diff --git a/etc/inc/whitelist-common.inc b/etc/inc/whitelist-common.inc
index 1d3728521..fedfb2bc2 100644
--- a/etc/inc/whitelist-common.inc
+++ b/etc/inc/whitelist-common.inc
@@ -23,6 +23,7 @@ read-only ${HOME}/.local/share/applications
 whitelist ${HOME}/.local/share/icons
 whitelist ${HOME}/.local/share/mime
 whitelist ${HOME}/.mime.types
+whitelist ${HOME}/.sndio/cookie
 whitelist ${HOME}/.uim.d
 
 # dconf
diff --git a/src/firejail/fs.c b/src/firejail/fs.c
index 6c32c849d..0e26eb505 100644
--- a/src/firejail/fs.c
+++ b/src/firejail/fs.c
@@ -1277,6 +1277,9 @@ void fs_private_tmp(void) {
 	// read-only x11 directory
 	profile_add("read-only /tmp/.X11-unix");
 
+	// whitelist sndio directory
+	profile_add("whitelist /tmp/sndio");
+
 	// whitelist any pulse* file in /tmp directory
 	// some distros use PulseAudio sockets under /tmp instead of the socket in /urn/user
 	DIR *dir;