diff --git a/apparmor.d/groups/systemd/systemd-hwdb b/apparmor.d/groups/systemd/systemd-hwdb
index 0bb79f72a..b60a74982 100644
--- a/apparmor.d/groups/systemd/systemd-hwdb
+++ b/apparmor.d/groups/systemd/systemd-hwdb
@@ -7,7 +7,7 @@ abi <abi/3.0>,
 include <tunables/global>
 
 @{exec_path} = @{bin}/systemd-hwdb
-profile systemd-hwdb @{exec_path} flags=(attach_disconnected) {
+profile systemd-hwdb @{exec_path} flags=(attach_disconnected,mediate_deleted) {
   include <abstractions/base>
   include <abstractions/consoles>
 
@@ -15,6 +15,7 @@ profile systemd-hwdb @{exec_path} flags=(attach_disconnected) {
 
   @{exec_path} mr,
 
+  @{lib}/udev/#@{int} rwl,
   @{lib}/udev/.#hwdb.bin[0-9a-zA-Z]* wl -> @{lib}/udev/#@{int},
   @{lib}/udev/hwdb.bin w,