diff --git a/apparmor.d/abstractions/app/open b/apparmor.d/abstractions/app/open
index f93a1c44..f21a2a7d 100644
--- a/apparmor.d/abstractions/app/open
+++ b/apparmor.d/abstractions/app/open
@@ -9,6 +9,7 @@
   @{open_path} mrix,
 
   @{sh_path} r,
+  @{bin}/env rix,
 
   /dev/tty rw,
 
diff --git a/apparmor.d/abstractions/common/app b/apparmor.d/abstractions/common/app
index e44d8509..dc598cfa 100644
--- a/apparmor.d/abstractions/common/app
+++ b/apparmor.d/abstractions/common/app
@@ -33,7 +33,7 @@
   dbus bus=system,
 
   /usr/cache/** r,
-  /usr/local/** r,
+  /usr/local/{,**} r,
   /usr/share/** rk,
 
   /etc/{,**} r,
@@ -84,7 +84,7 @@
         @{PROC}/ r,
         @{PROC}/@{pid}/cgroup r,
         @{PROC}/@{pid}/cmdline r,
-        @{PROC}/@{pid}/comm r,
+        @{PROC}/@{pid}/comm rk,
         @{PROC}/@{pid}/fd/ r,
         @{PROC}/@{pid}/mountinfo r,
         @{PROC}/@{pid}/net/** r,
@@ -94,6 +94,7 @@
         @{PROC}/@{pid}/task/@{tid}/stat r,
         @{PROC}/@{pid}/task/@{tid}/status r,
         @{PROC}/bus/pci/devices r,
+        @{PROC}/cmdline r,
         @{PROC}/driver/** r,
         @{PROC}/locks r,
         @{PROC}/pressure/cpu r,
@@ -104,6 +105,7 @@
         @{PROC}/sys/kernel/pid_max r,
         @{PROC}/sys/kernel/sched_autogroup_enabled r,
         @{PROC}/sys/kernel/yama/ptrace_scope r,
+        @{PROC}/sys/net/core/bpf_jit_enable r,
         @{PROC}/uptime r,
         @{PROC}/version r,
         @{PROC}/zoneinfo r,
@@ -119,15 +121,18 @@
   owner @{PROC}/@{pid}/mounts r,
   owner @{PROC}/@{pid}/net/if_inet6 r,
   owner @{PROC}/@{pid}/oom_score_adj rw,
+  owner @{PROC}/@{pid}/pagemap r,
   owner @{PROC}/@{pid}/statm r,
   owner @{PROC}/@{pid}/task/ r,
   owner @{PROC}/@{pid}/task/@{tid}/comm rw,
 
   /dev/hidraw@{int} rw,
   /dev/input/ r,
+  /dev/input/event@{int} rw,
   /dev/ptmx rw,
   /dev/pts/ptmx rw,
   /dev/tty rw,
+  /dev/udmabuf rw,
 
   include if exists <abstractions/common/app.d>