diff --git a/apparmor.d/groups/virt/dockerd b/apparmor.d/groups/virt/dockerd
index 6ff60846..d68950b3 100644
--- a/apparmor.d/groups/virt/dockerd
+++ b/apparmor.d/groups/virt/dockerd
@@ -61,12 +61,9 @@ profile dockerd @{exec_path} flags=(attach_disconnected) {
   /{usr/,}bin/ps                      rPx,
   /{usr/,}bin/unpigz                  rix,
 
-  # Docker needs full access of the containers it manage.
+  # Docker needs full access of the containers it manages.
   # TODO: should be in a sub profile started with pivot_root, not supported yet.
   /{,**} rwl,
-  deny /boot/{,**} rwl,
-  deny /media/{,**} rwl,
-  deny /mnt/{,**} rwl,
 
   owner /{usr/,}lib/docker/overlay2/*/work/{,**} rw,
   owner /var/lib/docker/{,**} rwk,