diff --git a/apparmor.d/groups/display-manager/lightdm-session b/apparmor.d/groups/display-manager/lightdm-session
new file mode 100644
index 00000000..fda263a8
--- /dev/null
+++ b/apparmor.d/groups/display-manager/lightdm-session
@@ -0,0 +1,23 @@
+# apparmor.d - Full set of apparmor profiles
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/4.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{bin}/lightdm-session
+profile lightdm-session @{exec_path} {
+  include <abstractions/base>
+
+  @{exec_path} mr,
+
+  @{bin}/im-launch rPx,
+
+  @{sh_path} rix,
+  @{bin}/mktemp rix,
+  @{bin}/expr rix,
+
+  include if exists <local/lightdm-session>
+}
+
+# vim:syntax=apparmor
diff --git a/apparmor.d/groups/freedesktop/pkla-admin-identities b/apparmor.d/groups/freedesktop/pkla-admin-identities
new file mode 100644
index 00000000..0fa176db
--- /dev/null
+++ b/apparmor.d/groups/freedesktop/pkla-admin-identities
@@ -0,0 +1,20 @@
+# apparmor.d - Full set of apparmor profiles
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{bin}/pkla-admin-identities
+profile pkla-admin-identities @{exec_path} {
+  include <abstractions/base>
+  include <abstractions/nameservice-strict>
+
+  @{exec_path} mr,
+
+  /etc/polkit-1/localauthority.conf.d/{,**} r,
+
+  include if exists <local/pkla-admin-identities>
+}
+
+# vim:syntax=apparmor
diff --git a/apparmor.d/profiles-g-l/gdk-pixbuf-thumbnailer b/apparmor.d/profiles-g-l/gdk-pixbuf-thumbnailer
new file mode 100644
index 00000000..99ffb6da
--- /dev/null
+++ b/apparmor.d/profiles-g-l/gdk-pixbuf-thumbnailer
@@ -0,0 +1,15 @@
+# apparmor.d - Full set of apparmor profiles
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{bin}/gdk-pixbuf-thumbnailer
+profile gdk-pixbuf-thumbnailer @{exec_path} {
+  include <abstractions/base>
+
+  include if exists <local/gdk-pixbuf-thumbnailer>
+}
+
+# vim:syntax=apparmor
diff --git a/apparmor.d/profiles-s-z/ucf b/apparmor.d/profiles-s-z/ucf
new file mode 100644
index 00000000..52d65e0c
--- /dev/null
+++ b/apparmor.d/profiles-s-z/ucf
@@ -0,0 +1,45 @@
+# apparmor.d - Full set of apparmor profiles
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{bin}/ucf
+profile ucf @{bin}/ucf {
+  include <abstractions/base>
+  include <abstractions/consoles>
+
+  @{exec_path} mr,
+
+  @{bin}/dpkg-query rPx,
+  @{bin}/dpkg-divert rPx -> child-dpkg-divert,
+  /usr/share/debconf/frontend rPx,
+
+  @{sh_path}  rix,
+  @{bin}/perl rix,
+  @{bin}/basename rix,
+  @{bin}/dirname rix,
+  @{bin}/getopt rix,
+  @{bin}/id rix,
+  @{bin}/readlink rix,
+  @{bin}/sed rix,
+  @{bin}/tr rix,
+  @{bin}/{,e,f}grep rix,
+  @{bin}/{,g,m}awk rix,
+  @{bin}/md5sum rix,
+  @{bin}/cp rix,
+
+  /etc/ucf.conf r,
+  /etc/libreoffice/registry/** r,
+
+  /var/lib/ucf/hashfile r,
+
+  /usr/share/debconf/confmodule r,
+
+  owner /tmp/tmp.@{rand10} r,
+
+  include if exists <local/ucf>
+}
+
+# vim:syntax=apparmor