While this can be done in mysql, I'd strongly recommend doing it in the API.
To do it in the API, you'll need to find the ID of the network segment, and create a .csv list containing the IDs of every policy you need to change. Getting the IDs for every policy is most easily accomplished in mysql, with the query "select policy_id, name from policies;" and making the .csv from that. I'd recommend leaving the names attached as deleted policies tend to stick around in the database. Once you have the list, you can use something like the script below to add the limitation.
#!/bin/sh
TARGET = /Path/to/list.csv
SEGMENT = Network Segment ID
cat $TARGET | while read POLICY; do
curl -sk -u username:password -H "Content-Type: text/xml" -d "<?xml version="1.0" encoding="ISO-8859-1"?><policy><scope><limitations><network_segments><network_segment><id>$SEGMENT</id><network_segment></network_segments></limitation></scope></policy>" https://your.jss.url:8443/JSSResource/policies/id/$POLICY -X PUT
done
