diff --git a/tee.te b/tee.te
index ce4e2b6f7b68b04b3ce54920cc61be52060fbda6..d5e8ff7d49427f6cc278fc42635fa1f07982087d 100644
--- a/tee.te
+++ b/tee.te
@@ -11,3 +11,4 @@ allow tee self:capability { dac_override };
 allow tee tee_device:chr_file rw_file_perms;
 allow tee tee_data_file:dir { getattr write add_name };
 allow tee tee_data_file:file create_file_perms;
+allow tee self:netlink_socket { create bind read };
diff --git a/ueventd.te b/ueventd.te
index 81a660f8982cedd199fcff23ef16dc32985ab6c9..1e5a79716320cd09b2e550af357ec0c21a8eb33f 100644
--- a/ueventd.te
+++ b/ueventd.te
@@ -5,7 +5,7 @@ tmpfs_domain(ueventd)
 allow ueventd rootfs:file r_file_perms;
 allow ueventd rootfs:file entrypoint;
 allow ueventd init:process sigchld;
-allow ueventd self:capability { chown mknod net_admin setgid fsetid sys_rawio dac_override };
+allow ueventd self:capability { chown mknod net_admin setgid fsetid sys_rawio dac_override fowner };
 allow ueventd device:file create_file_perms;
 allow ueventd device:chr_file rw_file_perms;
 allow ueventd sysfs:file rw_file_perms;