diff --git a/repos/base-linux/src/lib/seccomp/spec/x86_64/seccomp_bpf_policy.bin b/repos/base-linux/src/lib/seccomp/spec/x86_64/seccomp_bpf_policy.bin
index d35e2475de..f64c462564 100644
Binary files a/repos/base-linux/src/lib/seccomp/spec/x86_64/seccomp_bpf_policy.bin and b/repos/base-linux/src/lib/seccomp/spec/x86_64/seccomp_bpf_policy.bin differ
diff --git a/tool/seccomp/seccomp_bpf_compiler.h b/tool/seccomp/seccomp_bpf_compiler.h
index 514c8578a9..5d12b25401 100644
--- a/tool/seccomp/seccomp_bpf_compiler.h
+++ b/tool/seccomp/seccomp_bpf_compiler.h
@@ -167,6 +167,9 @@ class Filter
 
 						/* returning from signal handlers is safe */
 						_add_allow_rule(SCMP_SYS(rt_sigreturn));
+
+						/* restarting syscalls is safe (can occur when debugging with GDB) */
+						_add_allow_rule(SCMP_SYS(restart_syscall));
 					}
 					break;
 				case SCMP_ARCH_ARM: