diff --git a/apparmor.d/groups/gnome/gsd-xsettings b/apparmor.d/groups/gnome/gsd-xsettings
index 592f287af..d076c57b9 100644
--- a/apparmor.d/groups/gnome/gsd-xsettings
+++ b/apparmor.d/groups/gnome/gsd-xsettings
@@ -28,7 +28,7 @@ profile gsd-xsettings @{exec_path} {
   /usr/share/glib-2.0/schemas/gschemas.compiled r,
 
   /etc/xdg/Xwayland-session.d/ r,
-  /etc/xdg/Xwayland-session.d/00-xrdb rix,
+  /etc/xdg/Xwayland-session.d/* rix,
 
   owner @{user_cache_dirs}/mesa_shader_cache/index rw,
 
diff --git a/apparmor.d/groups/gvfs/gvfsd-http b/apparmor.d/groups/gvfs/gvfsd-http
index 99c0ff42d..60b6d84a5 100644
--- a/apparmor.d/groups/gvfs/gvfsd-http
+++ b/apparmor.d/groups/gvfs/gvfsd-http
@@ -14,6 +14,7 @@ profile gvfsd-http @{exec_path} {
   include <abstractions/freedesktop.org>
   include <abstractions/nameservice-strict>
   include <abstractions/p11-kit>
+  include <abstractions/ssl_certs>
 
   network inet stream,
   network inet6 stream,
diff --git a/apparmor.d/groups/systemd/systemd-machined b/apparmor.d/groups/systemd/systemd-machined
index 62a2f73cd..6193d904c 100644
--- a/apparmor.d/groups/systemd/systemd-machined
+++ b/apparmor.d/groups/systemd/systemd-machined
@@ -25,6 +25,7 @@ profile systemd-machined @{exec_path} flags=(complain) {
 
   @{exec_path} mr,
 
+  /var/lib/machines/{,**} rw,
   /etc/machine-id r,
 
   @{run}/systemd/machines/{,**} rw,
diff --git a/apparmor.d/groups/systemd/zram-generator b/apparmor.d/groups/systemd/zram-generator
index b8043e258..1336fcca6 100644
--- a/apparmor.d/groups/systemd/zram-generator
+++ b/apparmor.d/groups/systemd/zram-generator
@@ -13,10 +13,11 @@ profile zram-generator @{exec_path} {
 
   @{exec_path} mr,
 
-  /{usr/,}lib/systemd-makefs rPx,
+  /{usr/,}lib/systemd/systemd-makefs rPx,
   /{usr/,}bin/systemd-detect-virt rPx,
 
   @{sys}/devices/virtual/block/zram[0-9]*/{disksize,reset} rw,
+  @{sys}/block/zram[0-9]*/{disksize,reset} rw,
 
   owner @{run}/systemd/generator/systemd-zram-setup@zram[0-9]*.service.d/{,*.conf} rw,
   owner @{run}/systemd/generator/dev-zram[0-9]*.swap rw,
diff --git a/apparmor.d/profiles-a-l/dhclient-script b/apparmor.d/profiles-a-l/dhclient-script
index 9492abad8..9ef5cf5d0 100644
--- a/apparmor.d/profiles-a-l/dhclient-script
+++ b/apparmor.d/profiles-a-l/dhclient-script
@@ -73,7 +73,7 @@ profile dhclient-script @{exec_path} {
   /{usr/,}bin/paste     rix,
   /{usr/,}bin/fold      rix,
   /{usr/,}bin/tr        rix,
-  @{PROC}sys/net/ipv6/conf/*/stable_secret w,
+  @{PROC}/sys/net/ipv6/conf/*/stable_secret w,
 
   # For printing env
   /{usr/,}bin/printenv  rix,