diff --git a/apparmor.d/tunables/multiarch.d/paths b/apparmor.d/tunables/multiarch.d/paths
index 0bc17e44..62a0d5ea 100644
--- a/apparmor.d/tunables/multiarch.d/paths
+++ b/apparmor.d/tunables/multiarch.d/paths
@@ -44,8 +44,9 @@
 
 # Open
 
-@{open_path}  = @{bin}/exo-open @{bin}/xdg-open
-@{open_path} += @{lib}/@{multiarch}/glib-[0-9]*/gio-launch-desktop @{lib}/gio-launch-desktop
+@{open_path}  = @{bin}/exo-open @{bin}/xdg-open @{bin}/gio
+@{open_path} += @{bin}/gio-launch-desktop @{lib}/gio-launch-desktop
+@{open_path} += @{lib}/@{multiarch}/glib-[0-9]*/gio-launch-desktop
 
 # Coreutils programs that should not have dedicated profile
 @{coreutils}  = {,m}awk b2sum base32 base64 basename basenc cat chcon chgrp chmod chown
diff --git a/apparmor.d/tunables/multiarch.d/system b/apparmor.d/tunables/multiarch.d/system
index 97ef7157..dc1eb69f 100644
--- a/apparmor.d/tunables/multiarch.d/system
+++ b/apparmor.d/tunables/multiarch.d/system
@@ -15,13 +15,10 @@
 # Up to 10 digits (0-9999999999)
 @{int}=[0-9]{[0-9],}{[0-9],}{[0-9],}{[0-9],}{[0-9],}{[0-9],}{[0-9],}{[0-9],}{[0-9],}
 
-# Any six characters
+# Any x alphanumeric characters
 @{rand6}=@{c}@{c}@{c}@{c}@{c}@{c}
-
-# Any eight characters
 @{rand8}=@{c}@{c}@{c}@{c}@{c}@{c}@{c}@{c}
-
-# Any ten characters
+@{rand9}=@{c}@{c}@{c}@{c}@{c}@{c}@{c}@{c}@{c}
 @{rand10}=@{c}@{c}@{c}@{c}@{c}@{c}@{c}@{c}@{c}@{c}
 
 # MD5 hash
@@ -57,7 +54,7 @@
 @{bin}=/{,usr/}{,s}bin
 @{lib}=/{,usr/}lib{,exec,32,64}
 
-# Name of the systemd profile: unconfined || systemd
+# Name of the systemd profiles: unconfined || systemd
 @{systemd}=unconfined
 @{systemd_user}=unconfined