 100644
--- a/typo3/sysext/core/Classes/Html/RteHtmlParser.php
+++ b/typo3/sysext/core/Classes/Html/RteHtmlParser.php
@@ -994,7 +994,7 @@ class RteHtmlParser extends HtmlParser
         if (!empty($this->allowedAttributesForParagraphTags)) {
             list($tagAttributes) = $this->get_tag_attributes($fTag);
             // Make sure the tag attributes only contain the ones that are defined to be allowed
-            $tagAttributes = array_intersect_key($tagAttributes, $this->allowedAttributesForParagraphTags);
+            $tagAttributes = array_intersect_key($tagAttributes, array_flip($this->allowedAttributesForParagraphTags));
 
             // Only allow classes that are whitelisted in $this->allowedClasses
             if (trim($tagAttributes['class']) !== '' && !empty($this->allowedClasses) && !in_array($tagAttributes['class'], $this->allowedClasses, true)) {
-- 
GitLab