diff --git a/qcow/src/qcow.rs b/qcow/src/qcow.rs
index c44cc4add8..fd25053c6b 100644
--- a/qcow/src/qcow.rs
+++ b/qcow/src/qcow.rs
@@ -732,6 +732,7 @@ impl QcowFile {
             let _ = fallocate(self.raw_file.file_mut(),
                               FallocateMode::PunchHole, true,
                               cluster_addr, cluster_size);
+            self.unref_clusters.push(cluster_addr);
         }
         Ok(())
     }
diff --git a/seccomp/arm/block_device.policy b/seccomp/arm/block_device.policy
index 2054d3523d..6b1e415c77 100644
--- a/seccomp/arm/block_device.policy
+++ b/seccomp/arm/block_device.policy
@@ -18,6 +18,7 @@ _llseek: 1
 # negation, thus the manually negated mask constant.
 mmap2: arg2 in 0xfffffffb
 mprotect: arg2 in 0xfffffffb
+mremap: 1
 munmap: 1
 read: 1
 recv: 1
diff --git a/seccomp/x86_64/block_device.policy b/seccomp/x86_64/block_device.policy
index 0c7ef63a48..c660b3ba77 100644
--- a/seccomp/x86_64/block_device.policy
+++ b/seccomp/x86_64/block_device.policy
@@ -19,6 +19,7 @@ mmap: arg2 in 0xfffffffb
 mprotect: arg2 in 0xfffffffb
 # Allow MADV_DONTDUMP only.
 madvise: arg2 == 0x00000010
+mremap: 1
 munmap: 1
 read: 1
 recvfrom: 1