diff --git a/repos/base-linux/src/lib/seccomp/spec/arm/seccomp_bpf_policy.bin b/repos/base-linux/src/lib/seccomp/spec/arm/seccomp_bpf_policy.bin
index 2303a9af3..a282275be 100644
Binary files a/repos/base-linux/src/lib/seccomp/spec/arm/seccomp_bpf_policy.bin and b/repos/base-linux/src/lib/seccomp/spec/arm/seccomp_bpf_policy.bin differ
diff --git a/repos/base-linux/src/lib/seccomp/spec/x86_32/seccomp_bpf_policy.bin b/repos/base-linux/src/lib/seccomp/spec/x86_32/seccomp_bpf_policy.bin
index 7f70cd945..a50b51e7f 100644
Binary files a/repos/base-linux/src/lib/seccomp/spec/x86_32/seccomp_bpf_policy.bin and b/repos/base-linux/src/lib/seccomp/spec/x86_32/seccomp_bpf_policy.bin differ
diff --git a/repos/base-linux/src/lib/seccomp/spec/x86_64/seccomp_bpf_policy.bin b/repos/base-linux/src/lib/seccomp/spec/x86_64/seccomp_bpf_policy.bin
index 5bb506b93..d35e2475d 100644
Binary files a/repos/base-linux/src/lib/seccomp/spec/x86_64/seccomp_bpf_policy.bin and b/repos/base-linux/src/lib/seccomp/spec/x86_64/seccomp_bpf_policy.bin differ
diff --git a/tool/seccomp/seccomp_bpf_compiler.h b/tool/seccomp/seccomp_bpf_compiler.h
index 0f9e06c39..514c8578a 100644
--- a/tool/seccomp/seccomp_bpf_compiler.h
+++ b/tool/seccomp/seccomp_bpf_compiler.h
@@ -99,6 +99,9 @@ class Filter
 			_add_allow_rule(SCMP_SYS(fstat));
 			_add_allow_rule(SCMP_SYS(fstat64));
 
+			/* This syscall is used by the 'wait_for_continue' debug mechanism. */
+			_add_allow_rule(SCMP_SYS(read));
+
 			/* This syscall is used to wait for a condition. This should be safe. */
 			_add_allow_rule(SCMP_SYS(futex));