Description: netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHAIN_ID
References:
 https://bugzilla.redhat.com/show_bug.cgi?id=2225239
Notes:
 carnil> Commit fixes d0e2c7de92c7 ("netfilter: nf_tables: add
 carnil> NFT_CHAIN_BINDING") 5.9-rc1.
 carnil> For 6.4.y fixed as well in 6.4.8.
Bugs:
upstream: released (6.5-rc4) [0ebc1064e4874d5987722a2ddbc18f94aa53b211]
6.1-upstream-stable: released (6.1.43) [268cb07ef3ee17b5454a7c4b23376802c5b00c79]
5.10-upstream-stable: released (5.10.190) [308a43f1521d5b7220693d0865b23e8dad3ed137]
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.4.11-1)
6.1-bookworm-security: released (6.1.52-1)
5.10-bullseye-security: released (5.10.191-1)
4.19-buster-security: N/A "Vulnerable code not present"