Add OVAL checks for ubuntu
Adding the OVAL checks give a view on the CVEs the day the image is built (the file used is updated daily or very regularly). It's OK to do it as we have all the tooling available in this pipeline. However I think that we should be consistent and do it for the ubuntu image as well, check https://ubuntu.com/security/oval.